Period
to 19 July 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CISA qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 19 July 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Systems Auditor (CISA)
UK
6 months to
19 Jul 2018
Same period 2017 Same period 2016
Rank 443 459 455
Rank change year-on-year +16 -4 +142
Permanent jobs citing CISA 1,196 1,172 1,344
As % of all permanent IT jobs advertised in the UK 0.69% 0.66% 0.66%
As % of the Qualifications category 2.89% 2.67% 2.44%
Number of salaries quoted 847 944 1,069
UK median annual salary £65,000 £62,500 £60,000
Median salary % change year-on-year +4.00% +4.17% +4.35%
10th Percentile £42,500 £42,000 £36,250
90th Percentile £97,500 £90,000 £85,000
UK excluding London median annual salary £60,000 £55,000 £55,000
% change year-on-year +9.09% - +4.00%

CISA is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 41,390 43,960 55,181
As % of all permanent IT jobs advertised in the UK 23.77% 24.74% 27.16%
Number of salaries quoted 30,812 34,077 44,431
UK median annual salary £50,000 £45,000 £46,000
Median salary % change year-on-year +11.11% -2.17% +2.22%
10th Percentile £26,250 £26,250 £26,250
90th Percentile £80,000 £77,500 £75,000
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +6.25%

CISA
Job Vacancy Trend

Job postings citing CISA as a percentage of all IT jobs advertised.

Job vacancy trend for CISA in the UK

CISA
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISA.

Salary trend for CISA in the UK

CISA
Salary Histogram

The salary distribution of IT jobs citing CISA over the 6 months to 19 July 2018.

Salary histogram for CISA in the UK

CISA
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISA within the UK over the 6 months to 19 July 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +12 1,155 £65,000 +4.00% 93
London +20 635 £70,000 +3.70% 47
UK excluding London +26 542 £60,000 +9.09% 57
South East +54 182 £60,000 - 17
North of England -42 145 £55,000 +4.76% 13
East of England +20 102 £70,000 +47.37% 5
North West -29 70 £55,000 - 7
Midlands +10 68 £57,500 +4.55% 7
Yorkshire +24 67 £57,500 +21.05% 5
West Midlands +8 53 £59,250 +7.73% 4
South West +6 20 £62,500 +4.17% 4
Scotland -20 14 £48,000 -8.57% 11
East Midlands +7 12 £47,500 -13.64% 3
North East -13 8 £46,500 -11.43% 1
Wales +8 5 £39,000 -17.89%
Isle of Man - 5 £55,000 -
Northern Ireland -2 1 £52,500 -4.55%

For the 6 months to 19 July 2018, IT jobs citing CISA also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISA.

1 1,075 (89.88%) CISSP
2 908 (75.92%) CISM
3 835 (69.82%) Information Security
4 441 (36.87%) ISO/IEC 27001
5 439 (36.71%) Cybersecurity
6 426 (35.62%) Risk Management
7 410 (34.28%) Finance
8 277 (23.16%) GDPR
9 247 (20.65%) Management Information System
10 242 (20.23%) Degree
11 237 (19.82%) PCI DSS
12 224 (18.73%) SIEM
13 207 (17.31%) CRISC
14 188 (15.72%) ITIL
15 184 (15.38%) CEH
16 181 (15.13%) Data Protection
17 166 (13.88%) Firewall
18 162 (13.55%) GIAC
18 162 (13.55%) COBIT
19 157 (13.13%) Analytical Skills
20 154 (12.88%) SANS
21 151 (12.63%) Penetration Testing
22 144 (12.04%) Security Architecture
23 140 (11.71%) Security Operations
24 131 (10.95%) SSCP
25 129 (10.79%) Stakeholder Management
26 125 (10.45%) Windows
27 115 (9.62%) IT Audit
28 113 (9.45%) Internal Audit
28 113 (9.45%) Identity Access Management

CISA
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 9 (0.75%) IIS
2 6 (0.50%) Confluence
3 5 (0.42%) SharePoint
4 2 (0.17%) Apache
5 1 (0.084%) JBoss
5 1 (0.084%) Tomcat
5 1 (0.084%) WebLogic
Applications
1 16 (1.34%) Microsoft Office
2 6 (0.50%) Microsoft Excel
3 4 (0.33%) MS Visio
4 1 (0.084%) Microsoft PowerPoint
4 1 (0.084%) Microsoft Project
4 1 (0.084%) Spreadsheet
Business Applications
1 12 (1.00%) SAP GRC
2 8 (0.67%) SAP BPC
3 7 (0.59%) assyst
3 7 (0.59%) Distributed Ledger
4 6 (0.50%) Sentinel
5 5 (0.42%) Oracle Financials
5 5 (0.42%) SAP S/4HANA
6 4 (0.33%) SAP Oil and Gas
7 2 (0.17%) Dynamics CRM
7 2 (0.17%) Oracle Assets
7 2 (0.17%) Oracle General Ledger
7 2 (0.17%) Oracle Payables
7 2 (0.17%) Oracle Receivables
8 1 (0.084%) Oracle EBS R12
Cloud Services
1 47 (3.93%) Microsoft Azure
2 46 (3.85%) Amazon AWS
3 27 (2.26%) Mimecast
4 24 (2.01%) Office 365
5 8 (0.67%) SaaS
6 5 (0.42%) Cloud Computing
6 5 (0.42%) OneDrive
7 4 (0.33%) IaaS
8 3 (0.25%) PaaS
8 3 (0.25%) Virtual Private Cloud
Communications & Networking
1 166 (13.88%) Firewall
2 78 (6.52%) Network Security
3 47 (3.93%) Intrusion Detection
4 33 (2.76%) Internet
5 29 (2.42%) TCP/IP
6 23 (1.92%) VPN
7 16 (1.34%) DKIM
7 16 (1.34%) DMARC
7 16 (1.34%) Wireless
8 15 (1.25%) SSL
9 14 (1.17%) IPsec
10 11 (0.92%) LAN
11 10 (0.84%) Wireless Security
12 9 (0.75%) WAN
13 6 (0.50%) Broadband
13 6 (0.50%) Cisco Firepower
13 6 (0.50%) WebEx
14 5 (0.42%) Remote Desktop
14 5 (0.42%) SAN
14 5 (0.42%) SMS
Database & Business Intelligence
1 14 (1.17%) Big Data
2 8 (0.67%) Blockchain
2 8 (0.67%) SAP HANA
3 5 (0.42%) SAP BW
4 3 (0.25%) MySQL
4 3 (0.25%) SQL Server
5 2 (0.17%) GIS
5 2 (0.17%) Power BI
6 1 (0.084%) NoSQL
Development Applications
1 20 (1.67%) Metasploit
2 13 (1.09%) Burp Suite
3 12 (1.00%) AppScan
4 6 (0.50%) JIRA
5 2 (0.17%) SonarQube
5 2 (0.17%) WebScarab
General
1 410 (34.28%) Finance
2 113 (9.45%) Legal
3 83 (6.94%) Banking
4 59 (4.93%) Retail
5 26 (2.17%) Telecoms
6 25 (2.09%) Investment Banking
7 22 (1.84%) Law
8 15 (1.25%) Games
9 12 (1.00%) Manufacturing
10 11 (0.92%) Billing
11 10 (0.84%) Local Government
11 10 (0.84%) Publishing
12 6 (0.50%) Back Office
12 6 (0.50%) Retail Banking
13 5 (0.42%) Financial Institution
13 5 (0.42%) Marketing
14 4 (0.33%) Front Office
14 4 (0.33%) Online Betting
15 3 (0.25%) French Language
16 2 (0.17%) Corporate Banking
Job Titles
1 230 (19.23%) Security Manager
2 206 (17.22%) Analyst
3 148 (12.37%) Security Analyst
4 134 (11.20%) Consultant
5 118 (9.87%) Information Security Manager
6 113 (9.45%) Information Manager
7 111 (9.28%) Security Consultant
8 107 (8.95%) Security Officer
9 103 (8.61%) IT Manager
9 103 (8.61%) Security Engineer
10 91 (7.61%) Information Analyst
10 91 (7.61%) Information Security Analyst
11 88 (7.36%) Risk Manager
12 85 (7.11%) Architect
13 84 (7.02%) Security Architect
14 75 (6.27%) Information Security Officer
15 63 (5.27%) Information Officer
16 62 (5.18%) Head of Security
17 53 (4.43%) IT Risk Manager
18 46 (3.85%) Senior Analyst
Libraries, Frameworks & Software Standards
1 24 (2.01%) SailPoint
2 10 (0.84%) .NET
3 5 (0.42%) SAP Fiori
4 4 (0.33%) Middleware
4 4 (0.33%) Oracle Fusion
5 2 (0.17%) HTML
6 1 (0.084%) LDAP
6 1 (0.084%) OAuth
6 1 (0.084%) SAML
6 1 (0.084%) SPNEGO
6 1 (0.084%) Web Services
6 1 (0.084%) XACML
Miscellaneous
1 247 (20.65%) Management Information System
2 157 (13.13%) Analytical Skills
3 78 (6.52%) Computer Science
4 57 (4.77%) Data Protection Act
5 56 (4.68%) Security Operations Centre
6 42 (3.51%) Data Centre
7 35 (2.93%) Cyberthreat
8 31 (2.59%) PKI
8 31 (2.59%) Self-Motivation
9 28 (2.34%) Fintech
10 26 (2.17%) Distributed Denial-of-Service
11 20 (1.67%) Mobile App
12 15 (1.25%) Life Science
13 14 (1.17%) CESG
14 13 (1.09%) Cyberattack
15 12 (1.00%) Cyber Defence
15 12 (1.00%) Enterprise Software
15 12 (1.00%) Freedom of Information
15 12 (1.00%) Video Conferencing
16 10 (0.84%) FMCG
Operating Systems
1 125 (10.45%) Windows
2 95 (7.94%) Unix
3 73 (6.10%) Linux
4 18 (1.51%) Windows Server
5 14 (1.17%) Kali Linux
6 9 (0.75%) Windows Server 2008
6 9 (0.75%) Windows Server 2012
7 5 (0.42%) Red Hat Enterprise Linux
8 3 (0.25%) Ubuntu
9 2 (0.17%) VMS
10 1 (0.084%) FreeBSD
10 1 (0.084%) Solaris
Processes & Methodologies
1 835 (69.82%) Information Security
2 439 (36.71%) Cybersecurity
3 426 (35.62%) Risk Management
4 224 (18.73%) SIEM
5 188 (15.72%) ITIL
6 181 (15.13%) Data Protection
7 151 (12.63%) Penetration Testing
8 144 (12.04%) Security Architecture
9 140 (11.71%) Security Operations
10 129 (10.79%) Stakeholder Management
11 115 (9.62%) IT Audit
12 113 (9.45%) Identity Access Management
12 113 (9.45%) Internal Audit
13 112 (9.36%) Security Management
14 110 (9.20%) Agile Software Development
15 107 (8.95%) Vulnerability Management
16 104 (8.70%) Continuous Improvement
17 103 (8.61%) Problem-Solving
18 100 (8.36%) Data Privacy
18 100 (8.36%) Security Monitoring
Programming Languages
1 40 (3.34%) Python
2 31 (2.59%) Perl
3 22 (1.84%) C
4 21 (1.76%) Ruby
5 20 (1.67%) Java
6 19 (1.59%) PHP
7 13 (1.09%) C++
8 10 (0.84%) Bash Shell
9 9 (0.75%) Go
9 9 (0.75%) SQL
10 7 (0.59%) C#
10 7 (0.59%) PowerShell
11 5 (0.42%) Assembly Language
11 5 (0.42%) Shell Script
12 3 (0.25%) JavaScript
13 2 (0.17%) Bourne shell
13 2 (0.17%) Korn
14 1 (0.084%) R
Qualifications
1 1,075 (89.88%) CISSP
2 908 (75.92%) CISM
3 242 (20.23%) Degree
4 207 (17.31%) CRISC
5 184 (15.38%) CEH
6 162 (13.55%) GIAC
7 154 (12.88%) SANS
8 131 (10.95%) SSCP
9 97 (8.11%) CompTIA Security+
10 85 (7.11%) CSSLP
11 44 (3.68%) ISO 27001 Lead Auditor
12 40 (3.34%) CGEIT
12 40 (3.34%) Security Cleared
13 37 (3.09%) OSCP
14 34 (2.84%) Cisco Certification
15 31 (2.59%) CISMP
16 30 (2.51%) Computer Science Degree
17 26 (2.17%) CREST Certified
18 25 (2.09%) PCI QSA
19 23 (1.92%) QiCA
Quality Assurance & Compliance
1 441 (36.87%) ISO/IEC 27001
2 277 (23.16%) GDPR
3 237 (19.82%) PCI DSS
4 162 (13.55%) COBIT
5 92 (7.69%) Cyber Essentials
6 67 (5.60%) Sarbanes-Oxley
7 42 (3.51%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 31 (2.59%) ISO 9001
9 27 (2.26%) QA
10 22 (1.84%) Cyber Essentials PLUS
11 20 (1.67%) HIPAA
12 17 (1.42%) ISO 22301
13 14 (1.17%) ISAE 3402
14 13 (1.09%) ISO/IEC 20000
15 12 (1.00%) IASME
16 9 (0.75%) SLA
17 8 (0.67%) PMO
18 7 (0.59%) GPG13
18 7 (0.59%) HMG Security Policy Framework
18 7 (0.59%) ISO 31000
System Software
1 43 (3.60%) Active Directory
2 5 (0.42%) Hyper-V
3 2 (0.17%) Snort
3 2 (0.17%) VMware Infrastructure
4 1 (0.084%) ProxySG
4 1 (0.084%) Virtual Desktop
4 1 (0.084%) vSphere
Systems Management
1 56 (4.68%) Nessus
2 24 (2.01%) QRadar
3 20 (1.67%) Core Impact
4 17 (1.42%) Nexpose
4 17 (1.42%) OpenVAS
4 17 (1.42%) Single Sign-On
5 12 (1.00%) CSIRT
6 11 (0.92%) Nmap
7 10 (0.84%) HP Fortify
8 9 (0.75%) CASB
9 8 (0.67%) McAfee ePO
10 7 (0.59%) Norton AntiVirus
10 7 (0.59%) RSA Archer
11 6 (0.50%) Host Intrusion Detection System
12 5 (0.42%) WebInspect
13 3 (0.25%) Computer Emergency Response Teams
13 3 (0.25%) Microsoft Intune
13 3 (0.25%) Network Intrusion Detection System
14 2 (0.17%) Trend Micro Deep Security
15 1 (0.084%) OSSEC
Vendors
1 98 (8.19%) Microsoft
2 73 (6.10%) Cisco
3 67 (5.60%) Symantec
4 54 (4.52%) Sophos
5 53 (4.43%) Qualys
6 42 (3.51%) Splunk
7 30 (2.51%) LogRhythm
8 29 (2.42%) CheckPoint
8 29 (2.42%) Forcepoint
9 28 (2.34%) CyberArk
10 27 (2.26%) Palo Alto
11 25 (2.09%) Aveksa
12 24 (2.01%) Fortinet
12 24 (2.01%) McAfee
13 23 (1.92%) ArcSight
14 20 (1.67%) AlienVault
14 20 (1.67%) SolarWinds
15 19 (1.59%) IBM
16 17 (1.42%) Bomgar
17 13 (1.09%) SAP