Period
to 12 August 2020

The following table provides summary statistics for permanent job vacancies advertised in the UK excluding London with a requirement for CISSP qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 12 August 2020 with a comparison to the same period in the previous 2 years.

(ISC)² Certified Information Systems Security Professional (ISC2 CISSP)
UK > UK excluding London
6 months to
12 Aug 2020
Same period 2019 Same period 2018
Rank 245 232 210
Rank change year-on-year -13 -22 +60
Permanent jobs citing CISSP 428 1,180 1,571
As % of all permanent jobs advertised in the UK excluding London 1.22% 1.44% 1.63%
As % of the Qualifications category 5.18% 5.46% 6.68%
Number of salaries quoted 331 949 1,178
Median annual salary £60,000 £60,000 £60,000
10th Percentile £41,000 £42,500 £37,500
90th Percentile £80,000 £82,500 £80,000
UK median annual salary £63,853 £65,000 £62,500
% change year-on-year -1.77% +4.00% -

CISSP is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in the UK excluding London with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK excluding London
Permanent vacancies requiring academic qualifications or professional certifications 8,256 21,630 23,528
As % of all permanent IT jobs advertised in the UK excluding London 23.52% 26.36% 24.45%
Number of salaries quoted 5,923 15,451 17,548
Median annual salary £47,500 £45,000 £45,000
Median salary % change year-on-year +5.56% - +5.88%
10th Percentile £27,500 £25,508 £24,750
90th Percentile £72,500 £70,000 £67,500
UK median annual salary £52,500 £50,000 £50,000
% change year-on-year +5.00% - +11.11%

CISSP
Job Vacancy Trend in the UK excluding London

Job postings citing CISSP as a proportion of all IT jobs advertised in the UK excluding London.

Job vacancy trend for CISSP in the UK excluding London

CISSP
Salary Trend in the UK excluding London

3-month moving average salary quoted in jobs citing CISSP in the UK excluding London.

Salary trend for CISSP in the UK excluding London

CISSP
Salary Histogram in the UK excluding London

Salary distribution for jobs citing CISSP in the UK excluding London over the 6 months to 12 August 2020.

Salary histogram for CISSP in the UK excluding London

CISSP
Job Locations in the UK excluding London

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISSP within the UK excluding London region over the 6 months to 12 August 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
South East +46 131 £60,000 -7.69% 9
Midlands +26 87 £60,000 +4.35% 8
North of England +12 84 £60,000 +2.56% 14
West Midlands +33 81 £57,000 -0.87% 5
North West +42 60 £60,000 -4.00% 6
South West +49 58 £65,000 +18.18% 17
Scotland +74 34 £47,575 -18.68% 5
East of England -14 28 £65,000 +1.56% 6
Yorkshire +64 23 £60,000 +3.45% 7
East Midlands +48 6 £67,500 +10.20% 3
Northern Ireland +28 3 £50,000 +37.93% 1
Wales +18 3 £52,500 +5.00% 5
North East +11 1 £65,000 +24.40% 1
CISSP
UK

For the 6 months to 12 August 2020, IT jobs citing CISSP also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the UK excluding London region with a requirement for CISSP.

1 273 (63.79%) Information Security
2 268 (62.62%) Cybersecurity
3 258 (60.28%) CISM
4 190 (44.39%) ISO/IEC 27001
5 144 (33.64%) Risk Management
6 106 (24.77%) CISA
7 104 (24.30%) Management Information System
8 103 (24.07%) NIST
9 100 (23.36%) Degree
10 97 (22.66%) Firewall
11 92 (21.50%) Finance
12 91 (21.26%) Security Cleared
13 86 (20.09%) SIEM
14 85 (19.86%) Security Management
15 76 (17.76%) ITIL
16 75 (17.52%) Security Operations
17 70 (16.36%) Cisco Certification
17 70 (16.36%) SC Cleared
18 66 (15.42%) PCI DSS
19 63 (14.72%) Security Architecture
20 60 (14.02%) Azure
21 55 (12.85%) CEH
21 55 (12.85%) Information Assurance
21 55 (12.85%) CRISC
22 54 (12.62%) Penetration Testing
23 53 (12.38%) GDPR
24 52 (12.15%) CESG Certified Professional
24 52 (12.15%) Information Security Management
25 51 (11.92%) AWS
26 50 (11.68%) ISMS

CISSP
Co-occurring IT Skills in the UK excluding London by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 13 (3.04%) IIS
2 3 (0.70%) SharePoint
3 1 (0.23%) Elasticsearch
3 1 (0.23%) MS Exchange
Applications
1 11 (2.57%) Microsoft Excel
2 8 (1.87%) Microsoft PowerPoint
3 4 (0.93%) Microsoft Office
4 3 (0.70%) MS Visio
Business Applications
1 2 (0.47%) Remedy ITSM
2 1 (0.23%) Sentinel
Cloud Services
1 60 (14.02%) Azure
2 51 (11.92%) AWS
3 22 (5.14%) Office 365
4 12 (2.80%) IaaS
5 11 (2.57%) PaaS
6 9 (2.10%) SaaS
7 4 (0.93%) Azure Active Directory
8 3 (0.70%) Amazon GuardDuty
8 3 (0.70%) GCP
9 2 (0.47%) Amazon Cognito
9 2 (0.47%) Apigee
9 2 (0.47%) Cloud Computing
9 2 (0.47%) OpenShift
9 2 (0.47%) Serverless
10 1 (0.23%) AWS CloudFormation
10 1 (0.23%) AWS CodeDeploy
10 1 (0.23%) Power Automate
10 1 (0.23%) Power Platform
Communications & Networking
1 97 (22.66%) Firewall
2 38 (8.88%) Network Security
3 34 (7.94%) Intrusion Detection
4 27 (6.31%) TCP/IP
5 20 (4.67%) Internet
6 19 (4.44%) VPN
7 13 (3.04%) WAN
8 9 (2.10%) LAN
8 9 (2.10%) Wireless
9 7 (1.64%) DHCP
9 7 (1.64%) DNS
10 6 (1.40%) HTTP
11 5 (1.17%) SAN
11 5 (1.17%) SCCP
11 5 (1.17%) SNMP
11 5 (1.17%) SSL
11 5 (1.17%) VLAN
12 4 (0.93%) DSL
12 4 (0.93%) HTTPS
12 4 (0.93%) MPLS
Database & Business Intelligence
1 3 (0.70%) SQL Server
2 1 (0.23%) Big Data
2 1 (0.23%) Data Lake
2 1 (0.23%) DB2
2 1 (0.23%) Informix
2 1 (0.23%) MongoDB
2 1 (0.23%) PostgreSQL
2 1 (0.23%) Power BI
Development Applications
1 5 (1.17%) Burp Suite
2 3 (0.70%) Metasploit
3 2 (0.47%) JIRA
4 1 (0.23%) Bitbucket Server
4 1 (0.23%) Git (software)
4 1 (0.23%) Jenkins
4 1 (0.23%) Subversion
4 1 (0.23%) WinDbg
General
1 92 (21.50%) Finance
2 34 (7.94%) Legal
3 18 (4.21%) Public Sector
4 17 (3.97%) Law
5 13 (3.04%) Telecoms
6 10 (2.34%) Banking
7 7 (1.64%) Retail
8 6 (1.40%) Aerospace
8 6 (1.40%) Manufacturing
9 4 (0.93%) Military
10 3 (0.70%) Games
10 3 (0.70%) Local Government
10 3 (0.70%) Marketing
11 2 (0.47%) Advertising
11 2 (0.47%) Pharmaceutical
12 1 (0.23%) Electronics
12 1 (0.23%) Financial Institution
12 1 (0.23%) Police
12 1 (0.23%) Publishing
Job Titles
1 82 (19.16%) Security Manager
2 68 (15.89%) Analyst
3 64 (14.95%) Consultant
4 60 (14.02%) Security Consultant
5 47 (10.98%) Security Analyst
5 47 (10.98%) Security Engineer
6 45 (10.51%) Architect
7 43 (10.05%) Security Architect
8 32 (7.48%) Cybersecurity Consultant
8 32 (7.48%) IT Manager
9 31 (7.24%) IT Security Manager
10 29 (6.78%) Cybersecurity Manager
11 23 (5.37%) Senior Analyst
12 22 (5.14%) Security Specialist
13 19 (4.44%) Information Security Consultant
13 19 (4.44%) Information Security Manager
14 18 (4.21%) Information Manager
15 17 (3.97%) Information Analyst
15 17 (3.97%) Information Security Analyst
16 16 (3.74%) Senior Security Engineer
Libraries, Frameworks & Software Standards
1 10 (2.34%) SAML
2 9 (2.10%) LDAP
3 8 (1.87%) Regular Expression
4 6 (1.40%) .NET
4 6 (1.40%) OAuth
5 5 (1.17%) .NET Framework
6 4 (0.93%) Middleware
6 4 (0.93%) ModSecurity
7 3 (0.70%) Web Services
8 2 (0.47%) SailPoint
9 1 (0.23%) 802.1X
9 1 (0.23%) Itk
Miscellaneous
1 104 (24.30%) Management Information System
2 43 (10.05%) Cyberthreat
3 34 (7.94%) Analytical Skills
4 30 (7.01%) Security Operations Centre
5 21 (4.91%) Cyberattack
5 21 (4.91%) PKI
6 16 (3.74%) Public Cloud
7 14 (3.27%) Data Protection Act
8 13 (3.04%) CESG
9 12 (2.80%) Self-Motivation
10 10 (2.34%) Cyber Defence
10 10 (2.34%) Mobile App
11 8 (1.87%) Data Centre
12 7 (1.64%) BYOD
13 6 (1.40%) Life Science
13 6 (1.40%) NHS
14 5 (1.17%) Distributed Denial-of-Service
14 5 (1.17%) User Experience
15 4 (0.93%) Cyber Kill Chain
15 4 (0.93%) Hybrid Cloud
Operating Systems
1 42 (9.81%) Windows
2 22 (5.14%) Linux
3 11 (2.57%) Unix
4 7 (1.64%) Windows Server
5 6 (1.40%) Windows 10
5 6 (1.40%) Windows Server 2012
6 4 (0.93%) Windows 7
6 4 (0.93%) Windows Server 2008
7 1 (0.23%) AIX
7 1 (0.23%) Apple iOS
7 1 (0.23%) CentOS
7 1 (0.23%) Fedora
7 1 (0.23%) Mac OS X
7 1 (0.23%) Red Hat Enterprise Linux
7 1 (0.23%) Ubuntu
7 1 (0.23%) Windows Server 2016
Processes & Methodologies
1 273 (63.79%) Information Security
2 268 (62.62%) Cybersecurity
3 144 (33.64%) Risk Management
4 86 (20.09%) SIEM
5 85 (19.86%) Security Management
6 76 (17.76%) ITIL
7 75 (17.52%) Security Operations
8 63 (14.72%) Security Architecture
9 55 (12.85%) Information Assurance
10 54 (12.62%) Penetration Testing
11 52 (12.15%) Information Security Management
12 50 (11.68%) ISMS
13 49 (11.45%) Vulnerability Management
14 44 (10.28%) Data Protection
15 41 (9.58%) OWASP
16 40 (9.35%) Threat Intelligence
17 37 (8.64%) Cyber Threat Intelligence
18 36 (8.41%) Agile Software Development
19 33 (7.71%) TOGAF
20 30 (7.01%) Incident Management
Programming Languages
1 18 (4.21%) Python
2 15 (3.50%) Perl
3 13 (3.04%) C
4 12 (2.80%) Java
5 11 (2.57%) PowerShell
6 10 (2.34%) Bash Shell
7 7 (1.64%) C#
7 7 (1.64%) Ruby
7 7 (1.64%) SQL
8 1 (0.23%) JavaScript
8 1 (0.23%) VBScript
Qualifications
1 258 (60.28%) CISM
2 106 (24.77%) CISA
3 100 (23.36%) Degree
4 91 (21.26%) Security Cleared
5 70 (16.36%) Cisco Certification
5 70 (16.36%) SC Cleared
6 55 (12.85%) CEH
6 55 (12.85%) CRISC
7 52 (12.15%) CESG Certified Professional
8 50 (11.68%) (ISC)2 CCSP
9 34 (7.94%) SANS
10 31 (7.24%) CompTIA Security+
11 26 (6.07%) DV Cleared
11 26 (6.07%) ISO 27001 Lead Auditor
12 23 (5.37%) CCSP
13 20 (4.67%) GIAC
14 18 (4.21%) GCIH
14 18 (4.21%) SSCP
15 16 (3.74%) GCIA
16 14 (3.27%) CCNP
Quality Assurance & Compliance
1 190 (44.39%) ISO/IEC 27001
2 103 (24.07%) NIST
3 66 (15.42%) PCI DSS
4 53 (12.38%) GDPR
5 46 (10.75%) Cyber Essentials
6 30 (7.01%) JSP 440
7 28 (6.54%) NCSC
8 25 (5.84%) COBIT
9 23 (5.37%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 22 (5.14%) RMADS
11 14 (3.27%) HMG Security Policy Framework
12 13 (3.04%) Sarbanes-Oxley
13 10 (2.34%) ISO 22301
14 8 (1.87%) ISO 31000
14 8 (1.87%) SLA
15 7 (1.64%) ISO 9001
15 7 (1.64%) ISO/IEC 27005
15 7 (1.64%) NIST 800
16 5 (1.17%) Cyber Essentials PLUS
17 3 (0.70%) QA
System Software
1 28 (6.54%) Active Directory
2 5 (1.17%) Docker
3 3 (0.70%) VMware Infrastructure
4 1 (0.23%) Hyper-V
4 1 (0.23%) NDS
4 1 (0.23%) NFS
4 1 (0.23%) Samba
4 1 (0.23%) Snort
4 1 (0.23%) VirtualBox
4 1 (0.23%) VMware ESXi
4 1 (0.23%) VMware NSX
4 1 (0.23%) Xen
Systems Management
1 20 (4.67%) QRadar
2 6 (1.40%) Nessus
3 5 (1.17%) Computer Emergency Response Teams
3 5 (1.17%) Kubernetes
4 4 (0.93%) Ansible
4 4 (0.93%) CASB
4 4 (0.93%) Host Intrusion Detection System
5 3 (0.70%) McAfee ePO
5 3 (0.70%) Nmap
5 3 (0.70%) Single Sign-On
5 3 (0.70%) Terraform
6 2 (0.47%) CA Single Sign-On
6 2 (0.47%) HP Fortify
6 2 (0.47%) Puppet
7 1 (0.23%) Cisco CME
7 1 (0.23%) Computer Incident Response Team
7 1 (0.23%) Docker Swarm
7 1 (0.23%) Graylog
7 1 (0.23%) NetIQ Identity Manager
7 1 (0.23%) RSA Archer
Vendors
1 41 (9.58%) Microsoft
2 29 (6.78%) Splunk
3 21 (4.91%) LogRhythm
4 16 (3.74%) Cisco
5 10 (2.34%) Palo Alto
6 9 (2.10%) IBM
7 8 (1.87%) Darktrace
8 7 (1.64%) Oracle
9 6 (1.40%) McAfee
9 6 (1.40%) VMware
10 5 (1.17%) Fortinet
10 5 (1.17%) Rapid7
11 4 (0.93%) ArcSight
11 4 (0.93%) Google
11 4 (0.93%) Juniper
11 4 (0.93%) SolarWinds
12 3 (0.70%) Remedy
12 3 (0.70%) SAP
12 3 (0.70%) Sophos
12 3 (0.70%) Symantec