Period
to 22 May 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CISA qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 22 May 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Systems Auditor (CISA)
UK
6 months to
22 May 2018
Same period 2017 Same period 2016
Rank 445 428 503
Rank change year-on-year -17 +75 +179
Permanent jobs citing CISA 1,169 1,183 1,189
As % of all permanent IT jobs advertised in the UK 0.68% 0.70% 0.59%
As % of the Qualifications category 2.88% 2.81% 2.14%
Number of salaries quoted 917 960 942
UK median annual salary £62,000 £62,500 £59,925
Median salary % change year-on-year -0.80% +4.30% +4.22%
10th Percentile £41,250 £40,750 £36,275
90th Percentile £98,000 £90,000 £85,000
UK excluding London median annual salary £57,500 £55,000 £55,000
% change year-on-year +4.55% - +3.24%

CISA is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 40,526 42,100 55,687
As % of all permanent IT jobs advertised in the UK 23.60% 24.91% 27.72%
Number of salaries quoted 30,728 33,025 44,706
UK median annual salary £49,000 £45,000 £45,000
Median salary % change year-on-year +8.89% - -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £80,000 £77,500 £75,000
UK excluding London median annual salary £44,898 £42,000 £42,500
% change year-on-year +6.90% -1.18% +6.25%

CISA
Job Vacancy Trend

Job postings citing CISA as a percentage of all IT jobs advertised.

Job vacancy trend for CISA in the UK

CISA
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISA.

Salary trend for CISA in the UK

CISA
Salary Histogram

The salary distribution of IT jobs citing CISA over the 6 months to 22 May 2018.

Salary histogram for CISA in the UK

CISA
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISA within the UK over the 6 months to 22 May 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -12 1,136 £62,500 - 121
London -13 665 £70,000 +7.69% 65
UK excluding London -19 488 £57,500 +4.55% 61
South East +50 178 £60,000 - 21
North of England -7 163 £55,000 +4.76% 13
Yorkshire +41 85 £52,500 +19.23% 4
Midlands -10 69 £50,000 - 11
North West -12 61 £57,500 +4.55% 7
West Midlands -13 49 £53,750 +7.50% 8
East of England -42 36 £60,000 +26.32% 8
East Midlands +6 20 £47,500 -13.64% 3
South West -37 19 £57,500 -4.17% 3
North East -7 17 £48,500 -7.62% 2
Scotland -45 10 £48,000 +1.05% 4
Wales +7 7 £40,000 -11.11%
Isle of Man - 5 £55,000 - 1
Northern Ireland 0 1 £52,500 -16.00%

For the 6 months to 22 May 2018, IT jobs citing CISA also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISA.

1 1,035 (88.54%) CISSP
2 856 (73.22%) CISM
3 805 (68.86%) Information Security
4 464 (39.69%) ISO/IEC 27001
5 445 (38.07%) Finance
6 378 (32.34%) Cybersecurity
7 364 (31.14%) Risk Management
8 337 (28.83%) GDPR
9 246 (21.04%) Degree
10 244 (20.87%) Management Information System
11 221 (18.91%) SIEM
12 219 (18.73%) PCI DSS
13 199 (17.02%) Data Protection
14 187 (16.00%) Firewall
14 187 (16.00%) CRISC
15 175 (14.97%) CEH
16 172 (14.71%) ITIL
17 158 (13.52%) IT Audit
18 150 (12.83%) COBIT
19 148 (12.66%) Penetration Testing
20 145 (12.40%) Analytical Skills
21 141 (12.06%) GIAC
22 135 (11.55%) SANS
23 133 (11.38%) Legal
24 124 (10.61%) Security Operations
25 123 (10.52%) Stakeholder Management
26 120 (10.27%) Security Management
27 112 (9.58%) Vulnerability Management
28 109 (9.32%) Windows
29 107 (9.15%) SSCP

CISA
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 18 (1.54%) SharePoint
2 12 (1.03%) IIS
3 9 (0.77%) Apache
4 5 (0.43%) Confluence
5 1 (0.086%) JBoss
5 1 (0.086%) Tomcat
5 1 (0.086%) WebLogic
Applications
1 21 (1.80%) Microsoft Office
2 6 (0.51%) Microsoft PowerPoint
3 5 (0.43%) Microsoft Excel
4 4 (0.34%) MS Visio
Business Applications
1 15 (1.28%) Dynamics CRM
2 8 (0.68%) SAP GRC
3 7 (0.60%) SAP BPC
4 6 (0.51%) Distributed Ledger
5 4 (0.34%) Oracle Financials
5 4 (0.34%) SAP Oil and Gas
5 4 (0.34%) SAP S/4HANA
6 3 (0.26%) assyst
6 3 (0.26%) Sentinel
7 1 (0.086%) Oracle Assets
7 1 (0.086%) Oracle Cash Management
7 1 (0.086%) Oracle General Ledger
7 1 (0.086%) Oracle Payables
7 1 (0.086%) Oracle Procure-to-Pay
7 1 (0.086%) Oracle Receivables
Cloud Services
1 57 (4.88%) Microsoft Azure
2 35 (2.99%) Amazon AWS
2 35 (2.99%) Office 365
3 25 (2.14%) Mimecast
4 18 (1.54%) OneDrive
5 15 (1.28%) SaaS
6 11 (0.94%) IaaS
7 10 (0.86%) PaaS
8 3 (0.26%) Virtual Private Cloud
9 1 (0.086%) Cloud Computing
Communications & Networking
1 187 (16.00%) Firewall
2 63 (5.39%) Network Security
3 50 (4.28%) Intrusion Detection
4 40 (3.42%) VPN
5 37 (3.17%) TCP/IP
6 29 (2.48%) Internet
7 26 (2.22%) SSL
8 22 (1.88%) Wireless
9 19 (1.63%) IPsec
10 15 (1.28%) DKIM
10 15 (1.28%) DMARC
11 12 (1.03%) LAN
12 11 (0.94%) Wireless Security
13 10 (0.86%) DNS
14 9 (0.77%) HTTP
14 9 (0.77%) VLAN
14 9 (0.77%) WAN
15 7 (0.60%) SAN
15 7 (0.60%) SMTP
15 7 (0.60%) SNMP
Database & Business Intelligence
1 22 (1.88%) Big Data
2 8 (0.68%) Blockchain
2 8 (0.68%) MySQL
3 7 (0.60%) SAP HANA
4 4 (0.34%) SAP BW
5 2 (0.17%) Power BI
6 1 (0.086%) DB2
6 1 (0.086%) NoSQL
6 1 (0.086%) SQL Server
Development Applications
1 19 (1.63%) Metasploit
2 17 (1.45%) Burp Suite
3 12 (1.03%) AppScan
4 5 (0.43%) JIRA
5 4 (0.34%) SonarQube
6 2 (0.17%) WebScarab
General
1 445 (38.07%) Finance
2 133 (11.38%) Legal
3 88 (7.53%) Banking
4 50 (4.28%) Retail
5 37 (3.17%) Law
6 22 (1.88%) Telecoms
7 17 (1.45%) Games
8 14 (1.20%) Investment Banking
9 12 (1.03%) Billing
10 11 (0.94%) Publishing
11 10 (0.86%) Manufacturing
11 10 (0.86%) Marketing
12 9 (0.77%) Retail Banking
13 6 (0.51%) Back Office
13 6 (0.51%) Financial Institution
13 6 (0.51%) Front Office
14 5 (0.43%) Military
15 4 (0.34%) French Language
15 4 (0.34%) Online Betting
16 3 (0.26%) Local Government
Job Titles
1 212 (18.14%) Security Manager
2 190 (16.25%) Analyst
3 147 (12.57%) Security Analyst
4 140 (11.98%) Consultant
5 135 (11.55%) Information Security Manager
6 129 (11.04%) IT Manager
7 122 (10.44%) Information Manager
8 115 (9.84%) Risk Manager
9 113 (9.67%) Security Consultant
10 108 (9.24%) Security Officer
11 91 (7.78%) Security Engineer
12 86 (7.36%) Information Analyst
12 86 (7.36%) Information Security Analyst
13 85 (7.27%) Architect
14 84 (7.19%) Security Architect
15 80 (6.84%) Information Security Officer
16 75 (6.42%) IT Risk Manager
17 73 (6.24%) Information Officer
18 57 (4.88%) Head of Security
19 56 (4.79%) Auditor
Libraries, Frameworks & Software Standards
1 18 (1.54%) SailPoint
2 6 (0.51%) .NET
3 4 (0.34%) Middleware
3 4 (0.34%) SAP Fiori
4 3 (0.26%) Oracle Fusion
5 2 (0.17%) HTML
5 2 (0.17%) OAuth
5 2 (0.17%) XACML
6 1 (0.086%) Java EE
6 1 (0.086%) LDAP
6 1 (0.086%) OpenID
6 1 (0.086%) SAML
6 1 (0.086%) SPNEGO
6 1 (0.086%) Web Services
Miscellaneous
1 244 (20.87%) Management Information System
2 145 (12.40%) Analytical Skills
3 95 (8.13%) Computer Science
4 73 (6.24%) Data Protection Act
5 47 (4.02%) Data Centre
6 38 (3.25%) Security Operations Centre
7 35 (2.99%) PKI
8 34 (2.91%) Self-Motivation
9 31 (2.65%) Cyberthreat
10 24 (2.05%) Distributed Denial-of-Service
11 17 (1.45%) Fintech
12 16 (1.37%) Cyber Defence
12 16 (1.37%) Greenfield Project
13 15 (1.28%) Mobile App
14 12 (1.03%) Enterprise Software
15 11 (0.94%) Virtual Team
16 10 (0.86%) Cyber Kill Chain
16 10 (0.86%) NHS
17 9 (0.77%) Private Cloud
17 9 (0.77%) Public Cloud
Operating Systems
1 109 (9.32%) Windows
2 68 (5.82%) Unix
3 60 (5.13%) Linux
4 27 (2.31%) Windows Server
5 13 (1.11%) Kali Linux
6 9 (0.77%) Windows Server 2008
6 9 (0.77%) Windows Server 2012
7 8 (0.68%) FreeBSD
8 6 (0.51%) VMS
9 3 (0.26%) Red Hat Enterprise Linux
9 3 (0.26%) Ubuntu
10 1 (0.086%) OS/400
10 1 (0.086%) Solaris
Processes & Methodologies
1 805 (68.86%) Information Security
2 378 (32.34%) Cybersecurity
3 364 (31.14%) Risk Management
4 221 (18.91%) SIEM
5 199 (17.02%) Data Protection
6 172 (14.71%) ITIL
7 158 (13.52%) IT Audit
8 148 (12.66%) Penetration Testing
9 124 (10.61%) Security Operations
10 123 (10.52%) Stakeholder Management
11 120 (10.27%) Security Management
12 112 (9.58%) Vulnerability Management
13 102 (8.73%) Internal Audit
13 102 (8.73%) Security Architecture
14 98 (8.38%) Problem-Solving
15 97 (8.30%) Data Privacy
16 95 (8.13%) Security Monitoring
17 94 (8.04%) Project Management
18 88 (7.53%) Agile Software Development
18 88 (7.53%) Information Security Management
Programming Languages
1 43 (3.68%) Python
2 37 (3.17%) Perl
3 29 (2.48%) Ruby
4 22 (1.88%) Bash Shell
5 20 (1.71%) C#
6 18 (1.54%) PowerShell
7 17 (1.45%) Java
8 16 (1.37%) C
9 15 (1.28%) Bourne shell
9 15 (1.28%) C++
9 15 (1.28%) Korn
10 11 (0.94%) PHP
11 10 (0.86%) SQL
12 5 (0.43%) JavaScript
12 5 (0.43%) Shell Script
13 3 (0.26%) Go
14 2 (0.17%) Assembly Language
15 1 (0.086%) R
Qualifications
1 1,035 (88.54%) CISSP
2 856 (73.22%) CISM
3 246 (21.04%) Degree
4 187 (16.00%) CRISC
5 175 (14.97%) CEH
6 141 (12.06%) GIAC
7 135 (11.55%) SANS
8 107 (9.15%) SSCP
9 72 (6.16%) CompTIA Security+
10 60 (5.13%) CSSLP
11 59 (5.05%) QiCA
12 48 (4.11%) ISO 27001 Lead Auditor
13 46 (3.93%) Cisco Certification
14 43 (3.68%) CGEIT
15 41 (3.51%) OSCP
16 34 (2.91%) Computer Science Degree
17 33 (2.82%) CREST Certified
17 33 (2.82%) Security Cleared
18 30 (2.57%) CCNA
19 29 (2.48%) CISMP
Quality Assurance & Compliance
1 464 (39.69%) ISO/IEC 27001
2 337 (28.83%) GDPR
3 219 (18.73%) PCI DSS
4 150 (12.83%) COBIT
5 96 (8.21%) Cyber Essentials
6 58 (4.96%) Sarbanes-Oxley
7 37 (3.17%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 32 (2.74%) ISO 9001
9 23 (1.97%) ISO 31000
10 22 (1.88%) ISO 22301
11 16 (1.37%) QA
12 13 (1.11%) Cyber Essentials PLUS
12 13 (1.11%) ISAE 3402
13 11 (0.94%) PMO
14 9 (0.77%) ISO/IEC 20000
15 8 (0.68%) HIPAA
15 8 (0.68%) HMG Security Policy Framework
15 8 (0.68%) ISO/IEC 27005
15 8 (0.68%) MiFID
15 8 (0.68%) SLA
System Software
1 55 (4.70%) Active Directory
2 13 (1.11%) Hyper-V
3 5 (0.43%) Snort
4 3 (0.26%) BitLocker
4 3 (0.26%) VMware Infrastructure
4 3 (0.26%) vSphere
5 1 (0.086%) Virtual Desktop
5 1 (0.086%) Virtual Machines
Systems Management
1 50 (4.28%) Nessus
2 24 (2.05%) QRadar
3 18 (1.54%) Core Impact
3 18 (1.54%) Single Sign-On
4 15 (1.28%) CSIRT
5 13 (1.11%) OpenVAS
6 11 (0.94%) CASB
6 11 (0.94%) HP Fortify
7 10 (0.86%) Nexpose
8 8 (0.68%) Juniper STRM
8 8 (0.68%) RSA enVision
8 8 (0.68%) RSA Security Analytics
9 7 (0.60%) Norton AntiVirus
10 5 (0.43%) McAfee ePO
10 5 (0.43%) WebInspect
11 4 (0.34%) Host Intrusion Detection System
11 4 (0.34%) RSA Archer
12 3 (0.26%) Microsoft Intune
12 3 (0.26%) Network Intrusion Detection System
12 3 (0.26%) SCCM
Vendors
1 92 (7.87%) Microsoft
2 72 (6.16%) Cisco
3 43 (3.68%) Symantec
4 39 (3.34%) Qualys
5 34 (2.91%) CheckPoint
6 30 (2.57%) Forcepoint
6 30 (2.57%) Palo Alto
7 29 (2.48%) Sophos
8 25 (2.14%) IBM
8 25 (2.14%) LogRhythm
9 23 (1.97%) Splunk
10 22 (1.88%) Fortinet
11 20 (1.71%) Juniper
12 18 (1.54%) CyberArk
12 18 (1.54%) McAfee
13 14 (1.20%) SolarWinds
13 14 (1.20%) Varonis
14 13 (1.11%) AlienVault
14 13 (1.11%) ArcSight
15 12 (1.03%) Aveksa