Period
to 20 October 2019

The following table provides summary statistics for permanent job vacancies with a requirement for CISSP qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 20 October 2019 with a comparison to the same period in the previous 2 years.

(ISC)² Certified Information Systems Security Professional (ISC2 CISSP)
UK
6 months to
20 Oct 2019
Same period 2018 Same period 2017
Rank 223 193 229
Rank change year-on-year -30 +36 -31
Permanent jobs citing CISSP 2,002 2,997 2,735
As % of all permanent IT jobs advertised in the UK 1.47% 1.83% 1.57%
As % of the Qualifications category 6.38% 7.73% 6.42%
Number of salaries quoted 1,526 2,299 2,151
UK median annual salary £64,000 £62,500 £62,500
Median salary % change year-on-year +2.40% - -
10th Percentile £42,500 £40,000 £42,000
90th Percentile £93,750 £93,750 £90,000
UK excluding London median annual salary £59,000 £57,500 £54,500
% change year-on-year +2.61% +5.50% -2.68%

CISSP is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 31,394 38,785 42,577
As % of all permanent IT jobs advertised in the UK 23.08% 23.72% 24.42%
Number of salaries quoted 22,928 28,746 32,685
UK median annual salary £50,000 £50,000 £47,000
Median salary % change year-on-year - +6.38% +4.44%
10th Percentile £27,000 £26,250 £26,000
90th Percentile £82,500 £80,000 £77,500
UK excluding London median annual salary £45,000 £45,000 £42,500
% change year-on-year - +5.88% -

CISSP
Job Vacancy Trend

Job postings citing CISSP as a percentage of all IT jobs advertised.

Job vacancy trend for CISSP in the UK

CISSP
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISSP.

Salary trend for CISSP in the UK

CISSP
Salary Histogram

The salary distribution of IT jobs citing CISSP over the 6 months to 20 October 2019.

Salary histogram for CISSP in the UK

CISSP
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISSP within the UK over the 6 months to 20 October 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -39 1,827 £65,000 - 236
UK excluding London -24 1,162 £59,000 +2.61% 162
London -50 766 £75,000 +7.14% 88
South East -27 341 £65,000 +8.33% 42
Midlands +61 242 £55,000 -4.35% 36
North of England -93 204 £58,500 +6.36% 38
West Midlands +47 194 £55,000 -3.51% 27
East of England -34 140 £64,000 -1.54% 11
South West -1 125 £58,000 +5.45% 21
North West -99 107 £62,500 +13.64% 22
Yorkshire -22 84 £58,500 +6.36% 14
Scotland +14 55 £58,500 +15.84% 8
East Midlands +46 48 £52,500 -22.22% 9
Wales +26 48 £50,000 +24.35% 5
North East +10 11 £49,750 -17.08% 2
Northern Ireland -10 7 £55,000 -12.00% 1

For the 6 months to 20 October 2019, IT jobs citing CISSP also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISSP.

1 1,280 (63.94%) Information Security
2 1,216 (60.74%) CISM
3 1,024 (51.15%) Cybersecurity
4 861 (43.01%) ISO/IEC 27001
5 550 (27.47%) Degree
6 542 (27.07%) CISA
7 447 (22.33%) SIEM
8 432 (21.58%) Management Information System
9 425 (21.23%) Finance
10 397 (19.83%) Risk Management
11 395 (19.73%) Security Architecture
12 380 (18.98%) NIST
13 368 (18.38%) Firewall
14 339 (16.93%) ITIL
15 312 (15.58%) Cisco Certification
16 311 (15.53%) Security Operations
17 307 (15.33%) PCI DSS
18 286 (14.29%) Penetration Testing
19 275 (13.74%) GDPR
20 268 (13.39%) Agile Software Development
21 263 (13.14%) Vulnerability Management
22 259 (12.94%) AWS
23 256 (12.79%) Windows
24 254 (12.69%) Azure
25 240 (11.99%) Linux
26 234 (11.69%) CEH
27 232 (11.59%) Network Security
28 226 (11.29%) TOGAF
29 224 (11.19%) Security Management
30 209 (10.44%) GIAC

CISSP
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 73 (3.65%) IIS
2 48 (2.40%) OpenStack
3 37 (1.85%) Elasticsearch
4 36 (1.80%) Apache Spark
5 23 (1.15%) SharePoint
6 4 (0.20%) MediaWiki
7 3 (0.15%) Cloud Foundry
7 3 (0.15%) Skype for Business
8 2 (0.100%) BizTalk Server
8 2 (0.100%) MS Exchange
9 1 (0.050%) CMS
Applications
1 33 (1.65%) Microsoft Office
2 27 (1.35%) Microsoft Excel
3 18 (0.90%) Microsoft PowerPoint
4 1 (0.050%) Spreadsheet
Business Applications
1 8 (0.40%) Sparx Enterprise Architect
2 1 (0.050%) RESILIA
2 1 (0.050%) SAP GRC
2 1 (0.050%) SAP S/4HANA
Cloud Services
1 259 (12.94%) AWS
2 254 (12.69%) Azure
3 103 (5.14%) GCP
4 96 (4.80%) Office 365
5 62 (3.10%) SaaS
6 39 (1.95%) PaaS
7 38 (1.90%) Cloud Computing
8 37 (1.85%) Azure Active Directory
8 37 (1.85%) IaaS
9 36 (1.80%) OpenShift
10 8 (0.40%) Power Platform
11 4 (0.20%) Microsoft Flow
11 4 (0.20%) Mimecast
12 2 (0.100%) Amazon EC2
12 2 (0.100%) AWS CloudTrail
12 2 (0.100%) Serverless
12 2 (0.100%) Virtual Private Cloud
13 1 (0.050%) AWS CloudFormation
13 1 (0.050%) Dynamics 365
13 1 (0.050%) IBM Cloud
Communications & Networking
1 368 (18.38%) Firewall
2 232 (11.59%) Network Security
3 102 (5.09%) TCP/IP
4 74 (3.70%) Intrusion Detection
5 68 (3.40%) Internet
6 53 (2.65%) LAN
7 48 (2.40%) WAN
8 47 (2.35%) VPN
9 40 (2.00%) HTTPS
10 37 (1.85%) HTTP
11 36 (1.80%) DNS
12 32 (1.60%) SSL
13 27 (1.35%) Wireless
14 21 (1.05%) Cisco ASA
15 20 (1.00%) BGP
15 20 (1.00%) EIGRP
15 20 (1.00%) IPsec
15 20 (1.00%) OSPF
16 17 (0.85%) Cisco Firepower
17 14 (0.70%) IPv4
Database & Business Intelligence
1 62 (3.10%) Big Data
2 11 (0.55%) SQL Server
3 9 (0.45%) Maltego
4 5 (0.25%) Azure SQL Database
4 5 (0.25%) Data Lake
4 5 (0.25%) Power BI
5 4 (0.20%) Geospatial Data
5 4 (0.20%) Relational Database
6 3 (0.15%) GIS
7 2 (0.100%) DB2
7 2 (0.100%) MongoDB
8 1 (0.050%) Blockchain
8 1 (0.050%) EDRMS
8 1 (0.050%) MySQL
8 1 (0.050%) QlikView
Development Applications
1 43 (2.15%) JIRA
2 39 (1.95%) Git (software)
3 36 (1.80%) Bitbucket
3 36 (1.80%) git-flow
4 13 (0.65%) Metasploit
5 11 (0.55%) Burp Suite
6 7 (0.35%) Jenkins
6 7 (0.35%) SonarQube
7 6 (0.30%) VSS/SourceSafe
8 5 (0.25%) Maven
9 4 (0.20%) Appium
9 4 (0.20%) AppScan
9 4 (0.20%) Calabash
9 4 (0.20%) Cucumber
9 4 (0.20%) JMeter
9 4 (0.20%) Octopus Deploy
9 4 (0.20%) Robot Framework
9 4 (0.20%) Robotium
9 4 (0.20%) Selenium
9 4 (0.20%) Visual Studio
General
1 425 (21.23%) Finance
2 148 (7.39%) Retail
3 131 (6.54%) Banking
4 129 (6.44%) Public Sector
5 95 (4.75%) Legal
6 60 (3.00%) Law
7 38 (1.90%) Telecoms
8 31 (1.55%) Games
9 24 (1.20%) Marketing
10 20 (1.00%) Aerospace
10 20 (1.00%) Multimedia
11 18 (0.90%) Financial Institution
11 18 (0.90%) Manufacturing
12 14 (0.70%) Investment Banking
13 10 (0.50%) Advertising
14 9 (0.45%) Military
15 8 (0.40%) Billing
16 7 (0.35%) Electronics
17 6 (0.30%) Retail Banking
18 5 (0.25%) Local Government
Job Titles
1 359 (17.93%) Consultant
2 326 (16.28%) Security Manager
3 296 (14.79%) Analyst
4 292 (14.59%) Security Consultant
5 248 (12.39%) Security Analyst
6 245 (12.24%) Architect
7 227 (11.34%) Security Architect
8 212 (10.59%) Security Engineer
9 155 (7.74%) Information Analyst
9 155 (7.74%) Information Security Analyst
10 152 (7.59%) Information Manager
11 151 (7.54%) Information Security Manager
12 116 (5.79%) Cybersecurity Consultant
13 113 (5.64%) Security Specialist
14 93 (4.65%) Security Officer
15 79 (3.95%) Cybersecurity Manager
15 79 (3.95%) Information Security Consultant
16 68 (3.40%) Head of Security
17 64 (3.20%) Information Security Officer
18 62 (3.10%) Senior Consultant
Libraries, Frameworks & Software Standards
1 65 (3.25%) SailPoint
2 53 (2.65%) .NET
3 48 (2.40%) Spring
4 38 (1.90%) ASP.NET
4 38 (1.90%) REST
5 36 (1.80%) AngularJS
5 36 (1.80%) GraphQL
5 36 (1.80%) Kafka
5 36 (1.80%) Node.js
5 36 (1.80%) React
5 36 (1.80%) Spring MVC
5 36 (1.80%) Vue.js
6 16 (0.80%) Web Services
7 12 (0.60%) Apache Camel
7 12 (0.60%) Hibernate
8 10 (0.50%) OAuth
9 9 (0.45%) SAML
10 8 (0.40%) LDAP
11 6 (0.30%) HTML
11 6 (0.30%) OAuth2
Miscellaneous
1 432 (21.58%) Management Information System
2 114 (5.69%) Analytical Skills
3 95 (4.75%) Cyberthreat
4 76 (3.80%) Security Operations Centre
5 64 (3.20%) Data Centre
6 62 (3.10%) Cyberattack
7 55 (2.75%) Self-Motivation
8 43 (2.15%) CESG
9 42 (2.10%) Data Protection Act
10 41 (2.05%) Distributed Denial-of-Service
11 35 (1.75%) PKI
12 27 (1.35%) Cyber Kill Chain
13 25 (1.25%) Cyber Defence
14 24 (1.20%) BYOD
15 20 (1.00%) Cybercrime
16 18 (0.90%) Mobile Computing
17 16 (0.80%) Greenfield Project
18 15 (0.75%) User Experience
19 14 (0.70%) Social Media
20 13 (0.65%) Driving Licence
Operating Systems
1 256 (12.79%) Windows
2 240 (11.99%) Linux
3 62 (3.10%) Windows Server
4 51 (2.55%) Apple iOS
5 48 (2.40%) Android
6 45 (2.25%) Unix
7 11 (0.55%) Windows 10
8 5 (0.25%) Kali Linux
8 5 (0.25%) Mac OS
8 5 (0.25%) Windows Server 2012
9 4 (0.20%) CentOS
10 2 (0.100%) Red Hat Enterprise Linux
10 2 (0.100%) Solaris
11 1 (0.050%) Fedora
11 1 (0.050%) Mac OS X
11 1 (0.050%) Ubuntu
11 1 (0.050%) Windows Mobile
11 1 (0.050%) Windows Server 2008
Processes & Methodologies
1 1,280 (63.94%) Information Security
2 1,024 (51.15%) Cybersecurity
3 447 (22.33%) SIEM
4 397 (19.83%) Risk Management
5 395 (19.73%) Security Architecture
6 339 (16.93%) ITIL
7 311 (15.53%) Security Operations
8 286 (14.29%) Penetration Testing
9 268 (13.39%) Agile Software Development
10 263 (13.14%) Vulnerability Management
11 226 (11.29%) TOGAF
12 224 (11.19%) Security Management
13 203 (10.14%) Data Protection
14 198 (9.89%) Identity Access Management
15 171 (8.54%) SABSA
16 170 (8.49%) Stakeholder Management
17 164 (8.19%) Risk Assessment
18 155 (7.74%) Incident Management
19 139 (6.94%) Continuous Improvement
20 134 (6.69%) ISMS
Programming Languages
1 92 (4.60%) Java
2 82 (4.10%) C
3 79 (3.95%) Python
4 55 (2.75%) SQL
5 52 (2.60%) PowerShell
6 50 (2.50%) C++
7 28 (1.40%) JavaScript
8 25 (1.25%) C#
9 21 (1.05%) Shell Script
10 12 (0.60%) Perl
10 12 (0.60%) RPG
10 12 (0.60%) TypeScript
10 12 (0.60%) VB.NET
11 11 (0.55%) Bash Shell
12 8 (0.40%) PHP
13 6 (0.30%) Ruby
14 5 (0.25%) Bourne shell
14 5 (0.25%) Korn
15 3 (0.15%) Go
15 3 (0.15%) Objective-C
Qualifications
1 1,216 (60.74%) CISM
2 550 (27.47%) Degree
3 542 (27.07%) CISA
4 312 (15.58%) Cisco Certification
5 234 (11.69%) CEH
6 209 (10.44%) GIAC
7 194 (9.69%) CRISC
8 193 (9.64%) Security Cleared
9 146 (7.29%) (ISC)2 CCSP
10 143 (7.14%) CESG Certified Professional
11 139 (6.94%) SANS
12 124 (6.19%) CompTIA Security+
13 118 (5.89%) SC Cleared
14 108 (5.39%) SSCP
15 107 (5.34%) CCNA
16 95 (4.75%) CCSP
17 93 (4.65%) Microsoft Certification
18 88 (4.40%) MCSE
19 84 (4.20%) CISMP
20 73 (3.65%) CCNP
Quality Assurance & Compliance
1 861 (43.01%) ISO/IEC 27001
2 380 (18.98%) NIST
3 307 (15.33%) PCI DSS
4 275 (13.74%) GDPR
5 153 (7.64%) COBIT
6 115 (5.74%) Cyber Essentials
7 94 (4.70%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 87 (4.35%) NCSC
9 66 (3.30%) Sarbanes-Oxley
10 46 (2.30%) HMG Security Policy Framework
11 36 (1.80%) NIST 800
12 31 (1.55%) SLA
13 29 (1.45%) Cyber Essentials PLUS
14 25 (1.25%) RMADS
15 22 (1.10%) ISO/IEC 27005
15 22 (1.10%) QA
16 19 (0.95%) ISO 9001
17 18 (0.90%) ISO 22301
18 15 (0.75%) COSO
18 15 (0.75%) ISO 31000
System Software
1 85 (4.25%) Active Directory
2 52 (2.60%) Docker
3 23 (1.15%) VMware Infrastructure
4 13 (0.65%) Hyper-V
5 5 (0.25%) VMware ESXi
6 4 (0.20%) Virtual Machines
6 4 (0.20%) Xen
7 3 (0.15%) KVM
7 3 (0.15%) LXC
7 3 (0.15%) Snort
7 3 (0.15%) vSphere
8 2 (0.100%) ISA Server
9 1 (0.050%) Citrix Hypervisor
9 1 (0.050%) Firmware
9 1 (0.050%) NFS
9 1 (0.050%) ProxySG
9 1 (0.050%) Samba
9 1 (0.050%) Shibboleth
9 1 (0.050%) Squid
9 1 (0.050%) XenApp
Systems Management
1 82 (4.10%) Nessus
2 51 (2.55%) Kubernetes
3 39 (1.95%) McAfee ePO
4 30 (1.50%) Single Sign-On
5 29 (1.45%) QRadar
5 29 (1.45%) SCCM
6 27 (1.35%) CASB
7 23 (1.15%) Microsoft Intune
8 15 (0.75%) Nmap
8 15 (0.75%) Norton AntiVirus
9 11 (0.55%) Stealthwatch
10 10 (0.50%) Ansible
10 10 (0.50%) FortiGate
10 10 (0.50%) OpenVAS
11 8 (0.40%) Computer Emergency Response Teams
11 8 (0.40%) Terraform
12 7 (0.35%) CSIRT
12 7 (0.35%) Puppet
13 5 (0.25%) Forefront Identity Manager
14 4 (0.20%) Opscode Chef
Vendors
1 151 (7.54%) Cisco
2 147 (7.34%) Microsoft
3 112 (5.59%) Splunk
4 96 (4.80%) Google
5 80 (4.00%) Palo Alto
6 77 (3.85%) Qualys
7 75 (3.75%) McAfee
8 51 (2.55%) Symantec
9 49 (2.45%) CheckPoint
10 43 (2.15%) CyberArk
11 42 (2.10%) LogRhythm
12 35 (1.75%) Forcepoint
13 33 (1.65%) VMware
14 32 (1.60%) Aveksa
15 31 (1.55%) Juniper
15 31 (1.55%) SolarWinds
16 30 (1.50%) ArcSight
17 24 (1.20%) Blue Coat
18 23 (1.15%) ServiceNow
19 21 (1.05%) Oracle