Period
to 25 May 2019

The following table provides summary statistics for permanent job vacancies with a requirement for CISA qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 25 May 2019 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Systems Auditor (CISA)
UK
6 months to
25 May 2019
Same period 2018 Same period 2017
Rank 490 445 437
Rank change year-on-year -45 -8 +53
Permanent jobs citing CISA 805 1,171 1,183
As % of all permanent IT jobs advertised in the UK 0.55% 0.67% 0.70%
As % of the Qualifications category 2.25% 2.85% 2.80%
Number of salaries quoted 598 917 958
UK median annual salary £65,000 £62,500 £60,000
Median salary % change year-on-year +4.00% +4.17% -
10th Percentile £45,000 £41,250 £40,750
90th Percentile £99,500 £98,000 £90,000
UK excluding London median annual salary £60,000 £57,500 £55,000
% change year-on-year +4.35% +4.55% -

CISA is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 35,826 41,124 42,224
As % of all permanent IT jobs advertised in the UK 24.69% 23.65% 24.98%
Number of salaries quoted 25,621 31,113 33,110
UK median annual salary £50,000 £49,000 £45,000
Median salary % change year-on-year +2.04% +8.89% -2.17%
10th Percentile £26,250 £26,250 £26,250
90th Percentile £81,250 £80,000 £77,500
UK excluding London median annual salary £45,000 £44,500 £41,800
% change year-on-year +1.12% +6.46% -1.65%

CISA
Job Vacancy Trend

Job postings citing CISA as a percentage of all IT jobs advertised.

Job vacancy trend for CISA in the UK

CISA
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISA.

Salary trend for CISA in the UK

CISA
Salary Histogram

The salary distribution of IT jobs citing CISA over the 6 months to 25 May 2019.

Salary histogram for CISA in the UK

CISA
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISA within the UK over the 6 months to 25 May 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -58 782 £65,000 +3.59% 18
UK excluding London +25 433 £60,000 +4.35% 9
London -88 357 £72,500 +3.57% 9
North of England +28 146 £60,000 +9.09% 3
South East -3 130 £60,000 -
Yorkshire +8 73 £57,500 +6.98% 1
Midlands +32 68 £47,500 -5.00% 4
North West +36 63 £60,000 +6.67% 2
South West +51 42 £63,750 +10.87% 1
East Midlands +62 41 £50,000 +5.26% 3
East of England +77 33 £55,000 -8.33% 1
West Midlands 0 27 £47,500 -13.64% 1
North East +15 10 £61,250 +28.95%
Wales +17 8 £47,500 +18.75%
Scotland +11 6 £37,500 -21.88%

For the 6 months to 25 May 2019, IT jobs citing CISA also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISA.

1 672 (83.48%) CISSP
2 616 (76.52%) CISM
3 588 (73.04%) Information Security
4 360 (44.72%) Cybersecurity
5 353 (43.85%) ISO/IEC 27001
6 284 (35.28%) Finance
7 275 (34.16%) Risk Management
8 212 (26.34%) Degree
9 205 (25.47%) Management Information System
10 194 (24.10%) CRISC
11 183 (22.73%) PCI DSS
12 175 (21.74%) SIEM
13 152 (18.88%) GDPR
14 136 (16.89%) Internal Audit
15 130 (16.15%) ITIL
16 122 (15.16%) CEH
17 121 (15.03%) Firewall
18 120 (14.91%) Stakeholder Management
19 114 (14.16%) Penetration Testing
20 112 (13.91%) Security Architecture
21 109 (13.54%) IT Audit
22 105 (13.04%) Vulnerability Management
23 94 (11.68%) Security Management
24 92 (11.43%) Legal
25 88 (10.93%) Security Operations
26 87 (10.81%) Project Management
27 86 (10.68%) Identity Access Management
28 85 (10.56%) GIAC
28 85 (10.56%) Banking
29 84 (10.43%) Analytical Skills

CISA
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 14 (1.74%) SharePoint
2 13 (1.61%) IIS
3 6 (0.75%) Confluence
3 6 (0.75%) WebSphere
4 4 (0.50%) Skype for Business
5 3 (0.37%) MS Exchange
5 3 (0.37%) SAS
Applications
1 9 (1.12%) Microsoft Office
2 6 (0.75%) Microsoft Excel
3 3 (0.37%) MS Visio
4 2 (0.25%) Microsoft PowerPoint
Business Applications
1 3 (0.37%) SAP ERP
2 1 (0.12%) Infor M3
2 1 (0.12%) Oracle Assets
2 1 (0.12%) Oracle Financials
2 1 (0.12%) Oracle General Ledger
2 1 (0.12%) Oracle Payables
2 1 (0.12%) Oracle Receivables
Cloud Services
1 52 (6.46%) Amazon AWS
2 51 (6.34%) Microsoft Azure
3 19 (2.36%) Google Cloud Platform
4 14 (1.74%) SaaS
5 12 (1.49%) Power Platform
6 10 (1.24%) Office 365
7 3 (0.37%) Amazon CloudWatch
7 3 (0.37%) Amazon EC2
7 3 (0.37%) Amazon S3
7 3 (0.37%) AWS CloudFormation
7 3 (0.37%) AWS CloudTrail
7 3 (0.37%) Azure Active Directory
7 3 (0.37%) CloudFront
7 3 (0.37%) IaaS
7 3 (0.37%) Mimecast
7 3 (0.37%) PaaS
7 3 (0.37%) Virtual Private Cloud
8 1 (0.12%) Cloud Computing
8 1 (0.12%) Dropbox
8 1 (0.12%) IBM Cloud
Communications & Networking
1 121 (15.03%) Firewall
2 43 (5.34%) Network Security
3 28 (3.48%) Intrusion Detection
3 28 (3.48%) TCP/IP
4 27 (3.35%) IPsec
5 26 (3.23%) DNS
6 23 (2.86%) BGP
6 23 (2.86%) Cisco Nexus
6 23 (2.86%) EIGRP
7 21 (2.61%) VPN
8 16 (1.99%) Internet
9 9 (1.12%) SAN
10 8 (0.99%) Cisco IPT
10 8 (0.99%) Wireless
11 7 (0.87%) HTTP
11 7 (0.87%) LAN
11 7 (0.87%) SSL
11 7 (0.87%) WAN
12 5 (0.62%) NAS
12 5 (0.62%) VLAN
Database & Business Intelligence
1 27 (3.35%) Big Data
2 14 (1.74%) SQL Server
3 9 (1.12%) Power BI
4 6 (0.75%) DB2
4 6 (0.75%) Hadoop
5 3 (0.37%) Amazon RDS
5 3 (0.37%) Data Warehouse
5 3 (0.37%) MySQL
5 3 (0.37%) Oracle Database
5 3 (0.37%) PostgreSQL
6 2 (0.25%) Data Lake
6 2 (0.25%) GIS
Development Applications
1 13 (1.61%) JIRA
2 7 (0.87%) AppScan
2 7 (0.87%) SonarQube
2 7 (0.87%) Visual Studio
3 3 (0.37%) Metasploit
4 2 (0.25%) IDA Disassembler
5 1 (0.12%) Hudson
General
1 284 (35.28%) Finance
2 92 (11.43%) Legal
3 85 (10.56%) Banking
4 31 (3.85%) Telecoms
5 26 (3.23%) Retail
6 24 (2.98%) Financial Institution
7 20 (2.48%) Law
8 16 (1.99%) Billing
9 7 (0.87%) Back Office
9 7 (0.87%) Games
10 3 (0.37%) Aerospace
10 3 (0.37%) Marketing
11 1 (0.12%) Greek Language
11 1 (0.12%) International Banking
11 1 (0.12%) Investment Banking
11 1 (0.12%) Manufacturing
11 1 (0.12%) Spanish Language
Job Titles
1 158 (19.63%) Analyst
2 154 (19.13%) Security Manager
3 113 (14.04%) Security Analyst
4 102 (12.67%) Information Security Manager
5 99 (12.30%) Information Manager
6 97 (12.05%) Consultant
7 77 (9.57%) Security Consultant
8 70 (8.70%) Architect
9 68 (8.45%) Security Architect
10 67 (8.32%) Auditor
11 57 (7.08%) Risk Manager
12 53 (6.58%) Information Analyst
12 53 (6.58%) Information Security Analyst
13 50 (6.21%) Security Engineer
14 49 (6.09%) IT Auditor
15 47 (5.84%) Information Security Consultant
16 46 (5.71%) Security Officer
17 45 (5.59%) Head of Security
18 43 (5.34%) IT Analyst
19 39 (4.84%) Information Security Officer
Libraries, Frameworks & Software Standards
1 31 (3.85%) SailPoint
2 9 (1.12%) Web Services
3 6 (0.75%) LDAP
3 6 (0.75%) SAML
4 4 (0.50%) Middleware
4 4 (0.50%) OAuth
5 2 (0.25%) OLE
6 1 (0.12%) Sass
Miscellaneous
1 205 (25.47%) Management Information System
2 84 (10.43%) Analytical Skills
3 35 (4.35%) Cyberthreat
3 35 (4.35%) Driving Licence
4 30 (3.73%) Distributed Denial-of-Service
5 25 (3.11%) Self-Motivation
6 21 (2.61%) Cyberattack
7 18 (2.24%) PKI
7 18 (2.24%) Security Operations Centre
8 17 (2.11%) Cyber Kill Chain
9 16 (1.99%) Data Centre
10 14 (1.74%) Fintech
11 11 (1.37%) CESG
11 11 (1.37%) Data Protection Act
12 9 (1.12%) Enterprise Software
12 9 (1.12%) Life Science
12 9 (1.12%) Social Media
12 9 (1.12%) Virtual Team
13 8 (0.99%) Cyber Defence
13 8 (0.99%) Greenfield Project
Operating Systems
1 66 (8.20%) Linux
2 64 (7.95%) Windows
3 27 (3.35%) Unix
4 17 (2.11%) Windows Server
5 11 (1.37%) Apple iOS
6 7 (0.87%) Solaris
7 4 (0.50%) Android
8 3 (0.37%) Kali Linux
8 3 (0.37%) Mac OS X
Processes & Methodologies
1 588 (73.04%) Information Security
2 360 (44.72%) Cybersecurity
3 275 (34.16%) Risk Management
4 175 (21.74%) SIEM
5 136 (16.89%) Internal Audit
6 130 (16.15%) ITIL
7 120 (14.91%) Stakeholder Management
8 114 (14.16%) Penetration Testing
9 112 (13.91%) Security Architecture
10 109 (13.54%) IT Audit
11 105 (13.04%) Vulnerability Management
12 94 (11.68%) Security Management
13 88 (10.93%) Security Operations
14 87 (10.81%) Project Management
15 86 (10.68%) Identity Access Management
16 83 (10.31%) Agile Software Development
17 82 (10.19%) Data Protection
18 80 (9.94%) Business Continuity
19 68 (8.45%) Due Diligence
20 67 (8.32%) Data Privacy
Programming Languages
1 28 (3.48%) Python
2 23 (2.86%) C
3 22 (2.73%) SQL
4 19 (2.36%) PowerShell
5 16 (1.99%) Java
6 11 (1.37%) Perl
7 7 (0.87%) C#
7 7 (0.87%) Ruby
7 7 (0.87%) Shell Script
8 5 (0.62%) Bash Shell
8 5 (0.62%) Bourne shell
8 5 (0.62%) C++
8 5 (0.62%) Go
8 5 (0.62%) Korn
9 3 (0.37%) VBA
10 1 (0.12%) JavaScript
10 1 (0.12%) Lua
10 1 (0.12%) PHP
Qualifications
1 672 (83.48%) CISSP
2 616 (76.52%) CISM
3 212 (26.34%) Degree
4 194 (24.10%) CRISC
5 122 (15.16%) CEH
6 85 (10.56%) GIAC
7 83 (10.31%) SANS
8 67 (8.32%) Cisco Certification
9 50 (6.21%) SSCP
10 39 (4.84%) CCNA
11 37 (4.60%) OSCP
12 35 (4.35%) Computer Science Degree
13 33 (4.10%) CGEIT
13 33 (4.10%) Security Cleared
14 30 (3.73%) CCNP
15 28 (3.48%) GISF
16 27 (3.35%) CREST Certified
17 26 (3.23%) (ISC)2 CCSP
18 25 (3.11%) CISMP
18 25 (3.11%) CompTIA Security+
Quality Assurance & Compliance
1 353 (43.85%) ISO/IEC 27001
2 183 (22.73%) PCI DSS
3 152 (18.88%) GDPR
4 65 (8.07%) COBIT
5 59 (7.33%) Sarbanes-Oxley
6 44 (5.47%) Cyber Essentials
7 39 (4.84%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 26 (3.23%) QA
9 17 (2.11%) ISAE 3402
9 17 (2.11%) ISO 31000
9 17 (2.11%) ISO 9001
10 16 (1.99%) ISO 22301
11 13 (1.61%) Cyber Essentials PLUS
12 12 (1.49%) HIPAA
12 12 (1.49%) ISO/IEC 27005
13 7 (0.87%) MiFID
13 7 (0.87%) SLA
14 6 (0.75%) HMG Security Policy Framework
15 4 (0.50%) NIST 800
15 4 (0.50%) RMADS
System Software
1 20 (2.48%) Active Directory
2 7 (0.87%) ISA Server
3 5 (0.62%) Docker
4 4 (0.50%) VMware Infrastructure
5 2 (0.25%) Snort
6 1 (0.12%) Virtual Machines
Systems Management
1 59 (7.33%) Nessus
2 33 (4.10%) McAfee ePO
3 24 (2.98%) SCCM
4 13 (1.61%) IBM Guardium
5 10 (1.24%) CSIRT
5 10 (1.24%) RSA Archer
6 9 (1.12%) Single Sign-On
7 7 (0.87%) Trend Micro Deep Security
8 6 (0.75%) Ansible
8 6 (0.75%) HP Fortify
8 6 (0.75%) OSSEC
8 6 (0.75%) Terraform
9 5 (0.62%) Forum Sentry
9 5 (0.62%) Kubernetes
10 3 (0.37%) Computer Emergency Response Teams
10 3 (0.37%) Nagios
10 3 (0.37%) Nmap
10 3 (0.37%) Opscode Chef
10 3 (0.37%) Puppet
11 2 (0.25%) QRadar
Vendors
1 64 (7.95%) Microsoft
2 59 (7.33%) Splunk
3 48 (5.96%) McAfee
4 47 (5.84%) Cisco
5 36 (4.47%) Symantec
6 33 (4.10%) CheckPoint
7 30 (3.73%) Oracle
7 30 (3.73%) Qualys
8 28 (3.48%) Aveksa
9 27 (3.35%) Blue Coat
10 25 (3.11%) Palo Alto
11 24 (2.98%) LogRhythm
12 23 (2.86%) FireEye
12 23 (2.86%) Juniper
13 21 (2.61%) IBM
14 20 (2.48%) Google
15 17 (2.11%) CyberArk
16 15 (1.86%) ArcSight
17 13 (1.61%) Barracuda Networks
17 13 (1.61%) Tripwire