Period
to

The following table provides summary statistics for permanent job vacancies with a requirement for CISSP qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 28 June 2022 with a comparison to the same period in the previous 2 years.

(ISC)² Certified Information Systems Security Professional (ISC2 CISSP)
UK
6 months to
28 Jun 2022
Same period 2021 Same period 2020
Rank 355 335 227
Rank change year-on-year -20 -108 +12
Permanent jobs citing CISSP 1,739 1,000 1,222
As % of all permanent jobs advertised in the UK 0.98% 0.95% 1.54%
As % of the Qualifications category 3.81% 4.37% 7.10%
Number of salaries quoted 1,105 787 974
10th Percentile £43,750 £41,650 £43,123
25th Percentile £55,000 £52,500 £51,063
Median annual salary (50th Percentile) £67,500 £65,000 £63,853
Median % change year-on-year +3.85% +1.80% -1.77%
75th Percentile £85,000 £81,250 £80,000
90th Percentile £100,000 £91,250 £94,625
UK excluding London median annual salary £62,750 £60,000 £58,250
% change year-on-year +4.58% +3.00% -2.92%

CISSP is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 45,664 22,901 17,204
As % of all permanent IT jobs advertised in the UK 25.76% 21.70% 21.72%
Number of salaries quoted 17,772 13,267 12,933
10th Percentile £30,500 £31,250 £29,500
25th Percentile £40,000 £41,250 £37,500
Median annual salary (50th Percentile) £55,000 £55,000 £52,500
Median % change year-on-year - +4.76% +5.00%
75th Percentile £72,647 £72,500 £70,000
90th Percentile £90,000 £86,250 £85,000
UK excluding London median annual salary £48,000 £49,000 £47,500
% change year-on-year -2.04% +3.16% +5.56%

CISSP
Job Vacancy Trend

Job postings citing CISSP as a proportion of all IT jobs advertised.

Job vacancy trend for CISSP in the UK

CISSP
Salary Trend

3-month moving average salary quoted in jobs citing CISSP.

Salary trend for CISSP in the UK

CISSP
Salary Histogram

Salary distribution for jobs citing CISSP over the 6 months to 28 June 2022.

Salary histogram for CISSP in the UK

CISSP
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISSP within the UK over the 6 months to 28 June 2022. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
England -27 1,516 £67,500 +3.85% 162
UK excluding London +4 817 £62,750 +4.58% 112
Work from Home -31 729 £67,500 +3.85% 69
London -79 724 £75,000 +7.14% 65
South East +2 292 £62,500 +6.84% 28
North of England -31 160 £59,500 -0.83% 33
Midlands -27 123 £65,000 -3.70% 17
South West +13 110 £65,000 +18.18% 6
North West -5 105 £55,000 -8.33% 17
West Midlands -19 105 £65,000 -3.70% 11
East of England -51 69 £70,000 -9.68% 10
Scotland -24 68 £60,000 -7.69% 14
Yorkshire -17 50 £62,785 +0.46% 12
Wales -12 18 £60,000 +6.31% 2
East Midlands -27 15 £54,000 -13.60% 6
Northern Ireland - 10 £56,875 - 2
North East -54 4 £63,500 +15.45% 4

For the 6 months to 28 June 2022, IT jobs citing CISSP also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISSP.

1 1,096 (63.02%) Information Security
2 1,037 (59.63%) Cybersecurity
3 949 (54.57%) CISM
4 759 (43.65%) ISO/IEC 27001
5 576 (33.12%) Risk Management
6 575 (33.06%) Finance
7 543 (31.22%) NIST
8 476 (27.37%) Social Skills
9 461 (26.51%) Management Information System
10 454 (26.11%) CISA
11 421 (24.21%) Azure
12 396 (22.77%) Degree
13 372 (21.39%) Security Operations
14 362 (20.82%) SIEM
15 345 (19.84%) AWS
16 310 (17.83%) Firewall
17 285 (16.39%) Penetration Testing
18 284 (16.33%) Data Protection
19 283 (16.27%) Microsoft
20 274 (15.76%) Agile
21 271 (15.58%) CRISC
22 268 (15.41%) Cisco Certification
23 267 (15.35%) GDPR
24 264 (15.18%) Security Architecture
24 264 (15.18%) Security Management
25 224 (12.88%) Cyber Essentials
26 221 (12.71%) ITIL
27 218 (12.54%) GRC
28 214 (12.31%) PCI DSS
28 214 (12.31%) (ISC)2 CCSP

CISSP
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 14 (0.81%) SharePoint
2 13 (0.75%) MS Exchange
3 9 (0.52%) Apache Spark
4 6 (0.35%) Confluence
5 4 (0.23%) MTS
6 3 (0.17%) Cloud Foundry
7 2 (0.12%) OpenStack
8 1 (0.058%) Apache
8 1 (0.058%) GemFire
8 1 (0.058%) IIS
8 1 (0.058%) Oracle Coherence
8 1 (0.058%) Tomcat
Applications
1 28 (1.61%) Microsoft Office
2 19 (1.09%) Microsoft PowerPoint
3 17 (0.98%) Microsoft Excel
4 5 (0.29%) MS Visio
Business Applications
1 2 (0.12%) assyst
1 2 (0.12%) Elite 3E
2 1 (0.058%) Oracle ERP
Cloud Services
1 421 (24.21%) Azure
2 345 (19.84%) AWS
3 140 (8.05%) SaaS
4 137 (7.88%) Microsoft 365
5 106 (6.10%) GCP
6 92 (5.29%) PaaS
7 88 (5.06%) IaaS
8 55 (3.16%) Serverless
9 54 (3.11%) Azure Sentinel
10 40 (2.30%) Cloud Computing
10 40 (2.30%) GitHub
11 38 (2.19%) Azure Monitor
11 38 (2.19%) Azure Service Bus
12 37 (2.13%) Azure AKS
12 37 (2.13%) Azure Cosmos DB
12 37 (2.13%) Azure DevOps
12 37 (2.13%) Azure Event Grid
12 37 (2.13%) Azure Functions
12 37 (2.13%) Azure Synapse Analytics
12 37 (2.13%) GitHub Actions
Communications & Networking
1 310 (17.83%) Firewall
2 179 (10.29%) Network Security
3 106 (6.10%) Intrusion Detection
4 78 (4.49%) Internet
5 53 (3.05%) WAN
6 49 (2.82%) TCP/IP
7 41 (2.36%) VPN
8 40 (2.30%) Cisco IPT
9 39 (2.24%) DNS
10 29 (1.67%) LAN
11 25 (1.44%) SSL
12 23 (1.32%) Wireless
13 19 (1.09%) Ethernet
14 14 (0.81%) MPLS
15 13 (0.75%) HTTP
16 12 (0.69%) DHCP
16 12 (0.69%) SD-WAN
16 12 (0.69%) Wi-Fi
17 11 (0.63%) Wireshark
18 10 (0.58%) Wireless Security
Database & Business Intelligence
1 52 (2.99%) Data Lake
2 45 (2.59%) Big Data
3 22 (1.27%) SQL Server
4 19 (1.09%) Power BI
5 14 (0.81%) NoSQL
5 14 (0.81%) Relational Database
6 8 (0.46%) Data Warehouse
6 8 (0.46%) Metadata
7 7 (0.40%) MySQL
8 6 (0.35%) Hadoop
9 4 (0.23%) Neo4j
9 4 (0.23%) PostgreSQL
10 3 (0.17%) Amazon Redshift
10 3 (0.17%) DTS
11 2 (0.12%) MongoDB
11 2 (0.12%) Tableau
12 1 (0.058%) Amazon RDS
12 1 (0.058%) Azure SQL Database
12 1 (0.058%) BigQuery
12 1 (0.058%) Redis
Development Applications
1 45 (2.59%) Burp Suite
2 15 (0.86%) Emacs
3 12 (0.69%) SonarQube
4 8 (0.46%) JIRA
5 6 (0.35%) ERwin
6 4 (0.23%) AppScan
6 4 (0.23%) Git (software)
6 4 (0.23%) Mercurial
6 4 (0.23%) Subversion
7 3 (0.17%) Metasploit
8 2 (0.12%) Jenkins
9 1 (0.058%) Ant
9 1 (0.058%) Artifactory
9 1 (0.058%) JUnit
9 1 (0.058%) Snyk
General
1 575 (33.06%) Finance
2 476 (27.37%) Social Skills
3 207 (11.90%) Legal
4 160 (9.20%) Analytical Skills
5 109 (6.27%) Retail
6 79 (4.54%) Telecoms
7 59 (3.39%) Banking
8 51 (2.93%) Presentation Skills
9 50 (2.88%) Inclusion and Diversity
9 50 (2.88%) Public Sector
10 49 (2.82%) Law
11 44 (2.53%) Automotive
12 42 (2.42%) Marketing
13 40 (2.30%) Manufacturing
14 39 (2.24%) Local Government
15 38 (2.19%) Organisational Skills
16 32 (1.84%) Influencing Skills
17 26 (1.50%) Games
18 21 (1.21%) Pharmaceutical
19 20 (1.15%) Financial Institution
Job Titles
1 348 (20.01%) Security Manager
2 304 (17.48%) Analyst
3 244 (14.03%) Security Analyst
4 214 (12.31%) Architect
5 176 (10.12%) Security Engineer
6 175 (10.06%) Consultant
7 172 (9.89%) Security Architect
8 132 (7.59%) Security Consultant
9 103 (5.92%) Information Analyst
9 103 (5.92%) Information Security Analyst
10 102 (5.87%) Information Manager
11 100 (5.75%) Information Security Manager
12 83 (4.77%) Security Officer
13 74 (4.26%) IT Manager
14 66 (3.80%) Senior Manager
15 60 (3.45%) Senior Security Engineer
16 59 (3.39%) IT Analyst
17 58 (3.34%) Cybersecurity Manager
18 57 (3.28%) Head of Security
19 56 (3.22%) Security Specialist
Libraries, Frameworks & Software Standards
1 62 (3.57%) .NET
2 15 (0.86%) OAuth
2 15 (0.86%) SAML
3 13 (0.75%) OpenID
4 12 (0.69%) Node.js
4 12 (0.69%) Web Services
5 9 (0.52%) EDI
5 9 (0.52%) Kafka
6 8 (0.46%) LDAP
7 7 (0.40%) ModSecurity
7 7 (0.40%) React
7 7 (0.40%) REST
7 7 (0.40%) RESTful
8 6 (0.35%) .NET Framework
8 6 (0.35%) SailPoint
9 5 (0.29%) COM
10 2 (0.12%) J2EE
10 2 (0.12%) Middleware
10 2 (0.12%) SOAP
10 2 (0.12%) XML
Miscellaneous
1 461 (26.51%) Management Information System
2 125 (7.19%) Cyberthreat
3 80 (4.60%) Self-Motivation
4 76 (4.37%) Security Operations Centre
5 67 (3.85%) Data Centre
6 57 (3.28%) Data Protection Act
6 57 (3.28%) Public Cloud
7 47 (2.70%) Cyber Defence
7 47 (2.70%) Distributed Denial-of-Service
8 45 (2.59%) Cyberattack
9 44 (2.53%) IoT
10 39 (2.24%) Insider Threat
11 35 (2.01%) SCADA
12 32 (1.84%) PKI
13 29 (1.67%) Mobile App
14 27 (1.55%) Cloud Native
15 25 (1.44%) Hybrid Cloud
16 21 (1.21%) Cyber Kill Chain
17 20 (1.15%) Legacy Systems
17 20 (1.15%) Virtual Team
Operating Systems
1 201 (11.56%) Windows
2 151 (8.68%) Linux
3 58 (3.34%) Windows Server
4 51 (2.93%) Unix
5 39 (2.24%) Kali Linux
6 17 (0.98%) Windows 10
7 11 (0.63%) Apple iOS
8 9 (0.52%) Android
8 9 (0.52%) Mac OS
9 7 (0.40%) Windows Server 2012
9 7 (0.40%) Windows Server 2016
10 6 (0.35%) Windows Server 2008
11 5 (0.29%) Mac OS X
12 4 (0.23%) AIX
13 2 (0.12%) Red Hat Enterprise Linux
13 2 (0.12%) zOS
14 1 (0.058%) Windows Server 2019
Processes & Methodologies
1 1,096 (63.02%) Information Security
2 1,037 (59.63%) Cybersecurity
3 576 (33.12%) Risk Management
4 372 (21.39%) Security Operations
5 362 (20.82%) SIEM
6 285 (16.39%) Penetration Testing
7 284 (16.33%) Data Protection
8 274 (15.76%) Agile
9 264 (15.18%) Security Architecture
9 264 (15.18%) Security Management
10 221 (12.71%) ITIL
11 211 (12.13%) Vulnerability Management
12 206 (11.85%) ISMS
13 200 (11.50%) DevOps
14 190 (10.93%) Computer Science
15 183 (10.52%) Stakeholder Management
16 174 (10.01%) OWASP
17 170 (9.78%) Business Continuity
18 169 (9.72%) Threat Intelligence
19 166 (9.55%) Threat Modelling
Programming Languages
1 152 (8.74%) Python
2 128 (7.36%) PowerShell
3 87 (5.00%) Bash
4 72 (4.14%) Java
5 37 (2.13%) Scala
6 36 (2.07%) SQL
7 23 (1.32%) JavaScript
8 22 (1.27%) C#
9 21 (1.21%) C
10 9 (0.52%) TypeScript
11 8 (0.46%) Perl
12 6 (0.35%) Go
12 6 (0.35%) Shell Script
13 5 (0.29%) Groovy
14 3 (0.17%) Ruby
15 2 (0.12%) PHP
15 2 (0.12%) VBA
16 1 (0.058%) Korn
16 1 (0.058%) VB
16 1 (0.058%) VBScript
Qualifications
1 949 (54.57%) CISM
2 454 (26.11%) CISA
3 396 (22.77%) Degree
4 271 (15.58%) CRISC
5 268 (15.41%) Cisco Certification
6 214 (12.31%) (ISC)2 CCSP
7 189 (10.87%) Security Cleared
8 162 (9.32%) CEH
9 126 (7.25%) SC Cleared
10 119 (6.84%) CompTIA Security+
11 110 (6.33%) OSCP
12 105 (6.04%) Computer Science Degree
13 101 (5.81%) CCSP
14 99 (5.69%) CESG Certified Professional
15 98 (5.64%) SANS
16 97 (5.58%) SSCP
17 96 (5.52%) CISMP
18 95 (5.46%) GIAC
19 88 (5.06%) GCIH
19 88 (5.06%) ISO 27001 Lead Auditor
Quality Assurance & Compliance
1 759 (43.65%) ISO/IEC 27001
2 543 (31.22%) NIST
3 267 (15.35%) GDPR
4 224 (12.88%) Cyber Essentials
5 218 (12.54%) GRC
6 214 (12.31%) PCI DSS
7 154 (8.86%) NCSC
8 116 (6.67%) COBIT
9 102 (5.87%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 65 (3.74%) Sarbanes-Oxley
11 64 (3.68%) Cyber Essentials PLUS
12 60 (3.45%) SOC 2
13 50 (2.88%) HMG Security Policy Framework
14 40 (2.30%) JSP 440
14 40 (2.30%) RMADS
15 35 (2.01%) ISO 22301
15 35 (2.01%) ITGC
16 33 (1.90%) ISO/IEC 27005
17 32 (1.84%) SOC 1
18 29 (1.67%) QA
System Software
1 112 (6.44%) Active Directory
2 50 (2.88%) VMware Infrastructure
3 14 (0.81%) Virtual Machines
4 12 (0.69%) Docker
5 11 (0.63%) Firmware
5 11 (0.63%) Hyper-V
5 11 (0.63%) VMware ESXi
6 9 (0.52%) Snort
7 8 (0.46%) vSphere
8 6 (0.35%) Virtual Servers
8 6 (0.35%) XenDesktop
9 2 (0.12%) KVM
9 2 (0.12%) LXC
9 2 (0.12%) Xen
10 1 (0.058%) ACF2
10 1 (0.058%) BitLocker
Systems Management
1 68 (3.91%) Kubernetes
2 58 (3.34%) CASB
3 41 (2.36%) Nessus
4 35 (2.01%) QRadar
5 31 (1.78%) Terraform
6 27 (1.55%) CSIRT
7 21 (1.21%) Microsoft Intune
7 21 (1.21%) Single Sign-On
8 16 (0.92%) Computer Emergency Response Teams
9 15 (0.86%) SCCM
10 10 (0.58%) Nmap
10 10 (0.58%) WMI
11 9 (0.52%) RSA Archer
11 9 (0.52%) WSUS
12 7 (0.40%) Active Directory Federation Services
12 7 (0.40%) Ansible
13 6 (0.35%) SCOM
14 5 (0.29%) HP Fortify
14 5 (0.29%) Jamf Pro
14 5 (0.29%) Oracle Identity Manager
Vendors
1 283 (16.27%) Microsoft
2 79 (4.54%) Cisco
3 66 (3.80%) Splunk
4 58 (3.34%) VMware
5 57 (3.28%) Google
6 41 (2.36%) CrowdStrike
7 37 (2.13%) Databricks
8 30 (1.73%) Palo Alto
8 30 (1.73%) Twitter
9 22 (1.27%) CheckPoint
10 20 (1.15%) Intel
10 20 (1.15%) Proofpoint
11 18 (1.04%) FIS
11 18 (1.04%) Oracle
12 17 (0.98%) F5
12 17 (0.98%) IBM
13 16 (0.92%) CyberArk
13 16 (0.92%) ServiceNow
14 15 (0.86%) ArcSight
14 15 (0.86%) Facebook