Period
to 17 February 2019

The following table provides summary statistics for permanent job vacancies with a requirement for CISSP qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 17 February 2019 with a comparison to the same period in the previous 2 years.

(ISC)² Certified Information Systems Security Professional (ISC2 CISSP)
UK
6 months to
17 Feb 2019
Same period 2018 Same period 2017
Rank 209 217 211
Rank change year-on-year +8 -6 +20
Permanent jobs citing CISSP 2,465 2,801 2,944
As % of all permanent IT jobs advertised in the UK 1.65% 1.60% 1.68%
As % of the Qualifications category 6.79% 6.70% 6.55%
Number of salaries quoted 1,832 2,190 2,332
UK median annual salary £60,000 £60,000 £62,500
Median salary % change year-on-year - -4.00% +4.17%
10th Percentile £40,550 £40,000 £40,525
90th Percentile £95,000 £90,125 £90,000
UK excluding London median annual salary £57,500 £55,000 £55,000
% change year-on-year +4.55% - -

CISSP is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 36,323 41,799 44,937
As % of all permanent IT jobs advertised in the UK 24.29% 23.87% 25.58%
Number of salaries quoted 26,473 32,413 35,529
UK median annual salary £50,000 £47,500 £45,000
Median salary % change year-on-year +5.26% +5.56% -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £80,000 £78,950 £77,500
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - -

CISSP
Job Vacancy Trend

Job postings citing CISSP as a percentage of all IT jobs advertised.

Job vacancy trend for CISSP in the UK

CISSP
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISSP.

Salary trend for CISSP in the UK

CISSP
Salary Histogram

The salary distribution of IT jobs citing CISSP over the 6 months to 17 February 2019.

Salary histogram for CISSP in the UK

CISSP
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISSP within the UK over the 6 months to 17 February 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +9 2,357 £60,000 - 272
UK excluding London +46 1,522 £57,500 +4.55% 195
London -67 875 £71,250 +1.79% 98
North of England +98 468 £55,000 - 53
South East +10 449 £60,000 +4.35% 42
North West +121 339 £55,000 - 31
East of England +76 194 £62,500 +13.64% 25
Midlands +61 190 £60,000 +23.71% 26
South West +36 168 £55,000 +22.22% 28
West Midlands +75 149 £60,000 +12.15% 23
Yorkshire +48 107 £52,500 - 21
East Midlands +1 46 £60,000 +41.00% 3
Scotland +3 43 £51,500 -19.22% 14
North East +2 22 £60,000 +23.71% 1
Wales +20 19 £70,000 +27.27% 7
Northern Ireland -10 2 £62,500 +19.05%

For the 6 months to 17 February 2019, IT jobs citing CISSP also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISSP.

1 1,694 (68.72%) Information Security
2 1,222 (49.57%) CISM
3 1,122 (45.52%) ISO/IEC 27001
4 1,027 (41.66%) Cybersecurity
5 722 (29.29%) SIEM
6 677 (27.46%) Management Information System
7 674 (27.34%) Risk Management
8 655 (26.57%) Finance
9 638 (25.88%) CISA
10 513 (20.81%) Penetration Testing
11 505 (20.49%) Degree
11 505 (20.49%) Windows
12 502 (20.37%) Firewall
13 480 (19.47%) Linux
14 468 (18.99%) PCI DSS
15 463 (18.78%) Cisco Certification
16 459 (18.62%) GDPR
17 451 (18.30%) CEH
18 431 (17.48%) Microsoft
19 400 (16.23%) SANS
20 387 (15.70%) Network Security
21 374 (15.17%) Vulnerability Management
22 371 (15.05%) Security Operations
23 368 (14.93%) Data Protection
24 360 (14.60%) ITIL
25 345 (14.00%) Microsoft Azure
26 343 (13.91%) Security Management
27 331 (13.43%) Security Architecture
28 299 (12.13%) Amazon AWS
29 287 (11.64%) CRISC

CISSP
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 32 (1.30%) IIS
2 28 (1.14%) ExpressionEngine
2 28 (1.14%) WordPress
3 21 (0.85%) Apache
4 12 (0.49%) Confluence
4 12 (0.49%) WebSphere
5 11 (0.45%) SharePoint
6 10 (0.41%) MS Exchange
7 8 (0.32%) Apache Pig
8 7 (0.28%) OpenStack
8 7 (0.28%) WebLogic
9 5 (0.20%) Elasticsearch
10 3 (0.12%) Skype for Business
11 2 (0.081%) Apache Spark
11 2 (0.081%) JBoss
11 2 (0.081%) nginx
11 2 (0.081%) Oracle Workflow
11 2 (0.081%) Tomcat
Applications
1 103 (4.18%) Microsoft PowerPoint
2 42 (1.70%) Microsoft Office
3 6 (0.24%) Microsoft Excel
4 4 (0.16%) MS Visio
Business Applications
1 4 (0.16%) SAP GRC
2 2 (0.081%) Infor M3
2 2 (0.081%) Relativity
2 2 (0.081%) SAP ERP
2 2 (0.081%) SAP HR
3 1 (0.041%) Dynamics CRM
3 1 (0.041%) Dynamics GP
Cloud Services
1 345 (14.00%) Microsoft Azure
2 299 (12.13%) Amazon AWS
3 90 (3.65%) Office 365
4 69 (2.80%) IaaS
5 66 (2.68%) SaaS
6 41 (1.66%) Google Cloud Platform
7 38 (1.54%) PaaS
8 17 (0.69%) Cloud Computing
9 16 (0.65%) Azure Active Directory
10 10 (0.41%) Mimecast
11 4 (0.16%) AWS CloudFormation
11 4 (0.16%) GitHub
11 4 (0.16%) Virtual Private Cloud
12 3 (0.12%) Amazon EC2
13 2 (0.081%) Amazon CloudWatch
13 2 (0.081%) Amazon S3
13 2 (0.081%) AWS CloudTrail
13 2 (0.081%) CloudFront
13 2 (0.081%) Google Drive
13 2 (0.081%) Yammer
Communications & Networking
1 502 (20.37%) Firewall
2 387 (15.70%) Network Security
3 169 (6.86%) Intrusion Detection
4 160 (6.49%) TCP/IP
5 129 (5.23%) Internet
6 102 (4.14%) Wi-Fi
7 78 (3.16%) WAN
8 66 (2.68%) DNS
9 65 (2.64%) VPN
10 64 (2.60%) LAN
11 59 (2.39%) SSL
12 57 (2.31%) Wireless
13 56 (2.27%) Wireshark
14 53 (2.15%) HTTP
15 47 (1.91%) BGP
16 39 (1.58%) IPsec
17 30 (1.22%) EIGRP
17 30 (1.22%) SMTP
18 27 (1.10%) Cisco Nexus
19 26 (1.05%) VoIP
Database & Business Intelligence
1 78 (3.16%) Big Data
2 47 (1.91%) SQL Server
3 29 (1.18%) MongoDB
4 25 (1.01%) Hadoop
5 13 (0.53%) Geospatial Data
5 13 (0.53%) MySQL
6 11 (0.45%) DB2
7 8 (0.32%) Apache Hive
8 7 (0.28%) Oracle Database
9 5 (0.20%) NoSQL
9 5 (0.20%) Oracle Database 11g
10 4 (0.16%) Data Warehouse
10 4 (0.16%) GIS
11 3 (0.12%) Data Mining
11 3 (0.12%) PostgreSQL
12 2 (0.081%) Amazon RDS
12 2 (0.081%) Apache Cassandra
13 1 (0.041%) Amazon DynamoDB
13 1 (0.041%) Power BI
13 1 (0.041%) Snowflake Schema
Development Applications
1 41 (1.66%) JIRA
2 23 (0.93%) Metasploit
3 16 (0.65%) Redmine
4 15 (0.61%) Git (software)
5 13 (0.53%) Atlassian Bamboo
6 12 (0.49%) AppScan
7 11 (0.45%) Hudson
7 11 (0.45%) MSTest
7 11 (0.45%) NUnit
7 11 (0.45%) Visual Studio
8 8 (0.32%) Bitbucket
8 8 (0.32%) CodeSonar
8 8 (0.32%) git-flow
8 8 (0.32%) Jenkins
8 8 (0.32%) Robot Framework
8 8 (0.32%) Selenium
9 7 (0.28%) Burp Suite
10 5 (0.20%) TeamCity
11 4 (0.16%) AutoIt
11 4 (0.16%) VSS/SourceSafe
General
1 655 (26.57%) Finance
2 250 (10.14%) Legal
3 156 (6.33%) Banking
4 139 (5.64%) Retail
5 56 (2.27%) Telecoms
6 51 (2.07%) Publishing
7 35 (1.42%) Manufacturing
8 28 (1.14%) Financial Institution
9 27 (1.10%) Law
10 25 (1.01%) Marketing
11 19 (0.77%) Games
12 15 (0.61%) Advertising
13 14 (0.57%) Electronics
14 12 (0.49%) Investment Banking
15 5 (0.20%) Front Office
15 5 (0.20%) German Language
16 4 (0.16%) International Banking
17 3 (0.12%) Aerospace
17 3 (0.12%) Local Government
17 3 (0.12%) Retail Banking
Job Titles
1 562 (22.80%) Analyst
2 468 (18.99%) Security Analyst
3 424 (17.20%) Security Manager
4 321 (13.02%) Security Engineer
5 317 (12.86%) Architect
6 291 (11.81%) Consultant
7 288 (11.68%) Information Manager
7 288 (11.68%) Information Security Manager
8 259 (10.51%) Security Architect
9 242 (9.82%) Security Consultant
10 196 (7.95%) IT Analyst
11 178 (7.22%) Senior Analyst
12 176 (7.14%) IT Security Analyst
13 174 (7.06%) Information Analyst
13 174 (7.06%) Information Security Analyst
14 171 (6.94%) Senior Security Analyst
15 110 (4.46%) Senior IT Security Analyst
16 103 (4.18%) Head of Security
17 81 (3.29%) Cybersecurity Analyst
18 74 (3.00%) Network Engineer
Libraries, Frameworks & Software Standards
1 65 (2.64%) .NET
2 51 (2.07%) SailPoint
3 44 (1.78%) Node.js
4 42 (1.70%) Web Services
5 29 (1.18%) REST
6 26 (1.05%) SAML
7 25 (1.01%) ASP.NET
7 25 (1.01%) SOAP
8 21 (0.85%) HTML
8 21 (0.85%) LDAP
9 20 (0.81%) OAuth
10 18 (0.73%) JSON
11 17 (0.69%) LAMP
12 15 (0.61%) Elastic Stack
12 15 (0.61%) Middleware
13 13 (0.53%) .NET Framework
14 12 (0.49%) ModSecurity
15 11 (0.45%) Java EE
15 11 (0.45%) jQuery
15 11 (0.45%) WCF
Miscellaneous
1 677 (27.46%) Management Information System
2 245 (9.94%) Analytical Skills
3 163 (6.61%) Cyber Kill Chain
4 142 (5.76%) Security Operations Centre
5 117 (4.75%) Cyberthreat
6 114 (4.62%) Self-Motivation
7 94 (3.81%) CESG
8 92 (3.73%) PKI
9 79 (3.20%) Data Protection Act
10 76 (3.08%) Data Centre
11 58 (2.35%) Fintech
12 53 (2.15%) Distributed Denial-of-Service
13 47 (1.91%) Cyberattack
14 37 (1.50%) Cyber Defence
15 33 (1.34%) Mobile App
16 32 (1.30%) Public Cloud
17 25 (1.01%) Cloud Native
18 24 (0.97%) Hybrid Cloud
19 23 (0.93%) Driving Licence
20 22 (0.89%) NHS
Operating Systems
1 505 (20.49%) Windows
2 480 (19.47%) Linux
3 112 (4.54%) Unix
4 55 (2.23%) Windows Server
5 35 (1.42%) Apple iOS
6 25 (1.01%) Android
7 24 (0.97%) Red Hat Enterprise Linux
8 18 (0.73%) Kali Linux
9 17 (0.69%) Windows Server 2012
10 16 (0.65%) Windows Server 2008
11 15 (0.61%) CentOS
11 15 (0.61%) Windows 10
12 14 (0.57%) Mac OS X
13 10 (0.41%) Debian
14 9 (0.37%) HPUX
14 9 (0.37%) Ubuntu
15 7 (0.28%) AIX
15 7 (0.28%) Windows Server 2003
15 7 (0.28%) Windows XP
16 4 (0.16%) Fedora
Processes & Methodologies
1 1,694 (68.72%) Information Security
2 1,027 (41.66%) Cybersecurity
3 722 (29.29%) SIEM
4 674 (27.34%) Risk Management
5 513 (20.81%) Penetration Testing
6 374 (15.17%) Vulnerability Management
7 371 (15.05%) Security Operations
8 368 (14.93%) Data Protection
9 360 (14.60%) ITIL
10 343 (13.91%) Security Management
11 331 (13.43%) Security Architecture
12 259 (10.51%) OWASP
13 255 (10.34%) Vulnerability Assessment
14 244 (9.90%) Incident Management
15 223 (9.05%) Agile Software Development
15 223 (9.05%) Due Diligence
16 222 (9.01%) Problem-Solving
17 207 (8.40%) Data Loss Prevention
18 204 (8.28%) Stakeholder Management
19 202 (8.19%) TOGAF
Programming Languages
1 145 (5.88%) SQL
2 113 (4.58%) Python
3 104 (4.22%) PowerShell
4 91 (3.69%) C
5 81 (3.29%) Java
6 58 (2.35%) Perl
7 53 (2.15%) Bash Shell
8 41 (1.66%) C#
9 40 (1.62%) JavaScript
10 36 (1.46%) C++
11 33 (1.34%) Ruby
12 29 (1.18%) PHP
13 16 (0.65%) Objective-C
13 16 (0.65%) VBScript
14 14 (0.57%) Go
15 12 (0.49%) Korn
15 12 (0.49%) Shell Script
16 10 (0.41%) VB
17 8 (0.32%) Apple Swift
18 6 (0.24%) Kotlin
Qualifications
1 1,222 (49.57%) CISM
2 638 (25.88%) CISA
3 505 (20.49%) Degree
4 463 (18.78%) Cisco Certification
5 451 (18.30%) CEH
6 400 (16.23%) SANS
7 287 (11.64%) CRISC
8 273 (11.08%) GIAC
9 241 (9.78%) (ISC)2 CCSP
10 232 (9.41%) SSCP
11 224 (9.09%) Security Cleared
12 207 (8.40%) CREST Certified
13 178 (7.22%) CompTIA Security+
14 151 (6.13%) Computer Science Degree
15 150 (6.09%) CCNA
16 148 (6.00%) Microsoft Certification
17 140 (5.68%) SC Cleared
18 138 (5.60%) CESG Certified Professional
19 133 (5.40%) CCNP
20 127 (5.15%) MCSE
Quality Assurance & Compliance
1 1,122 (45.52%) ISO/IEC 27001
2 468 (18.99%) PCI DSS
3 459 (18.62%) GDPR
4 137 (5.56%) Cyber Essentials
5 110 (4.46%) COBIT
6 75 (3.04%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 60 (2.43%) Sarbanes-Oxley
8 42 (1.70%) QA
9 38 (1.54%) HMG Security Policy Framework
10 36 (1.46%) Cyber Essentials PLUS
11 33 (1.34%) SLA
12 31 (1.26%) NIST 800
13 30 (1.22%) RMADS
14 25 (1.01%) GPG13
15 23 (0.93%) ISO/IEC 27005
16 21 (0.85%) ISO 22301
17 18 (0.73%) ISO 9001
18 17 (0.69%) HIPAA
19 12 (0.49%) SAS 70
20 11 (0.45%) MiFID
System Software
1 178 (7.22%) Active Directory
2 148 (6.00%) VMware Infrastructure
3 27 (1.10%) VMware ESXi
4 21 (0.85%) Docker
5 20 (0.81%) vSphere
6 19 (0.77%) NFS
6 19 (0.77%) Samba
6 19 (0.77%) Snort
7 17 (0.69%) VMware NSX
8 9 (0.37%) Hyper-V
9 6 (0.24%) XenDesktop
10 5 (0.20%) Tivoli Directory Server
11 4 (0.16%) Virtual Machines
11 4 (0.16%) VirtualBox
11 4 (0.16%) Xen
12 3 (0.12%) NDS
13 2 (0.081%) Firmware
13 2 (0.081%) HDFS
Systems Management
1 88 (3.57%) Nessus
2 40 (1.62%) SCCM
3 39 (1.58%) McAfee ePO
4 35 (1.42%) Puppet
5 34 (1.38%) Ansible
6 33 (1.34%) CASB
7 32 (1.30%) RSA Security Analytics
8 30 (1.22%) Single Sign-On
9 29 (1.18%) QRadar
10 28 (1.14%) Nmap
11 26 (1.05%) CSIRT
11 26 (1.05%) vCenter Server
12 22 (0.89%) Nagios
13 19 (0.77%) Norton AntiVirus
14 17 (0.69%) Stealthwatch
15 15 (0.61%) OSSEC
16 14 (0.57%) Network Intrusion Detection System
16 14 (0.57%) Symantec Endpoint Protection
17 13 (0.53%) Nexpose
17 13 (0.53%) WSUS
Vendors
1 431 (17.48%) Microsoft
2 270 (10.95%) Cisco
3 207 (8.40%) VMware
4 155 (6.29%) Splunk
5 107 (4.34%) Symantec
6 87 (3.53%) Oracle
7 84 (3.41%) CheckPoint
8 70 (2.84%) Palo Alto
9 67 (2.72%) Qualys
10 62 (2.52%) McAfee
11 59 (2.39%) LogRhythm
12 49 (1.99%) IBM
13 45 (1.83%) Google
14 43 (1.74%) Juniper
15 38 (1.54%) Red Hat
16 37 (1.50%) Citrix
17 36 (1.46%) EMC
18 35 (1.42%) NetApp
19 34 (1.38%) SAP
20 33 (1.34%) Blue Coat