CISM Job Trends in the UK excluding London

ISACA Certified Information Security Manager (CISM)
UK > UK excluding London

The table below provides summary statistics for permanent job vacancies advertised in the UK excluding London with a requirement for CISM qualifications. It includes a benchmarking guide to the salaries offered over the 6 months leading up to 13 January 2026, comparing them to the same period in the previous two years.

6 months to
13 Jan 2026		 Same period 2025 Same period 2024
Rank 326 287 401
Rank change year-on-year -39 +114 0
Permanent jobs citing CISM 187 317 171
As % of all permanent jobs in the UK excluding London 0.44% 0.88% 0.49%
As % of the Qualifications category 1.34% 2.29% 1.63%
Number of salaries quoted 135 149 133
10th Percentile £48,750 £40,500 £47,100
25th Percentile £51,250 £53,750 £52,500
Median annual salary (50th Percentile) £67,500 £67,500 £61,206
Median % change year-on-year - +10.28% -5.84%
75th Percentile £80,625 £78,500 £75,000
90th Percentile £86,370 £87,500 £85,000
UK median annual salary £75,000 £75,000 £73,247
% change year-on-year - +2.39% +0.34%

All Academic and Professional Certifications
UK excluding London

CISM falls under the Academic Qualifications and Professional Certifications category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies requiring academic qualifications or professional certifications in the UK excluding London.

Permanent vacancies requiring academic qualifications or professional certifications 13,962 13,873 10,476
As % of all permanent jobs advertised in the UK excluding London 33.09% 38.67% 30.24%
Number of salaries quoted 5,083 5,273 6,893
10th Percentile £28,250 £31,250 £27,965
25th Percentile £31,250 £42,500 £37,500
Median annual salary (50th Percentile) £49,000 £55,000 £51,300
Median % change year-on-year -10.91% +7.21% +1.40%
75th Percentile £65,000 £70,000 £65,000
90th Percentile £81,250 £81,250 £77,500
UK median annual salary £55,000 £59,500 £57,500
% change year-on-year -7.56% +3.48% -

CISM
Job Vacancy Trend in the UK excluding London

Historical trend showing the proportion of permanent IT job postings citing CISM relative to all permanent IT jobs advertised in the UK excluding London.

CISM job vacancy trend in the UK excluding London

CISM
Salary Trend in the UK excluding London

Salary distribution trend for jobs in the UK excluding London citing CISM.

Salary distribution trend for jobs in the UK excluding London citing CISM

CISM
Salary Histogram in the UK excluding London

Salary distribution for jobs citing CISM in the UK excluding London over the 6 months to 13 January 2026.

Salary histogram for CISM in the UK excluding London

CISM
Job Locations in the UK excluding London

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the UK excluding London region over the 6 months to 13 January 2026. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Permanent
IT Job Ads		 Median Salary
Past 6 Months		 Median Salary
% Change
on Same Period
Last Year		 Live
Jobs
South West +57 59 £60,000 -4.00% 12
South East +20 44 £65,000 -15.58% 23
North of England -68 31 £81,900 +33.71% 15
Midlands -11 29 £62,500 +4.17% 12
North West -47 18 £82,200 +50.02% 10
West Midlands -17 17 £62,500 +4.17% 7
East Midlands -4 12 £60,000 +4.35% 5
East of England +8 11 £67,500 -8.78% 7
Yorkshire -28 10 £65,000 -13.33% 5
Scotland -20 9 £75,000 +15.38% 3
Wales +7 4 £85,000 +54.55% 2
North East +4 3 £86,250 -
CISM
UK

CISM
Co-Occurring Skills & Capabilities in the UK excluding London by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1 16 (8.56%) IIS
2 1 (0.53%) Confluence
2 1 (0.53%) Microsoft Exchange
Applications
1 2 (1.07%) Weka
Cloud Services
1 31 (16.58%) Azure
2 25 (13.37%) AWS
3 11 (5.88%) Microsoft 365
4 9 (4.81%) SaaS
5 6 (3.21%) Azure Sentinel
5 6 (3.21%) Microsoft Purview
6 5 (2.67%) GCP
7 4 (2.14%) Cloud Computing
7 4 (2.14%) Entra ID
8 2 (1.07%) Dynamics 365
9 1 (0.53%) Azure Key Vault
9 1 (0.53%) Mimecast
9 1 (0.53%) Nutanix
9 1 (0.53%) OpenShift
Communications & Networking
1 9 (4.81%) Firewall
2 7 (3.74%) Network Security
3 5 (2.67%) DNS
4 4 (2.14%) SSL
4 4 (2.14%) VPN
5 1 (0.53%) DHCP
5 1 (0.53%) Modbus
5 1 (0.53%) NGFW
5 1 (0.53%) S/MIME
5 1 (0.53%) TCP/IP
Database & Business Intelligence
1 2 (1.07%) Tableau
Development Applications
1 1 (0.53%) Git
1 1 (0.53%) GitLab
1 1 (0.53%) Jenkins
1 1 (0.53%) JIRA
General
1 96 (51.34%) Social Skills
2 55 (29.41%) Finance
3 42 (22.46%) Public Sector
4 32 (17.11%) Analytical Skills
5 31 (16.58%) Telecoms
6 30 (16.04%) Electronics
6 30 (16.04%) Manufacturing
6 30 (16.04%) Marketing
7 12 (6.42%) Legal
7 12 (6.42%) Retail
8 11 (5.88%) Inclusion and Diversity
9 8 (4.28%) Banking
10 7 (3.74%) Documentation Skills
11 6 (3.21%) Influencing Skills
12 4 (2.14%) Organisational Skills
13 2 (1.07%) Cyber-Physical System
13 2 (1.07%) Pharmaceutical
14 1 (0.53%) Financial Institution
Job Titles
1 55 (29.41%) Consultant
1 55 (29.41%) Security Consultant
2 36 (19.25%) Architect
3 35 (18.72%) Security Architect
4 30 (16.04%) Senior
5 25 (13.37%) Security Manager
6 24 (12.83%) Enterprise Architect
6 24 (12.83%) Enterprise Information Architect
6 24 (12.83%) Enterprise Security Architect
6 24 (12.83%) Information Architect
6 24 (12.83%) Information Security Architect
7 23 (12.30%) Cybersecurity Consultant
8 18 (9.63%) Senior Consultant
8 18 (9.63%) Senior Cybersecurity Consultant
8 18 (9.63%) Senior Security Consultant
9 16 (8.56%) Analyst
10 15 (8.02%) Lead
11 14 (7.49%) Information Security Manager
11 14 (7.49%) Security Analyst
12 11 (5.88%) Information Analyst
Libraries, Frameworks & Software Standards
1 26 (13.90%) SAP CAF
2 3 (1.60%) ModSecurity
3 2 (1.07%) EDI
4 1 (0.53%) JWT
4 1 (0.53%) OAuth
4 1 (0.53%) OAuth2
Miscellaneous
1 36 (19.25%) Management Information System
2 16 (8.56%) CESG
3 14 (7.49%) Security Posture
4 7 (3.74%) Cyber Threat
4 7 (3.74%) Data Protection Act
4 7 (3.74%) Self-Motivation
5 6 (3.21%) Cyber Defence
5 6 (3.21%) Onboarding
6 4 (2.14%) Digital Media
7 3 (1.60%) Operational Technology
7 3 (1.60%) PKI
7 3 (1.60%) Security Operations Centre
8 2 (1.07%) Analytical Mindset
8 2 (1.07%) Cyber Security Posture
8 2 (1.07%) Smart City
9 1 (0.53%) Algorithms
9 1 (0.53%) DataPower
9 1 (0.53%) Insider Threat
9 1 (0.53%) SCADA
9 1 (0.53%) Smartcard
Operating Systems
1 3 (1.60%) Windows
2 2 (1.07%) Linux
Processes & Methodologies
1 127 (67.91%) Cybersecurity
2 96 (51.34%) Information Security
3 73 (39.04%) Risk Management
4 54 (28.88%) ISMS
5 48 (25.67%) Security Architecture
6 40 (21.39%) Decision-Making
7 39 (20.86%) Data Protection
8 38 (20.32%) Cloud Security
8 38 (20.32%) Security Management
9 36 (19.25%) Incident Response
10 34 (18.18%) Collaborative Culture
11 32 (17.11%) Information Security Management
11 32 (17.11%) TOGAF
12 31 (16.58%) Stakeholder Management
13 30 (16.04%) Business Intelligence
13 30 (16.04%) Digital Marketing
13 30 (16.04%) Enterprise Architecture
13 30 (16.04%) Programme Management
13 30 (16.04%) SABSA
13 30 (16.04%) Strategic Thinking
Programming Languages
1 3 (1.60%) PowerShell
2 2 (1.07%) Kusto Query Language
2 2 (1.07%) Python
Qualifications
1 175 (93.58%) CISSP
2 49 (26.20%) Security Cleared
3 47 (25.13%) SC Cleared
4 34 (18.18%) ISO 27001 Lead Implementer
5 28 (14.97%) Degree
6 26 (13.90%) DBS Check
6 26 (13.90%) TOGAF Certification
7 25 (13.37%) CISMP
8 24 (12.83%) CESG Certified Professional
8 24 (12.83%) CISA
9 23 (12.30%) CRISC
10 16 (8.56%) CEH
10 16 (8.56%) IISP
11 15 (8.02%) (ISC)2 CCSP
11 15 (8.02%) Cisco Certification
11 15 (8.02%) CompTIA Security+
12 14 (7.49%) ISO 27001 Lead Auditor
13 10 (5.35%) BPSS Clearance
14 7 (3.74%) AWS Certification
14 7 (3.74%) Computer Science Degree
Quality Assurance & Compliance
1 112 (59.89%) ISO/IEC 27001
2 107 (57.22%) NIST
3 76 (40.64%) GRC
4 33 (17.65%) Cyber Essentials
5 26 (13.90%) GDPR
5 26 (13.90%) NCSC
6 24 (12.83%) NIST 800
7 22 (11.76%) JSP 440
8 17 (9.09%) PCI DSS
9 16 (8.56%) HMG Security Policy Framework
9 16 (8.56%) RMADS
10 14 (7.49%) Cyber Essentials PLUS
11 6 (3.21%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
12 5 (2.67%) Sarbanes-Oxley
13 4 (2.14%) Def Stans
13 4 (2.14%) SOC 2
14 3 (1.60%) ISO 22301
15 2 (1.07%) GxP
15 2 (1.07%) QA
16 1 (0.53%) COBIT
System Software
1 2 (1.07%) Docker
1 2 (1.07%) vSphere
2 1 (0.53%) Active Directory
2 1 (0.53%) VMware Infrastructure
Systems Management
1 3 (1.60%) Kubernetes
2 2 (1.07%) Microsoft Intune
3 1 (0.53%) Ansible
3 1 (0.53%) CSIRT
3 1 (0.53%) Fluentd
3 1 (0.53%) Terraform
Vendors
1 30 (16.04%) SAP
2 25 (13.37%) Microsoft
3 3 (1.60%) Google
3 3 (1.60%) Palo Alto
3 3 (1.60%) Tenable
4 1 (0.53%) BiZZdesign
4 1 (0.53%) Centrify
4 1 (0.53%) Cisco
4 1 (0.53%) Cribl.io
4 1 (0.53%) CyberArk
4 1 (0.53%) Exabeam
4 1 (0.53%) Extreme Networks
4 1 (0.53%) Fortinet
4 1 (0.53%) Meraki
4 1 (0.53%) Netskope
4 1 (0.53%) Rapid7
4 1 (0.53%) Splunk
4 1 (0.53%) Thales
4 1 (0.53%) Thycotic
4 1 (0.53%) VMware
71 CISM jobs in the UK excluding London