CISM Jobs, Trends & Salaries

ISACA Certified Information Security Manager (CISM)
UK

The table below provides summary statistics for permanent job vacancies with a requirement for CISM qualifications. It includes a benchmarking guide to the salaries offered over the 6 months leading up to 26 July 2024, comparing them to the same period in the previous two years.

Location	6 months to 26 Jul 2024	Same period 2023	Same period 2022
Rank	382	385	550
Rank change year-on-year	+3	+165	-75
Permanent jobs citing CISM	604	670	1,043
As % of all permanent jobs advertised in the UK	0.67%	0.83%	0.60%
As % of the Qualifications category	2.54%	2.46%	2.13%
Number of salaries quoted	459	495	675
10^th Percentile	£45,000	£45,250	£45,000
25^th Percentile	£57,500	£55,500	£56,250
Median annual salary (50^th Percentile)	£70,000	£70,000	£70,000
Median % change year-on-year	-	-	+7.69%
75^th Percentile	£85,000	£85,000	£85,000
90^th Percentile	£100,000	£102,500	£100,000
UK excluding London median annual salary	£67,155	£65,000	£65,000
% change year-on-year	+3.32%	-	+8.33%

All Academic and Professional Certifications
UK

CISM falls under the Academic Qualifications and Professional Certifications category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies requiring academic qualifications or professional certifications.

Permanent vacancies requiring academic qualifications or professional certifications	23,768	27,219	48,854
As % of all permanent jobs advertised in the UK	26.30%	33.73%	27.87%
Number of salaries quoted	13,396	13,767	20,158
10^th Percentile	£30,000	£32,000	£30,500
25^th Percentile	£40,000	£42,500	£40,000
Median annual salary (50^th Percentile)	£55,000	£60,000	£55,000
Median % change year-on-year	-8.33%	+9.09%	-
75^th Percentile	£72,425	£76,250	£73,750
90^th Percentile	£88,500	£95,000	£91,250
UK excluding London median annual salary	£50,000	£52,500	£48,500
% change year-on-year	-4.76%	+8.25%	+2.11%

CISM
Job Vacancy Trend

Job postings citing CISM as a proportion of all IT jobs advertised.

CISM
Salary Trend

3-month moving average salary quoted in jobs citing CISM.

CISM
Salary Histogram

Salary distribution for jobs citing CISM over the 6 months to 26 July 2024.

CISM
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the UK over the 6 months to 26 July 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location	Rank Change on Same Period Last Year	Matching Permanent IT Job Ads	Median Salary Past 6 Months	Median Salary % Change on Same Period Last Year	Live Jobs
England	+18	535	£70,000	-	73
UK excluding London	-35	344	£67,155	+3.32%	50
London	+71	231	£80,000	+1.59%	35
Work from Home	-56	205	£70,750	+1.07%	36
North of England	+29	95	£52,084	-16.67%	9
South West	+19	83	£68,500	-5.52%	4
North West	+24	77	£52,084	+5.22%	6
Midlands	-27	61	£70,000	+4.58%	10
South East	-46	45	£65,000	+8.33%	12
West Midlands	-18	44	£75,000	+9.09%	9
Scotland	-31	38	£55,000	-15.37%	5
East of England	-5	17	£45,000	-35.71%	4
East Midlands	-20	16	£66,500	+6.40%	1
Yorkshire	+44	15	£79,842	+17.41%	2
Isle of Man	-15	4	£46,500	-20.85%
North East	-9	3	£79,842	-15.96%	1
Wales	+10	1	£85,000	+117.95%	2

CISM
Top 30 Co-occurring Skills and Capabilities

For the 6 months to 26 July 2024, job vacancies citing CISM also mentioned the following skills and capabilities in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISM.

1	564 (93.38%)	CISSP
2	399 (66.06%)	Information Security
3	373 (61.75%)	Cybersecurity
4	262 (43.38%)	ISO/IEC 27001
5	228 (37.75%)	Risk Management
6	218 (36.09%)	CISA
6	218 (36.09%)	NIST
7	196 (32.45%)	Degree
8	190 (31.46%)	Management Information System
9	168 (27.81%)	Social Skills
10	161 (26.66%)	CRISC
11	156 (25.83%)	Incident Response
12	146 (24.17%)	Finance
13	134 (22.19%)	Azure
14	123 (20.36%)	Security Architecture

14	123 (20.36%)	Security Cleared
15	113 (18.71%)	SC Cleared
16	111 (18.38%)	AWS
17	109 (18.05%)	Firewall
18	103 (17.05%)	Problem-Solving
19	101 (16.72%)	GDPR
19	101 (16.72%)	Computer Science
20	91 (15.07%)	Vulnerability Management
21	90 (14.90%)	Security Operations
22	87 (14.40%)	Incident Management
23	85 (14.07%)	Cyber Essentials
23	85 (14.07%)	SIEM
24	84 (13.91%)	GRC
25	78 (12.91%)	Security Management
26	73 (12.09%)	Microsoft

CISM
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
Applications
Cloud Services
Communications & Networking
Database & Business Intelligence
Development Applications
General
Job Titles
Libraries, Frameworks & Software Standards
Miscellaneous
Operating Systems
Processes & Methodologies
Programming Languages
Qualifications
Quality Assurance & Compliance
System Software
Systems Management
Vendors

Application Platforms
1	3 (0.50%)	SharePoint
2	1 (0.17%)	Microsoft Exchange

Applications
1	12 (1.99%)	Microsoft Excel
2	10 (1.66%)	Microsoft Office
3	2 (0.33%)	Microsoft PowerPoint
3	2 (0.33%)	MS Visio

Cloud Services
1	134 (22.19%)	Azure
2	111 (18.38%)	AWS
3	36 (5.96%)	Microsoft 365
4	23 (3.81%)	GCP
5	19 (3.15%)	Power Platform
6	13 (2.15%)	Azure Sentinel
6	13 (2.15%)	SaaS
7	10 (1.66%)	Cloud Computing
8	9 (1.49%)	Microsoft Purview
9	6 (0.99%)	Entra ID
9	6 (0.99%)	IaaS
9	6 (0.99%)	PaaS
9	6 (0.99%)	WhatsApp
10	4 (0.66%)	Amazon S3
11	2 (0.33%)	AWS Lambda
11	2 (0.33%)	Azure AKS
11	2 (0.33%)	Azure Service Fabric
11	2 (0.33%)	Serverless
12	1 (0.17%)	Dropbox
12	1 (0.17%)	PowerApps

Communications & Networking
1	109 (18.05%)	Firewall
2	43 (7.12%)	Network Security
3	26 (4.30%)	WAN
4	24 (3.97%)	SD-WAN
5	22 (3.64%)	Intrusion Detection
6	21 (3.48%)	VPN
7	17 (2.81%)	LAN
8	15 (2.48%)	TCP/IP
9	14 (2.32%)	DNS
9	14 (2.32%)	VoIP
10	10 (1.66%)	Cisco IPT
11	5 (0.83%)	Wi-Fi
12	4 (0.66%)	NetScaler
13	3 (0.50%)	5G
13	3 (0.50%)	Internet
13	3 (0.50%)	Radio Access Network
14	2 (0.33%)	SAN
15	1 (0.17%)	iSCSI
15	1 (0.17%)	Wireless
15	1 (0.17%)	X.509

Database & Business Intelligence
1	19 (3.15%)	Power BI
2	4 (0.66%)	SQL Server
3	2 (0.33%)	Azure SQL Database
3	2 (0.33%)	Big Data
4	1 (0.17%)	Amazon RDS
4	1 (0.17%)	Data Warehouse

Development Applications
1	10 (1.66%)	Jenkins
2	2 (0.33%)	JIRA

General
1	168 (27.81%)	Social Skills
2	146 (24.17%)	Finance
3	63 (10.43%)	Analytical Skills
4	49 (8.11%)	Law
5	42 (6.95%)	Legal
6	35 (5.79%)	Military
7	34 (5.63%)	Inclusion and Diversity
8	30 (4.97%)	Public Sector
9	29 (4.80%)	Presentation Skills
10	28 (4.64%)	Telecoms
11	17 (2.81%)	Banking
12	16 (2.65%)	Marketing
13	11 (1.82%)	Manufacturing
14	8 (1.32%)	Influencing Skills
15	7 (1.16%)	Advertising
16	5 (0.83%)	Financial Institution
17	4 (0.66%)	Aerospace
17	4 (0.66%)	Automotive
17	4 (0.66%)	Electronics
18	3 (0.50%)	Organisational Skills

Job Titles
1	95 (15.73%)	Analyst
2	93 (15.40%)	Security Manager
3	88 (14.57%)	Architect
4	87 (14.40%)	Lead
5	79 (13.08%)	Consultant
6	78 (12.91%)	Senior
7	75 (12.42%)	Security Consultant
8	74 (12.25%)	Security Architect
9	71 (11.75%)	Security Analyst
10	62 (10.26%)	Information Security Manager
11	61 (10.10%)	Information Manager
12	38 (6.29%)	Security Officer
13	36 (5.96%)	Lead Architect
14	35 (5.79%)	Cybersecurity Architect
15	29 (4.80%)	Information Officer
15	29 (4.80%)	Information Security Officer
16	28 (4.64%)	Security Engineer
17	26 (4.30%)	Senior Analyst
17	26 (4.30%)	Vulnerability Manager
18	24 (3.97%)	Lead Security Architect

Libraries, Frameworks & Software Standards
1	10 (1.66%)	ModSecurity
1	10 (1.66%)	OAuth
1	10 (1.66%)	SAML
2	5 (0.83%)	Web Services
3	4 (0.66%)	Kafka
3	4 (0.66%)	REST
3	4 (0.66%)	SailPoint
4	3 (0.50%)	web3js
5	2 (0.33%)	EDI
5	2 (0.33%)	Microsoft Graph
5	2 (0.33%)	SOAP

Miscellaneous
1	190 (31.46%)	Management Information System
2	62 (10.26%)	Security Posture
3	50 (8.28%)	Cyber Threat
4	29 (4.80%)	Security Operations Centre
5	28 (4.64%)	Distributed Denial-of-Service
6	27 (4.47%)	Operational Technology
7	26 (4.30%)	Data Centre
8	23 (3.81%)	Cyberattack
9	19 (3.15%)	Self-Motivation
10	15 (2.48%)	Public Cloud
11	14 (2.32%)	Cyber Security Posture
11	14 (2.32%)	PKI
12	13 (2.15%)	Cyber Defence
13	10 (1.66%)	Onboarding
14	9 (1.49%)	Data Protection Act
15	5 (0.83%)	CESG
15	5 (0.83%)	Cloud Native
15	5 (0.83%)	Product Ownership
15	5 (0.83%)	Replication
16	4 (0.66%)	Client/Server

Operating Systems
1	34 (5.63%)	Windows
2	18 (2.98%)	Linux
3	9 (1.49%)	Unix
4	5 (0.83%)	Mac OS X
4	5 (0.83%)	Windows Server
5	4 (0.66%)	CentOS
5	4 (0.66%)	Solaris
5	4 (0.66%)	Ubuntu
5	4 (0.66%)	zOS

Processes & Methodologies
1	399 (66.06%)	Information Security
2	373 (61.75%)	Cybersecurity
3	228 (37.75%)	Risk Management
4	156 (25.83%)	Incident Response
5	123 (20.36%)	Security Architecture
6	103 (17.05%)	Problem-Solving
7	101 (16.72%)	Computer Science
8	91 (15.07%)	Vulnerability Management
9	90 (14.90%)	Security Operations
10	87 (14.40%)	Incident Management
11	85 (14.07%)	SIEM
12	78 (12.91%)	Security Management
13	69 (11.42%)	Data Protection
14	65 (10.76%)	Cloud Security
15	64 (10.60%)	Application Security
16	61 (10.10%)	Information Security Management
17	59 (9.77%)	Roadmaps
18	55 (9.11%)	OWASP
19	54 (8.94%)	Penetration Testing
20	52 (8.61%)	Information Assurance

Programming Languages
1	27 (4.47%)	Python
2	11 (1.82%)	PowerShell
3	8 (1.32%)	SQL
4	5 (0.83%)	C
4	5 (0.83%)	Java
4	5 (0.83%)	R
4	5 (0.83%)	Scala
5	3 (0.50%)	Bash
6	2 (0.33%)	Kusto Query Language

Qualifications
1	564 (93.38%)	CISSP
2	218 (36.09%)	CISA
3	196 (32.45%)	Degree
4	161 (26.66%)	CRISC
5	123 (20.36%)	Security Cleared
6	113 (18.71%)	SC Cleared
7	62 (10.26%)	Cisco Certification
8	53 (8.77%)	ISO 27001 Lead Auditor
9	49 (8.11%)	(ISC)2 CCSP
9	49 (8.11%)	CESG Certified Professional
10	47 (7.78%)	AWS Certification
11	46 (7.62%)	CCSP
11	46 (7.62%)	CEH
12	42 (6.95%)	Computer Science Degree
13	41 (6.79%)	Azure Certification
14	40 (6.62%)	GIAC
15	39 (6.46%)	Master's Degree
16	38 (6.29%)	CompTIA Security+
17	33 (5.46%)	ISO 27001 Lead Implementer
18	27 (4.47%)	CCSK

Quality Assurance & Compliance
1	262 (43.38%)	ISO/IEC 27001
2	218 (36.09%)	NIST
3	101 (16.72%)	GDPR
4	85 (14.07%)	Cyber Essentials
5	84 (13.91%)	GRC
6	61 (10.10%)	PCI DSS
7	48 (7.95%)	NCSC
8	47 (7.78%)	Cyber Essentials PLUS
9	38 (6.29%)	COBIT
10	21 (3.48%)	NIST 800
11	13 (2.15%)	IASME
11	13 (2.15%)	ISO 22301
11	13 (2.15%)	JSP 440
11	13 (2.15%)	QA
12	12 (1.99%)	HIPAA
12	12 (1.99%)	RMADS
13	11 (1.82%)	ISO/IEC 27002 (supersedes ISO/IEC 17799)
14	9 (1.49%)	ISO/IEC 27005
14	9 (1.49%)	Sarbanes-Oxley
15	7 (1.16%)	SOC 2

System Software
1	25 (4.14%)	Active Directory
2	24 (3.97%)	Docker
3	5 (0.83%)	VMware NSX
4	2 (0.33%)	Virtual Machines
4	2 (0.33%)	VMware Infrastructure
5	1 (0.17%)	Hyper-V
5	1 (0.17%)	pfSense
5	1 (0.17%)	Terminal Server
5	1 (0.17%)	Virtual Desktop

Systems Management
1	33 (5.46%)	Kubernetes
2	27 (4.47%)	Single Sign-On
3	10 (1.66%)	Ansible
4	9 (1.49%)	CASB
4	9 (1.49%)	Computer Emergency Response Teams
5	8 (1.32%)	Nessus
6	3 (0.50%)	FortiGate
6	3 (0.50%)	Microsoft Intune
7	1 (0.17%)	Computer Incident Response Team
7	1 (0.17%)	Failover Clustering
7	1 (0.17%)	Oracle Identity Management
7	1 (0.17%)	RSA Archer
7	1 (0.17%)	RSA Security Analytics

Vendors
1	73 (12.09%)	Microsoft
2	15 (2.48%)	Dell
3	14 (2.32%)	Qualys
4	11 (1.82%)	Citrix
5	10 (1.66%)	Cisco
6	9 (1.49%)	Alibaba
6	9 (1.49%)	Splunk
7	7 (1.16%)	ServiceNow
8	6 (0.99%)	Google
8	6 (0.99%)	VMware
9	5 (0.83%)	Meraki
10	4 (0.66%)	CheckPoint
10	4 (0.66%)	Zscaler
11	3 (0.50%)	Rapid7
12	2 (0.33%)	CrowdStrike
12	2 (0.33%)	Fortinet
12	2 (0.33%)	Oracle
12	2 (0.33%)	Sophos
13	1 (0.17%)	HP
13	1 (0.17%)	SAP

ISACA Certified Information Security Manager (CISM)UK

All Academic and Professional CertificationsUK

CISMJob Vacancy Trend

CISMSalary Trend

CISMSalary Histogram

CISMTop 17 Job Locations

CISMTop 30 Co-occurring Skills and Capabilities

CISMCo-occurring Skills and Capabilities by Category