Period
to 22 April 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 22 April 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
UK
6 months to
22 Apr 2018
Same period 2017 Same period 2016
Rank 323 305 343
Rank change year-on-year -18 +38 +186
Permanent jobs citing CISM 1,736 1,817 1,951
As % of all permanent IT jobs advertised in the UK 0.98% 1.06% 0.95%
As % of the Qualifications category 4.17% 4.21% 3.42%
Number of salaries quoted 1,352 1,404 1,584
UK median annual salary £65,000 £65,000 £60,000
Median salary % change year-on-year - +8.33% -
10th Percentile £43,750 £41,250 £42,500
90th Percentile £97,500 £90,875 £90,000
UK excluding London median annual salary £58,250 £55,000 £55,000
% change year-on-year +5.91% - -

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 41,644 43,160 56,978
As % of all permanent IT jobs advertised in the UK 23.48% 25.20% 27.84%
Number of salaries quoted 31,855 34,007 45,725
UK median annual salary £47,500 £45,000 £45,000
Median salary % change year-on-year +5.56% - -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £80,000 £76,250 £75,000
UK excluding London median annual salary £44,000 £42,000 £42,500
% change year-on-year +4.76% -1.18% +6.25%

CISM
Job Vacancy Trend

Job postings citing CISM as a percentage of all IT jobs advertised.

Job vacancy trend for CISM in the UK

CISM
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISM.

Salary trend for CISM in the UK

CISM
Salary Histogram

The salary distribution of IT jobs citing CISM over the 6 months to 22 April 2018.

Salary histogram for CISM in the UK

CISM
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the UK over the 6 months to 22 April 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -15 1,675 £65,000 - 147
London -19 892 £72,500 +3.57% 66
UK excluding London -7 812 £58,250 +5.91% 90
South East +84 308 £60,000 - 30
North of England -16 222 £57,500 +27.78% 24
Midlands -3 159 £55,000 +15.79% 15
West Midlands -11 111 £55,000 +15.79% 11
North West -28 111 £57,500 +3.60% 12
Yorkshire +26 97 £57,000 +42.50% 9
East of England -65 62 £57,500 +15.00% 8
East Midlands +18 46 £62,500 +42.05% 4
South West -35 31 £55,000 -8.33% 4
Scotland -40 25 £57,500 +15.00% 4
North East -22 14 £49,250 +9.44% 3
Wales +7 9 £45,105 +0.23% 4
Northern Ireland -2 1 £52,500 -4.55%

For the 6 months to 22 April 2018, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISM.

1 1,684 (97.00%) CISSP
2 1,297 (74.71%) Information Security
3 864 (49.77%) ISO/IEC 27001
4 844 (48.62%) CISA
5 696 (40.09%) Cybersecurity
6 583 (33.58%) Finance
7 452 (26.04%) Risk Management
8 417 (24.02%) GDPR
9 390 (22.47%) SIEM
10 380 (21.89%) Firewall
11 360 (20.74%) PCI DSS
12 351 (20.22%) Management Information System
13 348 (20.05%) Degree
14 326 (18.78%) Data Protection
15 308 (17.74%) ITIL
16 290 (16.71%) Penetration Testing
17 288 (16.59%) Security Architecture
18 267 (15.38%) Security Operations
19 243 (14.00%) Vulnerability Management
20 234 (13.48%) CRISC
21 230 (13.25%) SANS
22 221 (12.73%) Windows
23 220 (12.67%) Security Management
24 212 (12.21%) GIAC
25 204 (11.75%) Network Security
26 200 (11.52%) CEH
27 193 (11.12%) Stakeholder Management
28 191 (11.00%) COBIT
29 187 (10.77%) Agile Software Development
30 168 (9.68%) Information Security Management

CISM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 52 (3.00%) IIS
2 30 (1.73%) SharePoint
3 14 (0.81%) WebSphere
4 9 (0.52%) Apache
5 7 (0.40%) MS Exchange
6 3 (0.17%) Confluence
6 3 (0.17%) SAS
7 2 (0.12%) CMS
Applications
1 23 (1.32%) Microsoft Office
2 5 (0.29%) MS Visio
3 4 (0.23%) Microsoft PowerPoint
4 3 (0.17%) Microsoft Excel
5 2 (0.12%) Microsoft Project
Business Applications
1 24 (1.38%) Dynamics CRM
2 3 (0.17%) assyst
Cloud Services
1 122 (7.03%) Amazon AWS
2 114 (6.57%) Microsoft Azure
3 67 (3.86%) Office 365
4 34 (1.96%) SaaS
5 31 (1.79%) Google Cloud Platform
6 29 (1.67%) OneDrive
7 27 (1.56%) Mimecast
8 20 (1.15%) IaaS
9 19 (1.09%) PaaS
10 4 (0.23%) Cloud Computing
11 3 (0.17%) Azure Active Directory
12 2 (0.12%) Virtual Private Cloud
Communications & Networking
1 380 (21.89%) Firewall
2 204 (11.75%) Network Security
3 97 (5.59%) Intrusion Detection
4 86 (4.95%) TCP/IP
5 55 (3.17%) VPN
6 49 (2.82%) Internet
7 45 (2.59%) WAN
8 33 (1.90%) SSL
9 27 (1.56%) LAN
10 18 (1.04%) DKIM
10 18 (1.04%) DMARC
10 18 (1.04%) HTTP
11 17 (0.98%) IPsec
12 14 (0.81%) Cisco IPT
12 14 (0.81%) DNS
12 14 (0.81%) SCCP
13 13 (0.75%) Wireless
14 12 (0.69%) VoIP
15 8 (0.46%) DHCP
15 8 (0.46%) SMTP
Database & Business Intelligence
1 25 (1.44%) Big Data
2 14 (0.81%) MySQL
2 14 (0.81%) SQL Server
3 7 (0.40%) Oracle Database
4 3 (0.17%) GIS
5 2 (0.12%) Blockchain
6 1 (0.058%) PostgreSQL
6 1 (0.058%) Power BI
6 1 (0.058%) RDBMS
6 1 (0.058%) Relational Database
Development Applications
1 14 (0.81%) AppScan
2 5 (0.29%) Burp Suite
3 4 (0.23%) Metasploit
4 3 (0.17%) JIRA
4 3 (0.17%) SonarQube
5 2 (0.12%) Jenkins
5 2 (0.12%) WebScarab
6 1 (0.058%) Git (software)
6 1 (0.058%) Subversion
General
1 583 (33.58%) Finance
2 165 (9.50%) Legal
3 123 (7.09%) Banking
4 70 (4.03%) Retail
5 50 (2.88%) Law
6 46 (2.65%) Telecoms
7 27 (1.56%) Games
8 22 (1.27%) Investment Banking
8 22 (1.27%) Marketing
9 20 (1.15%) Manufacturing
10 15 (0.86%) Back Office
10 15 (0.86%) Billing
10 15 (0.86%) Retail Banking
11 14 (0.81%) Private Banking
12 13 (0.75%) Pharmaceutical
13 12 (0.69%) Front Office
14 10 (0.58%) Corporate Banking
15 8 (0.46%) Financial Institution
15 8 (0.46%) Military
16 6 (0.35%) Advertising
Job Titles
1 493 (28.40%) Security Manager
2 294 (16.94%) Analyst
3 275 (15.84%) Information Security Manager
4 258 (14.86%) Information Manager
5 248 (14.29%) Security Analyst
6 217 (12.50%) Consultant
7 193 (11.12%) Security Consultant
8 167 (9.62%) Architect
9 165 (9.50%) Security Architect
10 138 (7.95%) Information Analyst
10 138 (7.95%) Information Security Analyst
11 128 (7.37%) Security Engineer
12 125 (7.20%) IT Manager
12 125 (7.20%) Security Officer
13 100 (5.76%) Information Security Officer
14 95 (5.47%) Cybersecurity Manager
15 90 (5.18%) Information Officer
16 88 (5.07%) IT Security Manager
17 83 (4.78%) Information Security Consultant
18 76 (4.38%) Risk Manager
Libraries, Frameworks & Software Standards
1 23 (1.32%) Web Services
2 22 (1.27%) SailPoint
3 18 (1.04%) Middleware
4 14 (0.81%) MSMQ
4 14 (0.81%) WebSphere MQ
5 7 (0.40%) .NET
6 3 (0.17%) ADSI
6 3 (0.17%) LDAP
7 2 (0.12%) HTML
7 2 (0.12%) OAuth
7 2 (0.12%) OpenID
7 2 (0.12%) RESTful
8 1 (0.058%) Java EE
8 1 (0.058%) LAMP
8 1 (0.058%) Regular Expression
8 1 (0.058%) REST
8 1 (0.058%) SAML
8 1 (0.058%) SOAP
8 1 (0.058%) XACML
Miscellaneous
1 351 (20.22%) Management Information System
2 157 (9.04%) Analytical Skills
3 115 (6.62%) Computer Science
4 107 (6.16%) Data Protection Act
5 102 (5.88%) Cyberthreat
6 67 (3.86%) PKI
7 62 (3.57%) Data Centre
8 58 (3.34%) Security Operations Centre
9 40 (2.30%) Cyberattack
10 36 (2.07%) CESG
11 31 (1.79%) Distributed Denial-of-Service
11 31 (1.79%) Self-Motivation
12 26 (1.50%) Cyber Defence
13 19 (1.09%) Fintech
14 18 (1.04%) BYOD
14 18 (1.04%) NHS
15 17 (0.98%) Enterprise Software
15 17 (0.98%) Public Cloud
16 16 (0.92%) Virtual Team
17 15 (0.86%) Greenfield Project
Operating Systems
1 221 (12.73%) Windows
2 159 (9.16%) Linux
3 100 (5.76%) Unix
4 83 (4.78%) Windows Server
5 26 (1.50%) Apple iOS
6 22 (1.27%) Mac OS X
7 14 (0.81%) Kali Linux
8 11 (0.63%) AIX
8 11 (0.63%) VMS
9 10 (0.58%) Windows Server 2008
9 10 (0.58%) Windows Server 2012
10 9 (0.52%) FreeBSD
11 7 (0.40%) Solaris
12 4 (0.23%) Android
13 3 (0.17%) Ubuntu
13 3 (0.17%) Windows 10
14 2 (0.12%) CentOS
14 2 (0.12%) HPUX
14 2 (0.12%) Red Hat Enterprise Linux
14 2 (0.12%) Windows XP
Processes & Methodologies
1 1,297 (74.71%) Information Security
2 696 (40.09%) Cybersecurity
3 452 (26.04%) Risk Management
4 390 (22.47%) SIEM
5 326 (18.78%) Data Protection
6 308 (17.74%) ITIL
7 290 (16.71%) Penetration Testing
8 288 (16.59%) Security Architecture
9 267 (15.38%) Security Operations
10 243 (14.00%) Vulnerability Management
11 220 (12.67%) Security Management
12 193 (11.12%) Stakeholder Management
13 187 (10.77%) Agile Software Development
14 168 (9.68%) Information Security Management
15 157 (9.04%) Incident Management
16 149 (8.58%) Identity Access Management
16 149 (8.58%) Problem-Solving
17 146 (8.41%) Data Loss Prevention
18 144 (8.29%) OWASP
19 141 (8.12%) Security Monitoring
Programming Languages
1 40 (2.30%) Python
2 38 (2.19%) Bash Shell
3 37 (2.13%) PowerShell
4 36 (2.07%) Perl
5 30 (1.73%) C#
6 28 (1.61%) Ruby
7 25 (1.44%) C
8 24 (1.38%) Bourne shell
8 24 (1.38%) Korn
9 23 (1.32%) SQL
10 14 (0.81%) Java
11 9 (0.52%) C++
12 8 (0.46%) PHP
13 7 (0.40%) Shell Script
14 3 (0.17%) Go
15 2 (0.12%) JavaScript
Qualifications
1 1,684 (97.00%) CISSP
2 844 (48.62%) CISA
3 348 (20.05%) Degree
4 234 (13.48%) CRISC
5 230 (13.25%) SANS
6 212 (12.21%) GIAC
7 200 (11.52%) CEH
8 141 (8.12%) Cisco Certification
9 121 (6.97%) SSCP
10 106 (6.11%) CSSLP
11 93 (5.36%) CompTIA Security+
11 93 (5.36%) Security Cleared
12 73 (4.21%) CESG Certified Professional
13 67 (3.86%) SC Cleared
14 58 (3.34%) (ISC)2 CCSP
15 56 (3.23%) Computer Science Degree
16 53 (3.05%) CCNA
17 48 (2.76%) CCSP
18 46 (2.65%) ISO 27001 Lead Auditor
19 45 (2.59%) CISMP
Quality Assurance & Compliance
1 864 (49.77%) ISO/IEC 27001
2 417 (24.02%) GDPR
3 360 (20.74%) PCI DSS
4 191 (11.00%) COBIT
5 136 (7.83%) Cyber Essentials
6 99 (5.70%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 61 (3.51%) Sarbanes-Oxley
8 34 (1.96%) HIPAA
8 34 (1.96%) PMO
9 33 (1.90%) Cyber Essentials PLUS
10 32 (1.84%) ISO 22301
11 31 (1.79%) GCP
12 29 (1.67%) NIST 800
13 28 (1.61%) HMG Security Policy Framework
14 27 (1.56%) ISO 31000
15 23 (1.32%) ISO 9001
16 12 (0.69%) QA
17 11 (0.63%) COSO
18 10 (0.58%) RMADS
19 9 (0.52%) ISAE 3402
System Software
1 101 (5.82%) Active Directory
2 20 (1.15%) Hyper-V
3 12 (0.69%) VMware Infrastructure
4 6 (0.35%) vSphere
5 2 (0.12%) XenApp
6 1 (0.058%) Docker
6 1 (0.058%) Virtual Desktop
Systems Management
1 40 (2.30%) Nessus
2 24 (1.38%) QRadar
3 21 (1.21%) CSIRT
4 17 (0.98%) Host Intrusion Detection System
5 15 (0.86%) Core Impact
6 14 (0.81%) OpenVAS
7 13 (0.75%) Single Sign-On
8 10 (0.58%) HP Fortify
9 9 (0.52%) Juniper STRM
9 9 (0.52%) RSA enVision
9 9 (0.52%) RSA Security Analytics
10 8 (0.46%) McAfee ePO
10 8 (0.46%) Norton AntiVirus
10 8 (0.46%) SCCM
11 6 (0.35%) Nexpose
11 6 (0.35%) WebInspect
12 5 (0.29%) CASB
12 5 (0.29%) Microsoft Intune
12 5 (0.29%) Network Intrusion Detection System
13 3 (0.17%) Trend Micro Deep Security
Vendors
1 127 (7.32%) Microsoft
2 83 (4.78%) Cisco
3 48 (2.76%) Qualys
4 43 (2.48%) Symantec
5 37 (2.13%) Sophos
5 37 (2.13%) Veracode
6 36 (2.07%) CheckPoint
7 35 (2.02%) Forcepoint
8 30 (1.73%) Splunk
9 29 (1.67%) CyberArk
10 28 (1.61%) Capita
10 28 (1.61%) Palo Alto
11 26 (1.50%) IBM
11 26 (1.50%) McAfee
12 22 (1.27%) Apple
12 22 (1.27%) Fortinet
13 20 (1.15%) LogRhythm
14 19 (1.09%) Varonis
15 18 (1.04%) ArcSight
15 18 (1.04%) VMware