Period
to 17 January 2022

The following table provides summary statistics for permanent job vacancies with a requirement for CISSP qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 17 January 2022 with a comparison to the same period in the previous 2 years.

(ISC)² Certified Information Systems Security Professional (ISC2 CISSP)
UK
6 months to
17 Jan 2022
Same period 2021 Same period 2020
Rank 316 226 231
Rank change year-on-year -90 +5 -26
Permanent jobs citing CISSP 1,382 890 1,865
As % of all permanent jobs advertised in the UK 1.10% 1.45% 1.48%
As % of the Qualifications category 4.72% 7.18% 6.73%
Number of salaries quoted 926 684 1,446
10th Percentile £45,000 £42,325 £42,500
25th Percentile £57,000 £50,000 £51,250
Median annual salary (50th Percentile) £67,750 £65,000 £62,500
Median % change year-on-year +4.23% +4.00% -
75th Percentile £82,500 £82,500 £78,319
90th Percentile £97,500 £99,250 £93,750
UK excluding London median annual salary £60,000 £60,000 £57,500
% change year-on-year - +4.35% -

CISSP is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 29,249 12,395 27,727
As % of all permanent IT jobs advertised in the UK 23.28% 20.21% 21.97%
Number of salaries quoted 15,304 9,176 20,891
10th Percentile £30,990 £31,250 £27,500
25th Percentile £41,250 £41,250 £36,250
Median annual salary (50th Percentile) £55,000 £55,000 £50,000
Median % change year-on-year - +10.00% -
75th Percentile £73,750 £71,250 £67,500
90th Percentile £90,000 £85,000 £82,500
UK excluding London median annual salary £50,000 £49,500 £45,000
% change year-on-year +1.01% +10.00% -

CISSP
Job Vacancy Trend

Job postings citing CISSP as a proportion of all IT jobs advertised.

Job vacancy trend for CISSP in the UK

CISSP
Salary Trend

3-month moving average salary quoted in jobs citing CISSP.

Salary trend for CISSP in the UK

CISSP
Salary Histogram

Salary distribution for jobs citing CISSP over the 6 months to 17 January 2022.

Salary histogram for CISSP in the UK

CISSP
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISSP within the UK over the 6 months to 17 January 2022. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -82 1,244 £67,500 +3.85% 182
UK excluding London -42 677 £60,000 - 114
London -148 547 £72,500 - 79
Work from Home +1 371 £70,000 +3.70% 25
South East +16 293 £60,000 - 26
Midlands -53 122 £67,500 +22.73% 16
North of England -117 114 £55,000 -1.47% 25
South West -3 96 £64,700 +7.83% 19
West Midlands -42 93 £67,500 +10.20% 10
North West -89 74 £65,000 +4.00% 7
East of England -70 43 £63,750 -1.92% 13
Yorkshire -59 38 £52,500 -12.50% 14
Scotland -49 26 £37,500 -21.71% 6
East Midlands -55 25 £70,000 +60.92% 6
Northern Ireland -28 6 £43,125 -4.17% 4
Wales -41 5 £52,500 -16.00% 6
North East -30 4 £68,750 +25.00% 4

For the 6 months to 17 January 2022, IT jobs citing CISSP also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISSP.

1 802 (58.03%) Information Security
2 744 (53.84%) CISM
3 686 (49.64%) Cybersecurity
4 585 (42.33%) Risk Management
5 575 (41.61%) ISO/IEC 27001
6 382 (27.64%) Azure
7 356 (25.76%) Social Skills
8 341 (24.67%) CISA
9 334 (24.17%) Agile Software Development
10 333 (24.10%) NIST
11 318 (23.01%) Finance
12 310 (22.43%) Management Information System
13 301 (21.78%) Cisco Certification
14 264 (19.10%) GDPR
15 259 (18.74%) Degree
16 247 (17.87%) Security Operations
17 239 (17.29%) (ISC)2 CCSP
18 229 (16.57%) Microsoft
19 225 (16.28%) AWS
20 218 (15.77%) Firewall
21 207 (14.98%) Continuous Improvement
22 204 (14.76%) Security Architecture
23 202 (14.62%) Security Cleared
24 198 (14.33%) CRISC
25 197 (14.25%) DevOps
26 196 (14.18%) Penetration Testing
27 187 (13.53%) Data Protection
28 183 (13.24%) PCI DSS
28 183 (13.24%) SIEM
29 181 (13.10%) ITIL

CISSP
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 37 (2.68%) Apache
2 35 (2.53%) Apache Airflow
3 32 (2.32%) IIS
4 21 (1.52%) SharePoint
5 16 (1.16%) Apache Spark
6 7 (0.51%) MTS
7 2 (0.14%) Elasticsearch
7 2 (0.14%) WebLogic
7 2 (0.14%) WebSphere
8 1 (0.072%) Apache Pig
8 1 (0.072%) Confluence
Applications
1 10 (0.72%) Microsoft Office
2 4 (0.29%) Microsoft PowerPoint
3 2 (0.14%) MS Visio
4 1 (0.072%) Microsoft Excel
Business Applications
1 6 (0.43%) NetSuite
2 5 (0.36%) Elite 3E
3 4 (0.29%) Sentinel
4 2 (0.14%) assyst
4 2 (0.14%) RESILIA
5 1 (0.072%) Distributed Ledger
5 1 (0.072%) Remedy ITSM
5 1 (0.072%) SAP ERP
5 1 (0.072%) SAP GRC
Cloud Services
1 382 (27.64%) Azure
2 225 (16.28%) AWS
3 122 (8.83%) Serverless
4 108 (7.81%) Microsoft 365
5 98 (7.09%) GitHub
6 96 (6.95%) GitHub Actions
7 78 (5.64%) Azure Monitor
8 76 (5.50%) Azure Cosmos DB
8 76 (5.50%) Azure Data Factory
8 76 (5.50%) Azure Event Grid
8 76 (5.50%) Azure Functions
8 76 (5.50%) Azure Service Bus
8 76 (5.50%) Azure Synapse Analytics
9 56 (4.05%) Amazon SQS
10 54 (3.91%) Azure Active Directory
10 54 (3.91%) GCP
11 51 (3.69%) AWS Lambda
12 50 (3.62%) Amazon CloudWatch
12 50 (3.62%) AWS CloudFormation
12 50 (3.62%) AWS CloudTrail
Communications & Networking
1 218 (15.77%) Firewall
2 122 (8.83%) Cisco IPT
3 108 (7.81%) Network Security
4 41 (2.97%) Intrusion Detection
5 39 (2.82%) DNS
6 36 (2.60%) TCP/IP
7 35 (2.53%) WAN
8 32 (2.32%) VPN
9 30 (2.17%) Internet
10 28 (2.03%) LAN
11 21 (1.52%) HTTP
12 18 (1.30%) DHCP
13 14 (1.01%) Cisco ISE
14 12 (0.87%) VLAN
15 11 (0.80%) Wireless
16 10 (0.72%) Wi-Fi
17 9 (0.65%) Unified Communications
18 8 (0.58%) HTTPS
18 8 (0.58%) MPLS
18 8 (0.58%) SSL
Database & Business Intelligence
1 117 (8.47%) Big Data
2 112 (8.10%) Data Lake
3 57 (4.12%) Amazon Redshift
4 55 (3.98%) Amazon DynamoDB
5 50 (3.62%) Amazon Athena
5 50 (3.62%) Amazon RDS
5 50 (3.62%) Electronic Patient Records
6 16 (1.16%) SQL Server
7 12 (0.87%) Blockchain
8 9 (0.65%) MySQL
9 7 (0.51%) DB2
10 6 (0.43%) Power BI
11 5 (0.36%) NoSQL
12 4 (0.29%) Relational Database
13 3 (0.22%) GIS
13 3 (0.22%) Oracle Database
13 3 (0.22%) RDBMS
14 2 (0.14%) Data Mining
14 2 (0.14%) DTS
14 2 (0.14%) Maltego
Development Applications
1 38 (2.75%) Burp Suite
2 15 (1.09%) kappa
3 10 (0.72%) JIRA
3 10 (0.72%) SonarQube
4 8 (0.58%) Rational DOORS
4 8 (0.58%) Visual Studio
5 7 (0.51%) Emacs
6 6 (0.43%) Metasploit
7 3 (0.22%) SoapUI
8 2 (0.14%) ERwin
8 2 (0.14%) Jenkins
9 1 (0.072%) AppScan
9 1 (0.072%) Atlassian Bamboo
9 1 (0.072%) Bitbucket
9 1 (0.072%) Eclipse
9 1 (0.072%) Git (software)
9 1 (0.072%) git-flow
9 1 (0.072%) Robot Framework
9 1 (0.072%) Selenium
9 1 (0.072%) Sonatype Nexus
General
1 356 (25.76%) Social Skills
2 318 (23.01%) Finance
3 134 (9.70%) Legal
4 121 (8.76%) Analytical Skills
5 49 (3.55%) Telecoms
6 48 (3.47%) Manufacturing
7 46 (3.33%) Presentation Skills
8 44 (3.18%) Inclusion and Diversity
8 44 (3.18%) Law
9 37 (2.68%) Retail
10 34 (2.46%) Public Sector
11 32 (2.32%) Influencing Skills
12 29 (2.10%) Banking
13 23 (1.66%) Local Government
14 17 (1.23%) Police
15 12 (0.87%) Military
16 10 (0.72%) Organisational Skills
17 9 (0.65%) Back Office
17 9 (0.65%) Pharmaceutical
18 7 (0.51%) Games
Job Titles
1 232 (16.79%) Security Engineer
2 209 (15.12%) Security Manager
3 205 (14.83%) Architect
4 182 (13.17%) Analyst
5 178 (12.88%) Consultant
6 171 (12.37%) Security Architect
7 158 (11.43%) Security Analyst
8 139 (10.06%) Security Consultant
9 128 (9.26%) Senior Security Engineer
10 123 (8.90%) Cloud Engineer
11 116 (8.39%) Data Engineer
12 99 (7.16%) Senior Cloud Engineer
13 98 (7.09%) Senior Data Engineer
14 83 (6.01%) Information Manager
14 83 (6.01%) Information Security Manager
15 78 (5.64%) Cybersecurity Consultant
16 69 (4.99%) Azure Engineer
16 69 (4.99%) Information Analyst
17 67 (4.85%) Information Security Analyst
18 65 (4.70%) IT Manager
Libraries, Frameworks & Software Standards
1 111 (8.03%) .NET
2 59 (4.27%) Kafka
3 35 (2.53%) ActiveMQ
4 20 (1.45%) SAML
5 19 (1.37%) OpenID
6 15 (1.09%) OAuth
7 9 (0.65%) LDAP
8 7 (0.51%) SOAP
8 7 (0.51%) Web Services
9 6 (0.43%) SailPoint
10 5 (0.36%) EDI
10 5 (0.36%) GraphQL
10 5 (0.36%) JWT
11 4 (0.29%) J2EE
11 4 (0.29%) REST
12 3 (0.22%) JSP
12 3 (0.22%) Node.js
13 2 (0.14%) ASP.NET
13 2 (0.14%) EJB
13 2 (0.14%) Servlets
Miscellaneous
1 310 (22.43%) Management Information System
2 115 (8.32%) Cyberthreat
3 52 (3.76%) Data Protection Act
4 47 (3.40%) Security Operations Centre
5 41 (2.97%) Public Cloud
6 37 (2.68%) Self-Motivation
7 34 (2.46%) Cyberattack
8 27 (1.95%) Blog
9 25 (1.81%) PKI
10 24 (1.74%) Cyber Kill Chain
11 22 (1.59%) Cloud Native
11 22 (1.59%) Data Centre
12 21 (1.52%) Distributed Denial-of-Service
13 17 (1.23%) Mobile App
13 17 (1.23%) Smart Meter
14 15 (1.09%) Hybrid Cloud
15 14 (1.01%) Driving Licence
15 14 (1.01%) SCADA
16 11 (0.80%) Cyber Defence
17 10 (0.72%) CESG
Operating Systems
1 143 (10.35%) Windows
2 82 (5.93%) Linux
3 57 (4.12%) Windows Server
4 29 (2.10%) Unix
5 18 (1.30%) Kali Linux
6 11 (0.80%) Solaris
6 11 (0.80%) Windows 10
7 10 (0.72%) Windows 7
8 7 (0.51%) Mac OS
9 6 (0.43%) Apple iOS
10 5 (0.36%) AIX
10 5 (0.36%) zOS
11 3 (0.22%) Mac OS X
12 2 (0.14%) Android
12 2 (0.14%) Red Hat Enterprise Linux
12 2 (0.14%) SUSE
12 2 (0.14%) VMS
12 2 (0.14%) Windows Server 2012
12 2 (0.14%) Windows Server 2016
12 2 (0.14%) Windows Server 2019
Processes & Methodologies
1 802 (58.03%) Information Security
2 686 (49.64%) Cybersecurity
3 585 (42.33%) Risk Management
4 334 (24.17%) Agile Software Development
5 247 (17.87%) Security Operations
6 207 (14.98%) Continuous Improvement
7 204 (14.76%) Security Architecture
8 197 (14.25%) DevOps
9 196 (14.18%) Penetration Testing
10 187 (13.53%) Data Protection
11 183 (13.24%) SIEM
12 181 (13.10%) ITIL
13 174 (12.59%) Threat Modelling
14 173 (12.52%) Security Management
15 162 (11.72%) SDLC
16 156 (11.29%) Risk Assessment
17 149 (10.78%) Information Management
18 144 (10.42%) Data Security
19 129 (9.33%) Analytics
20 127 (9.19%) Vulnerability Management
Programming Languages
1 157 (11.36%) Python
2 138 (9.99%) PowerShell
3 131 (9.48%) Java
4 124 (8.97%) Bash
5 112 (8.10%) Scala
6 46 (3.33%) C
7 39 (2.82%) C#
8 14 (1.01%) JavaScript
9 13 (0.94%) Go
9 13 (0.94%) SQL
10 7 (0.51%) TypeScript
11 6 (0.43%) PHP
12 4 (0.29%) Rust
13 3 (0.22%) Perl
14 2 (0.14%) C++
14 2 (0.14%) R
14 2 (0.14%) Shell Script
14 2 (0.14%) VBA
15 1 (0.072%) Objective-C
15 1 (0.072%) VBScript
Qualifications
1 744 (53.84%) CISM
2 341 (24.67%) CISA
3 301 (21.78%) Cisco Certification
4 259 (18.74%) Degree
5 239 (17.29%) (ISC)2 CCSP
6 202 (14.62%) Security Cleared
7 198 (14.33%) CRISC
8 157 (11.36%) CEH
9 127 (9.19%) SC Cleared
10 99 (7.16%) GIAC
11 90 (6.51%) CESG Certified Professional
11 90 (6.51%) CompTIA Security+
12 88 (6.37%) CCSP
13 84 (6.08%) SANS
14 70 (5.07%) OSCP
15 64 (4.63%) ISO 27001 Lead Auditor
16 57 (4.12%) AWS Certification
17 56 (4.05%) SSCP
18 47 (3.40%) CISMP
19 39 (2.82%) CCNA
Quality Assurance & Compliance
1 575 (41.61%) ISO/IEC 27001
2 333 (24.10%) NIST
3 264 (19.10%) GDPR
4 183 (13.24%) PCI DSS
5 135 (9.77%) Cyber Essentials
6 113 (8.18%) NCSC
7 102 (7.38%) COBIT
8 89 (6.44%) GRC
9 72 (5.21%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 43 (3.11%) ITGC
11 39 (2.82%) Cyber Essentials PLUS
12 38 (2.75%) Sarbanes-Oxley
13 32 (2.32%) SOC 2
14 30 (2.17%) QA
14 30 (2.17%) RMADS
15 29 (2.10%) ISO/IEC 27005
16 25 (1.81%) JSP 440
17 23 (1.66%) ISO 22301
18 21 (1.52%) NIST 800
19 19 (1.37%) HMG Security Policy Framework
System Software
1 82 (5.93%) Active Directory
2 19 (1.37%) VMware Infrastructure
3 13 (0.94%) Firmware
4 8 (0.58%) ISA Server
5 5 (0.36%) Docker
5 5 (0.36%) OpenAM
5 5 (0.36%) OpenIDM
5 5 (0.36%) RACF
5 5 (0.36%) Virtual Machines
6 2 (0.14%) BitLocker
6 2 (0.14%) NDS
6 2 (0.14%) VMware ESXi
7 1 (0.072%) Hyper-V
7 1 (0.072%) Microsoft Virtual Server
7 1 (0.072%) Virtual Servers
7 1 (0.072%) vSphere
Systems Management
1 46 (3.33%) Kubernetes
2 40 (2.89%) Nessus
3 38 (2.75%) Terraform
4 25 (1.81%) Single Sign-On
5 18 (1.30%) Microsoft Intune
6 13 (0.94%) CASB
7 12 (0.87%) QRadar
8 8 (0.58%) Consul
8 8 (0.58%) Istio
8 8 (0.58%) Trend Micro Deep Security
9 7 (0.51%) McAfee ePO
10 6 (0.43%) CSIRT
11 5 (0.36%) Ansible
11 5 (0.36%) CA Single Sign-On
11 5 (0.36%) EMC NetWorker
11 5 (0.36%) Oracle Identity Management
12 4 (0.29%) Computer Emergency Response Teams
12 4 (0.29%) Kibana
13 3 (0.22%) FortiGate
14 2 (0.14%) Puppet
Vendors
1 229 (16.57%) Microsoft
2 111 (8.03%) Databricks
3 58 (4.20%) Cisco
4 39 (2.82%) Google
5 35 (2.53%) Splunk
6 31 (2.24%) Oracle
7 25 (1.81%) VMware
8 24 (1.74%) CheckPoint
9 23 (1.66%) IBM
10 22 (1.59%) ServiceNow
11 18 (1.30%) Okta
12 17 (1.23%) F5
12 17 (1.23%) Palo Alto
13 11 (0.80%) Tripwire
14 10 (0.72%) CyberArk
15 9 (0.65%) Apple
15 9 (0.65%) CrowdStrike
15 9 (0.65%) ForgeRock
16 8 (0.58%) Centrify
16 8 (0.58%) OneTrust