Period
to 18 October 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CISM qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 18 October 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified Information Security Manager (CISM)
UK
6 months to
18 Oct 2018
Same period 2017 Same period 2016
Rank 337 324 327
Rank change year-on-year -13 +3 +140
Permanent jobs citing CISM 1,571 1,808 1,865
As % of all permanent IT jobs advertised in the UK 0.96% 1.03% 0.97%
As % of the Qualifications category 4.02% 4.23% 3.67%
Number of salaries quoted 1,144 1,419 1,490
UK median annual salary £65,000 £65,000 £65,000
10th Percentile £41,438 £42,500 £41,250
90th Percentile £95,000 £91,250 £90,000
UK excluding London median annual salary £60,000 £55,000 £60,000
% change year-on-year +9.09% -8.33% +14.29%

CISM is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 39,041 42,714 50,783
As % of all permanent IT jobs advertised in the UK 23.73% 24.43% 26.49%
Number of salaries quoted 28,923 32,808 40,816
UK median annual salary £50,000 £47,000 £45,000
Median salary % change year-on-year +6.38% +4.44% -
10th Percentile £26,250 £26,000 £26,250
90th Percentile £80,000 £77,500 £76,250
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +6.25%

CISM
Job Vacancy Trend

Job postings citing CISM as a percentage of all IT jobs advertised.

Job vacancy trend for CISM in the UK

CISM
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISM.

Salary trend for CISM in the UK

CISM
Salary Histogram

The salary distribution of IT jobs citing CISM over the 6 months to 18 October 2018.

Salary histogram for CISM in the UK

CISM
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the UK over the 6 months to 18 October 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -17 1,485 £65,000 - 176
UK excluding London +34 856 £60,000 +9.09% 117
London -59 662 £75,000 +7.14% 70
South East +31 295 £60,000 +1.27% 26
East of England +87 174 £70,000 +21.74% 11
North of England -32 170 £52,500 -4.55% 31
Midlands +41 111 £57,500 +4.55% 17
West Midlands +59 97 £52,500 +5.00% 10
North West -50 82 £50,000 -9.09% 18
Yorkshire +35 70 £52,500 - 9
South West -10 57 £55,000 - 21
Scotland +10 34 £50,000 -24.24% 11
North East -16 18 £61,427 -7.28% 4
East Midlands -13 11 £67,500 +22.73% 7
Wales +4 10 £40,210 -30.07%
Isle of Man - 5 £55,000 -

For the 6 months to 18 October 2018, IT jobs citing CISM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISM.

1 1,510 (96.12%) CISSP
2 1,152 (73.33%) Information Security
3 745 (47.42%) CISA
4 736 (46.85%) ISO/IEC 27001
5 680 (43.28%) Cybersecurity
6 484 (30.81%) Risk Management
7 398 (25.33%) Finance
8 379 (24.12%) PCI DSS
9 335 (21.32%) SIEM
10 328 (20.88%) GDPR
11 290 (18.46%) Management Information System
12 272 (17.31%) Security Architecture
13 267 (17.00%) Degree
14 265 (16.87%) Data Protection
15 258 (16.42%) ITIL
16 235 (14.96%) CEH
17 231 (14.70%) Firewall
18 224 (14.26%) CRISC
19 221 (14.07%) Penetration Testing
20 207 (13.18%) Windows
21 202 (12.86%) Stakeholder Management
22 185 (11.78%) GIAC
23 182 (11.58%) SANS
24 177 (11.27%) Security Management
25 175 (11.14%) Vulnerability Management
26 159 (10.12%) Analytical Skills
27 157 (9.99%) Agile Software Development
28 153 (9.74%) Security Operations
29 152 (9.68%) Linux
30 144 (9.17%) SSCP

CISM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 33 (2.10%) IIS
2 17 (1.08%) SharePoint
3 7 (0.45%) Apache
3 7 (0.45%) Confluence
4 5 (0.32%) MS Exchange
5 3 (0.19%) JBoss
5 3 (0.19%) Tomcat
5 3 (0.19%) WebLogic
6 1 (0.064%) SAS
6 1 (0.064%) SharePoint 2013
Applications
1 16 (1.02%) Microsoft Office
2 11 (0.70%) MS Visio
3 2 (0.13%) Microsoft PowerPoint
4 1 (0.064%) Microsoft Excel
4 1 (0.064%) Microsoft Project
4 1 (0.064%) Spreadsheet
Business Applications
1 10 (0.64%) SAP GRC
2 9 (0.57%) assyst
3 7 (0.45%) Distributed Ledger
3 7 (0.45%) Sentinel
4 3 (0.19%) Infor M3
5 2 (0.13%) SAP HR
6 1 (0.064%) Oracle Applications
Cloud Services
1 78 (4.96%) Microsoft Azure
2 77 (4.90%) Amazon AWS
3 42 (2.67%) Office 365
4 23 (1.46%) SaaS
5 14 (0.89%) Mimecast
6 9 (0.57%) Cloud Computing
7 7 (0.45%) IaaS
8 5 (0.32%) Google Cloud Platform
9 4 (0.25%) PaaS
10 2 (0.13%) OneDrive
11 1 (0.064%) Virtual Private Cloud
11 1 (0.064%) Yammer
Communications & Networking
1 231 (14.70%) Firewall
2 98 (6.24%) Network Security
3 87 (5.54%) Intrusion Detection
4 48 (3.06%) TCP/IP
5 42 (2.67%) WAN
6 39 (2.48%) Internet
7 38 (2.42%) LAN
8 25 (1.59%) SCCP
9 20 (1.27%) VPN
10 16 (1.02%) DNS
10 16 (1.02%) HTTP
11 14 (0.89%) DKIM
11 14 (0.89%) DMARC
11 14 (0.89%) VoIP
12 13 (0.83%) Broadband
12 13 (0.83%) SSL
13 12 (0.76%) IPsec
13 12 (0.76%) Wireless
14 8 (0.51%) Cisco Firepower
15 7 (0.45%) DHCP
Database & Business Intelligence
1 24 (1.53%) Big Data
2 11 (0.70%) Geospatial Data
3 9 (0.57%) GIS
4 7 (0.45%) Blockchain
5 4 (0.25%) Hadoop
6 3 (0.19%) DB2
6 3 (0.19%) SQL Server
7 2 (0.13%) Data Mining
7 2 (0.13%) MySQL
8 1 (0.064%) BusinessObjects
8 1 (0.064%) Data Lake
8 1 (0.064%) QlikView
Development Applications
1 19 (1.21%) Metasploit
2 7 (0.45%) AppScan
2 7 (0.45%) JIRA
3 5 (0.32%) Burp Suite
4 1 (0.064%) Paros
4 1 (0.064%) SonarQube
General
1 398 (25.33%) Finance
2 120 (7.64%) Legal
3 91 (5.79%) Banking
4 84 (5.35%) Retail
5 40 (2.55%) Investment Banking
5 40 (2.55%) Telecoms
6 28 (1.78%) Law
7 22 (1.40%) Manufacturing
8 16 (1.02%) Marketing
9 14 (0.89%) Financial Institution
9 14 (0.89%) Publishing
10 10 (0.64%) Local Government
11 9 (0.57%) Games
12 8 (0.51%) Pharmaceutical
13 5 (0.32%) Advertising
14 4 (0.25%) Military
14 4 (0.25%) Retail Banking
15 3 (0.19%) Aerospace
15 3 (0.19%) French Language
16 2 (0.13%) Spanish Language
Job Titles
1 378 (24.06%) Security Manager
2 259 (16.49%) Analyst
3 216 (13.75%) Information Manager
4 212 (13.49%) Consultant
5 208 (13.24%) Information Security Manager
6 204 (12.99%) Security Analyst
7 183 (11.65%) Security Consultant
8 142 (9.04%) Architect
9 141 (8.98%) Security Architect
10 133 (8.47%) Information Analyst
11 132 (8.40%) Security Engineer
12 131 (8.34%) Information Security Analyst
13 126 (8.02%) Security Officer
14 98 (6.24%) Information Security Officer
15 91 (5.79%) IT Manager
16 90 (5.73%) Information Officer
17 87 (5.54%) Head of Security
18 86 (5.47%) Cybersecurity Consultant
19 69 (4.39%) Risk Manager
20 59 (3.76%) IT Security Manager
Libraries, Frameworks & Software Standards
1 28 (1.78%) Web Services
2 21 (1.34%) Elastic Stack
3 16 (1.02%) .NET
3 16 (1.02%) SailPoint
4 11 (0.70%) LDAP
5 6 (0.38%) Middleware
6 5 (0.32%) LAMP
6 5 (0.32%) SAML
7 4 (0.25%) ASP.NET
7 4 (0.25%) ModSecurity
7 4 (0.25%) Spring
8 3 (0.19%) REST
8 3 (0.19%) SPNEGO
8 3 (0.19%) XACML
9 2 (0.13%) 802.1X
9 2 (0.13%) SAP Basis
10 1 (0.064%) HTML5
10 1 (0.064%) Java EE
10 1 (0.064%) OpenID
10 1 (0.064%) WF
Miscellaneous
1 290 (18.46%) Management Information System
2 159 (10.12%) Analytical Skills
3 94 (5.98%) Data Protection Act
4 84 (5.35%) Computer Science
5 71 (4.52%) Data Centre
6 69 (4.39%) PKI
7 67 (4.26%) Security Operations Centre
8 58 (3.69%) Self-Motivation
9 45 (2.86%) CESG
10 37 (2.36%) Cyberattack
10 37 (2.36%) Cyberthreat
11 32 (2.04%) Distributed Denial-of-Service
12 18 (1.15%) Algorithms
12 18 (1.15%) Public Cloud
13 17 (1.08%) Fintech
14 15 (0.95%) BYOD
15 14 (0.89%) Enterprise Software
15 14 (0.89%) Freedom of Information
16 13 (0.83%) Cyber Kill Chain
17 12 (0.76%) Cybercrime
Operating Systems
1 207 (13.18%) Windows
2 152 (9.68%) Linux
3 102 (6.49%) Unix
4 37 (2.36%) Windows Server
5 19 (1.21%) Kali Linux
6 12 (0.76%) CentOS
7 9 (0.57%) AIX
8 8 (0.51%) HPUX
8 8 (0.51%) Red Hat Enterprise Linux
8 8 (0.51%) Windows Server 2008
8 8 (0.51%) Windows Server 2012
9 7 (0.45%) Windows Server 2003
9 7 (0.45%) Windows XP
10 3 (0.19%) Android
10 3 (0.19%) Apple iOS
11 1 (0.064%) Debian
11 1 (0.064%) VMS
Processes & Methodologies
1 1,152 (73.33%) Information Security
2 680 (43.28%) Cybersecurity
3 484 (30.81%) Risk Management
4 335 (21.32%) SIEM
5 272 (17.31%) Security Architecture
6 265 (16.87%) Data Protection
7 258 (16.42%) ITIL
8 221 (14.07%) Penetration Testing
9 202 (12.86%) Stakeholder Management
10 177 (11.27%) Security Management
11 175 (11.14%) Vulnerability Management
12 157 (9.99%) Agile Software Development
13 153 (9.74%) Security Operations
14 138 (8.78%) Problem-Solving
15 135 (8.59%) Identity Access Management
16 132 (8.40%) Information Security Management
17 127 (8.08%) ISMS
18 114 (7.26%) Risk Assessment
19 110 (7.00%) Continuous Improvement
20 107 (6.81%) TOGAF
Programming Languages
1 22 (1.40%) Python
2 20 (1.27%) PHP
3 19 (1.21%) Java
4 17 (1.08%) Perl
5 14 (0.89%) C
5 14 (0.89%) Ruby
6 13 (0.83%) Go
7 7 (0.45%) Bash Shell
8 5 (0.32%) PowerShell
8 5 (0.32%) Shell Script
9 3 (0.19%) C#
10 2 (0.13%) C++
10 2 (0.13%) SQL
11 1 (0.064%) JavaScript
11 1 (0.064%) VB
Qualifications
1 1,510 (96.12%) CISSP
2 745 (47.42%) CISA
3 267 (17.00%) Degree
4 235 (14.96%) CEH
5 224 (14.26%) CRISC
6 185 (11.78%) GIAC
7 182 (11.58%) SANS
8 144 (9.17%) SSCP
9 105 (6.68%) Security Cleared
10 98 (6.24%) Cisco Certification
10 98 (6.24%) CompTIA Security+
11 96 (6.11%) CESG Certified Professional
12 68 (4.33%) CREST Certified
12 68 (4.33%) CSSLP
13 67 (4.26%) SC Cleared
14 50 (3.18%) (ISC)2 CCSP
15 46 (2.93%) ISO 27001 Lead Auditor
16 44 (2.80%) Computer Science Degree
17 43 (2.74%) CISMP
18 37 (2.36%) PCI QSA
Quality Assurance & Compliance
1 736 (46.85%) ISO/IEC 27001
2 379 (24.12%) PCI DSS
3 328 (20.88%) GDPR
4 120 (7.64%) COBIT
5 114 (7.26%) Cyber Essentials
6 74 (4.71%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 51 (3.25%) HMG Security Policy Framework
8 44 (2.80%) Sarbanes-Oxley
9 38 (2.42%) Cyber Essentials PLUS
10 26 (1.65%) ISO 22301
10 26 (1.65%) QA
11 23 (1.46%) MiFID
12 22 (1.40%) HIPAA
12 22 (1.40%) ISO 9001
13 19 (1.21%) NIST 800
14 15 (0.95%) ISO/IEC 20000
15 12 (0.76%) ISO/IEC 27005
16 11 (0.70%) IASME
16 11 (0.70%) RMADS
17 9 (0.57%) SLA
System Software
1 25 (1.59%) Active Directory
2 22 (1.40%) Snort
3 10 (0.64%) Hyper-V
4 7 (0.45%) VMware Infrastructure
5 6 (0.38%) vSphere
6 2 (0.13%) Docker
7 1 (0.064%) Firmware
7 1 (0.064%) ProxySG
7 1 (0.064%) Virtual Machines
Systems Management
1 51 (3.25%) Nessus
2 24 (1.53%) OSSEC
3 18 (1.15%) QRadar
3 18 (1.15%) Single Sign-On
4 16 (1.02%) Nmap
5 14 (0.89%) Nexpose
6 13 (0.83%) Core Impact
6 13 (0.83%) OpenVAS
7 10 (0.64%) CASB
8 9 (0.57%) HP Fortify
9 6 (0.38%) Ansible
9 6 (0.38%) Norton AntiVirus
10 5 (0.32%) RSA Archer
11 3 (0.19%) CSIRT
12 2 (0.13%) Computer Emergency Response Teams
12 2 (0.13%) Host Intrusion Detection System
12 2 (0.13%) IBM BigFix
12 2 (0.13%) Trend Micro Deep Security
12 2 (0.13%) WebInspect
12 2 (0.13%) WSUS
Vendors
1 97 (6.17%) Microsoft
2 66 (4.20%) Symantec
3 62 (3.95%) Sophos
4 54 (3.44%) Qualys
5 49 (3.12%) Cisco
6 47 (2.99%) Splunk
7 44 (2.80%) LogRhythm
8 24 (1.53%) ArcSight
8 24 (1.53%) Oracle
9 20 (1.27%) Forcepoint
10 19 (1.21%) CyberArk
11 17 (1.08%) VMware
12 16 (1.02%) Sun
13 15 (0.95%) CheckPoint
13 15 (0.95%) SolarWinds
14 14 (0.89%) AlienVault
14 14 (0.89%) Netsparker
14 14 (0.89%) Rapid7
15 13 (0.83%) Aveksa
15 13 (0.83%) Bomgar