Period
to 15 December 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CISSP qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 15 December 2018 with a comparison to the same period in the previous 2 years.

(ISC)² Certified Information Systems Security Professional (ISC2 CISSP)
UK
6 months to
15 Dec 2018
Same period 2017 Same period 2016
Rank 190 224 194
Rank change year-on-year +34 -30 +56
Permanent jobs citing CISSP 2,896 2,847 3,317
As % of all permanent IT jobs advertised in the UK 1.83% 1.59% 1.79%
As % of the Qualifications category 7.70% 6.62% 6.85%
Number of salaries quoted 2,186 2,186 2,610
UK median annual salary £62,500 £60,000 £62,500
Median salary % change year-on-year +4.17% -4.00% +8.70%
10th Percentile £40,500 £40,000 £40,000
90th Percentile £93,750 £90,000 £87,500
UK excluding London median annual salary £57,500 £52,500 £55,000
% change year-on-year +9.52% -4.55% -

CISSP is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 37,627 43,002 48,431
As % of all permanent IT jobs advertised in the UK 23.80% 23.96% 26.14%
Number of salaries quoted 27,581 33,069 38,658
UK median annual salary £50,000 £47,500 £45,000
Median salary % change year-on-year +5.26% +5.56% -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £81,250 £77,500 £77,500
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +2.41%

CISSP
Job Vacancy Trend

Job postings citing CISSP as a percentage of all IT jobs advertised.

Job vacancy trend for CISSP in the UK

CISSP
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CISSP.

Salary trend for CISSP in the UK

CISSP
Salary Histogram

The salary distribution of IT jobs citing CISSP over the 6 months to 15 December 2018.

Salary histogram for CISSP in the UK

CISSP
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CISSP within the UK over the 6 months to 15 December 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +39 2,778 £62,500 +4.17% 297
UK excluding London +73 1,681 £57,500 +9.52% 177
London -11 1,145 £70,000 +3.70% 135
North of England +88 493 £55,000 +4.76% 48
South East +12 490 £60,000 +9.09% 46
North West +119 374 £55,000 +3.77% 28
East of England +129 298 £65,000 +18.18% 24
Midlands +56 180 £57,500 +15.00% 24
South West +9 158 £55,000 +22.22% 20
West Midlands +66 144 £57,500 +4.55% 15
Yorkshire +20 93 £52,500 - 14
Scotland +5 52 £52,500 -16.00% 7
East Midlands +19 38 £60,000 +26.32% 9
North East -18 26 £61,625 +17.38% 6
Wales +6 14 £43,000 -21.82% 7
Northern Ireland -3 5 £62,500 +47.06% 1

For the 6 months to 15 December 2018, IT jobs citing CISSP also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CISSP.

1 1,907 (65.85%) Information Security
2 1,387 (47.89%) CISM
3 1,255 (43.34%) ISO/IEC 27001
4 1,229 (42.44%) Cybersecurity
5 878 (30.32%) SIEM
6 805 (27.80%) CISA
7 801 (27.66%) Risk Management
8 740 (25.55%) Finance
9 688 (23.76%) Windows
10 663 (22.89%) Linux
11 652 (22.51%) Management Information System
12 630 (21.75%) Penetration Testing
13 603 (20.82%) Firewall
14 560 (19.34%) PCI DSS
15 548 (18.92%) Degree
16 537 (18.54%) GDPR
17 526 (18.16%) Microsoft
18 509 (17.58%) CEH
19 487 (16.82%) Data Protection
20 485 (16.75%) Cisco Certification
21 483 (16.68%) SANS
22 481 (16.61%) Vulnerability Management
23 416 (14.36%) Network Security
24 411 (14.19%) Security Operations
25 394 (13.60%) Security Architecture
26 390 (13.47%) ITIL
27 388 (13.40%) GIAC
28 376 (12.98%) Security Management
29 358 (12.36%) SSCP
30 348 (12.02%) Microsoft Azure

CISSP
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 31 (1.07%) IIS
2 30 (1.04%) Apache
3 29 (1.00%) Apache Pig
4 19 (0.66%) ExpressionEngine
4 19 (0.66%) SharePoint
4 19 (0.66%) WordPress
5 13 (0.45%) Confluence
5 13 (0.45%) MS Exchange
6 8 (0.28%) Apache Spark
7 6 (0.21%) WebSphere
8 4 (0.14%) WebLogic
9 3 (0.10%) OpenStack
10 2 (0.069%) Elasticsearch
10 2 (0.069%) JBoss
10 2 (0.069%) nginx
10 2 (0.069%) Oracle Workflow
10 2 (0.069%) Tomcat
11 1 (0.035%) SAS
11 1 (0.035%) SharePoint 2013
Applications
1 104 (3.59%) Microsoft PowerPoint
2 59 (2.04%) Microsoft Office
3 11 (0.38%) MS Visio
4 10 (0.35%) Microsoft Excel
5 1 (0.035%) Microsoft Project
5 1 (0.035%) Spreadsheet
Business Applications
1 7 (0.24%) SAP GRC
2 5 (0.17%) assyst
3 4 (0.14%) Infor M3
4 3 (0.10%) Sentinel
5 2 (0.069%) SAP HR
6 1 (0.035%) Dynamics CRM
6 1 (0.035%) Dynamics GP
6 1 (0.035%) Oracle Applications
Cloud Services
1 348 (12.02%) Microsoft Azure
2 312 (10.77%) Amazon AWS
3 110 (3.80%) Office 365
4 79 (2.73%) SaaS
5 60 (2.07%) IaaS
6 38 (1.31%) Google Cloud Platform
6 38 (1.31%) PaaS
7 21 (0.73%) Cloud Computing
7 21 (0.73%) Mimecast
8 13 (0.45%) Azure Active Directory
9 5 (0.17%) AWS CloudFormation
10 4 (0.14%) GitHub
11 2 (0.069%) Google Drive
11 2 (0.069%) OneDrive
11 2 (0.069%) Yammer
12 1 (0.035%) Akamai
12 1 (0.035%) Amazon EC2
12 1 (0.035%) Dropbox
12 1 (0.035%) Serverless
12 1 (0.035%) Slack
Communications & Networking
1 603 (20.82%) Firewall
2 416 (14.36%) Network Security
3 226 (7.80%) TCP/IP
4 190 (6.56%) Intrusion Detection
5 130 (4.49%) Internet
6 107 (3.69%) Wi-Fi
7 82 (2.83%) WAN
8 76 (2.62%) LAN
9 72 (2.49%) SSL
9 72 (2.49%) Wireshark
10 69 (2.38%) HTTP
11 62 (2.14%) DNS
12 59 (2.04%) Wireless
13 58 (2.00%) VPN
14 27 (0.93%) IPsec
14 27 (0.93%) SMTP
15 26 (0.90%) SNMP
16 25 (0.86%) BGP
17 23 (0.79%) DMZ
18 22 (0.76%) DHCP
Database & Business Intelligence
1 104 (3.59%) Big Data
2 69 (2.38%) SQL Server
3 49 (1.69%) Hadoop
4 36 (1.24%) MySQL
5 29 (1.00%) Apache Hive
6 19 (0.66%) MongoDB
7 13 (0.45%) Geospatial Data
8 10 (0.35%) DB2
9 6 (0.21%) GIS
9 6 (0.21%) NoSQL
10 3 (0.10%) Data Mining
11 2 (0.069%) Data Warehouse
11 2 (0.069%) Oracle Database
11 2 (0.069%) Oracle Database 11g
11 2 (0.069%) QlikView
12 1 (0.035%) Amazon DynamoDB
12 1 (0.035%) BusinessObjects
12 1 (0.035%) Data Lake
12 1 (0.035%) Maltego
Development Applications
1 60 (2.07%) JIRA
2 38 (1.31%) Git (software)
3 33 (1.14%) Atlassian Bamboo
3 33 (1.14%) Metasploit
4 29 (1.00%) Bitbucket
4 29 (1.00%) CodeSonar
4 29 (1.00%) git-flow
4 29 (1.00%) Robot Framework
4 29 (1.00%) Selenium
5 17 (0.59%) Redmine
6 14 (0.48%) Jenkins
7 10 (0.35%) Hudson
8 8 (0.28%) AppScan
8 8 (0.28%) MSTest
8 8 (0.28%) NUnit
8 8 (0.28%) Visual Studio
9 6 (0.21%) Gradle
9 6 (0.21%) Maven
10 5 (0.17%) Subversion
11 4 (0.14%) Burp Suite
General
1 740 (25.55%) Finance
2 273 (9.43%) Legal
3 221 (7.63%) Banking
4 196 (6.77%) Retail
5 90 (3.11%) Investment Banking
6 65 (2.24%) Telecoms
7 39 (1.35%) Publishing
8 37 (1.28%) Manufacturing
9 31 (1.07%) Law
10 29 (1.00%) Marketing
11 25 (0.86%) Games
12 23 (0.79%) Financial Institution
13 14 (0.48%) Electronics
14 9 (0.31%) French Language
15 8 (0.28%) Advertising
15 8 (0.28%) Local Government
16 7 (0.24%) Pharmaceutical
17 4 (0.14%) International Banking
18 3 (0.10%) Aerospace
18 3 (0.10%) Retail Banking
Job Titles
1 629 (21.72%) Analyst
2 530 (18.30%) Security Manager
3 508 (17.54%) Security Analyst
4 382 (13.19%) Security Engineer
5 329 (11.36%) Information Manager
6 327 (11.29%) Information Security Manager
7 318 (10.98%) Consultant
8 310 (10.70%) Architect
9 280 (9.67%) Security Consultant
10 262 (9.05%) Security Architect
11 200 (6.91%) Information Analyst
12 198 (6.84%) Information Security Analyst
13 193 (6.66%) IT Analyst
14 185 (6.39%) Senior Analyst
15 175 (6.04%) IT Security Analyst
15 175 (6.04%) Senior Security Analyst
16 132 (4.56%) Security Officer
17 110 (3.80%) Senior IT Security Analyst
18 99 (3.42%) Cybersecurity Consultant
19 96 (3.31%) Cybersecurity Analyst
Libraries, Frameworks & Software Standards
1 92 (3.18%) .NET
2 56 (1.93%) Node.js
3 52 (1.80%) REST
4 46 (1.59%) LAMP
4 46 (1.59%) SOAP
5 44 (1.52%) ASP.NET
6 41 (1.42%) SailPoint
7 35 (1.21%) Web Services
8 34 (1.17%) Elastic Stack
9 33 (1.14%) Java EE
9 33 (1.14%) RabbitMQ
10 32 (1.10%) STL
11 30 (1.04%) .NET Framework
11 30 (1.04%) HTML
12 29 (1.00%) Django
12 29 (1.00%) Spring MVC
13 27 (0.93%) SAML
14 18 (0.62%) JSON
14 18 (0.62%) OAuth
14 18 (0.62%) XML
Miscellaneous
1 652 (22.51%) Management Information System
2 286 (9.88%) Analytical Skills
3 173 (5.97%) Cyber Kill Chain
4 164 (5.66%) Security Operations Centre
5 154 (5.32%) Data Protection Act
6 145 (5.01%) Self-Motivation
7 136 (4.70%) Cyberthreat
8 111 (3.83%) PKI
9 107 (3.69%) Data Centre
10 79 (2.73%) CESG
11 74 (2.56%) Fintech
12 53 (1.83%) Distributed Denial-of-Service
13 48 (1.66%) Cyberattack
14 42 (1.45%) Cyber Defence
15 29 (1.00%) Mobile App
16 23 (0.79%) Public Cloud
17 21 (0.73%) Cybercrime
18 20 (0.69%) Hybrid Cloud
19 18 (0.62%) NHS
20 16 (0.55%) Cloud Native
Operating Systems
1 688 (23.76%) Windows
2 663 (22.89%) Linux
3 144 (4.97%) Unix
4 88 (3.04%) Windows Server
5 69 (2.38%) Apple iOS
6 63 (2.18%) Mac OS X
7 39 (1.35%) Android
8 29 (1.00%) Kali Linux
8 29 (1.00%) Red Hat Enterprise Linux
9 24 (0.83%) CentOS
10 19 (0.66%) Ubuntu
11 10 (0.35%) Debian
12 9 (0.31%) Windows 10
13 8 (0.28%) HPUX
14 7 (0.24%) Fedora
14 7 (0.24%) VMS
15 6 (0.21%) AIX
15 6 (0.21%) Solaris
15 6 (0.21%) Windows Server 2008
16 5 (0.17%) Windows Server 2012
Processes & Methodologies
1 1,907 (65.85%) Information Security
2 1,229 (42.44%) Cybersecurity
3 878 (30.32%) SIEM
4 801 (27.66%) Risk Management
5 630 (21.75%) Penetration Testing
6 487 (16.82%) Data Protection
7 481 (16.61%) Vulnerability Management
8 411 (14.19%) Security Operations
9 394 (13.60%) Security Architecture
10 390 (13.47%) ITIL
11 376 (12.98%) Security Management
12 298 (10.29%) Vulnerability Assessment
13 291 (10.05%) Data Loss Prevention
14 288 (9.94%) Agile Software Development
15 265 (9.15%) Incident Management
16 264 (9.12%) OWASP
16 264 (9.12%) Problem-Solving
17 233 (8.05%) Stakeholder Management
18 224 (7.73%) Due Diligence
19 213 (7.35%) Vulnerability Scanning
Programming Languages
1 149 (5.15%) SQL
2 140 (4.83%) Python
3 136 (4.70%) PowerShell
4 121 (4.18%) Java
5 114 (3.94%) C
6 84 (2.90%) Bash Shell
7 74 (2.56%) Perl
8 64 (2.21%) C#
9 61 (2.11%) PHP
10 60 (2.07%) C++
11 53 (1.83%) JavaScript
12 40 (1.38%) Ruby
13 37 (1.28%) Objective-C
14 19 (0.66%) VBScript
15 18 (0.62%) Go
16 16 (0.55%) Korn
17 11 (0.38%) Shell Script
17 11 (0.38%) VB
18 7 (0.24%) Apple Swift
19 5 (0.17%) Kotlin
Qualifications
1 1,387 (47.89%) CISM
2 805 (27.80%) CISA
3 548 (18.92%) Degree
4 509 (17.58%) CEH
5 485 (16.75%) Cisco Certification
6 483 (16.68%) SANS
7 388 (13.40%) GIAC
8 358 (12.36%) SSCP
9 303 (10.46%) CompTIA Security+
10 295 (10.19%) CRISC
11 256 (8.84%) (ISC)2 CCSP
12 228 (7.87%) Security Cleared
13 219 (7.56%) CREST Certified
14 182 (6.28%) Microsoft Certification
15 169 (5.84%) CCNA
16 161 (5.56%) MCSE
17 136 (4.70%) Computer Science Degree
18 129 (4.45%) CISMP
19 128 (4.42%) CCSP
20 126 (4.35%) CCNP
Quality Assurance & Compliance
1 1,255 (43.34%) ISO/IEC 27001
2 560 (19.34%) PCI DSS
3 537 (18.54%) GDPR
4 144 (4.97%) Cyber Essentials
5 142 (4.90%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 139 (4.80%) COBIT
7 65 (2.24%) Sarbanes-Oxley
8 44 (1.52%) QA
9 35 (1.21%) HMG Security Policy Framework
10 33 (1.14%) Cyber Essentials PLUS
11 32 (1.10%) GPG13
11 32 (1.10%) RMADS
12 26 (0.90%) ISO 22301
13 25 (0.86%) ISO/IEC 27005
13 25 (0.86%) NIST 800
14 23 (0.79%) MiFID
15 19 (0.66%) HIPAA
16 17 (0.59%) SLA
17 16 (0.55%) SAS 70
18 12 (0.41%) ISAE 3402
System Software
1 185 (6.39%) Active Directory
2 152 (5.25%) VMware Infrastructure
3 46 (1.59%) Docker
4 39 (1.35%) vSphere
5 38 (1.31%) Snort
6 29 (1.00%) Virtual Machines
7 25 (0.86%) VMware ESXi
8 24 (0.83%) NFS
8 24 (0.83%) Samba
9 18 (0.62%) VMware NSX
10 13 (0.45%) Hyper-V
11 8 (0.28%) HDFS
12 7 (0.24%) VirtualBox
12 7 (0.24%) Xen
13 3 (0.10%) Firmware
14 2 (0.069%) Tivoli Directory Server
15 1 (0.035%) NDS
15 1 (0.035%) ProxySG
15 1 (0.035%) Virtual Desktop
15 1 (0.035%) Virtual Servers
Systems Management
1 80 (2.76%) Nessus
2 70 (2.42%) Puppet
3 48 (1.66%) RSA Security Analytics
4 40 (1.38%) Ansible
5 39 (1.35%) QRadar
6 37 (1.28%) CASB
7 36 (1.24%) SCCM
8 32 (1.10%) McAfee ePO
8 32 (1.10%) Nmap
9 29 (1.00%) Norton AntiVirus
9 29 (1.00%) Salt
10 28 (0.97%) WSUS
11 26 (0.90%) CSIRT
12 25 (0.86%) OSSEC
13 24 (0.83%) IBM BigFix
13 24 (0.83%) Nagios
13 24 (0.83%) Stealthwatch
13 24 (0.83%) vCenter Server
14 22 (0.76%) Single Sign-On
15 18 (0.62%) Nexpose
Vendors
1 526 (18.16%) Microsoft
2 266 (9.19%) Cisco
3 217 (7.49%) VMware
4 182 (6.28%) Splunk
5 174 (6.01%) Symantec
6 93 (3.21%) Oracle
7 84 (2.90%) Qualys
8 81 (2.80%) CheckPoint
9 77 (2.66%) Sophos
10 72 (2.49%) LogRhythm
11 64 (2.21%) Red Hat
12 57 (1.97%) McAfee
13 55 (1.90%) Palo Alto
14 42 (1.45%) Forcepoint
14 42 (1.45%) Google
15 38 (1.31%) EMC
16 37 (1.28%) NetApp
17 36 (1.24%) SolarWinds
18 35 (1.21%) Apple
19 34 (1.17%) CyberArk