Period
to 24 June 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 24 June 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
UK
6 months to
24 Jun 2018
Same period 2017 Same period 2016
Rank 317 322 341
Rank change year-on-year +5 +19 +159
Permanent jobs citing CISM 1,775 1,766 1,955
As % of all permanent IT jobs advertised in the UK 1.02% 1.02% 0.97%
As % of the Qualifications category 4.31% 4.10% 3.54%
Number of salaries quoted 1,365 1,414 1,582
UK median annual salary £65,000 £63,250 £60,000
Median salary % change year-on-year +2.77% +5.42% +2.56%
10th Percentile £44,400 £42,500 £41,875
90th Percentile £97,500 £90,000 £90,000
UK excluding London median annual salary £60,000 £55,000 £55,000
% change year-on-year +9.09% - +4.76%

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 41,230 43,036 55,218
As % of all permanent IT jobs advertised in the UK 23.72% 24.87% 27.41%
Number of salaries quoted 30,970 33,696 44,439
UK median annual salary £49,817 £45,000 £45,000
Median salary % change year-on-year +10.70% - -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £80,000 £77,500 £76,250
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +6.25%

CISM
Job Vacancy Trend

Job postings citing CISM as a percentage of all IT jobs advertised.

Job vacancy trend for CISM in the UK

CISM
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISM.

Salary trend for CISM in the UK

CISM
Salary Histogram

The salary distribution of IT jobs citing CISM over the 6 months to 24 June 2018.

Salary histogram for CISM in the UK

CISM
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the UK over the 6 months to 24 June 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England 0 1,697 £65,000 +2.36% 171
London -9 897 £72,500 +3.57% 75
UK excluding London +8 847 £60,000 +9.09% 107
South East +92 320 £60,000 - 23
North of England -9 192 £57,500 +4.55% 20
Midlands +28 152 £57,500 +15.00% 24
West Midlands +17 110 £57,500 +20.42% 22
East of England -30 103 £65,000 +30.00% 19
North West -36 93 £55,000 - 9
Yorkshire +47 88 £57,500 +4.55% 6
East Midlands +26 40 £62,500 +13.64% 2
South West -28 38 £55,000 - 10
Scotland -25 29 £45,000 -10.00% 7
Wales +19 12 £40,210 -10.65% 3
North East -25 11 £69,000 +53.33% 5
Isle of Man - 5 £55,000 -
Northern Ireland +4 1 £52,500 -8.70% 1

For the 6 months to 24 June 2018, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISM.

1 1,731 (97.52%) CISSP
2 1,299 (73.18%) Information Security
3 857 (48.28%) CISA
4 843 (47.49%) ISO/IEC 27001
5 727 (40.96%) Cybersecurity
6 563 (31.72%) Finance
7 524 (29.52%) Risk Management
8 401 (22.59%) GDPR
9 363 (20.45%) PCI DSS
10 360 (20.28%) SIEM
11 347 (19.55%) Management Information System
12 346 (19.49%) Degree
13 343 (19.32%) Firewall
14 329 (18.54%) ITIL
15 322 (18.14%) Security Architecture
16 316 (17.80%) Data Protection
17 267 (15.04%) Penetration Testing
18 238 (13.41%) CEH
19 236 (13.30%) SANS
20 233 (13.13%) CRISC
21 228 (12.85%) Security Operations
22 223 (12.56%) Stakeholder Management
23 205 (11.55%) Security Management
24 198 (11.15%) Vulnerability Management
25 195 (10.99%) GIAC
26 194 (10.93%) Agile Software Development
27 193 (10.87%) COBIT
28 188 (10.59%) Windows
28 188 (10.59%) Analytical Skills
29 179 (10.08%) Problem-Solving

CISM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 54 (3.04%) IIS
2 16 (0.90%) SharePoint
3 8 (0.45%) MS Exchange
4 5 (0.28%) Confluence
4 5 (0.28%) WebSphere
5 4 (0.23%) Apache
6 2 (0.11%) CMS
7 1 (0.056%) JBoss
7 1 (0.056%) Tomcat
7 1 (0.056%) WebLogic
Applications
1 16 (0.90%) Microsoft Office
2 5 (0.28%) MS Visio
3 2 (0.11%) Microsoft PowerPoint
3 2 (0.11%) Microsoft Project
4 1 (0.056%) Microsoft Excel
Business Applications
1 10 (0.56%) Dynamics CRM
2 7 (0.39%) Distributed Ledger
3 5 (0.28%) assyst
3 5 (0.28%) Sentinel
Cloud Services
1 111 (6.25%) Amazon AWS
2 98 (5.52%) Microsoft Azure
3 48 (2.70%) Office 365
4 31 (1.75%) Google Cloud Platform
5 27 (1.52%) SaaS
6 24 (1.35%) Mimecast
7 18 (1.01%) IaaS
8 14 (0.79%) PaaS
9 13 (0.73%) OneDrive
10 7 (0.39%) Cloud Computing
11 3 (0.17%) Azure Active Directory
11 3 (0.17%) Virtual Private Cloud
Communications & Networking
1 343 (19.32%) Firewall
2 131 (7.38%) Network Security
3 96 (5.41%) Intrusion Detection
4 66 (3.72%) TCP/IP
5 53 (2.99%) Internet
6 46 (2.59%) WAN
7 41 (2.31%) VPN
8 32 (1.80%) LAN
9 27 (1.52%) SSL
10 20 (1.13%) IPsec
11 18 (1.01%) Cisco IPT
12 16 (0.90%) VoIP
13 15 (0.85%) SCCP
14 14 (0.79%) DKIM
14 14 (0.79%) DMARC
15 13 (0.73%) HTTP
16 12 (0.68%) DNS
17 11 (0.62%) Cisco Firepower
18 8 (0.45%) PBX
19 7 (0.39%) SMS
Database & Business Intelligence
1 23 (1.30%) Big Data
2 7 (0.39%) Blockchain
2 7 (0.39%) GIS
3 6 (0.34%) Oracle Database
4 5 (0.28%) MySQL
4 5 (0.28%) SQL Server
5 2 (0.11%) Geospatial Data
6 1 (0.056%) Power BI
Development Applications
1 15 (0.85%) AppScan
2 11 (0.62%) Metasploit
3 10 (0.56%) Burp Suite
4 5 (0.28%) JIRA
5 4 (0.23%) SonarQube
6 2 (0.11%) WebScarab
7 1 (0.056%) Jenkins
General
1 563 (31.72%) Finance
2 162 (9.13%) Legal
3 104 (5.86%) Banking
4 77 (4.34%) Retail
5 39 (2.20%) Telecoms
6 32 (1.80%) Law
7 30 (1.69%) Investment Banking
8 26 (1.46%) Manufacturing
9 24 (1.35%) Games
10 19 (1.07%) Marketing
11 15 (0.85%) Billing
11 15 (0.85%) Financial Institution
12 14 (0.79%) Back Office
13 13 (0.73%) Pharmaceutical
13 13 (0.73%) Retail Banking
14 12 (0.68%) Publishing
15 8 (0.45%) Corporate Banking
15 8 (0.45%) Military
16 5 (0.28%) Local Government
16 5 (0.28%) Private Banking
Job Titles
1 484 (27.27%) Security Manager
2 286 (16.11%) Analyst
3 265 (14.93%) Information Security Manager
4 256 (14.42%) Information Manager
5 223 (12.56%) Security Analyst
6 219 (12.34%) Consultant
7 200 (11.27%) Security Consultant
8 181 (10.20%) Architect
9 179 (10.08%) Security Architect
10 139 (7.83%) Security Engineer
11 124 (6.99%) IT Manager
12 122 (6.87%) Security Officer
13 117 (6.59%) Information Analyst
13 117 (6.59%) Information Security Analyst
14 93 (5.24%) Information Security Officer
15 91 (5.13%) IT Security Manager
16 86 (4.85%) Head of Security
16 86 (4.85%) Information Officer
17 85 (4.79%) Cybersecurity Manager
18 74 (4.17%) Risk Manager
Libraries, Frameworks & Software Standards
1 28 (1.58%) Web Services
2 24 (1.35%) SailPoint
3 12 (0.68%) Middleware
4 7 (0.39%) .NET
4 7 (0.39%) LDAP
5 5 (0.28%) MSMQ
5 5 (0.28%) WebSphere MQ
6 3 (0.17%) ADSI
7 2 (0.11%) HTML
7 2 (0.11%) RESTful
8 1 (0.056%) LAMP
8 1 (0.056%) OAuth
8 1 (0.056%) Regular Expression
8 1 (0.056%) SAML
8 1 (0.056%) SPNEGO
8 1 (0.056%) XACML
Miscellaneous
1 347 (19.55%) Management Information System
2 188 (10.59%) Analytical Skills
3 115 (6.48%) Computer Science
4 103 (5.80%) Data Protection Act
5 81 (4.56%) Cyberthreat
6 68 (3.83%) Data Centre
7 64 (3.61%) PKI
8 52 (2.93%) Security Operations Centre
9 46 (2.59%) Self-Motivation
10 42 (2.37%) CESG
11 34 (1.92%) Distributed Denial-of-Service
12 33 (1.86%) Cyberattack
13 26 (1.46%) Cyber Defence
14 22 (1.24%) Public Cloud
15 20 (1.13%) Fintech
16 19 (1.07%) BYOD
17 18 (1.01%) NHS
18 17 (0.96%) Enterprise Software
19 15 (0.85%) Life Science
19 15 (0.85%) Virtual Team
Operating Systems
1 188 (10.59%) Windows
2 123 (6.93%) Linux
3 80 (4.51%) Unix
4 66 (3.72%) Windows Server
5 16 (0.90%) Apple iOS
5 16 (0.90%) Kali Linux
6 14 (0.79%) Windows Server 2008
6 14 (0.79%) Windows Server 2012
7 13 (0.73%) AIX
8 12 (0.68%) Mac OS X
9 6 (0.34%) CentOS
9 6 (0.34%) Solaris
10 5 (0.28%) HPUX
10 5 (0.28%) Red Hat Enterprise Linux
10 5 (0.28%) VMS
10 5 (0.28%) Windows Server 2003
10 5 (0.28%) Windows XP
11 4 (0.23%) Android
12 3 (0.17%) FreeBSD
12 3 (0.17%) Ubuntu
Processes & Methodologies
1 1,299 (73.18%) Information Security
2 727 (40.96%) Cybersecurity
3 524 (29.52%) Risk Management
4 360 (20.28%) SIEM
5 329 (18.54%) ITIL
6 322 (18.14%) Security Architecture
7 316 (17.80%) Data Protection
8 267 (15.04%) Penetration Testing
9 228 (12.85%) Security Operations
10 223 (12.56%) Stakeholder Management
11 205 (11.55%) Security Management
12 198 (11.15%) Vulnerability Management
13 194 (10.93%) Agile Software Development
14 179 (10.08%) Problem-Solving
15 168 (9.46%) OWASP
16 145 (8.17%) Identity Access Management
16 145 (8.17%) Incident Management
17 144 (8.11%) Information Security Management
18 138 (7.77%) Risk Assessment
19 123 (6.93%) Security Monitoring
Programming Languages
1 32 (1.80%) Python
2 27 (1.52%) Bash Shell
3 26 (1.46%) Perl
4 23 (1.30%) C
5 22 (1.24%) PowerShell
6 15 (0.85%) C#
6 15 (0.85%) Ruby
7 12 (0.68%) Java
8 10 (0.56%) Bourne shell
8 10 (0.56%) Korn
9 6 (0.34%) C++
9 6 (0.34%) PHP
9 6 (0.34%) Shell Script
10 5 (0.28%) Go
10 5 (0.28%) SQL
Qualifications
1 1,731 (97.52%) CISSP
2 857 (48.28%) CISA
3 346 (19.49%) Degree
4 238 (13.41%) CEH
5 236 (13.30%) SANS
6 233 (13.13%) CRISC
7 195 (10.99%) GIAC
8 132 (7.44%) Cisco Certification
9 118 (6.65%) Security Cleared
10 111 (6.25%) CESG Certified Professional
11 102 (5.75%) SSCP
12 97 (5.46%) CSSLP
13 84 (4.73%) CompTIA Security+
14 78 (4.39%) SC Cleared
15 61 (3.44%) CREST Certified
16 54 (3.04%) (ISC)2 CCSP
17 49 (2.76%) CCNA
17 49 (2.76%) Computer Science Degree
18 48 (2.70%) ISO 27001 Lead Auditor
19 45 (2.54%) IISP
Quality Assurance & Compliance
1 843 (47.49%) ISO/IEC 27001
2 401 (22.59%) GDPR
3 363 (20.45%) PCI DSS
4 193 (10.87%) COBIT
5 138 (7.77%) Cyber Essentials
6 92 (5.18%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 70 (3.94%) Sarbanes-Oxley
8 50 (2.82%) HMG Security Policy Framework
9 49 (2.76%) Cyber Essentials PLUS
10 47 (2.65%) HIPAA
11 36 (2.03%) ISO 9001
12 31 (1.75%) GCP
13 27 (1.52%) NIST 800
14 26 (1.46%) QA
15 18 (1.01%) ISO 22301
16 15 (0.85%) PMO
16 15 (0.85%) RMADS
17 12 (0.68%) ISO/IEC 20000
17 12 (0.68%) SLA
18 10 (0.56%) ISAE 3402
System Software
1 70 (3.94%) Active Directory
2 19 (1.07%) Hyper-V
3 8 (0.45%) VMware Infrastructure
4 1 (0.056%) Docker
4 1 (0.056%) Firmware
4 1 (0.056%) Snort
4 1 (0.056%) Virtual Desktop
4 1 (0.056%) vSphere
Systems Management
1 49 (2.76%) Nessus
2 23 (1.30%) QRadar
3 20 (1.13%) Core Impact
4 16 (0.90%) Single Sign-On
5 14 (0.79%) Nexpose
5 14 (0.79%) OpenVAS
6 13 (0.73%) CSIRT
7 10 (0.56%) HP Fortify
8 9 (0.51%) CASB
9 7 (0.39%) Host Intrusion Detection System
9 7 (0.39%) Norton AntiVirus
10 6 (0.34%) Nmap
11 5 (0.28%) Network Intrusion Detection System
11 5 (0.28%) Trend Micro Deep Security
11 5 (0.28%) WebInspect
12 3 (0.17%) Computer Emergency Response Teams
12 3 (0.17%) Juniper STRM
12 3 (0.17%) Microsoft Intune
12 3 (0.17%) RSA enVision
12 3 (0.17%) RSA Security Analytics
Vendors
1 105 (5.92%) Microsoft
2 95 (5.35%) Cisco
3 63 (3.55%) Qualys
4 41 (2.31%) Symantec
5 39 (2.20%) Sophos
6 38 (2.14%) CheckPoint
7 36 (2.03%) Veracode
8 33 (1.86%) Splunk
9 30 (1.69%) Capita
10 25 (1.41%) CyberArk
10 25 (1.41%) LogRhythm
11 24 (1.35%) ArcSight
11 24 (1.35%) Forcepoint
12 22 (1.24%) Palo Alto
12 22 (1.24%) Rapid7
13 19 (1.07%) Fortinet
13 19 (1.07%) IBM
13 19 (1.07%) McAfee
14 18 (1.01%) SolarWinds
15 16 (0.90%) Juniper