Period
to 17 May 2021

The following table provides summary statistics for permanent job vacancies with a requirement for CISA qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 17 May 2021 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Systems Auditor (CISA)
UK
6 months to
17 May 2021
Same period 2020 Same period 2019
Rank 598 517 505
Rank change year-on-year -81 -12 -52
Permanent jobs citing CISA 303 459 801
As % of all permanent jobs advertised in the UK 0.34% 0.48% 0.55%
As % of the Qualifications category 1.57% 2.22% 2.22%
Number of salaries quoted 248 403 606
10th Percentile £41,600 £41,250 £45,000
25th Percentile £51,250 £47,827 £52,500
Median annual salary (50th Percentile) £64,618 £62,500 £65,000
Median % change year-on-year +3.39% -3.85% +4.00%
75th Percentile £81,250 £80,000 £83,750
90th Percentile £91,250 £86,250 £99,500
UK excluding London median annual salary £60,000 £57,000 £60,000
% change year-on-year +5.26% -5.00% +4.35%

CISA is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 19,251 20,660 36,089
As % of all permanent IT jobs advertised in the UK 21.34% 21.46% 24.80%
Number of salaries quoted 12,237 15,551 26,155
10th Percentile £31,250 £28,750 £26,250
25th Percentile £41,250 £37,500 £35,000
Median annual salary (50th Percentile) £55,000 £52,500 £50,000
Median % change year-on-year +4.76% +5.00% +3.09%
75th Percentile £72,500 £68,750 £66,250
90th Percentile £86,250 £85,000 £82,500
UK excluding London median annual salary £50,000 £47,500 £45,000
% change year-on-year +5.26% +5.56% +2.27%

CISA
Job Vacancy Trend

Job postings citing CISA as a proportion of all IT jobs advertised.

Job vacancy trend for CISA in the UK

CISA
Salary Trend

3-month moving average salary quoted in jobs citing CISA.

Salary trend for CISA in the UK

CISA
Salary Histogram

Salary distribution for jobs citing CISA over the 6 months to 17 May 2021.

Salary histogram for CISA in the UK

CISA
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISA within the UK over the 6 months to 17 May 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -78 272 £65,000 +4.00% 39
London -18 144 £69,000 -1.43% 14
UK excluding London -70 132 £60,000 +5.26% 31
Work from Home -124 53 £65,000 +8.33% 7
South East 0 37 £60,000 -7.69% 4
Midlands -19 33 £61,250 +16.67% 8
West Midlands -14 30 £62,500 +19.05% 7
North of England -57 21 £50,000 -9.91% 7
East of England +20 16 £77,500 +26.53% 2
North West -17 12 £42,500 -20.86% 5
South West -28 12 £46,248 -33.93% 4
Scotland -20 8 £65,000 +36.84% 4
Yorkshire -34 7 £54,000 -3.57% 2
Wales - 5 £56,250 - 2
North East -2 2 £80,000 +18.52%

For the 6 months to 17 May 2021, IT jobs citing CISA also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISA.

1 278 (91.75%) CISSP
2 247 (81.52%) CISM
3 188 (62.05%) Information Security
4 141 (46.53%) ISO/IEC 27001
5 121 (39.93%) Cybersecurity
6 93 (30.69%) Risk Management
7 91 (30.03%) Social Skills
8 90 (29.70%) Management Information System
9 87 (28.71%) NIST
10 84 (27.72%) Azure
11 77 (25.41%) SIEM
11 77 (25.41%) Finance
12 70 (23.10%) Microsoft
12 70 (23.10%) Security Operations
13 67 (22.11%) ITIL
14 64 (21.12%) Security Architecture
15 59 (19.47%) Firewall
16 53 (17.49%) COBIT
16 53 (17.49%) CRISC
17 52 (17.16%) Identity Access Management
18 51 (16.83%) Security Management
19 48 (15.84%) Degree
20 47 (15.51%) AWS
21 46 (15.18%) Incident Management
22 42 (13.86%) GRC
23 41 (13.53%) Microsoft 365
24 40 (13.20%) SaaS
25 39 (12.87%) Vulnerability Management
26 36 (11.88%) PaaS
26 36 (11.88%) Cisco Certification

CISA
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 18 (5.94%) IIS
2 12 (3.96%) SharePoint
3 2 (0.66%) Elasticsearch
Applications
1 14 (4.62%) Microsoft Excel
2 13 (4.29%) MS Visio
3 12 (3.96%) Microsoft PowerPoint
4 1 (0.33%) Microsoft Office
Business Applications
1 7 (2.31%) Sentinel
Cloud Services
1 84 (27.72%) Azure
2 47 (15.51%) AWS
3 41 (13.53%) Microsoft 365
4 40 (13.20%) SaaS
5 36 (11.88%) PaaS
6 35 (11.55%) IaaS
7 33 (10.89%) Cloud Computing
8 19 (6.27%) Azure Sentinel
9 18 (5.94%) Azure Active Directory
10 14 (4.62%) BPaaS
11 10 (3.30%) GCP
12 9 (2.97%) Serverless
13 7 (2.31%) Azure Service Bus
14 4 (1.32%) Power Platform
14 4 (1.32%) PowerApps
15 2 (0.66%) Akamai
15 2 (0.66%) Amazon CloudWatch
15 2 (0.66%) Amazon GuardDuty
15 2 (0.66%) Google Workspace
15 2 (0.66%) Mimecast
Communications & Networking
1 59 (19.47%) Firewall
2 34 (11.22%) Intrusion Detection
3 27 (8.91%) Network Security
4 16 (5.28%) VPN
5 14 (4.62%) WAAS
6 12 (3.96%) DNS
7 11 (3.63%) TCP/IP
8 9 (2.97%) Reverse Proxy
9 7 (2.31%) DHCP
10 6 (1.98%) DMZ
10 6 (1.98%) Internet
10 6 (1.98%) LAN
10 6 (1.98%) WAN
11 5 (1.65%) Cisco ASA
11 5 (1.65%) F5 BIG-IP GTM
11 5 (1.65%) F5 BIG-IP LTM
11 5 (1.65%) SD-WAN
11 5 (1.65%) Wireless
12 4 (1.32%) Spanning Tree
12 4 (1.32%) Unified Communications
Database & Business Intelligence
1 6 (1.98%) Azure SQL Database
1 6 (1.98%) Data Warehouse
2 5 (1.65%) SQL Server
3 3 (0.99%) Blockchain
3 3 (0.99%) Oracle Database
3 3 (0.99%) Oracle Database 11g
4 2 (0.66%) DB2
Development Applications
1 1 (0.33%) SonarQube
1 1 (0.33%) TeamCity
General
1 91 (30.03%) Social Skills
2 77 (25.41%) Finance
3 23 (7.59%) Banking
3 23 (7.59%) Legal
4 22 (7.26%) Analytical Skills
5 10 (3.30%) Retail
6 9 (2.97%) Influencing Skills
6 9 (2.97%) Law
7 8 (2.64%) Presentation Skills
8 6 (1.98%) Financial Institution
9 5 (1.65%) French Language
10 4 (1.32%) Marketing
10 4 (1.32%) Public Sector
11 3 (0.99%) Advertising
12 2 (0.66%) Investment Banking
12 2 (0.66%) Japanese Language
12 2 (0.66%) Manufacturing
12 2 (0.66%) Organisational Skills
12 2 (0.66%) Retail Banking
12 2 (0.66%) Telecoms
Job Titles
1 66 (21.78%) Analyst
2 61 (20.13%) Security Analyst
3 48 (15.84%) Architect
4 39 (12.87%) Security Architect
5 38 (12.54%) IT Analyst
5 38 (12.54%) IT Security Analyst
6 32 (10.56%) Security Specialist
7 29 (9.57%) Security Manager
8 24 (7.92%) Information Security Specialist
8 24 (7.92%) Information Specialist
8 24 (7.92%) Security Engineer
9 21 (6.93%) Consultant
10 20 (6.60%) IT Manager
11 18 (5.94%) Security Consultant
12 16 (5.28%) Information Analyst
12 16 (5.28%) Information Security Analyst
13 15 (4.95%) Head of IT
13 15 (4.95%) Head of Security
13 15 (4.95%) Security Officer
14 14 (4.62%) Cloud Architect
Libraries, Frameworks & Software Standards
1 15 (4.95%) .NET
1 15 (4.95%) Middleware
2 11 (3.63%) OAuth
3 9 (2.97%) Web Services
4 8 (2.64%) SAML
5 5 (1.65%) .NET Core
5 5 (1.65%) .NET Framework
5 5 (1.65%) ISPF
5 5 (1.65%) RESTful
5 5 (1.65%) SOAP
5 5 (1.65%) XML
6 4 (1.32%) ASP.NET
6 4 (1.32%) J2EE
7 3 (0.99%) LDAP
7 3 (0.99%) SailPoint
8 1 (0.33%) Regular Expression
8 1 (0.33%) REST
Miscellaneous
1 90 (29.70%) Management Information System
2 20 (6.60%) Data Centre
3 18 (5.94%) Cyberthreat
4 14 (4.62%) Enterprise Software
5 12 (3.96%) Security Operations Centre
6 10 (3.30%) Distributed Denial-of-Service
7 8 (2.64%) Cloud Native
8 7 (2.31%) Public Cloud
9 5 (1.65%) Hybrid Cloud
9 5 (1.65%) SCADA
10 4 (1.32%) Cyber Kill Chain
10 4 (1.32%) PKI
10 4 (1.32%) Smartphone
11 3 (0.99%) Data Protection Act
11 3 (0.99%) Private Cloud
11 3 (0.99%) Reinsurance
11 3 (0.99%) Social Media
12 2 (0.66%) Enterprise Cloud
12 2 (0.66%) Greenfield Project
12 2 (0.66%) Virtual Team
Operating Systems
1 22 (7.26%) Linux
2 21 (6.93%) Windows
3 8 (2.64%) Unix
4 6 (1.98%) Mac OS
4 6 (1.98%) Windows Server
5 5 (1.65%) Red Hat Enterprise Linux
5 5 (1.65%) SUSE
5 5 (1.65%) Windows 10
6 2 (0.66%) AIX
Processes & Methodologies
1 188 (62.05%) Information Security
2 121 (39.93%) Cybersecurity
3 93 (30.69%) Risk Management
4 77 (25.41%) SIEM
5 70 (23.10%) Security Operations
6 67 (22.11%) ITIL
7 64 (21.12%) Security Architecture
8 52 (17.16%) Identity Access Management
9 51 (16.83%) Security Management
10 46 (15.18%) Incident Management
11 39 (12.87%) Vulnerability Management
12 33 (10.89%) Internal Audit
13 29 (9.57%) Penetration Testing
14 28 (9.24%) Disaster Recovery
15 27 (8.91%) Continuous Improvement
16 26 (8.58%) Vulnerability Assessment
17 24 (7.92%) IT Audit
18 23 (7.59%) Agile Software Development
18 23 (7.59%) Risk Analysis
18 23 (7.59%) Stakeholder Management
Programming Languages
1 22 (7.26%) SQL
2 15 (4.95%) PowerShell
3 6 (1.98%) Java
3 6 (1.98%) Python
3 6 (1.98%) VB.NET
3 6 (1.98%) VBScript
4 5 (1.65%) C
4 5 (1.65%) VBA
5 4 (1.32%) Go
6 2 (0.66%) C++
6 2 (0.66%) VB
7 1 (0.33%) JavaScript
Qualifications
1 278 (91.75%) CISSP
2 247 (81.52%) CISM
3 53 (17.49%) CRISC
4 48 (15.84%) Degree
5 36 (11.88%) Cisco Certification
6 34 (11.22%) CEH
7 25 (8.25%) (ISC)2 CCSP
8 24 (7.92%) ISO 27001 Lead Auditor
9 22 (7.26%) CompTIA Security+
10 19 (6.27%) OSCP
10 19 (6.27%) SANS
11 15 (4.95%) IISP
12 13 (4.29%) CCSA
12 13 (4.29%) Security Cleared
13 11 (3.63%) CCNA
13 11 (3.63%) ISSAP
13 11 (3.63%) ISSEP
13 11 (3.63%) Microsoft Certification
14 10 (3.30%) CCSP
14 10 (3.30%) GIAC
Quality Assurance & Compliance
1 141 (46.53%) ISO/IEC 27001
2 87 (28.71%) NIST
3 53 (17.49%) COBIT
4 42 (13.86%) GRC
5 35 (11.55%) PCI DSS
6 32 (10.56%) GDPR
7 24 (7.92%) Cyber Essentials
8 17 (5.61%) ITGC
9 14 (4.62%) 21 CFR Part 11
9 14 (4.62%) HIPAA
10 12 (3.96%) Sarbanes-Oxley
11 6 (1.98%) COSO
11 6 (1.98%) NIST 800
12 5 (1.65%) NCSC
13 4 (1.32%) PMO
13 4 (1.32%) SOC 2
14 3 (0.99%) HMG Security Policy Framework
14 3 (0.99%) IASME
14 3 (0.99%) SLA
15 2 (0.66%) ISO/IEC 27005
System Software
1 28 (9.24%) Active Directory
2 6 (1.98%) Virtual Machines
3 5 (1.65%) Virtual Desktop
3 5 (1.65%) VMware Infrastructure
4 2 (0.66%) Hyper-V
Systems Management
1 18 (5.94%) QRadar
2 11 (3.63%) Single Sign-On
3 7 (2.31%) RSA Archer
4 4 (1.32%) CSIRT
4 4 (1.32%) EMC NetWorker
4 4 (1.32%) Kibana
4 4 (1.32%) Kubernetes
4 4 (1.32%) Nessus
4 4 (1.32%) Puppet
5 3 (0.99%) Data Guard
6 2 (0.66%) Jamf Pro
6 2 (0.66%) Oracle Identity Management
6 2 (0.66%) Oracle Identity Manager
7 1 (0.33%) DatAdvantage
Vendors
1 70 (23.10%) Microsoft
2 18 (5.94%) CheckPoint
2 18 (5.94%) Cisco
3 17 (5.61%) AlienVault
4 15 (4.95%) Palo Alto
4 15 (4.95%) Splunk
5 11 (3.63%) Symantec
6 9 (2.97%) Oracle
6 9 (2.97%) ServiceNow
7 7 (2.31%) Okta
8 6 (1.98%) VMware
9 5 (1.65%) Apple
9 5 (1.65%) F5
9 5 (1.65%) ForgeRock
9 5 (1.65%) Qualys
9 5 (1.65%) Zscaler
10 4 (1.32%) Aruba
10 4 (1.32%) Fortinet
10 4 (1.32%) Meraki
10 4 (1.32%) Rapid7