Period
to 19 June 2019

The following table provides summary statistics for permanent job vacancies with a requirement for CISSP qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 19 June 2019 with a comparison to the same period in the previous 2 years.

(ISC)² Certified Information Systems Security Professional (ISC2 CISSP)
UK
6 months to
19 Jun 2019
Same period 2018 Same period 2017
Rank 232 204 227
Rank change year-on-year -28 +23 -20
Permanent jobs citing CISSP 2,132 2,894 2,657
As % of all permanent IT jobs advertised in the UK 1.48% 1.68% 1.54%
As % of the Qualifications category 6.02% 7.07% 6.18%
Number of salaries quoted 1,597 2,235 2,150
UK median annual salary £65,000 £62,500 £62,500
Median salary % change year-on-year +4.00% - +4.17%
10th Percentile £42,500 £41,250 £41,500
90th Percentile £95,000 £95,000 £90,000
UK excluding London median annual salary £60,000 £57,500 £55,000
% change year-on-year +4.35% +4.55% -

CISSP is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 35,397 40,945 42,977
As % of all permanent IT jobs advertised in the UK 24.63% 23.78% 24.96%
Number of salaries quoted 25,374 30,885 33,583
UK median annual salary £50,000 £49,500 £45,000
Median salary % change year-on-year +1.01% +10.00% -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £81,250 £80,000 £77,500
UK excluding London median annual salary £45,000 £44,582 £42,500
% change year-on-year +0.94% +4.90% -

CISSP
Job Vacancy Trend

Job postings citing CISSP as a percentage of all IT jobs advertised.

Job vacancy trend for CISSP in the UK

CISSP
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISSP.

Salary trend for CISSP in the UK

CISSP
Salary Histogram

The salary distribution of IT jobs citing CISSP over the 6 months to 19 June 2019.

Salary histogram for CISSP in the UK

CISSP
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISSP within the UK over the 6 months to 19 June 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -25 2,007 £65,000 +4.00% 62
UK excluding London +11 1,258 £60,000 +4.35% 32
London -55 816 £75,000 +7.14% 33
South East -32 350 £61,000 +1.67% 8
North of England -5 299 £60,000 +4.35% 9
East of England +89 207 £64,000 +16.36% 1
Midlands +9 184 £58,000 +0.87% 9
North West +12 171 £60,000 +9.09% 3
South West +39 143 £50,000 +3.09% 2
West Midlands +9 143 £57,500 - 4
Yorkshire -18 115 £58,500 +1.74% 5
Scotland +2 47 £53,750 - 2
East Midlands +12 41 £61,250 +19.51% 5
Wales +8 29 £50,000 -9.09%
North East +16 13 £52,250 -12.92% 1
Northern Ireland -25 1 £37,500 -28.57% 1

For the 6 months to 19 June 2019, IT jobs citing CISSP also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISSP.

1 1,397 (65.53%) Information Security
2 1,216 (57.04%) CISM
3 945 (44.32%) Cybersecurity
4 876 (41.09%) ISO/IEC 27001
5 662 (31.05%) CISA
6 541 (25.38%) Management Information System
7 506 (23.73%) Risk Management
8 488 (22.89%) SIEM
9 473 (22.19%) Degree
10 453 (21.25%) Finance
11 422 (19.79%) Firewall
12 420 (19.70%) Security Architecture
13 418 (19.61%) Cisco Certification
14 382 (17.92%) ITIL
15 368 (17.26%) CEH
16 366 (17.17%) Penetration Testing
17 355 (16.65%) Security Operations
18 351 (16.46%) NIST
19 334 (15.67%) PCI DSS
20 328 (15.38%) GDPR
21 306 (14.35%) Windows
22 282 (13.23%) Microsoft Azure
23 279 (13.09%) Security Management
24 274 (12.85%) Amazon AWS
25 249 (11.68%) CRISC
26 247 (11.59%) Vulnerability Management
27 244 (11.44%) Data Protection
28 242 (11.35%) TOGAF
29 237 (11.12%) Linux
30 230 (10.79%) Agile Software Development

CISSP
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 41 (1.92%) OpenStack
2 35 (1.64%) IIS
3 26 (1.22%) Elasticsearch
3 26 (1.22%) SharePoint
4 24 (1.13%) Apache Spark
5 8 (0.38%) ExpressionEngine
5 8 (0.38%) WebSphere
5 8 (0.38%) WordPress
6 7 (0.33%) MS Exchange
6 7 (0.33%) Skype for Business
7 5 (0.23%) Confluence
8 4 (0.19%) Apache
9 3 (0.14%) Cloud Foundry
10 2 (0.094%) BizTalk Server
10 2 (0.094%) WebLogic
11 1 (0.047%) CMS
11 1 (0.047%) Exchange Server 2010
11 1 (0.047%) nginx
11 1 (0.047%) SharePoint 2010
Applications
1 27 (1.27%) Microsoft Office
2 10 (0.47%) Microsoft Excel
3 9 (0.42%) Microsoft PowerPoint
4 2 (0.094%) MS Visio
Business Applications
1 2 (0.094%) assyst
1 2 (0.094%) Relativity
1 2 (0.094%) SAP ERP
2 1 (0.047%) Infor M3
2 1 (0.047%) Sage 300 ERP
2 1 (0.047%) SAP GRC
Cloud Services
1 282 (13.23%) Microsoft Azure
2 274 (12.85%) Amazon AWS
3 97 (4.55%) Google Cloud Platform
4 95 (4.46%) Office 365
5 85 (3.99%) SaaS
6 61 (2.86%) IaaS
7 53 (2.49%) PaaS
8 34 (1.59%) Azure Active Directory
9 24 (1.13%) OpenShift
10 15 (0.70%) Cloud Computing
11 10 (0.47%) Power Platform
12 7 (0.33%) Mimecast
12 7 (0.33%) Serverless
13 4 (0.19%) Microsoft Flow
13 4 (0.19%) Virtual Private Cloud
14 3 (0.14%) AWS CloudFormation
15 2 (0.094%) Amazon CloudWatch
15 2 (0.094%) AWS CloudTrail
15 2 (0.094%) OneDrive
15 2 (0.094%) Yammer
Communications & Networking
1 422 (19.79%) Firewall
2 208 (9.76%) Network Security
3 131 (6.14%) Intrusion Detection
4 122 (5.72%) TCP/IP
5 88 (4.13%) Internet
6 85 (3.99%) VPN
7 64 (3.00%) DNS
8 62 (2.91%) WAN
9 52 (2.44%) SSL
10 49 (2.30%) HTTP
11 47 (2.20%) LAN
12 42 (1.97%) Wireless
13 36 (1.69%) BGP
14 31 (1.45%) Cisco ASA
15 29 (1.36%) Cisco Firepower
16 28 (1.31%) HTTPS
17 26 (1.22%) IPsec
18 25 (1.17%) DHCP
18 25 (1.17%) EIGRP
19 24 (1.13%) OSPF
Database & Business Intelligence
1 67 (3.14%) Big Data
2 17 (0.80%) SQL Server
3 10 (0.47%) MongoDB
4 9 (0.42%) Data Lake
5 7 (0.33%) Azure SQL Database
6 6 (0.28%) Power BI
7 5 (0.23%) GIS
8 4 (0.19%) MySQL
8 4 (0.19%) Oracle Database
9 3 (0.14%) Data Warehouse
9 3 (0.14%) Hadoop
9 3 (0.14%) Maltego
9 3 (0.14%) PostgreSQL
10 2 (0.094%) Amazon RDS
10 2 (0.094%) Apache Cassandra
10 2 (0.094%) DB2
10 2 (0.094%) NoSQL
10 2 (0.094%) Oracle Database 11g
11 1 (0.047%) SQL Server 2012
11 1 (0.047%) SQL Server 2016
Development Applications
1 43 (2.02%) JIRA
2 25 (1.17%) Git (software)
3 24 (1.13%) Bitbucket
3 24 (1.13%) git-flow
4 14 (0.66%) VSS/SourceSafe
5 13 (0.61%) Jenkins
5 13 (0.61%) Metasploit
5 13 (0.61%) SonarQube
6 11 (0.52%) Visual Studio
7 9 (0.42%) Burp Suite
8 8 (0.38%) AppScan
9 5 (0.23%) Maven
10 4 (0.19%) Gradle
10 4 (0.19%) JUnit
10 4 (0.19%) MSTest
10 4 (0.19%) NUnit
10 4 (0.19%) Subversion
11 3 (0.14%) IDA Disassembler
11 3 (0.14%) Redmine
12 1 (0.047%) Sonatype Nexus
General
1 453 (21.25%) Finance
2 168 (7.88%) Retail
3 154 (7.22%) Banking
4 127 (5.96%) Legal
5 44 (2.06%) Telecoms
6 34 (1.59%) Law
7 20 (0.94%) Games
7 20 (0.94%) Publishing
8 19 (0.89%) Marketing
9 16 (0.75%) Billing
9 16 (0.75%) Financial Institution
10 15 (0.70%) Advertising
11 13 (0.61%) Multimedia
12 10 (0.47%) Retail Banking
13 9 (0.42%) Aerospace
13 9 (0.42%) Back Office
14 8 (0.38%) Manufacturing
15 7 (0.33%) Electronics
16 4 (0.19%) German Language
17 3 (0.14%) Front Office
Job Titles
1 367 (17.21%) Analyst
2 328 (15.38%) Consultant
3 325 (15.24%) Security Manager
4 320 (15.01%) Security Analyst
5 290 (13.60%) Architect
6 278 (13.04%) Security Consultant
7 257 (12.05%) Security Architect
7 257 (12.05%) Security Engineer
8 179 (8.40%) Information Security Manager
9 173 (8.11%) Information Manager
10 149 (6.99%) Information Analyst
10 149 (6.99%) Information Security Analyst
11 97 (4.55%) Security Specialist
12 96 (4.50%) Cybersecurity Consultant
13 89 (4.17%) Information Security Consultant
14 88 (4.13%) Head of Security
15 81 (3.80%) Security Officer
16 75 (3.52%) Senior Analyst
17 73 (3.42%) Cybersecurity Manager
18 64 (3.00%) Senior Consultant
Libraries, Frameworks & Software Standards
1 45 (2.11%) Web Services
2 36 (1.69%) .NET
2 36 (1.69%) SailPoint
3 35 (1.64%) Spring
4 32 (1.50%) Node.js
5 28 (1.31%) ASP.NET
5 28 (1.31%) REST
6 26 (1.22%) Kafka
7 24 (1.13%) AngularJS
7 24 (1.13%) GraphQL
7 24 (1.13%) React
7 24 (1.13%) Spring MVC
7 24 (1.13%) Vue.js
8 14 (0.66%) SAML
9 12 (0.56%) Middleware
9 12 (0.56%) OAuth
10 11 (0.52%) HTML
11 9 (0.42%) ModSecurity
12 7 (0.33%) CSS
12 7 (0.33%) LDAP
Miscellaneous
1 541 (25.38%) Management Information System
2 162 (7.60%) Analytical Skills
3 128 (6.00%) Cyberthreat
4 96 (4.50%) Security Operations Centre
5 75 (3.52%) Data Centre
6 65 (3.05%) CESG
7 61 (2.86%) Distributed Denial-of-Service
8 57 (2.67%) PKI
9 51 (2.39%) Driving Licence
10 50 (2.35%) Cyberattack
10 50 (2.35%) Self-Motivation
11 49 (2.30%) Cyber Kill Chain
12 34 (1.59%) Public Cloud
13 33 (1.55%) Data Protection Act
14 25 (1.17%) Cloud Native
14 25 (1.17%) Cyber Defence
15 22 (1.03%) BYOD
15 22 (1.03%) Social Media
16 21 (0.98%) NHS
17 19 (0.89%) CESG CLAS
Operating Systems
1 306 (14.35%) Windows
2 237 (11.12%) Linux
3 79 (3.71%) Windows Server
4 69 (3.24%) Unix
5 40 (1.88%) Apple iOS
6 34 (1.59%) Windows Server 2012
7 31 (1.45%) Android
8 28 (1.31%) Windows Server 2008
9 27 (1.27%) Windows 10
10 16 (0.75%) CentOS
10 16 (0.75%) Windows 7
11 14 (0.66%) Red Hat Enterprise Linux
12 8 (0.38%) Kali Linux
13 7 (0.33%) Solaris
14 6 (0.28%) AIX
14 6 (0.28%) HPUX
14 6 (0.28%) Mac OS
14 6 (0.28%) Ubuntu
14 6 (0.28%) Windows Server 2003
14 6 (0.28%) Windows XP
Processes & Methodologies
1 1,397 (65.53%) Information Security
2 945 (44.32%) Cybersecurity
3 506 (23.73%) Risk Management
4 488 (22.89%) SIEM
5 420 (19.70%) Security Architecture
6 382 (17.92%) ITIL
7 366 (17.17%) Penetration Testing
8 355 (16.65%) Security Operations
9 279 (13.09%) Security Management
10 247 (11.59%) Vulnerability Management
11 244 (11.44%) Data Protection
12 242 (11.35%) TOGAF
13 230 (10.79%) Agile Software Development
14 191 (8.96%) Stakeholder Management
15 190 (8.91%) Identity Access Management
16 175 (8.21%) SABSA
17 150 (7.04%) OWASP
17 150 (7.04%) Vulnerability Scanning
18 148 (6.94%) Risk Assessment
19 145 (6.80%) Information Security Management
Programming Languages
1 105 (4.92%) Python
2 81 (3.80%) Java
3 72 (3.38%) PowerShell
4 69 (3.24%) C
5 53 (2.49%) SQL
6 39 (1.83%) JavaScript
7 37 (1.74%) Bash Shell
8 22 (1.03%) C#
8 22 (1.03%) Ruby
9 21 (0.98%) C++
9 21 (0.98%) Perl
10 19 (0.89%) Shell Script
11 11 (0.52%) Go
12 6 (0.28%) Korn
12 6 (0.28%) PHP
12 6 (0.28%) TypeScript
13 5 (0.23%) Bourne shell
14 1 (0.047%) Lua
14 1 (0.047%) Objective-C
14 1 (0.047%) VBScript
Qualifications
1 1,216 (57.04%) CISM
2 662 (31.05%) CISA
3 473 (22.19%) Degree
4 418 (19.61%) Cisco Certification
5 368 (17.26%) CEH
6 249 (11.68%) CRISC
7 218 (10.23%) GIAC
7 218 (10.23%) SANS
8 204 (9.57%) Security Cleared
9 199 (9.33%) (ISC)2 CCSP
10 136 (6.38%) SSCP
11 132 (6.19%) CCNA
11 132 (6.19%) Microsoft Certification
12 131 (6.14%) CESG Certified Professional
13 129 (6.05%) CompTIA Security+
14 119 (5.58%) MCSE
15 118 (5.53%) SC Cleared
16 116 (5.44%) CCSP
17 114 (5.35%) CCNP
18 105 (4.92%) Computer Science Degree
Quality Assurance & Compliance
1 876 (41.09%) ISO/IEC 27001
2 351 (16.46%) NIST
3 334 (15.67%) PCI DSS
4 328 (15.38%) GDPR
5 136 (6.38%) COBIT
6 120 (5.63%) Cyber Essentials
7 95 (4.46%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 74 (3.47%) Sarbanes-Oxley
9 50 (2.35%) NCSC
10 37 (1.74%) NIST 800
11 35 (1.64%) HMG Security Policy Framework
12 33 (1.55%) QA
13 31 (1.45%) SLA
14 29 (1.36%) Cyber Essentials PLUS
15 27 (1.27%) ISO/IEC 27005
16 23 (1.08%) ISO 31000
16 23 (1.08%) ISO 9001
16 23 (1.08%) RMADS
17 20 (0.94%) ISO 22301
18 16 (0.75%) ISAE 3402
System Software
1 115 (5.39%) Active Directory
2 52 (2.44%) VMware Infrastructure
3 48 (2.25%) Docker
4 19 (0.89%) Hyper-V
5 15 (0.70%) VMware ESXi
6 11 (0.52%) vSphere
7 9 (0.42%) XenDesktop
8 7 (0.33%) ISA Server
9 6 (0.28%) Snort
10 4 (0.19%) NFS
10 4 (0.19%) Samba
10 4 (0.19%) Xen
11 3 (0.14%) KVM
11 3 (0.14%) LXC
11 3 (0.14%) Virtual Machines
11 3 (0.14%) VMware NSX
12 2 (0.094%) Firmware
12 2 (0.094%) Tivoli Directory Server
13 1 (0.047%) NDS
13 1 (0.047%) Shibboleth
Systems Management
1 83 (3.89%) Nessus
2 49 (2.30%) Kubernetes
3 40 (1.88%) Ansible
4 33 (1.55%) McAfee ePO
5 31 (1.45%) SCCM
6 30 (1.41%) Single Sign-On
7 26 (1.22%) Microsoft Intune
8 19 (0.89%) Computer Emergency Response Teams
8 19 (0.89%) Opscode Chef
8 19 (0.89%) Terraform
9 17 (0.80%) CASB
10 15 (0.70%) Puppet
11 13 (0.61%) QRadar
12 12 (0.56%) IBM Guardium
12 12 (0.56%) Nmap
12 12 (0.56%) Stealthwatch
12 12 (0.56%) vCenter Server
13 9 (0.42%) RSA Archer
14 7 (0.33%) Trend Micro Deep Security
15 6 (0.28%) CSIRT
Vendors
1 227 (10.65%) Microsoft
2 181 (8.49%) Cisco
3 91 (4.27%) Splunk
4 87 (4.08%) Qualys
5 85 (3.99%) Google
5 85 (3.99%) VMware
6 50 (2.35%) CheckPoint
6 50 (2.35%) IBM
6 50 (2.35%) McAfee
6 50 (2.35%) Palo Alto
7 43 (2.02%) Symantec
8 40 (1.88%) CyberArk
9 38 (1.78%) Oracle
10 35 (1.64%) Citrix
11 32 (1.50%) LogRhythm
12 28 (1.31%) FireEye
12 28 (1.31%) Veracode
13 26 (1.22%) Forcepoint
14 25 (1.17%) Aveksa
15 23 (1.08%) Red Hat