Period
to 2 March 2021

The following table provides summary statistics for permanent job vacancies with a requirement for CISA qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 2 March 2021 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Systems Auditor (CISA)
UK
6 months to
2 Mar 2021
Same period 2020 Same period 2019
Rank 562 551 523
Rank change year-on-year -11 -28 -48
Permanent jobs citing CISA 266 562 780
As % of all permanent jobs advertised in the UK 0.35% 0.46% 0.52%
As % of the Qualifications category 1.72% 2.13% 2.13%
Number of salaries quoted 233 487 601
Median annual salary £65,000 £62,500 £65,000
Median salary % change year-on-year +4.00% -3.85% +4.84%
10th Percentile £43,760 £40,150 £45,000
90th Percentile £89,750 £93,000 £99,500
UK excluding London median annual salary £60,000 £56,000 £60,000
% change year-on-year +7.14% -6.67% +4.35%

CISA is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 15,469 26,345 36,697
As % of all permanent IT jobs advertised in the UK 20.52% 21.72% 24.41%
Number of salaries quoted 10,756 19,813 27,139
Median annual salary £55,000 £50,000 £50,000
Median salary % change year-on-year +10.00% - +5.26%
10th Percentile £31,250 £27,500 £26,250
90th Percentile £85,000 £82,500 £81,250
UK excluding London median annual salary £50,000 £46,500 £45,000
% change year-on-year +7.53% +3.33% +5.88%

CISA
Job Vacancy Trend

Job postings citing CISA as a proportion of all IT jobs advertised.

Job vacancy trend for CISA in the UK

CISA
Salary Trend

3-month moving average salary quoted in jobs citing CISA.

Salary trend for CISA in the UK

CISA
Salary Histogram

Salary distribution for jobs citing CISA over the 6 months to 2 March 2021.

Salary histogram for CISA in the UK

CISA
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISA within the UK over the 6 months to 2 March 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -24 248 £65,000 +4.00% 65
London +57 143 £69,000 -1.43% 32
UK excluding London -26 113 £60,000 +7.14% 37
South East +60 33 £60,000 -5.51% 9
Work from Home -116 30 £60,000 +9.09% 13
Midlands +12 29 £67,250 +49.44% 5
North of England +9 27 £52,500 -4.55% 13
West Midlands -9 20 £62,500 +38.89% 5
North West +33 17 £47,500 -13.64% 8
South West +32 10 £65,000 -7.14% 4
Yorkshire +19 10 £54,500 -2.68% 3
East Midlands +40 8 £71,250 +18.75%
Scotland +27 8 £47,900 -33.93% 4
East of England +60 4 £77,500 +24.00% 2
Wales +37 2 £62,500 +60.26%
Northern Ireland +13 1 £47,500 -

For the 6 months to 2 March 2021, IT jobs citing CISA also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISA.

1 243 (91.35%) CISSP
2 212 (79.70%) CISM
3 171 (64.29%) Information Security
4 124 (46.62%) ISO/IEC 27001
5 118 (44.36%) Cybersecurity
6 102 (38.35%) Management Information System
7 93 (34.96%) Risk Management
8 86 (32.33%) Finance
9 78 (29.32%) NIST
10 69 (25.94%) Security Architecture
11 66 (24.81%) Azure
12 65 (24.44%) Firewall
13 62 (23.31%) Security Management
13 62 (23.31%) SIEM
14 60 (22.56%) Identity Access Management
15 58 (21.80%) Degree
16 57 (21.43%) CRISC
17 54 (20.30%) Microsoft
18 51 (19.17%) COBIT
19 50 (18.80%) ITIL
20 45 (16.92%) Security Operations
21 41 (15.41%) Microsoft 365
21 41 (15.41%) SaaS
22 40 (15.04%) GDPR
23 39 (14.66%) Vulnerability Assessment
24 36 (13.53%) Intrusion Detection
24 36 (13.53%) Cisco Certification
25 34 (12.78%) Computer Science
25 34 (12.78%) (ISC)2 CCSP
26 31 (11.65%) Cyber Essentials

CISA
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 6 (2.26%) SharePoint
2 2 (0.75%) IIS
3 1 (0.38%) Apache
Applications
1 13 (4.89%) Microsoft Excel
2 11 (4.14%) MS Visio
3 8 (3.01%) Microsoft PowerPoint
4 2 (0.75%) Microsoft Office
Business Applications
1 3 (1.13%) Sentinel
2 2 (0.75%) SAP R/3
Cloud Services
1 66 (24.81%) Azure
2 41 (15.41%) Microsoft 365
2 41 (15.41%) SaaS
3 31 (11.65%) AWS
3 31 (11.65%) IaaS
4 30 (11.28%) PaaS
5 25 (9.40%) Cloud Computing
6 20 (7.52%) BPaaS
7 16 (6.02%) Azure Active Directory
8 10 (3.76%) GCP
8 10 (3.76%) Mimecast
9 4 (1.50%) IBM Cloud
10 3 (1.13%) Power Platform
11 2 (0.75%) Serverless
12 1 (0.38%) Amazon EC2
12 1 (0.38%) Amazon S3
12 1 (0.38%) OpenShift
Communications & Networking
1 65 (24.44%) Firewall
2 36 (13.53%) Intrusion Detection
3 20 (7.52%) WAAS
4 15 (5.64%) VPN
5 10 (3.76%) Network Security
5 10 (3.76%) TCP/IP
6 5 (1.88%) Cisco ASA
6 5 (1.88%) F5 BIG-IP GTM
6 5 (1.88%) F5 BIG-IP LTM
7 4 (1.50%) WAN
8 3 (1.13%) LAN
8 3 (1.13%) RTP
8 3 (1.13%) SSL
8 3 (1.13%) Unified Communications
8 3 (1.13%) Wireless
9 2 (0.75%) CHAP
9 2 (0.75%) Reverse Proxy
10 1 (0.38%) HTTP
10 1 (0.38%) HTTPS
10 1 (0.38%) Internet
Database & Business Intelligence
1 4 (1.50%) Blockchain
2 3 (1.13%) Power BI
2 3 (1.13%) Tableau
3 2 (0.75%) Big Data
3 2 (0.75%) DB2
4 1 (0.38%) Azure SQL Database
4 1 (0.38%) Data Warehouse
4 1 (0.38%) MySQL
4 1 (0.38%) Oracle Database
4 1 (0.38%) Oracle Database 11g
4 1 (0.38%) PostgreSQL
4 1 (0.38%) Redis
4 1 (0.38%) SQL Server
Development Applications
1 1 (0.38%) GitLab
1 1 (0.38%) SonarQube
1 1 (0.38%) TeamCity
General
1 86 (32.33%) Finance
2 22 (8.27%) Banking
3 15 (5.64%) Public Sector
4 12 (4.51%) Legal
5 7 (2.63%) Financial Institution
5 7 (2.63%) Law
6 5 (1.88%) Retail
7 4 (1.50%) Manufacturing
8 3 (1.13%) Advertising
8 3 (1.13%) Telecoms
9 2 (0.75%) French Language
9 2 (0.75%) German Language
9 2 (0.75%) Retail Banking
9 2 (0.75%) Spanish Language
10 1 (0.38%) Aerospace
10 1 (0.38%) Investment Banking
10 1 (0.38%) Korean Language
10 1 (0.38%) Marketing
10 1 (0.38%) Pharmaceutical
Job Titles
1 48 (18.05%) Analyst
2 46 (17.29%) Architect
3 44 (16.54%) Security Analyst
3 44 (16.54%) Security Architect
4 42 (15.79%) Security Specialist
5 29 (10.90%) IT Analyst
5 29 (10.90%) IT Security Analyst
6 24 (9.02%) Security Manager
7 20 (7.52%) Information Security Specialist
7 20 (7.52%) Information Specialist
8 16 (6.02%) IT Manager
9 15 (5.64%) IT Architect
9 15 (5.64%) IT Security Architect
9 15 (5.64%) Security Officer
10 13 (4.89%) Audit Manager
10 13 (4.89%) Azure Architect
11 12 (4.51%) Consultant
11 12 (4.51%) Security Consultant
12 11 (4.14%) Risk Manager
12 11 (4.14%) Security Engineer
Libraries, Frameworks & Software Standards
1 16 (6.02%) OAuth
2 14 (5.26%) Middleware
3 6 (2.26%) Web Services
4 5 (1.88%) SAML
5 4 (1.50%) LDAP
6 3 (1.13%) .NET
7 1 (0.38%) .NET Core
7 1 (0.38%) .NET Framework
7 1 (0.38%) ASP.NET
7 1 (0.38%) J2EE
7 1 (0.38%) LAMP
7 1 (0.38%) LAPP Stack
7 1 (0.38%) Node.js
7 1 (0.38%) Regular Expression
7 1 (0.38%) REST
7 1 (0.38%) RESTful
7 1 (0.38%) Ruby on Rails
7 1 (0.38%) SOAP
7 1 (0.38%) XML
Miscellaneous
1 102 (38.35%) Management Information System
2 28 (10.53%) Analytical Skills
3 20 (7.52%) Enterprise Software
4 18 (6.77%) Cyberthreat
5 15 (5.64%) Data Protection Act
6 12 (4.51%) Data Centre
7 8 (3.01%) Security Operations Centre
8 5 (1.88%) SCADA
9 4 (1.50%) CESG
9 4 (1.50%) Hybrid Cloud
9 4 (1.50%) Social Media
10 3 (1.13%) Cyber Defence
10 3 (1.13%) Distributed Denial-of-Service
10 3 (1.13%) FMCG
10 3 (1.13%) Public Cloud
10 3 (1.13%) Reinsurance
11 2 (0.75%) Enterprise Cloud
11 2 (0.75%) NHS
12 1 (0.38%) Internet of Things
12 1 (0.38%) Robotics
Operating Systems
1 11 (4.14%) Windows
2 10 (3.76%) Unix
3 9 (3.38%) Linux
4 2 (0.75%) AIX
4 2 (0.75%) Windows Server
5 1 (0.38%) Mac OS X
5 1 (0.38%) Red Hat Enterprise Linux
5 1 (0.38%) SUSE
5 1 (0.38%) Ubuntu
5 1 (0.38%) Windows 10
Processes & Methodologies
1 171 (64.29%) Information Security
2 118 (44.36%) Cybersecurity
3 93 (34.96%) Risk Management
4 69 (25.94%) Security Architecture
5 62 (23.31%) Security Management
5 62 (23.31%) SIEM
6 60 (22.56%) Identity Access Management
7 50 (18.80%) ITIL
8 45 (16.92%) Security Operations
9 39 (14.66%) Vulnerability Assessment
10 34 (12.78%) Computer Science
11 29 (10.90%) Data Protection
11 29 (10.90%) Incident Management
12 28 (10.53%) Disaster Recovery
12 28 (10.53%) Internal Audit
13 27 (10.15%) Risk Analysis
14 25 (9.40%) Stakeholder Management
15 24 (9.02%) Patch Management
15 24 (9.02%) Penetration Testing
15 24 (9.02%) Risk Assessment
Programming Languages
1 10 (3.76%) SQL
2 5 (1.88%) C
2 5 (1.88%) PowerShell
2 5 (1.88%) Python
2 5 (1.88%) VBA
3 3 (1.13%) Java
3 3 (1.13%) R
4 2 (0.75%) Bash Shell
4 2 (0.75%) C++
4 2 (0.75%) JavaScript
4 2 (0.75%) VB
5 1 (0.38%) PHP
5 1 (0.38%) Ruby
5 1 (0.38%) VB.NET
5 1 (0.38%) VBScript
Qualifications
1 243 (91.35%) CISSP
2 212 (79.70%) CISM
3 58 (21.80%) Degree
4 57 (21.43%) CRISC
5 36 (13.53%) Cisco Certification
6 34 (12.78%) (ISC)2 CCSP
7 28 (10.53%) ISO 27001 Lead Auditor
8 25 (9.40%) CCSP
9 18 (6.77%) CEH
9 18 (6.77%) Security Cleared
10 13 (4.89%) CESG Certified Professional
11 12 (4.51%) ISO 27001 Lead Implementer
12 11 (4.14%) SC Cleared
13 9 (3.38%) OSCP
14 8 (3.01%) GIAC
14 8 (3.01%) PCI QSA
14 8 (3.01%) SANS
15 7 (2.63%) CGEIT
16 6 (2.26%) DV Cleared
17 5 (1.88%) ACCA
Quality Assurance & Compliance
1 124 (46.62%) ISO/IEC 27001
2 78 (29.32%) NIST
3 51 (19.17%) COBIT
4 40 (15.04%) GDPR
5 31 (11.65%) Cyber Essentials
6 26 (9.77%) PCI DSS
7 21 (7.89%) ITGC
8 20 (7.52%) 21 CFR Part 11
8 20 (7.52%) HIPAA
9 17 (6.39%) NCSC
10 14 (5.26%) COSO
10 14 (5.26%) HMG Security Policy Framework
11 9 (3.38%) Sarbanes-Oxley
12 8 (3.01%) ISO/IEC 27005
12 8 (3.01%) NIST 800
13 3 (1.13%) BS25999
13 3 (1.13%) QA
14 2 (0.75%) ISO 31000
14 2 (0.75%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
14 2 (0.75%) Solvency II
System Software
1 20 (7.52%) Active Directory
2 2 (0.75%) Virtual Machines
3 1 (0.38%) Docker
3 1 (0.38%) Virtual Desktop
3 1 (0.38%) VMware Infrastructure
Systems Management
1 7 (2.63%) Nessus
2 6 (2.26%) QRadar
3 5 (1.88%) Kubernetes
3 5 (1.88%) RSA Archer
4 3 (1.13%) EMC NetWorker
5 2 (0.75%) Ansible
5 2 (0.75%) Single Sign-On
6 1 (0.38%) CASB
6 1 (0.38%) CSIRT
6 1 (0.38%) Data Guard
6 1 (0.38%) DatAdvantage
6 1 (0.38%) HAProxy
6 1 (0.38%) Opscode Chef
6 1 (0.38%) Puppet
6 1 (0.38%) SCCM
6 1 (0.38%) Terraform
Vendors
1 54 (20.30%) Microsoft
2 19 (7.14%) CheckPoint
3 17 (6.39%) Palo Alto
4 15 (5.64%) Cisco
5 13 (4.89%) ServiceNow
6 10 (3.76%) Symantec
7 9 (3.38%) Splunk
8 6 (2.26%) F5
8 6 (2.26%) Forcepoint
8 6 (2.26%) Remedy
9 5 (1.88%) AlienVault
9 5 (1.88%) Apple
9 5 (1.88%) Okta
9 5 (1.88%) Zscaler
10 4 (1.50%) Darktrace
10 4 (1.50%) IBM
10 4 (1.50%) Oracle
10 4 (1.50%) SAP
11 3 (1.13%) McAfee
12 2 (0.75%) Citrix