Period
to 28 February 2020

The following table provides summary statistics for permanent job vacancies with a requirement for CISSP qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 28 February 2020 with a comparison to the same period in the previous 2 years.

(ISC)² Certified Information Systems Security Professional (ISC2 CISSP)
UK
6 months to
28 Feb 2020
Same period 2019 Same period 2018
Rank 215 213 219
Rank change year-on-year -2 +6 -4
Permanent jobs citing CISSP 1,908 2,423 2,849
As % of all permanent IT jobs advertised in the UK 1.55% 1.60% 1.62%
As % of the Qualifications category 7.15% 6.59% 6.75%
Number of salaries quoted 1,456 1,795 2,238
UK median annual salary £62,500 £60,000 £60,000
Median salary % change year-on-year +4.17% - -4.00%
10th Percentile £42,500 £41,250 £40,000
90th Percentile £93,750 £95,000 £92,500
UK excluding London median annual salary £57,500 £57,500 £55,000
% change year-on-year - +4.55% -

CISSP is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 26,689 36,792 42,196
As % of all permanent IT jobs advertised in the UK 21.71% 24.37% 23.95%
Number of salaries quoted 19,708 26,836 32,727
UK median annual salary £50,000 £50,000 £47,500
Median salary % change year-on-year - +5.26% +5.56%
10th Percentile £27,500 £26,250 £26,250
90th Percentile £82,500 £80,000 £80,000
UK excluding London median annual salary £46,500 £45,000 £42,500
% change year-on-year +3.33% +5.88% -

CISSP
Job Vacancy Trend

Job postings citing CISSP as a percentage of all IT jobs advertised.

Job vacancy trend for CISSP in the UK

CISSP
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISSP.

Salary trend for CISSP in the UK

CISSP
Salary Histogram

The salary distribution of IT jobs citing CISSP over the 6 months to 28 February 2020.

Salary histogram for CISSP in the UK

CISSP
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISSP within the UK over the 6 months to 28 February 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -7 1,758 £62,500 +4.17% 222
UK excluding London -5 1,086 £57,500 - 154
London +13 764 £70,000 - 76
South East +16 366 £65,000 +8.33% 35
Midlands +65 255 £55,000 -8.33% 28
West Midlands +75 219 £55,000 -8.33% 21
North of England -73 192 £57,000 +3.64% 44
South West 0 116 £55,000 - 23
North West -94 116 £55,000 - 20
Yorkshire +7 71 £58,500 +6.36% 21
East of England -37 65 £57,500 -0.65% 16
Wales +24 47 £52,500 -25.00% 3
Scotland +31 44 £53,275 +2.45% 5
East Midlands +16 32 £65,000 +8.33% 7
Northern Ireland +22 6 £55,000 -12.00%
North East -6 5 £55,000 -8.33% 3

For the 6 months to 28 February 2020, IT jobs citing CISSP also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISSP.

1 1,284 (67.30%) Information Security
2 1,135 (59.49%) CISM
3 1,085 (56.87%) Cybersecurity
4 808 (42.35%) ISO/IEC 27001
5 488 (25.58%) Finance
6 472 (24.74%) CISA
7 453 (23.74%) Risk Management
8 421 (22.06%) SIEM
9 418 (21.91%) Management Information System
10 397 (20.81%) Degree
11 396 (20.75%) Firewall
12 321 (16.82%) Security Architecture
13 313 (16.40%) Cisco Certification
13 313 (16.40%) NIST
14 307 (16.09%) GDPR
15 302 (15.83%) Security Operations
16 289 (15.15%) PCI DSS
17 264 (13.84%) ITIL
18 255 (13.36%) Vulnerability Management
19 254 (13.31%) Security Cleared
19 254 (13.31%) Penetration Testing
20 236 (12.37%) Agile Software Development
20 236 (12.37%) Azure
21 235 (12.32%) CEH
22 229 (12.00%) Security Management
23 220 (11.53%) AWS
24 208 (10.90%) CRISC
24 208 (10.90%) Windows
25 197 (10.32%) Network Security
26 189 (9.91%) CESG Certified Professional

CISSP
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 133 (6.97%) IIS
2 15 (0.79%) OpenStack
3 13 (0.68%) SharePoint
4 12 (0.63%) Apache Spark
5 11 (0.58%) Elasticsearch
6 6 (0.31%) Confluence
7 5 (0.26%) Apache
7 5 (0.26%) Tomcat
8 4 (0.21%) Skype for Business
9 3 (0.16%) MS Exchange
10 1 (0.052%) JBoss
10 1 (0.052%) WebLogic
10 1 (0.052%) WebSphere
Applications
1 31 (1.62%) Microsoft Office
2 30 (1.57%) Microsoft Excel
3 22 (1.15%) Microsoft PowerPoint
4 7 (0.37%) MS Visio
5 2 (0.10%) Gephi
6 1 (0.052%) Microsoft Project
6 1 (0.052%) Spreadsheet
Business Applications
1 3 (0.16%) Sparx Enterprise Architect
2 2 (0.10%) Dynamics CRM
2 2 (0.10%) Dynamics NAV
2 2 (0.10%) Sentinel
3 1 (0.052%) NetSuite
Cloud Services
1 236 (12.37%) Azure
2 220 (11.53%) AWS
3 132 (6.92%) Office 365
4 49 (2.57%) PaaS
5 48 (2.52%) SaaS
6 46 (2.41%) IaaS
7 38 (1.99%) Cloud Computing
8 36 (1.89%) GCP
9 28 (1.47%) Azure Active Directory
10 17 (0.89%) Serverless
11 15 (0.79%) Virtual Private Cloud
12 14 (0.73%) Amazon GuardDuty
13 13 (0.68%) OpenShift
14 12 (0.63%) Amazon EC2
15 8 (0.42%) AWS CloudTrail
15 8 (0.42%) G Suite
16 6 (0.31%) Power Platform
17 5 (0.26%) AWS CloudFormation
17 5 (0.26%) Mimecast
17 5 (0.26%) PowerApps
Communications & Networking
1 396 (20.75%) Firewall
2 197 (10.32%) Network Security
3 116 (6.08%) Intrusion Detection
4 90 (4.72%) TCP/IP
5 66 (3.46%) Internet
6 56 (2.94%) WAN
7 55 (2.88%) LAN
7 55 (2.88%) VPN
8 40 (2.10%) SSL
9 36 (1.89%) DNS
10 21 (1.10%) SAN
11 20 (1.05%) DHCP
11 20 (1.05%) HTTP
11 20 (1.05%) Wireless
12 12 (0.63%) HTTPS
13 11 (0.58%) SMTP
13 11 (0.58%) Wireshark
14 10 (0.52%) IPsec
15 9 (0.47%) PPP
15 9 (0.47%) WLAN
Database & Business Intelligence
1 38 (1.99%) Big Data
2 11 (0.58%) SQL Server
3 8 (0.42%) Maltego
4 7 (0.37%) Azure SQL Database
4 7 (0.37%) Data Lake
5 6 (0.31%) Power BI
6 4 (0.21%) GIS
7 3 (0.16%) Apache Hive
7 3 (0.16%) Impala
8 2 (0.10%) MySQL
8 2 (0.10%) Relational Database
9 1 (0.052%) Data Warehouse
9 1 (0.052%) Geospatial Data
9 1 (0.052%) Hadoop
9 1 (0.052%) Informix
Development Applications
1 24 (1.26%) Metasploit
2 21 (1.10%) JIRA
3 13 (0.68%) Git (software)
4 12 (0.63%) Bitbucket
4 12 (0.63%) git-flow
5 11 (0.58%) Burp Suite
6 5 (0.26%) WinDbg
7 3 (0.16%) Bitbucket Server
8 2 (0.10%) Android Studio
8 2 (0.10%) AppScan
8 2 (0.10%) Xcode
9 1 (0.052%) Appium
9 1 (0.052%) Cucumber
9 1 (0.052%) Maven
9 1 (0.052%) monkeyrunner
9 1 (0.052%) Robot Framework
9 1 (0.052%) Selenium
9 1 (0.052%) SonarQube
9 1 (0.052%) Sonatype Nexus
9 1 (0.052%) TestRail
General
1 488 (25.58%) Finance
2 151 (7.91%) Legal
3 114 (5.97%) Public Sector
4 106 (5.56%) Law
5 87 (4.56%) Retail
6 56 (2.94%) Banking
7 44 (2.31%) Telecoms
8 35 (1.83%) Marketing
9 21 (1.10%) Aerospace
9 21 (1.10%) Financial Institution
10 18 (0.94%) Manufacturing
11 15 (0.79%) Games
12 13 (0.68%) Investment Banking
13 12 (0.63%) Advertising
14 11 (0.58%) Electronics
14 11 (0.58%) Military
15 5 (0.26%) Local Government
16 4 (0.21%) French Language
17 3 (0.16%) International Banking
17 3 (0.16%) Police
Job Titles
1 400 (20.96%) Analyst
2 309 (16.19%) Security Manager
3 306 (16.04%) Security Analyst
4 284 (14.88%) Consultant
5 239 (12.53%) Security Consultant
6 205 (10.74%) Information Security Manager
7 200 (10.48%) Information Manager
8 185 (9.70%) Security Engineer
9 174 (9.12%) Architect
10 172 (9.01%) Security Architect
11 148 (7.76%) Information Analyst
11 148 (7.76%) Information Security Analyst
12 111 (5.82%) Cybersecurity Consultant
13 102 (5.35%) Security Specialist
14 78 (4.09%) Senior Analyst
15 67 (3.51%) Security Officer
16 63 (3.30%) Cybersecurity Engineer
16 63 (3.30%) IT Analyst
17 61 (3.20%) Cybersecurity Analyst
18 60 (3.14%) Senior Consultant
Libraries, Frameworks & Software Standards
1 44 (2.31%) SailPoint
2 29 (1.52%) OAuth
3 24 (1.26%) SAML
4 22 (1.15%) OpenID
4 22 (1.15%) Web Services
5 20 (1.05%) .NET
6 12 (0.63%) Kafka
7 11 (0.58%) Spring
8 10 (0.52%) Middleware
8 10 (0.52%) REST
9 9 (0.47%) AngularJS
9 9 (0.47%) ASP.NET
9 9 (0.47%) GraphQL
9 9 (0.47%) Node.js
9 9 (0.47%) React
9 9 (0.47%) Spring MVC
9 9 (0.47%) Vue.js
10 8 (0.42%) LDAP
10 8 (0.42%) Regular Expression
11 7 (0.37%) RESTful
Miscellaneous
1 418 (21.91%) Management Information System
2 139 (7.29%) Analytical Skills
3 100 (5.24%) Cyberthreat
4 86 (4.51%) Self-Motivation
5 71 (3.72%) Security Operations Centre
6 58 (3.04%) Cyberattack
7 47 (2.46%) Data Centre
8 39 (2.04%) PKI
9 35 (1.83%) Cyber Defence
10 33 (1.73%) CESG
11 25 (1.31%) Greenfield Project
12 24 (1.26%) Cyber Kill Chain
12 24 (1.26%) Public Cloud
13 22 (1.15%) Data Protection Act
13 22 (1.15%) Distributed Denial-of-Service
14 20 (1.05%) User Experience
15 17 (0.89%) Virtual Team
16 16 (0.84%) Cloud Native
16 16 (0.84%) Reinsurance
17 15 (0.79%) Enterprise Storage
Operating Systems
1 208 (10.90%) Windows
2 183 (9.59%) Linux
3 60 (3.14%) Windows Server
4 45 (2.36%) Unix
5 29 (1.52%) Windows 10
6 22 (1.15%) Apple iOS
7 19 (1.00%) Android
8 17 (0.89%) Windows Server 2012
9 15 (0.79%) CentOS
9 15 (0.79%) Fedora
9 15 (0.79%) Kali Linux
9 15 (0.79%) Red Hat Enterprise Linux
9 15 (0.79%) Ubuntu
10 8 (0.42%) Mac OS
11 4 (0.21%) Solaris
12 2 (0.10%) Windows 7
12 2 (0.10%) Windows Server 2008
Processes & Methodologies
1 1,284 (67.30%) Information Security
2 1,085 (56.87%) Cybersecurity
3 453 (23.74%) Risk Management
4 421 (22.06%) SIEM
5 321 (16.82%) Security Architecture
6 302 (15.83%) Security Operations
7 264 (13.84%) ITIL
8 255 (13.36%) Vulnerability Management
9 254 (13.31%) Penetration Testing
10 236 (12.37%) Agile Software Development
11 229 (12.00%) Security Management
12 176 (9.22%) Stakeholder Management
13 169 (8.86%) Threat Intelligence
14 160 (8.39%) Identity Access Management
15 158 (8.28%) Data Protection
16 156 (8.18%) Risk Assessment
17 152 (7.97%) Incident Management
18 141 (7.39%) Information Security Management
19 139 (7.29%) Information Assurance
20 135 (7.08%) ISMS
Programming Languages
1 81 (4.25%) Python
2 71 (3.72%) C
3 64 (3.35%) PowerShell
4 36 (1.89%) Java
5 35 (1.83%) SQL
6 27 (1.42%) Bash Shell
7 18 (0.94%) C++
8 14 (0.73%) Perl
9 13 (0.68%) Ruby
10 11 (0.58%) C#
11 9 (0.47%) Go
11 9 (0.47%) PHP
12 8 (0.42%) RPG
12 8 (0.42%) VB.NET
13 7 (0.37%) Shell Script
14 5 (0.26%) VBScript
15 4 (0.21%) Apple Swift
15 4 (0.21%) Kotlin
16 3 (0.16%) Objective-C
16 3 (0.16%) R
Qualifications
1 1,135 (59.49%) CISM
2 472 (24.74%) CISA
3 397 (20.81%) Degree
4 313 (16.40%) Cisco Certification
5 254 (13.31%) Security Cleared
6 235 (12.32%) CEH
7 208 (10.90%) CRISC
8 189 (9.91%) CESG Certified Professional
9 174 (9.12%) GIAC
10 167 (8.75%) SC Cleared
11 139 (7.29%) (ISC)2 CCSP
12 134 (7.02%) IISP
13 125 (6.55%) SANS
14 102 (5.35%) CCSP
15 96 (5.03%) CompTIA Security+
16 89 (4.66%) CCNA
17 87 (4.56%) SSCP
18 85 (4.45%) CCNP
19 80 (4.19%) CISMP
20 74 (3.88%) DV Cleared
Quality Assurance & Compliance
1 808 (42.35%) ISO/IEC 27001
2 313 (16.40%) NIST
3 307 (16.09%) GDPR
4 289 (15.15%) PCI DSS
5 122 (6.39%) NCSC
6 113 (5.92%) Cyber Essentials
7 112 (5.87%) COBIT
8 74 (3.88%) Sarbanes-Oxley
9 63 (3.30%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 62 (3.25%) HMG Security Policy Framework
11 54 (2.83%) SLA
12 40 (2.10%) QA
13 39 (2.04%) JSP 440
14 35 (1.83%) NIST 800
15 30 (1.57%) ISO 22301
16 28 (1.47%) Cyber Essentials PLUS
16 28 (1.47%) RMADS
17 21 (1.10%) ISO 9001
18 20 (1.05%) HIPAA
19 16 (0.84%) ISO/IEC 27005
System Software
1 90 (4.72%) Active Directory
2 48 (2.52%) VMware Infrastructure
3 28 (1.47%) Docker
4 15 (0.79%) NFS
4 15 (0.79%) Samba
4 15 (0.79%) VirtualBox
4 15 (0.79%) VMware ESXi
4 15 (0.79%) Xen
5 10 (0.52%) Hyper-V
6 4 (0.21%) BitLocker
7 3 (0.16%) Apache Flume
8 2 (0.10%) Microsoft Virtual Server
8 2 (0.10%) Virtual Machines
8 2 (0.10%) Virtual Servers
9 1 (0.052%) Firmware
9 1 (0.052%) Snort
9 1 (0.052%) Virtual Desktop
Systems Management
1 61 (3.20%) Nessus
2 31 (1.62%) Kubernetes
3 27 (1.42%) Nmap
4 24 (1.26%) Single Sign-On
5 22 (1.15%) QRadar
6 18 (0.94%) Ansible
6 18 (0.94%) McAfee ePO
6 18 (0.94%) Puppet
7 17 (0.89%) Microsoft Intune
8 15 (0.79%) CASB
8 15 (0.79%) Docker Swarm
8 15 (0.79%) Nagios
8 15 (0.79%) OpenNMS
8 15 (0.79%) vCenter Server
8 15 (0.79%) ZABBIX
9 12 (0.63%) SCCM
10 9 (0.47%) CSIRT
11 7 (0.37%) Norton AntiVirus
11 7 (0.37%) OpenVAS
12 6 (0.31%) FortiGate
Vendors
1 155 (8.12%) Microsoft
2 103 (5.40%) Cisco
3 93 (4.87%) Splunk
4 64 (3.35%) VMware
5 60 (3.14%) Qualys
6 54 (2.83%) McAfee
7 53 (2.78%) Palo Alto
8 49 (2.57%) ArcSight
8 49 (2.57%) CyberArk
9 38 (1.99%) CheckPoint
10 34 (1.78%) LogRhythm
11 33 (1.73%) Google
12 29 (1.52%) SolarWinds
13 28 (1.47%) Dell
14 21 (1.10%) Darktrace
14 21 (1.10%) Fortinet
15 20 (1.05%) ForgeRock
15 20 (1.05%) Symantec
16 19 (1.00%) EMC
17 17 (0.89%) Intel