Period
to 21 April 2018

The following table provides summary statistics for permanent job vacancies advertised in the South East with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 21 April 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
England > South East
6 months to
21 Apr 2018
Same period 2017 Same period 2016
Rank 289 365 353
Rank change year-on-year +76 -12 +101
Permanent jobs citing CISM 308 185 300
As % of all permanent IT jobs advertised in the South East 0.97% 0.62% 0.77%
As % of the Qualifications category 3.70% 2.18% 2.45%
Number of salaries quoted 251 162 257
South East median annual salary £60,000 £60,000 £57,500
Median salary % change year-on-year - +4.35% -4.17%
10th Percentile £44,500 £47,175 £47,500
90th Percentile £100,000 £77,500 £75,000
England median annual salary £65,000 £65,000 £60,000
% change year-on-year - +8.33% -

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in the South East with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
South East
Permanent vacancies requiring academic qualifications or professional certifications 8,316 8,490 12,261
As % of all permanent IT jobs advertised in the South East 26.24% 28.29% 31.40%
Number of salaries quoted 6,585 6,860 9,955
South East median annual salary £45,000 £42,500 £45,000
Median salary % change year-on-year +5.88% -5.56% +5.88%
10th Percentile £25,500 £25,000 £25,250
90th Percentile £67,500 £66,250 £68,750
England median annual salary £49,000 £45,000 £46,500
% change year-on-year +8.89% -3.23% +3.33%

CISM
Job Vacancy Trend in the South East

Job postings citing CISM as a percentage of all IT jobs advertised in the South East.

Job vacancy trend for CISM in the South East

CISM
Salary Trend in the South East

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISM in the South East.

Salary trend for CISM in the South East

CISM
Salary Histogram in the South East

The salary distribution of IT jobs citing CISM in the South East over the 6 months to 21 April 2018.

Salary histogram for CISM in the South East

CISM
Job Locations in the South East

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the South East region over the 6 months to 21 April 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
Thames Valley +39 129 £57,500 -4.17% 7
Berkshire +41 100 £57,500 -23.33% 5
Surrey +22 64 £60,000 - 10
Hampshire -32 36 £58,500 -2.50% 7
Kent +17 23 £60,000 - 2
East Sussex +4 22 £61,250 +2.08% 4
Buckinghamshire -12 20 £50,000 -9.09% 1
West Sussex +12 9 £55,000 -0.90%
Oxfordshire +1 8 £61,250 -18.33% 1
CISM
England

For the 6 months to 21 April 2018, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the South East region with a requirement for CISM.

1 292 (94.81%) CISSP
2 231 (75.00%) Information Security
3 170 (55.19%) ISO/IEC 27001
4 143 (46.43%) CISA
5 107 (34.74%) Finance
6 105 (34.09%) Risk Management
7 86 (27.92%) Firewall
8 81 (26.30%) Cybersecurity
9 69 (22.40%) PCI DSS
10 66 (21.43%) GDPR
11 58 (18.83%) Degree
11 58 (18.83%) Analytical Skills
12 56 (18.18%) Security Management
13 54 (17.53%) SIEM
14 53 (17.21%) Penetration Testing
15 52 (16.88%) Data Protection
16 51 (16.56%) Management Information System
17 47 (15.26%) Network Security
17 47 (15.26%) Security Operations
18 45 (14.61%) CRISC
18 45 (14.61%) ITIL
19 44 (14.29%) Information Security Management
19 44 (14.29%) Security Monitoring
19 44 (14.29%) Problem-Solving
20 43 (13.96%) CEH
21 38 (12.34%) Computer Science
21 38 (12.34%) Risk Assessment
22 37 (12.01%) Vulnerability Management
23 36 (11.69%) Ethical Hacking
24 35 (11.36%) Cisco Certification

CISM
Co-occurring IT Skills in the South East by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 21 (6.82%) IIS
2 8 (2.60%) Apache
Applications
1 3 (0.97%) MS Visio
2 2 (0.65%) Microsoft Office
Cloud Services
1 20 (6.49%) Microsoft Azure
2 18 (5.84%) Amazon AWS
3 9 (2.92%) Office 365
3 9 (2.92%) SaaS
4 2 (0.65%) Azure Active Directory
4 2 (0.65%) Cloud Computing
Communications & Networking
1 86 (27.92%) Firewall
2 47 (15.26%) Network Security
3 20 (6.49%) VPN
3 20 (6.49%) WAN
4 15 (4.87%) IPsec
4 15 (4.87%) SSL
5 14 (4.55%) SCCP
5 14 (4.55%) TCP/IP
6 8 (2.60%) Intrusion Detection
7 7 (2.27%) LAN
8 4 (1.30%) Internet
9 3 (0.97%) Radio Access Network
10 2 (0.65%) DHCP
10 2 (0.65%) DNS
10 2 (0.65%) Kerberos
11 1 (0.32%) Cisco ASA
11 1 (0.32%) Intranet
11 1 (0.32%) Wireless
Database & Business Intelligence
1 8 (2.60%) MySQL
2 3 (0.97%) Big Data
Development Applications
1 3 (0.97%) Burp Suite
1 3 (0.97%) Metasploit
2 1 (0.32%) SonarQube
General
1 107 (34.74%) Finance
2 23 (7.47%) Legal
2 23 (7.47%) Telecoms
3 5 (1.62%) Manufacturing
4 4 (1.30%) Financial Institution
5 3 (0.97%) Law
6 2 (0.65%) French Language
6 2 (0.65%) German Language
6 2 (0.65%) Spanish Language
7 1 (0.32%) Banking
7 1 (0.32%) Investment Banking
7 1 (0.32%) Retail
Job Titles
1 90 (29.22%) Security Manager
2 74 (24.03%) Information Security Manager
3 68 (22.08%) Consultant
4 65 (21.10%) Security Consultant
5 60 (19.48%) Information Manager
6 56 (18.18%) Analyst
7 45 (14.61%) Security Analyst
8 36 (11.69%) Information Security Consultant
9 25 (8.12%) Senior Manager
10 23 (7.47%) Information Analyst
10 23 (7.47%) Information Security Analyst
11 22 (7.14%) Architect
11 22 (7.14%) Security Architect
12 18 (5.84%) Security Engineer
13 17 (5.52%) Information Assurance Manager
13 17 (5.52%) Security Assurance Manager
14 13 (4.22%) Risk Manager
15 12 (3.90%) IT Manager
15 12 (3.90%) Security Officer
15 12 (3.90%) Senior Security Engineer
Libraries, Frameworks & Software Standards
1 8 (2.60%) SailPoint
2 2 (0.65%) ADSI
2 2 (0.65%) LDAP
3 1 (0.32%) Regular Expression
Miscellaneous
1 58 (18.83%) Analytical Skills
2 51 (16.56%) Management Information System
3 38 (12.34%) Computer Science
4 21 (6.82%) Data Centre
4 21 (6.82%) Data Protection Act
5 14 (4.55%) NHS
5 14 (4.55%) Self-Motivation
6 13 (4.22%) Security Operations Centre
7 12 (3.90%) Distributed Denial-of-Service
8 11 (3.57%) Cyberthreat
9 10 (3.25%) PKI
10 8 (2.60%) Cyber Kill Chain
11 4 (1.30%) Cyber Defence
11 4 (1.30%) Virtual Team
12 3 (0.97%) Cyberattack
12 3 (0.97%) Private Cloud
12 3 (0.97%) Public Cloud
12 3 (0.97%) VAX
13 2 (0.65%) Client/Server
13 2 (0.65%) Enterprise Software
Operating Systems
1 25 (8.12%) Windows
2 16 (5.19%) Linux
3 11 (3.57%) Windows Server
4 8 (2.60%) FreeBSD
5 3 (0.97%) Kali Linux
5 3 (0.97%) Unix
6 2 (0.65%) Windows 10
Processes & Methodologies
1 231 (75.00%) Information Security
2 105 (34.09%) Risk Management
3 81 (26.30%) Cybersecurity
4 56 (18.18%) Security Management
5 54 (17.53%) SIEM
6 53 (17.21%) Penetration Testing
7 52 (16.88%) Data Protection
8 47 (15.26%) Security Operations
9 45 (14.61%) ITIL
10 44 (14.29%) Information Security Management
10 44 (14.29%) Problem-Solving
10 44 (14.29%) Security Monitoring
11 38 (12.34%) Risk Assessment
12 37 (12.01%) Vulnerability Management
13 36 (11.69%) Ethical Hacking
14 34 (11.04%) Information Assurance
15 32 (10.39%) Stakeholder Management
16 29 (9.42%) OWASP
16 29 (9.42%) People Management
17 26 (8.44%) Business Continuity
Programming Languages
1 3 (0.97%) Perl
1 3 (0.97%) Python
Qualifications
1 292 (94.81%) CISSP
2 143 (46.43%) CISA
3 58 (18.83%) Degree
4 45 (14.61%) CRISC
5 43 (13.96%) CEH
6 35 (11.36%) Cisco Certification
7 30 (9.74%) GIAC
8 28 (9.09%) Computer Science Degree
9 27 (8.77%) SANS
10 24 (7.79%) (ISC)2 CCSP
10 24 (7.79%) CCSP
11 21 (6.82%) IISP
12 20 (6.49%) Security Cleared
13 13 (4.22%) SC Cleared
14 12 (3.90%) ISO 27001 Lead Auditor
15 11 (3.57%) CESG Certified Professional
16 9 (2.92%) CCNA
17 8 (2.60%) CCSA
17 8 (2.60%) GCIH
17 8 (2.60%) ITIL Foundation Certificate
Quality Assurance & Compliance
1 170 (55.19%) ISO/IEC 27001
2 69 (22.40%) PCI DSS
3 66 (21.43%) GDPR
4 33 (10.71%) COBIT
4 33 (10.71%) Cyber Essentials
5 19 (6.17%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 16 (5.19%) Sarbanes-Oxley
7 11 (3.57%) ISO 22301
7 11 (3.57%) ISO 31000
8 10 (3.25%) HMG Security Policy Framework
9 8 (2.60%) ISO/IEC 27005
10 5 (1.62%) QA
11 4 (1.30%) SLA
12 3 (0.97%) GPG13
12 3 (0.97%) ISAE 3402
12 3 (0.97%) PSD2
13 2 (0.65%) Government Security Classifications
13 2 (0.65%) NIST 800
13 2 (0.65%) PA-DSS
13 2 (0.65%) RMADS
System Software
1 26 (8.44%) Active Directory
2 9 (2.92%) Hyper-V
3 1 (0.32%) Virtual Desktop
Systems Management
1 15 (4.87%) Nessus
1 15 (4.87%) QRadar
2 8 (2.60%) Juniper STRM
2 8 (2.60%) RSA enVision
2 8 (2.60%) RSA Security Analytics
3 6 (1.95%) Core Impact
3 6 (1.95%) Nexpose
3 6 (1.95%) OpenVAS
4 4 (1.30%) CSIRT
5 2 (0.65%) CASB
6 1 (0.32%) Computer Emergency Response Teams
6 1 (0.32%) Single Sign-On
6 1 (0.32%) Trend Micro Deep Security
Vendors
1 25 (8.12%) Cisco
2 20 (6.49%) Qualys
3 15 (4.87%) LogRhythm
4 14 (4.55%) CheckPoint
5 13 (4.22%) Rapid7
6 12 (3.90%) Juniper
7 9 (2.92%) CyberArk
7 9 (2.92%) IBM
7 9 (2.92%) SolarWinds
7 9 (2.92%) Sun
8 8 (2.60%) ArcSight
8 8 (2.60%) Splunk
9 6 (1.95%) AlienVault
9 6 (1.95%) Aveksa
9 6 (1.95%) Bomgar
10 4 (1.30%) Microsoft
10 4 (1.30%) Oracle
10 4 (1.30%) Palo Alto
11 3 (0.97%) BT
11 3 (0.97%) McAfee