Period
to 17 February 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CISSP qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 17 February 2018 with a comparison to the same period in the previous 2 years.

(ISC)² Certified Information Systems Security Professional (ISC2 CISSP)
UK
6 months to
17 Feb 2018
Same period 2017 Same period 2016
Rank 215 207 227
Rank change year-on-year -8 +20 +83
Permanent jobs citing CISSP 2,801 2,944 3,222
As % of all permanent IT jobs advertised in the UK 1.60% 1.68% 1.53%
As % of the Qualifications category 6.77% 6.59% 5.52%
Number of salaries quoted 2,190 2,332 2,618
UK median annual salary £60,000 £62,500 £60,000
Median salary % change year-on-year -4.00% +4.17% +9.09%
10th Percentile £40,000 £40,525 £42,500
90th Percentile £90,125 £90,000 £85,000
UK excluding London median annual salary £55,000 £55,000 £55,000

CISSP is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 41,388 44,644 58,394
As % of all permanent IT jobs advertised in the UK 23.63% 25.42% 27.70%
Number of salaries quoted 32,108 35,328 46,573
UK median annual salary £47,500 £45,000 £45,000
Median salary % change year-on-year +5.56% - -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £78,750 £76,250 £75,000
UK excluding London median annual salary £42,500 £42,500 £42,500

CISSP
Job Vacancy Trend

Job postings citing CISSP as a percentage of all IT jobs advertised.

Job vacancy trend for CISSP in the UK

CISSP
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISSP.

Salary trend for CISSP in the UK

CISSP
Salary Histogram

The salary distribution of IT jobs citing CISSP over the 6 months to 17 February 2018.

Salary histogram for CISSP in the UK

CISSP
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISSP within the UK over the 6 months to 17 February 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -7 2,643 £60,000 -4.00% 253
London -12 1,353 £70,000 +2.94% 118
UK excluding London +7 1,342 £55,000 - 149
South East +54 507 £57,500 -4.17% 42
North of England +4 332 £55,000 +10.00% 37
North West -14 180 £55,000 +7.32% 16
Midlands -63 167 £48,500 -3.00% 25
South West -41 141 £45,000 -25.00% 13
East of England +22 139 £55,000 -4.35% 18
Yorkshire +15 117 £52,500 +16.67% 15
West Midlands -74 106 £53,500 +7.00% 15
East Midlands +15 61 £42,555 -5.43% 10
Scotland -50 51 £63,750 +15.91% 9
North East -6 35 £48,500 +7.78% 6
Wales +9 16 £55,000 +4.76% 5
Northern Ireland -22 3 £52,500 +31.25%

For the 6 months to 17 February 2018, IT jobs citing CISSP also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISSP.

1 1,819 (64.94%) Information Security
2 1,605 (57.30%) CISM
3 1,104 (39.41%) ISO/IEC 27001
4 1,017 (36.31%) Cybersecurity
5 946 (33.77%) CISA
6 937 (33.45%) Finance
7 784 (27.99%) Firewall
8 710 (25.35%) SIEM
9 539 (19.24%) Risk Management
10 529 (18.89%) Management Information System
11 525 (18.74%) Degree
12 513 (18.31%) GDPR
13 505 (18.03%) Penetration Testing
14 488 (17.42%) ITIL
15 486 (17.35%) Network Security
16 476 (16.99%) PCI DSS
17 473 (16.89%) Windows
18 468 (16.71%) CEH
19 465 (16.60%) Security Operations
20 457 (16.32%) Security Architecture
21 440 (15.71%) Data Protection
22 429 (15.32%) GIAC
23 401 (14.32%) Vulnerability Management
24 398 (14.21%) Linux
25 375 (13.39%) Cisco Certification
26 334 (11.92%) SANS
27 314 (11.21%) Security Management
28 308 (11.00%) Microsoft
29 280 (10.00%) TCP/IP
30 277 (9.89%) SSCP

CISSP
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 77 (2.75%) IIS
2 38 (1.36%) SharePoint
3 26 (0.93%) Apache
4 21 (0.75%) WebSphere
5 13 (0.46%) Apache Spark
6 12 (0.43%) MS Exchange
7 10 (0.36%) Elasticsearch
8 9 (0.32%) Apache Pig
9 8 (0.29%) Blackberry Enterprise Server
10 7 (0.25%) OpenStack
11 6 (0.21%) SAS
12 5 (0.18%) Tomcat
13 1 (0.036%) WebLogic
13 1 (0.036%) WordPress
Applications
1 48 (1.71%) Microsoft Office
2 9 (0.32%) Microsoft Excel
2 9 (0.32%) Microsoft PowerPoint
3 7 (0.25%) MS Visio
4 6 (0.21%) Microsoft Project
5 4 (0.14%) Stata
6 2 (0.071%) Chatbot
Business Applications
1 34 (1.21%) Dynamics CRM
2 8 (0.29%) Markit EDM
3 5 (0.18%) NetSuite
4 3 (0.11%) assyst
5 1 (0.036%) Payment Gateway
5 1 (0.036%) SunGard APT
5 1 (0.036%) Veritas eDiscovery
Cloud Services
1 125 (4.46%) Microsoft Azure
2 124 (4.43%) Amazon AWS
3 85 (3.03%) Office 365
4 74 (2.64%) SaaS
5 49 (1.75%) IaaS
6 39 (1.39%) PaaS
7 37 (1.32%) OneDrive
8 24 (0.86%) Mimecast
9 21 (0.75%) Google Cloud Platform
10 16 (0.57%) Cloud Computing
11 11 (0.39%) Cloudflare
12 7 (0.25%) G Suite
13 6 (0.21%) Azure Active Directory
14 5 (0.18%) IBM Cloud
14 5 (0.18%) SoftLayer
15 4 (0.14%) Amazon EC2
15 4 (0.14%) BPaaS
15 4 (0.14%) iPaaS
15 4 (0.14%) Sumo Logic
15 4 (0.14%) Virtual Private Cloud
Communications & Networking
1 784 (27.99%) Firewall
2 486 (17.35%) Network Security
3 280 (10.00%) TCP/IP
4 141 (5.03%) Intrusion Detection
5 124 (4.43%) VPN
6 108 (3.86%) WAN
7 96 (3.43%) Internet
8 87 (3.11%) DNS
9 86 (3.07%) LAN
10 80 (2.86%) HTTP
11 70 (2.50%) DHCP
12 62 (2.21%) SSL
12 62 (2.21%) Wireless
13 57 (2.03%) SMTP
14 51 (1.82%) IPsec
15 48 (1.71%) DMZ
16 44 (1.57%) MPLS
17 42 (1.50%) FTP
18 39 (1.39%) BGP
19 38 (1.36%) OSPF
Database & Business Intelligence
1 53 (1.89%) Big Data
2 39 (1.39%) SQL Server
3 28 (1.00%) Hadoop
3 28 (1.00%) MySQL
4 9 (0.32%) Apache Hive
4 9 (0.32%) Oracle Database
5 8 (0.29%) Blockchain
6 5 (0.18%) MongoDB
6 5 (0.18%) Relational Database
7 4 (0.14%) BusinessObjects
7 4 (0.14%) QlikView
8 3 (0.11%) GIS
9 1 (0.036%) Apache Cassandra
9 1 (0.036%) NoSQL
9 1 (0.036%) PostgreSQL
9 1 (0.036%) Power BI
9 1 (0.036%) RDBMS
Development Applications
1 37 (1.32%) Metasploit
2 25 (0.89%) Burp Suite
3 22 (0.79%) JIRA
4 14 (0.50%) Redmine
5 10 (0.36%) AppScan
6 9 (0.32%) Git (software)
7 8 (0.29%) Atlassian Bamboo
7 8 (0.29%) Bitbucket
7 8 (0.29%) CodeSonar
7 8 (0.29%) git-flow
7 8 (0.29%) Robot Framework
7 8 (0.29%) Selenium
7 8 (0.29%) Sonatype Nexus
8 4 (0.14%) SonarQube
9 2 (0.071%) FxCop
9 2 (0.071%) Subversion
9 2 (0.071%) WebScarab
10 1 (0.036%) Rational Rose
10 1 (0.036%) SoapUI
10 1 (0.036%) Xcode
General
1 937 (33.45%) Finance
2 225 (8.03%) Banking
3 188 (6.71%) Legal
4 99 (3.53%) Law
5 81 (2.89%) Retail
6 73 (2.61%) Telecoms
7 53 (1.89%) Investment Banking
8 42 (1.50%) Marketing
9 41 (1.46%) Games
10 37 (1.32%) Manufacturing
11 22 (0.79%) Retail Banking
12 21 (0.75%) Private Banking
13 14 (0.50%) Electronics
14 13 (0.46%) Financial Institution
14 13 (0.46%) Publishing
15 12 (0.43%) Front Office
15 12 (0.43%) Military
16 9 (0.32%) Advertising
16 9 (0.32%) Pharmaceutical
17 8 (0.29%) Billing
Job Titles
1 625 (22.31%) Analyst
2 524 (18.71%) Security Analyst
3 512 (18.28%) Security Manager
4 363 (12.96%) Consultant
5 300 (10.71%) Security Consultant
6 272 (9.71%) Information Security Manager
6 272 (9.71%) Security Engineer
7 269 (9.60%) Information Manager
8 246 (8.78%) Information Analyst
8 246 (8.78%) Information Security Analyst
9 232 (8.28%) Architect
10 218 (7.78%) Security Architect
11 203 (7.25%) IT Manager
12 170 (6.07%) Security Officer
13 146 (5.21%) Risk Manager
14 131 (4.68%) Information Security Officer
15 128 (4.57%) IT Security Manager
16 124 (4.43%) IT Analyst
17 118 (4.21%) Information Officer
18 108 (3.86%) Security Specialist
Libraries, Frameworks & Software Standards
1 38 (1.36%) Web Services
2 34 (1.21%) .NET
3 23 (0.82%) Middleware
4 21 (0.75%) MSMQ
4 21 (0.75%) SailPoint
4 21 (0.75%) WebSphere MQ
5 17 (0.61%) REST
6 16 (0.57%) Regular Expression
6 16 (0.57%) SOAP
7 15 (0.54%) Java EE
8 13 (0.46%) STL
9 12 (0.43%) .NET Framework
9 12 (0.43%) Elastic Stack
9 12 (0.43%) PCRE
10 11 (0.39%) OAuth
11 10 (0.36%) J2EE
12 9 (0.32%) 802.1X
12 9 (0.32%) ASP.NET
12 9 (0.32%) LAMP
12 9 (0.32%) OpenID
Miscellaneous
1 529 (18.89%) Management Information System
2 252 (9.00%) Analytical Skills
3 203 (7.25%) Computer Science
4 181 (6.46%) Cyberthreat
5 164 (5.86%) Data Protection Act
6 112 (4.00%) Security Operations Centre
7 107 (3.82%) CESG
8 104 (3.71%) Data Centre
9 95 (3.39%) PKI
10 67 (2.39%) Distributed Denial-of-Service
11 55 (1.96%) Fintech
12 51 (1.82%) Cyber Defence
13 49 (1.75%) Cyberattack
14 34 (1.21%) Mobile App
15 31 (1.11%) Mainframe
16 22 (0.79%) Smart Meter
17 21 (0.75%) Public Cloud
18 20 (0.71%) NHS
19 16 (0.57%) Greenfield Project
19 16 (0.57%) Virtual Team
Operating Systems
1 473 (16.89%) Windows
2 398 (14.21%) Linux
3 223 (7.96%) Unix
4 143 (5.11%) Windows Server
5 51 (1.82%) Apple iOS
6 41 (1.46%) Kali Linux
7 39 (1.39%) Mac OS X
8 23 (0.82%) Android
9 18 (0.64%) VMS
10 15 (0.54%) Ubuntu
11 11 (0.39%) AIX
11 11 (0.39%) Red Hat Enterprise Linux
11 11 (0.39%) Windows Server 2008
12 9 (0.32%) FreeBSD
12 9 (0.32%) Windows 7
13 8 (0.29%) Solaris
14 7 (0.25%) Windows 8
15 6 (0.21%) CentOS
15 6 (0.21%) Debian
16 5 (0.18%) Windows Server 2012
Processes & Methodologies
1 1,819 (64.94%) Information Security
2 1,017 (36.31%) Cybersecurity
3 710 (25.35%) SIEM
4 539 (19.24%) Risk Management
5 505 (18.03%) Penetration Testing
6 488 (17.42%) ITIL
7 465 (16.60%) Security Operations
8 457 (16.32%) Security Architecture
9 440 (15.71%) Data Protection
10 401 (14.32%) Vulnerability Management
11 314 (11.21%) Security Management
12 268 (9.57%) Incident Management
13 252 (9.00%) Agile Software Development
14 251 (8.96%) Risk Assessment
15 236 (8.43%) Stakeholder Management
16 234 (8.35%) Vulnerability Scanning
17 214 (7.64%) Data Loss Prevention
18 213 (7.60%) Identity Access Management
19 206 (7.35%) Project Management
20 205 (7.32%) Information Security Management
Programming Languages
1 120 (4.28%) Python
2 95 (3.39%) Bash Shell
3 89 (3.18%) PowerShell
4 85 (3.03%) C
5 71 (2.53%) Java
6 69 (2.46%) Perl
7 66 (2.36%) Ruby
8 59 (2.11%) C#
9 54 (1.93%) SQL
10 49 (1.75%) Korn
11 35 (1.25%) Bourne shell
12 34 (1.21%) C++
13 32 (1.14%) PHP
14 21 (0.75%) JavaScript
15 14 (0.50%) Objective-C
16 8 (0.29%) Shell Script
17 3 (0.11%) Lua
18 2 (0.071%) Go
18 2 (0.071%) Tcl
19 1 (0.036%) BeanShell
Qualifications
1 1,605 (57.30%) CISM
2 946 (33.77%) CISA
3 525 (18.74%) Degree
4 468 (16.71%) CEH
5 429 (15.32%) GIAC
6 375 (13.39%) Cisco Certification
7 334 (11.92%) SANS
8 277 (9.89%) SSCP
9 262 (9.35%) CRISC
10 222 (7.93%) Security Cleared
11 185 (6.60%) CCNA
12 165 (5.89%) SC Cleared
13 164 (5.86%) CompTIA Security+
14 143 (5.11%) CCNP
15 125 (4.46%) OSCP
16 121 (4.32%) CESG Certified Professional
17 118 (4.21%) GCIH
18 92 (3.28%) CSSLP
19 90 (3.21%) Computer Science Degree
20 87 (3.11%) CREST Certified
Quality Assurance & Compliance
1 1,104 (39.41%) ISO/IEC 27001
2 513 (18.31%) GDPR
3 476 (16.99%) PCI DSS
4 189 (6.75%) COBIT
5 168 (6.00%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 116 (4.14%) Cyber Essentials
7 61 (2.18%) Sarbanes-Oxley
8 43 (1.54%) ISO/IEC 27005
9 40 (1.43%) ISO 22301
10 39 (1.39%) HMG Security Policy Framework
11 36 (1.29%) RMADS
12 32 (1.14%) PMO
13 31 (1.11%) GPG13
14 29 (1.04%) NIST 800
15 25 (0.89%) HIPAA
16 20 (0.71%) Cyber Essentials PLUS
16 20 (0.71%) ISO 9001
17 17 (0.61%) ISO 31000
18 15 (0.54%) GCP
19 12 (0.43%) QA
System Software
1 183 (6.53%) Active Directory
2 55 (1.96%) vSphere
3 52 (1.86%) Snort
4 44 (1.57%) VMware Infrastructure
5 25 (0.89%) Hyper-V
6 15 (0.54%) Virtual Machines
6 15 (0.54%) VMware ESXi
6 15 (0.54%) VMware NSX
7 14 (0.50%) NFS
7 14 (0.50%) Samba
8 12 (0.43%) HDFS
9 11 (0.39%) Docker
10 9 (0.32%) Firmware
11 7 (0.25%) XenServer
12 6 (0.21%) pfSense
13 4 (0.14%) Virtual Desktop
13 4 (0.14%) XenApp
14 3 (0.11%) BitLocker
15 1 (0.036%) ProxySG
Systems Management
1 93 (3.32%) Nessus
2 47 (1.68%) QRadar
3 32 (1.14%) Ansible
4 31 (1.11%) Puppet
5 28 (1.00%) Core Impact
6 26 (0.93%) CSIRT
7 25 (0.89%) OpenVAS
8 24 (0.86%) Suricata
9 23 (0.82%) Host Intrusion Detection System
9 23 (0.82%) McAfee ePO
10 22 (0.79%) SCCM
11 18 (0.64%) Nagios
11 18 (0.64%) RSA enVision
12 17 (0.61%) Single Sign-On
13 14 (0.50%) RSA Security Analytics
13 14 (0.50%) vCenter Server
14 11 (0.39%) FortiGate
15 10 (0.36%) Norton AntiVirus
15 10 (0.36%) Opscode Chef
15 10 (0.36%) SCOM
Vendors
1 308 (11.00%) Microsoft
2 230 (8.21%) Cisco
3 113 (4.03%) CheckPoint
4 101 (3.61%) Splunk
5 80 (2.86%) Palo Alto
6 79 (2.82%) VMware
7 73 (2.61%) Symantec
8 72 (2.57%) Juniper
9 70 (2.50%) McAfee
10 64 (2.28%) LogRhythm
11 58 (2.07%) Qualys
12 57 (2.03%) F5
12 57 (2.03%) Fortinet
13 55 (1.96%) Forcepoint
14 52 (1.86%) Sophos
15 47 (1.68%) IBM
16 46 (1.64%) CyberArk
17 42 (1.50%) Sourcefire
18 40 (1.43%) Apple
19 36 (1.29%) Oracle