ISACA Certified Information Security Manager (CISM)
UK

The table below provides summary statistics for permanent job vacancies with a requirement for CISM qualifications. It includes a benchmarking guide to the salaries offered over the 6 months leading up to 13 June 2025, comparing them to the same period in the previous two years.

6 months to
13 Jun 2025
Same period 2024 Same period 2023
Rank 355 408 382
Rank change year-on-year +53 -26 +190
Permanent jobs citing CISM 435 648 780
As % of all permanent jobs advertised in the UK 0.78% 0.59% 0.84%
As % of the Qualifications category 1.66% 2.26% 2.49%
Number of salaries quoted 209 499 586
10th Percentile £48,552 £47,000 £46,250
25th Percentile £56,250 £57,500 £55,000
Median annual salary (50th Percentile) £72,500 £72,500 £70,500
Median % change year-on-year - +2.84% +0.71%
75th Percentile £86,000 £85,000 £87,500
90th Percentile £95,000 £101,250 £100,625
UK excluding London median annual salary £65,000 £65,000 £64,975
% change year-on-year - +0.04% -0.04%

All Academic and Professional Certifications
UK

CISM falls under the Academic Qualifications and Professional Certifications category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies requiring academic qualifications or professional certifications.

Permanent vacancies requiring academic qualifications or professional certifications 26,221 28,735 31,345
As % of all permanent jobs advertised in the UK 46.85% 26.15% 33.90%
Number of salaries quoted 10,745 17,299 14,299
10th Percentile £31,250 £29,000 £32,000
25th Percentile £42,000 £38,734 £42,500
Median annual salary (50th Percentile) £55,000 £53,555 £60,000
Median % change year-on-year +2.70% -10.74% +9.09%
75th Percentile £68,750 £70,750 £77,500
90th Percentile £82,500 £87,500 £95,000
UK excluding London median annual salary £52,500 £50,000 £52,500
% change year-on-year +5.00% -4.76% +7.14%

CISM
Job Vacancy Trend

Job postings citing CISM as a proportion of all IT jobs advertised.

Job vacancy trend for CISM in the UK

CISM
Salary Trend

3-month moving average salary quoted in jobs citing CISM.

Salary trend for CISM in the UK

CISM
Salary Histogram

Salary distribution for jobs citing CISM over the 6 months to 13 June 2025.

Salary histogram for CISM in the UK

CISM
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISM within the UK over the 6 months to 13 June 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
England +59 412 £72,250 +3.21% 306
UK excluding London +121 292 £65,000 - 205
Midlands +149 143 £57,500 -17.86% 24
London -8 123 £82,500 +3.13% 148
Work from Home +20 100 £67,500 -6.90% 180
West Midlands +116 99 £57,500 -23.33% 12
South East +121 69 £65,000 - 65
East Midlands +80 44 £55,000 -19.41% 12
North of England 0 32 £65,000 +8.33% 48
South West +57 22 £67,500 -1.46% 19
North West -39 21 £61,000 +17.12% 40
Scotland +84 13 £95,000 +58.33% 18
East of England +33 10 £51,711 +3.42% 16
North East +52 6 £80,000 +0.20% 8
Yorkshire +54 5 £57,500 -27.98% 1
Channel Islands 0 2 £78,750 -21.25% 3
Wales +42 1 £55,000 -35.29% 10

CISM
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 3 (0.69%) Confluence
1 3 (0.69%) SharePoint
2 2 (0.46%) IIS
2 2 (0.46%) TPMS
3 1 (0.23%) Microsoft Exchange
3 1 (0.23%) Oracle Workflow
Applications
1 7 (1.61%) Microsoft Excel
1 7 (1.61%) Microsoft Office
2 5 (1.15%) Microsoft PowerPoint
3 4 (0.92%) MS Visio
4 1 (0.23%) Microsoft Project
Business Applications
1 4 (0.92%) SAP S/4HANA
Cloud Services
1 53 (12.18%) Azure
2 42 (9.66%) AWS
3 17 (3.91%) Microsoft 365
4 13 (2.99%) Azure Sentinel
5 12 (2.76%) Entra ID
5 12 (2.76%) GCP
6 10 (2.30%) SaaS
7 6 (1.38%) Power Platform
8 5 (1.15%) Azure Monitor
8 5 (1.15%) IaaS
9 3 (0.69%) Amazon ECS
9 3 (0.69%) Cloud Computing
10 2 (0.46%) Mimecast
11 1 (0.23%) Cloudflare
11 1 (0.23%) Google Workspace
11 1 (0.23%) PaaS
11 1 (0.23%) Power Automate
11 1 (0.23%) Snowflake
11 1 (0.23%) WhatsApp
Communications & Networking
1 73 (16.78%) Firewall
2 31 (7.13%) Network Security
3 30 (6.90%) VPN
4 27 (6.21%) Intrusion Detection
5 5 (1.15%) DNS
5 5 (1.15%) Kerberos
5 5 (1.15%) TCP/IP
6 4 (0.92%) HTTP
7 3 (0.69%) S/MIME
7 3 (0.69%) SSL
7 3 (0.69%) X.509
8 2 (0.46%) DMZ
8 2 (0.46%) LAN
8 2 (0.46%) SMTP
8 2 (0.46%) VoIP
8 2 (0.46%) WAN
9 1 (0.23%) IPv4
9 1 (0.23%) IPv6
9 1 (0.23%) SAN
9 1 (0.23%) Wireless
Database & Business Intelligence
1 6 (1.38%) Power BI
2 4 (0.92%) Oracle Reports
3 2 (0.46%) SQL Server
4 1 (0.23%) Hadoop
4 1 (0.23%) HBase
4 1 (0.23%) NoSQL
Development Applications
1 3 (0.69%) JIRA
2 1 (0.23%) Burp Suite
2 1 (0.23%) Metasploit
2 1 (0.23%) Subversion
General
1 149 (34.25%) Social Skills
2 84 (19.31%) Finance
3 67 (15.40%) Analytical Skills
4 45 (10.34%) Legal
5 22 (5.06%) Banking
6 21 (4.83%) Retail
7 16 (3.68%) Presentation Skills
8 11 (2.53%) Local Government
9 10 (2.30%) Law
9 10 (2.30%) Public Sector
10 9 (2.07%) Inclusion and Diversity
11 5 (1.15%) Military
11 5 (1.15%) Publishing
12 4 (0.92%) Influencing Skills
12 4 (0.92%) Organisational Skills
13 3 (0.69%) Advertising
13 3 (0.69%) Documentation Skills
14 2 (0.46%) Aerospace
14 2 (0.46%) Aviation
14 2 (0.46%) Games
Job Titles
1 155 (35.63%) Security Engineer
2 119 (27.36%) Principal Engineer
2 119 (27.36%) Principal Security Engineer
3 100 (22.99%) Analyst
4 92 (21.15%) Security Analyst
5 60 (13.79%) Product Engineer
6 59 (13.56%) Principal Security Analyst
6 59 (13.56%) Product Analyst
7 49 (11.26%) Security Manager
8 43 (9.89%) Consultant
9 37 (8.51%) Security Consultant
10 27 (6.21%) Cybersecurity Consultant
11 25 (5.75%) Architect
12 24 (5.52%) Security Architect
13 23 (5.29%) Risk Manager
14 22 (5.06%) Information Security Manager
15 21 (4.83%) Information Manager
15 21 (4.83%) Managing Consultant
16 20 (4.60%) Lead
16 20 (4.60%) Senior
Libraries, Frameworks & Software Standards
1 6 (1.38%) SailPoint
2 5 (1.15%) LDAP
2 5 (1.15%) OAuth
2 5 (1.15%) OpenID
2 5 (1.15%) SAML
3 4 (0.92%) Oracle Fusion
4 3 (0.69%) EJB
5 2 (0.46%) Leaflet
6 1 (0.23%) HTML
6 1 (0.23%) ModSecurity
Miscellaneous
1 86 (19.77%) Management Information System
2 57 (13.10%) Security Posture
3 22 (5.06%) Cyber Threat
4 21 (4.83%) Life Science
5 20 (4.60%) Self-Motivation
6 16 (3.68%) Data Protection Act
7 14 (3.22%) Security Operations Centre
8 10 (2.30%) Social Media
8 10 (2.30%) Team-Oriented Environment
9 9 (2.07%) Onboarding
10 8 (1.84%) Cyber Defence
10 8 (1.84%) PKI
10 8 (1.84%) Taxonomies
11 5 (1.15%) Freedom of Information
11 5 (1.15%) Freedom of Information Act
12 4 (0.92%) Cloud Native
12 4 (0.92%) Cloud Security Posture
12 4 (0.92%) Renewable Energy
13 3 (0.69%) Algorithms
13 3 (0.69%) SCADA
Operating Systems
1 35 (8.05%) Windows
2 10 (2.30%) Windows Vista
3 8 (1.84%) Linux
4 7 (1.61%) Windows Server
5 1 (0.23%) Kali Linux
Processes & Methodologies
1 333 (76.55%) Cybersecurity
2 286 (65.75%) Information Security
3 252 (57.93%) Risk Management
4 143 (32.87%) Project Management
5 126 (28.97%) Cyber Resilience
5 126 (28.97%) Security Testing
6 83 (19.08%) Incident Response
7 72 (16.55%) Continuous Improvement
8 66 (15.17%) Problem-Solving
9 62 (14.25%) Agile
9 62 (14.25%) Stakeholder Management
10 61 (14.02%) SIEM
11 59 (13.56%) Stakeholder Engagement
12 58 (13.33%) Cloud Security
13 57 (13.10%) Mentoring
14 50 (11.49%) Vulnerability Management
15 49 (11.26%) Regulatory Compliance
15 49 (11.26%) Security Operations
16 46 (10.57%) Roadmaps
17 45 (10.34%) Risk Assessment
Programming Languages
1 14 (3.22%) PowerShell
2 13 (2.99%) R
3 8 (1.84%) Kusto Query Language
4 7 (1.61%) Python
5 5 (1.15%) Bash
6 2 (0.46%) Shell Script
6 2 (0.46%) SQL
6 2 (0.46%) VBA
7 1 (0.23%) C#
7 1 (0.23%) C++
7 1 (0.23%) Java
7 1 (0.23%) Perl
Qualifications
1 402 (92.41%) CISSP
2 220 (50.57%) Degree
3 126 (28.97%) CESG Certified Professional
4 121 (27.82%) BPSS Clearance
5 82 (18.85%) CRISC
6 80 (18.39%) CISA
7 40 (9.20%) CEH
8 31 (7.13%) Cisco Certification
9 30 (6.90%) Master's Degree
10 28 (6.44%) (ISC)2 CCSP
10 28 (6.44%) Security Cleared
11 27 (6.21%) CompTIA Security+
12 23 (5.29%) GIAC
13 21 (4.83%) SANS
14 19 (4.37%) SC Cleared
15 16 (3.68%) Computer Science Degree
16 14 (3.22%) CCSP
17 12 (2.76%) ISACA
18 10 (2.30%) DBS Check
19 9 (2.07%) ISO 27001 Lead Auditor
Quality Assurance & Compliance
1 288 (66.21%) ISO/IEC 27001
2 283 (65.06%) NIST
3 125 (28.74%) JSP 440
4 123 (28.28%) RMADS
5 56 (12.87%) GDPR
6 55 (12.64%) GRC
7 54 (12.41%) Cyber Essentials
8 32 (7.36%) SOC 2
9 31 (7.13%) PCI DSS
10 29 (6.67%) NCSC
11 23 (5.29%) COBIT
12 22 (5.06%) Cyber Essentials PLUS
13 16 (3.68%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
14 14 (3.22%) Accessibility
14 14 (3.22%) NIST 800
15 9 (2.07%) HIPAA
16 7 (1.61%) SOC 1
17 6 (1.38%) Def Stans
18 5 (1.15%) QA
18 5 (1.15%) Sarbanes-Oxley
System Software
1 16 (3.68%) Active Directory
2 4 (0.92%) Docker
3 1 (0.23%) HDFS
3 1 (0.23%) Hyper-V
3 1 (0.23%) Virtual Machines
3 1 (0.23%) VMware Infrastructure
Systems Management
1 10 (2.30%) Microsoft Intune
2 9 (2.07%) QRadar
3 8 (1.84%) RSA Archer
4 7 (1.61%) Nessus
4 7 (1.61%) Single Sign-On
5 6 (1.38%) FortiGate
6 5 (1.15%) Terraform
7 4 (0.92%) Computer Emergency Response Teams
8 3 (0.69%) Kubernetes
9 2 (0.46%) CASB
10 1 (0.23%) MaaS360
10 1 (0.23%) OpenVAS
Vendors
1 63 (14.48%) Microsoft
2 15 (3.45%) Tenable
3 14 (3.22%) VMware
4 10 (2.30%) Splunk
5 9 (2.07%) Cisco
5 9 (2.07%) Palo Alto
6 8 (1.84%) Google
7 7 (1.61%) Qualys
8 5 (1.15%) CrowdStrike
8 5 (1.15%) Fortinet
8 5 (1.15%) Oracle
8 5 (1.15%) SolarWinds
9 4 (0.92%) Juniper
9 4 (0.92%) SAP
9 4 (0.92%) Sophos
10 3 (0.69%) Thales
10 3 (0.69%) Zscaler
11 2 (0.46%) AlienVault
11 2 (0.46%) Proofpoint
11 2 (0.46%) Rapid7