Period
to 19 April 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CISSP qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 19 April 2018 with a comparison to the same period in the previous 2 years.

(ISC)² Certified Information Systems Security Professional (ISC2 CISSP)
UK
6 months to
19 Apr 2018
Same period 2017 Same period 2016
Rank 209 216 213
Rank change year-on-year +7 -3 +90
Permanent jobs citing CISSP 2,934 2,792 3,401
As % of all permanent IT jobs advertised in the UK 1.65% 1.62% 1.66%
As % of the Qualifications category 7.05% 6.44% 5.95%
Number of salaries quoted 2,267 2,223 2,755
UK median annual salary £60,000 £62,500 £60,000
Median salary % change year-on-year -4.00% +4.17% +6.38%
10th Percentile £40,000 £40,750 £41,250
90th Percentile £94,250 £90,000 £85,000
UK excluding London median annual salary £55,000 £55,000 £55,000

CISSP is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 41,611 43,350 57,119
As % of all permanent IT jobs advertised in the UK 23.47% 25.20% 27.87%
Number of salaries quoted 31,850 34,158 45,811
UK median annual salary £47,500 £45,000 £45,000
Median salary % change year-on-year +5.56% - -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £80,000 £76,250 £75,000
UK excluding London median annual salary £44,000 £42,000 £42,500
% change year-on-year +4.76% -1.18% +6.25%

CISSP
Job Vacancy Trend

Job postings citing CISSP as a percentage of all IT jobs advertised.

Job vacancy trend for CISSP in the UK

CISSP
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISSP.

Salary trend for CISSP in the UK

CISSP
Salary Histogram

The salary distribution of IT jobs citing CISSP over the 6 months to 19 April 2018.

Salary histogram for CISSP in the UK

CISSP
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISSP within the UK over the 6 months to 19 April 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +6 2,771 £60,000 -4.00% 242
UK excluding London +20 1,428 £55,000 - 146
London +7 1,415 £70,000 +2.94% 106
South East +51 498 £58,000 -3.33% 37
North of England +20 360 £55,000 +15.79% 41
Midlands -35 235 £53,500 +7.00% 25
North West -25 186 £57,500 +4.55% 19
West Midlands -46 159 £57,500 +9.52% 21
Yorkshire +41 141 £54,000 +27.81% 18
South West -5 140 £45,000 -25.00% 18
East of England -7 138 £55,000 -8.33% 15
East Midlands +14 74 £44,750 -0.56% 4
Scotland -33 58 £48,000 -16.16% 6
North East -7 33 £50,000 +11.11% 4
Wales +1 21 £55,000 +22.22% 4
Northern Ireland 0 3 £52,500 +75.00%

For the 6 months to 19 April 2018, IT jobs citing CISSP also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISSP.

1 1,854 (63.19%) Information Security
2 1,678 (57.19%) CISM
3 1,092 (37.22%) ISO/IEC 27001
4 1,074 (36.61%) Cybersecurity
5 1,036 (35.31%) CISA
6 931 (31.73%) Finance
7 779 (26.55%) Firewall
8 682 (23.24%) SIEM
9 610 (20.79%) Risk Management
10 580 (19.77%) GDPR
11 571 (19.46%) Management Information System
12 554 (18.88%) Degree
13 515 (17.55%) CEH
14 491 (16.73%) Penetration Testing
15 486 (16.56%) PCI DSS
16 481 (16.39%) ITIL
17 480 (16.36%) Security Architecture
18 477 (16.26%) Network Security
19 465 (15.85%) Windows
20 427 (14.55%) Security Operations
21 403 (13.74%) Cisco Certification
22 398 (13.57%) Data Protection
23 390 (13.29%) Vulnerability Management
24 377 (12.85%) SANS
25 375 (12.78%) GIAC
26 359 (12.24%) Linux
27 309 (10.53%) Security Management
28 300 (10.22%) Microsoft
29 282 (9.61%) Analytical Skills
30 281 (9.58%) Incident Management

CISSP
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 94 (3.20%) IIS
2 43 (1.47%) Apache
3 31 (1.06%) SharePoint
4 21 (0.72%) Apache Spark
5 14 (0.48%) WebSphere
6 10 (0.34%) Elasticsearch
7 9 (0.31%) Apache Pig
7 9 (0.31%) MS Exchange
8 6 (0.20%) OpenStack
8 6 (0.20%) Tomcat
9 3 (0.10%) SAS
10 2 (0.068%) CMS
10 2 (0.068%) Confluence
10 2 (0.068%) WebLogic
Applications
1 47 (1.60%) Microsoft Office
2 11 (0.37%) Microsoft PowerPoint
3 10 (0.34%) MS Visio
4 6 (0.20%) Microsoft Excel
5 4 (0.14%) Stata
6 2 (0.068%) Microsoft Project
Business Applications
1 24 (0.82%) Dynamics CRM
2 3 (0.10%) assyst
Cloud Services
1 162 (5.52%) Microsoft Azure
2 151 (5.15%) Amazon AWS
3 89 (3.03%) Office 365
4 62 (2.11%) SaaS
5 47 (1.60%) IaaS
6 38 (1.30%) Google Cloud Platform
7 36 (1.23%) PaaS
8 30 (1.02%) Mimecast
9 29 (0.99%) OneDrive
10 21 (0.72%) Cloud Computing
11 6 (0.20%) Azure Active Directory
12 4 (0.14%) Amazon EC2
12 4 (0.14%) G Suite
13 1 (0.034%) Amazon CloudWatch
13 1 (0.034%) AWS CloudTrail
Communications & Networking
1 779 (26.55%) Firewall
2 477 (16.26%) Network Security
3 236 (8.04%) TCP/IP
4 158 (5.39%) Intrusion Detection
5 139 (4.74%) VPN
6 113 (3.85%) WAN
7 107 (3.65%) DNS
8 96 (3.27%) Internet
9 85 (2.90%) DHCP
9 85 (2.90%) LAN
10 81 (2.76%) SSL
11 76 (2.59%) HTTP
12 64 (2.18%) Wireless
13 56 (1.91%) BGP
13 56 (1.91%) OSPF
14 55 (1.87%) SMTP
15 51 (1.74%) Cisco ASA
16 50 (1.70%) MPLS
17 47 (1.60%) IPsec
18 45 (1.53%) DMZ
Database & Business Intelligence
1 67 (2.28%) Big Data
2 44 (1.50%) SQL Server
3 36 (1.23%) Hadoop
4 34 (1.16%) MySQL
5 9 (0.31%) Apache Hive
6 7 (0.24%) Oracle Database
7 6 (0.20%) Blockchain
8 4 (0.14%) BusinessObjects
8 4 (0.14%) GIS
8 4 (0.14%) MongoDB
8 4 (0.14%) QlikView
9 1 (0.034%) NoSQL
9 1 (0.034%) PostgreSQL
9 1 (0.034%) Power BI
9 1 (0.034%) RDBMS
9 1 (0.034%) Relational Database
9 1 (0.034%) SQL Server Reporting Services
Development Applications
1 25 (0.85%) Metasploit
2 23 (0.78%) Burp Suite
3 20 (0.68%) JIRA
4 14 (0.48%) AppScan
5 11 (0.37%) Git (software)
6 9 (0.31%) Atlassian Bamboo
6 9 (0.31%) Bitbucket
6 9 (0.31%) CodeSonar
6 9 (0.31%) git-flow
6 9 (0.31%) Redmine
6 9 (0.31%) Robot Framework
6 9 (0.31%) Selenium
7 4 (0.14%) Jenkins
8 3 (0.10%) SonarQube
9 2 (0.068%) Subversion
9 2 (0.068%) WebScarab
10 1 (0.034%) Gradle
10 1 (0.034%) SoapUI
10 1 (0.034%) TeamCity
10 1 (0.034%) Xcode
General
1 931 (31.73%) Finance
2 198 (6.75%) Legal
3 164 (5.59%) Banking
4 109 (3.72%) Retail
5 80 (2.73%) Law
6 66 (2.25%) Telecoms
7 54 (1.84%) Games
8 43 (1.47%) Manufacturing
9 36 (1.23%) Marketing
10 34 (1.16%) Investment Banking
11 20 (0.68%) Financial Institution
12 18 (0.61%) Publishing
12 18 (0.61%) Retail Banking
13 16 (0.55%) Back Office
13 16 (0.55%) Billing
14 14 (0.48%) Pharmaceutical
14 14 (0.48%) Private Banking
15 13 (0.44%) Advertising
15 13 (0.44%) Front Office
16 11 (0.37%) Military
Job Titles
1 588 (20.04%) Security Manager
2 569 (19.39%) Analyst
3 479 (16.33%) Security Analyst
4 319 (10.87%) Information Security Manager
5 318 (10.84%) Consultant
6 304 (10.36%) Information Manager
7 301 (10.26%) Security Engineer
8 298 (10.16%) Architect
9 280 (9.54%) Security Architect
10 267 (9.10%) Security Consultant
11 223 (7.60%) Information Analyst
11 223 (7.60%) Information Security Analyst
12 213 (7.26%) IT Manager
13 177 (6.03%) Security Officer
14 134 (4.57%) Risk Manager
15 132 (4.50%) Security Specialist
16 127 (4.33%) Information Security Officer
17 123 (4.19%) IT Security Manager
18 113 (3.85%) Information Officer
19 105 (3.58%) Cybersecurity Manager
Libraries, Frameworks & Software Standards
1 40 (1.36%) .NET
2 32 (1.09%) Web Services
3 28 (0.95%) SailPoint
4 24 (0.82%) Regular Expression
5 23 (0.78%) Middleware
6 20 (0.68%) Elastic Stack
7 18 (0.61%) LAMP
7 18 (0.61%) PCRE
8 16 (0.55%) .NET Framework
9 14 (0.48%) MSMQ
9 14 (0.48%) WebSphere MQ
10 13 (0.44%) REST
11 11 (0.37%) ASP.NET
11 11 (0.37%) HTML
11 11 (0.37%) SOAP
12 10 (0.34%) Java EE
13 9 (0.31%) Node.js
13 9 (0.31%) RabbitMQ
13 9 (0.31%) STL
13 9 (0.31%) XML
Miscellaneous
1 571 (19.46%) Management Information System
2 282 (9.61%) Analytical Skills
3 188 (6.41%) Computer Science
4 171 (5.83%) Cyberthreat
5 130 (4.43%) Data Protection Act
6 118 (4.02%) Data Centre
7 117 (3.99%) Security Operations Centre
8 99 (3.37%) PKI
9 86 (2.93%) CESG
10 77 (2.62%) Self-Motivation
11 71 (2.42%) Fintech
12 64 (2.18%) Distributed Denial-of-Service
13 57 (1.94%) Cyber Defence
14 48 (1.64%) Cyberattack
15 43 (1.47%) Mobile App
16 40 (1.36%) Mainframe
17 22 (0.75%) Cyber Kill Chain
18 21 (0.72%) Virtual Team
19 20 (0.68%) BYOD
19 20 (0.68%) Public Cloud
Operating Systems
1 465 (15.85%) Windows
2 359 (12.24%) Linux
3 177 (6.03%) Unix
4 132 (4.50%) Windows Server
5 40 (1.36%) Kali Linux
6 38 (1.30%) Apple iOS
7 31 (1.06%) Mac OS X
8 23 (0.78%) Windows Server 2008
9 21 (0.72%) Android
10 17 (0.58%) Windows Server 2012
11 16 (0.55%) Red Hat Enterprise Linux
11 16 (0.55%) Ubuntu
12 15 (0.51%) AIX
13 11 (0.37%) VMS
14 10 (0.34%) Windows 7
15 9 (0.31%) CentOS
15 9 (0.31%) FreeBSD
15 9 (0.31%) Solaris
16 8 (0.27%) Windows 8
17 7 (0.24%) Debian
Processes & Methodologies
1 1,854 (63.19%) Information Security
2 1,074 (36.61%) Cybersecurity
3 682 (23.24%) SIEM
4 610 (20.79%) Risk Management
5 491 (16.73%) Penetration Testing
6 481 (16.39%) ITIL
7 480 (16.36%) Security Architecture
8 427 (14.55%) Security Operations
9 398 (13.57%) Data Protection
10 390 (13.29%) Vulnerability Management
11 309 (10.53%) Security Management
12 281 (9.58%) Incident Management
13 270 (9.20%) Problem-Solving
14 261 (8.90%) Stakeholder Management
15 223 (7.60%) Agile Software Development
16 220 (7.50%) OWASP
17 219 (7.46%) Vulnerability Scanning
18 218 (7.43%) Risk Assessment
19 199 (6.78%) Data Loss Prevention
19 199 (6.78%) Project Management
Programming Languages
1 113 (3.85%) Python
2 90 (3.07%) Bash Shell
3 87 (2.97%) C
4 75 (2.56%) PowerShell
5 72 (2.45%) Java
6 66 (2.25%) Ruby
7 59 (2.01%) Perl
8 49 (1.67%) C#
9 43 (1.47%) SQL
10 40 (1.36%) PHP
11 34 (1.16%) C++
12 33 (1.12%) Korn
13 24 (0.82%) Bourne shell
14 18 (0.61%) JavaScript
15 10 (0.34%) Objective-C
15 10 (0.34%) Shell Script
16 3 (0.10%) Go
16 3 (0.10%) Lua
17 2 (0.068%) Tcl
18 1 (0.034%) PL/SQL
Qualifications
1 1,678 (57.19%) CISM
2 1,036 (35.31%) CISA
3 554 (18.88%) Degree
4 515 (17.55%) CEH
5 403 (13.74%) Cisco Certification
6 377 (12.85%) SANS
7 375 (12.78%) GIAC
8 266 (9.07%) SSCP
9 232 (7.91%) CRISC
10 200 (6.82%) Security Cleared
11 199 (6.78%) CCNA
12 177 (6.03%) CompTIA Security+
13 161 (5.49%) CCNP
14 153 (5.21%) OSCP
15 148 (5.04%) SC Cleared
16 143 (4.87%) CSSLP
17 105 (3.58%) CESG Certified Professional
18 101 (3.44%) GCIH
19 97 (3.31%) Microsoft Certification
20 96 (3.27%) CCSP
Quality Assurance & Compliance
1 1,092 (37.22%) ISO/IEC 27001
2 580 (19.77%) GDPR
3 486 (16.56%) PCI DSS
4 227 (7.74%) COBIT
5 143 (4.87%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 142 (4.84%) Cyber Essentials
7 81 (2.76%) Sarbanes-Oxley
8 40 (1.36%) HIPAA
8 40 (1.36%) HMG Security Policy Framework
9 36 (1.23%) ISO 9001
10 35 (1.19%) Cyber Essentials PLUS
10 35 (1.19%) PMO
11 33 (1.12%) GPG13
12 32 (1.09%) GCP
13 31 (1.06%) ISO 22301
13 31 (1.06%) NIST 800
14 30 (1.02%) RMADS
15 23 (0.78%) ISAE 3402
15 23 (0.78%) ISO/IEC 27005
16 19 (0.65%) ISO 31000
System Software
1 145 (4.94%) Active Directory
2 56 (1.91%) Snort
3 47 (1.60%) vSphere
4 44 (1.50%) VMware Infrastructure
5 31 (1.06%) Hyper-V
6 20 (0.68%) HDFS
7 14 (0.48%) XenServer
8 13 (0.44%) Docker
9 10 (0.34%) Firmware
10 9 (0.31%) NFS
10 9 (0.31%) Samba
10 9 (0.31%) Virtual Machines
10 9 (0.31%) VMware ESXi
10 9 (0.31%) VMware NSX
11 6 (0.20%) pfSense
12 5 (0.17%) Virtual Desktop
13 3 (0.10%) BitLocker
14 2 (0.068%) ProxySG
14 2 (0.068%) XenApp
Systems Management
1 88 (3.00%) Nessus
2 57 (1.94%) QRadar
3 32 (1.09%) Suricata
4 29 (0.99%) CASB
5 27 (0.92%) Core Impact
5 27 (0.92%) Puppet
6 25 (0.85%) Host Intrusion Detection System
6 25 (0.85%) OpenVAS
7 24 (0.82%) Single Sign-On
8 22 (0.75%) CSIRT
9 20 (0.68%) Ansible
9 20 (0.68%) SCCM
10 18 (0.61%) RSA Security Analytics
11 17 (0.58%) RSA enVision
12 16 (0.55%) McAfee ePO
13 12 (0.41%) HP Fortify
14 11 (0.37%) Network Intrusion Detection System
14 11 (0.37%) Norton AntiVirus
15 10 (0.34%) Nagios
16 9 (0.31%) Juniper STRM
Vendors
1 300 (10.22%) Microsoft
2 251 (8.55%) Cisco
3 114 (3.89%) CheckPoint
4 87 (2.97%) Palo Alto
5 83 (2.83%) Splunk
6 79 (2.69%) Fortinet
6 79 (2.69%) Symantec
7 78 (2.66%) Juniper
8 75 (2.56%) VMware
9 73 (2.49%) Qualys
10 67 (2.28%) LogRhythm
11 65 (2.22%) Forcepoint
12 64 (2.18%) F5
13 61 (2.08%) McAfee
13 61 (2.08%) Sophos
14 56 (1.91%) IBM
15 44 (1.50%) Sourcefire
16 42 (1.43%) ArcSight
17 39 (1.33%) HP
18 38 (1.30%) CyberArk