Period
to

The following table provides summary statistics for permanent job vacancies with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 24 May 2022 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
UK
6 months to
24 May 2022
Same period 2021 Same period 2020
Rank 560 403 335
Rank change year-on-year -157 -68 +31
Permanent jobs citing CISM 921 635 854
As % of all permanent jobs advertised in the UK 0.56% 0.69% 0.92%
As % of the Qualifications category 2.27% 3.31% 4.28%
Number of salaries quoted 614 509 672
10th Percentile £47,500 £42,500 £43,525
25th Percentile £57,500 £52,500 £52,391
Median annual salary (50th Percentile) £70,000 £65,000 £63,853
Median % change year-on-year +7.69% +1.80% -1.77%
75th Percentile £85,000 £78,750 £78,750
90th Percentile £100,000 £85,850 £88,750
UK excluding London median annual salary £65,000 £60,000 £60,000
% change year-on-year +8.33% - -

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 40,532 19,199 19,969
As % of all permanent IT jobs advertised in the UK 24.71% 20.90% 21.49%
Number of salaries quoted 17,038 12,424 14,986
10th Percentile £30,932 £31,250 £28,750
25th Percentile £40,749 £41,250 £37,500
Median annual salary (50th Percentile) £55,000 £55,000 £52,500
Median % change year-on-year - +4.76% +5.00%
75th Percentile £73,500 £72,500 £68,750
90th Percentile £91,250 £86,250 £85,000
UK excluding London median annual salary £50,000 £50,000 £47,500
% change year-on-year - +5.26% +5.56%

CISM
Job Vacancy Trend

Job postings citing CISM as a proportion of all IT jobs advertised.

Job vacancy trend for CISM in the UK

CISM
Salary Trend

3-month moving average salary quoted in jobs citing CISM.

Salary trend for CISM in the UK

CISM
Salary Histogram

Salary distribution for jobs citing CISM over the 6 months to 24 May 2022.

Salary histogram for CISM in the UK

CISM
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the UK over the 6 months to 24 May 2022. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
England -127 817 £70,000 +7.69% 82
London -141 438 £75,000 +8.70% 30
Work from Home -96 424 £65,000 +4.00% 24
UK excluding London -92 380 £65,000 +8.33% 56
South East -81 130 £65,000 +11.12% 17
Midlands -31 78 £68,750 +3.77% 7
West Midlands -23 73 £68,750 +5.77% 3
South West +14 72 £65,000 +20.37% 3
North of England -101 53 £59,250 +7.73% 21
Yorkshire -35 27 £66,250 +8.16% 9
Scotland -51 25 £62,213 -4.29% 3
East of England -79 25 £70,000 -9.68% 2
North West -79 23 £57,000 +26.67% 11
Northern Ireland - 7 £45,000 - 1
East Midlands -26 4 £75,000 -1.64% 4
Wales -40 4 £70,000 +31.53% 2
North East -45 2 £59,000 +7.27% 1

For the 6 months to 24 May 2022, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISM.

1 871 (94.57%) CISSP
2 655 (71.12%) Information Security
3 595 (64.60%) Cybersecurity
4 505 (54.83%) ISO/IEC 27001
5 364 (39.52%) CISA
6 349 (37.89%) Finance
7 338 (36.70%) Risk Management
8 324 (35.18%) NIST
9 235 (25.52%) Degree
10 231 (25.08%) CRISC
11 223 (24.21%) Management Information System
12 219 (23.78%) Social Skills
13 214 (23.24%) Data Protection
14 174 (18.89%) AWS
14 174 (18.89%) Security Operations
15 171 (18.57%) GDPR
16 160 (17.37%) ISMS
17 154 (16.72%) GRC
18 151 (16.40%) Security Management
19 150 (16.29%) Azure
20 138 (14.98%) Security Cleared
21 128 (13.90%) SIEM
22 126 (13.68%) Computer Science
23 118 (12.81%) Penetration Testing
24 116 (12.60%) Stakeholder Management
25 114 (12.38%) Firewall
25 114 (12.38%) Security Architecture
25 114 (12.38%) Cyber Essentials
26 113 (12.27%) Business Continuity
27 109 (11.83%) Agile

CISM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 5 (0.54%) MTS
2 4 (0.43%) Apache Spark
2 4 (0.43%) IIS
3 3 (0.33%) MS Exchange
4 2 (0.22%) SharePoint
5 1 (0.11%) Apache
5 1 (0.11%) Cloud Foundry
5 1 (0.11%) GemFire
5 1 (0.11%) Oracle Coherence
5 1 (0.11%) Tomcat
Applications
1 21 (2.28%) Microsoft PowerPoint
2 12 (1.30%) Microsoft Office
3 11 (1.19%) Microsoft Excel
4 2 (0.22%) Microsoft Project
4 2 (0.22%) MS Visio
Business Applications
1 13 (1.41%) Sentinel
2 3 (0.33%) assyst
3 1 (0.11%) Oracle ERP
3 1 (0.11%) SAP ERP
3 1 (0.11%) SAP GRC
Cloud Services
1 174 (18.89%) AWS
2 150 (16.29%) Azure
3 54 (5.86%) Microsoft 365
4 42 (4.56%) SaaS
5 25 (2.71%) PaaS
6 23 (2.50%) Azure Sentinel
7 20 (2.17%) IaaS
7 20 (2.17%) Mimecast
8 18 (1.95%) Cloud Computing
9 9 (0.98%) GCP
10 7 (0.76%) Amazon CloudWatch
10 7 (0.76%) Amazon EKS
10 7 (0.76%) Amazon GuardDuty
10 7 (0.76%) AWS CloudTrail
11 6 (0.65%) Azure Active Directory
12 2 (0.22%) Collibra
12 2 (0.22%) IBM Cloud
13 1 (0.11%) Azure Monitor
13 1 (0.11%) Azure Service Bus
13 1 (0.11%) Serverless
Communications & Networking
1 114 (12.38%) Firewall
2 63 (6.84%) Network Security
3 43 (4.67%) Intrusion Detection
4 27 (2.93%) WAN
5 19 (2.06%) Internet
6 16 (1.74%) SSL
7 14 (1.52%) LAN
8 13 (1.41%) Ethernet
9 11 (1.19%) Wireless
10 9 (0.98%) TCP/IP
11 8 (0.87%) VPN
12 7 (0.76%) Cisco IPT
12 7 (0.76%) HTTP
12 7 (0.76%) HTTPS
13 6 (0.65%) Unified Communications
14 5 (0.54%) IPsec
14 5 (0.54%) SNMP
15 4 (0.43%) Broadband
15 4 (0.43%) DNS
16 3 (0.33%) Kerberos
Database & Business Intelligence
1 5 (0.54%) Big Data
2 4 (0.43%) Metadata
3 3 (0.33%) SQL Server
4 2 (0.22%) MongoDB
4 2 (0.22%) MySQL
4 2 (0.22%) PostgreSQL
5 1 (0.11%) Azure SQL Database
5 1 (0.11%) Data Lake
5 1 (0.11%) Data Warehouse
5 1 (0.11%) DB2
5 1 (0.11%) Oracle Database
5 1 (0.11%) Oracle Reports
5 1 (0.11%) Tableau
Development Applications
1 14 (1.52%) Burp Suite
2 2 (0.22%) JIRA
3 1 (0.11%) Ant
3 1 (0.11%) JUnit
3 1 (0.11%) Metasploit
General
1 349 (37.89%) Finance
2 219 (23.78%) Social Skills
3 98 (10.64%) Legal
4 67 (7.27%) Analytical Skills
5 48 (5.21%) Telecoms
6 46 (4.99%) Retail
7 40 (4.34%) Law
8 36 (3.91%) Inclusion and Diversity
9 27 (2.93%) Marketing
9 27 (2.93%) Presentation Skills
10 26 (2.82%) Public Sector
11 22 (2.39%) Organisational Skills
12 21 (2.28%) Automotive
13 18 (1.95%) Games
14 13 (1.41%) Local Government
14 13 (1.41%) Pharmaceutical
15 12 (1.30%) Banking
16 7 (0.76%) Financial Institution
16 7 (0.76%) Military
16 7 (0.76%) Police
Job Titles
1 268 (29.10%) Security Manager
2 146 (15.85%) Analyst
3 117 (12.70%) Consultant
4 109 (11.83%) Security Analyst
5 86 (9.34%) Security Consultant
6 77 (8.36%) Architect
7 74 (8.03%) Security Architect
8 71 (7.71%) Information Manager
8 71 (7.71%) Information Security Manager
9 63 (6.84%) Security Officer
10 55 (5.97%) IT Manager
11 53 (5.75%) Information Analyst
12 52 (5.65%) Information Security Analyst
13 48 (5.21%) Senior Manager
14 41 (4.45%) Cybersecurity Manager
15 36 (3.91%) Cybersecurity Consultant
16 35 (3.80%) Head of Security
16 35 (3.80%) Information Security Officer
16 35 (3.80%) IT Analyst
17 33 (3.58%) Information Officer
Libraries, Frameworks & Software Standards
1 11 (1.19%) EDI
2 8 (0.87%) SAML
3 7 (0.76%) Web Services
4 4 (0.43%) ModSecurity
5 3 (0.33%) Middleware
6 2 (0.22%) .NET
6 2 (0.22%) .NET Framework
6 2 (0.22%) J2EE
6 2 (0.22%) LDAP
6 2 (0.22%) REST
6 2 (0.22%) SOAP
6 2 (0.22%) XML
7 1 (0.11%) Ehcache
7 1 (0.11%) Kafka
7 1 (0.11%) OAuth
7 1 (0.11%) OAuth2
7 1 (0.11%) OpenID
7 1 (0.11%) RabbitMQ
7 1 (0.11%) SailPoint
7 1 (0.11%) Spring Integration
Miscellaneous
1 223 (24.21%) Management Information System
2 65 (7.06%) Cyberthreat
3 53 (5.75%) Data Protection Act
4 42 (4.56%) Data Centre
5 33 (3.58%) Security Operations Centre
5 33 (3.58%) Self-Motivation
6 23 (2.50%) Cyberattack
7 21 (2.28%) IoT
8 19 (2.06%) Public Cloud
9 15 (1.63%) SCADA
10 13 (1.41%) Device Driver
10 13 (1.41%) Embedded Systems
10 13 (1.41%) Linux Command Line
11 12 (1.30%) Distributed Denial-of-Service
12 10 (1.09%) Cyber Kill Chain
13 9 (0.98%) Cyber Defence
13 9 (0.98%) Virtual Team
14 8 (0.87%) Blockchain
14 8 (0.87%) Life Science
14 8 (0.87%) User Experience
Operating Systems
1 65 (7.06%) Windows
2 64 (6.95%) Linux
3 24 (2.61%) Unix
4 14 (1.52%) Kali Linux
5 9 (0.98%) Mac OS
6 5 (0.54%) Android
6 5 (0.54%) Apple iOS
7 4 (0.43%) Windows Server
8 3 (0.33%) AIX
8 3 (0.33%) zOS
9 2 (0.22%) Windows 10
Processes & Methodologies
1 655 (71.12%) Information Security
2 595 (64.60%) Cybersecurity
3 338 (36.70%) Risk Management
4 214 (23.24%) Data Protection
5 174 (18.89%) Security Operations
6 160 (17.37%) ISMS
7 151 (16.40%) Security Management
8 128 (13.90%) SIEM
9 126 (13.68%) Computer Science
10 118 (12.81%) Penetration Testing
11 116 (12.60%) Stakeholder Management
12 114 (12.38%) Security Architecture
13 113 (12.27%) Business Continuity
14 109 (11.83%) Agile
14 109 (11.83%) ITIL
15 105 (11.40%) Risk Assessment
16 100 (10.86%) Information Security Management
17 90 (9.77%) Vulnerability Management
18 82 (8.90%) Data Loss Prevention
19 75 (8.14%) Incident Management
Programming Languages
1 37 (4.02%) Python
2 27 (2.93%) PowerShell
3 25 (2.71%) C
4 17 (1.85%) SQL
5 13 (1.41%) C#
6 11 (1.19%) Bash
7 4 (0.43%) Java
7 4 (0.43%) Perl
8 2 (0.22%) VBA
9 1 (0.11%) Shell Script
9 1 (0.11%) VB
9 1 (0.11%) VBScript
Qualifications
1 871 (94.57%) CISSP
2 364 (39.52%) CISA
3 235 (25.52%) Degree
4 231 (25.08%) CRISC
5 138 (14.98%) Security Cleared
6 100 (10.86%) SC Cleared
7 95 (10.31%) Cisco Certification
8 85 (9.23%) Computer Science Degree
9 84 (9.12%) ISO 27001 Lead Auditor
10 77 (8.36%) Master's Degree
11 76 (8.25%) (ISC)2 CCSP
11 76 (8.25%) CompTIA Security+
12 67 (7.27%) CESG Certified Professional
13 62 (6.73%) CEH
14 54 (5.86%) CCSP
15 53 (5.75%) CISMP
16 51 (5.54%) SANS
17 34 (3.69%) GCIH
17 34 (3.69%) GIAC
18 33 (3.58%) CASP
Quality Assurance & Compliance
1 505 (54.83%) ISO/IEC 27001
2 324 (35.18%) NIST
3 171 (18.57%) GDPR
4 154 (16.72%) GRC
5 114 (12.38%) Cyber Essentials
6 109 (11.83%) PCI DSS
7 89 (9.66%) NCSC
8 85 (9.23%) COBIT
9 55 (5.97%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 50 (5.43%) SOC 2
11 46 (4.99%) HMG Security Policy Framework
12 39 (4.23%) Sarbanes-Oxley
13 37 (4.02%) JSP 440
14 36 (3.91%) Cyber Essentials PLUS
15 34 (3.69%) ITGC
15 34 (3.69%) RMADS
16 33 (3.58%) SOC 1
17 28 (3.04%) ISO 22301
18 26 (2.82%) COSO
19 19 (2.06%) HIPAA
System Software
1 38 (4.13%) Active Directory
2 10 (1.09%) Virtual Machines
3 3 (0.33%) VMware Infrastructure
4 2 (0.22%) Firmware
5 1 (0.11%) ACF2
5 1 (0.11%) BitLocker
5 1 (0.11%) OpenAM
5 1 (0.11%) OpenIDM
5 1 (0.11%) RACF
Systems Management
1 18 (1.95%) Kubernetes
2 17 (1.85%) QRadar
3 14 (1.52%) CASB
4 13 (1.41%) RSA Archer
4 13 (1.41%) Terraform
5 10 (1.09%) WMI
6 7 (0.76%) CSIRT
7 6 (0.65%) Puppet
7 6 (0.65%) Single Sign-On
8 3 (0.33%) Active Directory Federation Services
8 3 (0.33%) EMC NetWorker
8 3 (0.33%) Nessus
9 2 (0.22%) Computer Incident Response Team
9 2 (0.22%) EnCase
10 1 (0.11%) CA Single Sign-On
10 1 (0.11%) Host Intrusion Detection System
10 1 (0.11%) Kibana
10 1 (0.11%) Nmap
10 1 (0.11%) SCCM
10 1 (0.11%) Trend Micro Deep Security
Vendors
1 88 (9.55%) Microsoft
2 30 (3.26%) Twitter
3 18 (1.95%) Google
4 16 (1.74%) Splunk
5 14 (1.52%) IBM
6 13 (1.41%) QNX
7 10 (1.09%) Cisco
7 10 (1.09%) Oracle
7 10 (1.09%) Palo Alto
7 10 (1.09%) ServiceNow
8 9 (0.98%) CrowdStrike
9 8 (0.87%) Qualys
10 6 (0.65%) Facebook
11 5 (0.54%) CheckPoint
11 5 (0.54%) Rapid7
12 3 (0.33%) AlienVault
12 3 (0.33%) Apple
12 3 (0.33%) Kenna
12 3 (0.33%) Okta
12 3 (0.33%) VMware