Period
to 22 November 2017

The following table provides summary statistics for permanent job vacancies with a requirement for CISA qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 22 November 2017 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Systems Auditor (CISA)
UK
6 months to
22 Nov 2017
Same period 2016 Same period 2015
Rank 481 393 530
Rank change year-on-year -88 +137 +147
Permanent jobs citing CISA 1000 1490 1103
As % of all permanent IT jobs advertised in the UK 0.55% 0.78% 0.51%
As % of the Qualifications category 2.31% 2.99% 1.86%
Number of salaries quoted 799 1202 820
UK median annual salary £62,500 £65,000 £60,000
Median salary % change year-on-year -3.85% +8.33% +4.35%
10th Percentile £41,250 £40,000 £41,250
90th Percentile £97,500 £87,500 £85,000
UK excluding London median annual salary £55,000 £57,500 £55,000
% change year-on-year -4.35% +4.55% +4.76%

CISA is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 43339 49843 59216
As % of all permanent IT jobs advertised in the UK 24.00% 26.20% 27.44%
Number of salaries quoted 33310 39984 47288
UK median annual salary £47,500 £45,000 £45,000
Median salary % change year-on-year +5.56% - +1.12%
10th Percentile £26,000 £26,250 £25,969
90th Percentile £77,500 £76,250 £75,000
UK excluding London median annual salary £42,500 £42,500 £41,000
% change year-on-year - +3.66% +2.50%

CISA
Job Vacancy Trend

Job postings citing CISA as a percentage of all IT jobs advertised.

Job vacancy trend for CISA in the UK

CISA
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISA.

Salary trend for CISA in the UK

CISA
Salary Histogram

The salary distribution of IT jobs citing CISA over the 6 months to 22 November 2017.

Salary histogram for CISA in the UK

CISA
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISA within the UK over the 6 months to 22 November 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -100 970 £62,500 -3.85% 62
London -97 545 £67,500 - 26
UK excluding London -85 433 £55,000 -4.35% 37
North of England +28 175 £45,000 -5.26% 18
South East -41 136 £62,500 +4.17% 9
North West +38 109 £50,000 -13.04% 3
East of England +26 70 £51,250 -12.77% 3
Yorkshire +6 60 £40,000 -9.60% 12
Midlands -59 28 £59,000 +7.27% 4
West Midlands -78 19 £59,000 +7.27% 3
South West -58 11 £55,000 -15.38% 2
East Midlands +30 9 £62,500 +13.64%
Scotland -38 9 £72,500 +38.10% 1
North East +1 6 £49,250 +12.57% 3
Wales +9 2 £41,250 -50.00%
Northern Ireland -27 2 £55,000 +37.50%

For the 6 months to 22 November 2017, IT jobs citing CISA also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for CISA.

1 869 (86.90%) CISSP
2 767 (76.70%) CISM
3 717 (71.70%) Information Security
4 421 (42.10%) Finance
5 338 (33.80%) ISO/IEC 27001
6 253 (25.30%) SIEM
7 250 (25.00%) Cybersecurity
8 248 (24.80%) Risk Management
9 239 (23.90%) Degree
10 221 (22.10%) PCI DSS
11 207 (20.70%) Firewall
12 184 (18.40%) Management Information System
13 182 (18.20%) Data Protection
14 171 (17.10%) CRISC
15 166 (16.60%) Security Operations
16 161 (16.10%) CEH
17 150 (15.00%) GDPR
18 148 (14.80%) Security Architecture
19 126 (12.60%) Vulnerability Management
20 120 (12.00%) ITIL
20 120 (12.00%) IT Audit
21 118 (11.80%) Project Management
22 117 (11.70%) GIAC
23 109 (10.90%) Microsoft
24 105 (10.50%) Windows
25 104 (10.40%) Stakeholder Management
26 102 (10.20%) Banking
27 101 (10.10%) Computer Science
28 97 (9.70%) Internal Audit
29 90 (9.00%) Security Management

CISA
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 33 (3.30%) SharePoint
2 3 (0.30%) IIS
3 1 (0.10%) Apache
Applications
1 33 (3.30%) Microsoft Office
2 19 (1.90%) Microsoft Excel
3 18 (1.80%) Microsoft PowerPoint
4 3 (0.30%) Maya
5 1 (0.10%) MS Visio
Business Applications
1 19 (1.90%) Dynamics CRM
2 6 (0.60%) SAP GRC
3 5 (0.50%) SAP S/4HANA
4 2 (0.20%) SAP CO
4 2 (0.20%) SAP FI
4 2 (0.20%) SAP FI/CO
4 2 (0.20%) SAP FSCM
4 2 (0.20%) Sentinel
5 1 (0.10%) SAP BPC
5 1 (0.10%) SAP ERP
5 1 (0.10%) SAP R/3
5 1 (0.10%) SunGard APT
Cloud Services
1 37 (3.70%) Office 365
2 30 (3.00%) Microsoft Azure
3 25 (2.50%) SaaS
4 22 (2.20%) OneDrive
5 16 (1.60%) Amazon AWS
6 8 (0.80%) IaaS
7 6 (0.60%) Google Cloud Platform
8 5 (0.50%) Mimecast
8 5 (0.50%) PaaS
9 3 (0.30%) Cloud Computing
10 1 (0.10%) AWS CloudFormation
Communications & Networking
1 207 (20.70%) Firewall
2 66 (6.60%) Internet
3 65 (6.50%) TCP/IP
4 62 (6.20%) Network Security
5 56 (5.60%) Intrusion Detection
6 27 (2.70%) VoIP
7 16 (1.60%) Wireless
8 12 (1.20%) LAN
8 12 (1.20%) WAN
9 5 (0.50%) DKIM
9 5 (0.50%) DMARC
9 5 (0.50%) Wireshark
10 4 (0.40%) SSL
10 4 (0.40%) Value-Added Service
11 3 (0.30%) HTTP
11 3 (0.30%) Intranet
11 3 (0.30%) PPP
12 2 (0.20%) Reverse Proxy
12 2 (0.20%) SMS
12 2 (0.20%) SSH
Database & Business Intelligence
1 5 (0.50%) GIS
2 4 (0.40%) Big Data
3 3 (0.30%) Oracle Database
3 3 (0.30%) Power BI
4 1 (0.10%) Blockchain
4 1 (0.10%) MySQL
4 1 (0.10%) SAP BW
4 1 (0.10%) SAP HANA
Development Applications
1 16 (1.60%) Metasploit
2 9 (0.90%) Burp Suite
3 6 (0.60%) AppScan
3 6 (0.60%) Jenkins
4 5 (0.50%) Paros
5 1 (0.10%) Rational DOORS
General
1 421 (42.10%) Finance
2 102 (10.20%) Banking
3 79 (7.90%) Legal
4 45 (4.50%) Retail
5 29 (2.90%) Telecoms
6 22 (2.20%) Marketing
7 19 (1.90%) Law
8 16 (1.60%) Manufacturing
9 15 (1.50%) Electronics
10 10 (1.00%) Front Office
11 8 (0.80%) French Language
12 7 (0.70%) German Language
12 7 (0.70%) Investment Banking
13 6 (0.60%) Publishing
13 6 (0.60%) Retail Banking
14 5 (0.50%) Financial Institution
15 4 (0.40%) Advertising
15 4 (0.40%) Local Government
16 3 (0.30%) Automotive
16 3 (0.30%) Games
Job Titles
1 183 (18.30%) Analyst
2 179 (17.90%) Security Manager
3 148 (14.80%) Security Analyst
4 129 (12.90%) Consultant
5 112 (11.20%) Information Manager
6 110 (11.00%) Information Analyst
6 110 (11.00%) Information Security Analyst
7 109 (10.90%) Information Security Manager
8 106 (10.60%) Security Consultant
9 82 (8.20%) IT Manager
10 79 (7.90%) Risk Manager
11 70 (7.00%) Security Engineer
12 60 (6.00%) Security Specialist
13 56 (5.60%) Security Officer
14 52 (5.20%) Audit Manager
15 47 (4.70%) IT Audit Manager
16 46 (4.60%) Head of Security
16 46 (4.60%) Information Security Officer
17 43 (4.30%) Senior Manager
18 40 (4.00%) IT Analyst
Libraries, Frameworks & Software Standards
1 30 (3.00%) SailPoint
2 7 (0.70%) Web Services
3 1 (0.10%) CSS
3 1 (0.10%) Java EE
3 1 (0.10%) Middleware
3 1 (0.10%) OAuth
3 1 (0.10%) OpenID
3 1 (0.10%) XACML
Miscellaneous
1 184 (18.40%) Management Information System
2 101 (10.10%) Computer Science
3 82 (8.20%) Analytical Skills
4 52 (5.20%) Data Protection Act
5 35 (3.50%) Cyberthreat
6 27 (2.70%) PKI
7 25 (2.50%) Distributed Denial-of-Service
8 19 (1.90%) Data Centre
9 18 (1.80%) Security Operations Centre
10 14 (1.40%) CESG
10 14 (1.40%) Smart Energy
10 14 (1.40%) Smart Meter
11 11 (1.10%) Virtual Team
12 10 (1.00%) Algorithms
12 10 (1.00%) Clustering
12 10 (1.00%) Data Structures
12 10 (1.00%) Greenfield Project
13 9 (0.90%) FMCG
14 8 (0.80%) Enterprise Software
15 7 (0.70%) Internet of Things
Operating Systems
1 105 (10.50%) Windows
2 80 (8.00%) Linux
3 60 (6.00%) Unix
4 16 (1.60%) Kali Linux
5 15 (1.50%) Windows Server
6 8 (0.80%) Apple iOS
6 8 (0.80%) VMS
7 5 (0.50%) Android
8 1 (0.10%) FreeBSD
Processes & Methodologies
1 717 (71.70%) Information Security
2 253 (25.30%) SIEM
3 250 (25.00%) Cybersecurity
4 248 (24.80%) Risk Management
5 182 (18.20%) Data Protection
6 166 (16.60%) Security Operations
7 148 (14.80%) Security Architecture
8 126 (12.60%) Vulnerability Management
9 120 (12.00%) IT Audit
9 120 (12.00%) ITIL
10 118 (11.80%) Project Management
11 104 (10.40%) Stakeholder Management
12 97 (9.70%) Internal Audit
13 90 (9.00%) Security Management
14 85 (8.50%) Penetration Testing
15 82 (8.20%) Incident Management
16 77 (7.70%) Information Security Management
16 77 (7.70%) ISMS
17 71 (7.10%) Data Security
18 68 (6.80%) Data Loss Prevention
Programming Languages
1 45 (4.50%) Python
2 37 (3.70%) Perl
3 31 (3.10%) C#
4 28 (2.80%) PowerShell
5 25 (2.50%) Bash Shell
6 22 (2.20%) Ruby
7 21 (2.10%) Bourne shell
7 21 (2.10%) Korn
8 20 (2.00%) Java
9 19 (1.90%) C
10 14 (1.40%) SQL
11 10 (1.00%) C++
12 3 (0.30%) PHP
Qualifications
1 869 (86.90%) CISSP
2 767 (76.70%) CISM
3 239 (23.90%) Degree
4 171 (17.10%) CRISC
5 161 (16.10%) CEH
6 117 (11.70%) GIAC
7 86 (8.60%) SANS
8 61 (6.10%) SSCP
9 46 (4.60%) Cisco Certification
10 45 (4.50%) CISMP
10 45 (4.50%) Master's Degree
11 42 (4.20%) GSEC
12 40 (4.00%) ISO 27001 Lead Auditor
13 39 (3.90%) CompTIA Security+
13 39 (3.90%) Computer Science Degree
13 39 (3.90%) Security+ Certification
14 38 (3.80%) CCNA
15 33 (3.30%) GISF
16 26 (2.60%) CSSLP
17 25 (2.50%) CESG Certified Professional
Quality Assurance & Compliance
1 338 (33.80%) ISO/IEC 27001
2 221 (22.10%) PCI DSS
3 150 (15.00%) GDPR
4 89 (8.90%) COBIT
5 48 (4.80%) Cyber Essentials
6 33 (3.30%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 32 (3.20%) Sarbanes-Oxley
8 26 (2.60%) ISO 22301
9 23 (2.30%) ISO 9001
10 13 (1.30%) COSO
10 13 (1.30%) HIPAA
11 11 (1.10%) ISO/IEC 27005
11 11 (1.10%) QA
12 8 (0.80%) HMG Security Policy Framework
12 8 (0.80%) ISO 31000
13 7 (0.70%) Cyber Essentials PLUS
14 5 (0.50%) BS25999
14 5 (0.50%) BS7799
15 4 (0.40%) ISO/IEC 20000
15 4 (0.40%) RMADS
System Software
1 47 (4.70%) Active Directory
2 10 (1.00%) vSphere
3 6 (0.60%) Firmware
4 5 (0.50%) VMware Infrastructure
5 4 (0.40%) XenApp
6 3 (0.30%) Snort
6 3 (0.30%) Virtual Machines
7 1 (0.10%) Hyper-V
Systems Management
1 58 (5.80%) Nessus
2 39 (3.90%) McAfee ePO
3 38 (3.80%) SCCM
4 24 (2.40%) Core Impact
4 24 (2.40%) OpenVAS
5 23 (2.30%) QRadar
6 17 (1.70%) RSA Security Analytics
7 16 (1.60%) Nexpose
7 16 (1.60%) PowerBroker
7 16 (1.60%) WSUS
8 15 (1.50%) CSIRT
9 11 (1.10%) FTK
10 8 (0.80%) FortiGate
10 8 (0.80%) Norton AntiVirus
11 6 (0.60%) Ansible
11 6 (0.60%) HP Fortify
11 6 (0.60%) Puppet
11 6 (0.60%) WebInspect
12 5 (0.50%) Nmap
13 4 (0.40%) Nagios
Vendors
1 109 (10.90%) Microsoft
2 66 (6.60%) Splunk
3 63 (6.30%) Symantec
4 54 (5.40%) McAfee
5 52 (5.20%) CyberArk
6 47 (4.70%) Palo Alto
7 39 (3.90%) SAP
8 37 (3.70%) Cisco
9 35 (3.50%) LogRhythm
10 30 (3.00%) Aveksa
10 30 (3.00%) Qualys
10 30 (3.00%) SolarWinds
11 25 (2.50%) Oracle
12 23 (2.30%) CheckPoint
13 22 (2.20%) ArcSight
14 18 (1.80%) Varonis
15 17 (1.70%) Forcepoint
16 16 (1.60%) AlienVault
16 16 (1.60%) Bomgar
17 14 (1.40%) Sophos