Period
to 29 May 2020

The following table provides summary statistics for permanent job vacancies with a requirement for CRISC qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 29 May 2020 with a comparison to the same period in the previous 2 years.

ISACA Certified in Risk and Information Systems Control (CRISC)
UK
6 months to
29 May 2020
Same period 2019 Same period 2018
Rank 704 829 926
Rank change year-on-year +125 +97 +63
Permanent jobs citing CRISC 179 267 276
As % of all permanent jobs advertised in the UK 0.20% 0.19% 0.16%
As % of the Qualifications category 0.93% 0.75% 0.68%
Number of salaries quoted 144 197 215
Median annual salary £55,000 £65,000 £65,000
Median salary % change year-on-year -15.38% - +10.17%
10th Percentile £42,500 £40,950 £44,500
90th Percentile £80,875 £103,000 £103,250
UK excluding London median annual salary £55,000 £59,000 £59,250
% change year-on-year -6.78% -0.42% +12.86%

CRISC is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 19,311 35,509 40,870
As % of all permanent IT jobs advertised in the UK 21.52% 24.69% 23.69%
Number of salaries quoted 14,122 25,354 30,896
Median annual salary £52,500 £50,000 £49,000
Median salary % change year-on-year +5.00% +2.04% +8.89%
10th Percentile £28,750 £26,250 £26,250
90th Percentile £83,750 £81,250 £80,000
UK excluding London median annual salary £47,500 £45,000 £44,500
% change year-on-year +5.56% +1.12% +5.95%

CRISC
Job Vacancy Trend

Job postings citing CRISC as a proportion of all IT jobs advertised.

Job vacancy trend for CRISC in the UK

CRISC
Salary Trend

3-month moving average salary quoted in jobs citing CRISC.

Salary trend for CRISC in the UK

CRISC
Salary Histogram

Salary distribution for jobs citing CRISC over the 6 months to 29 May 2020.

Salary histogram for CRISC in the UK

CRISC
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CRISC within the UK over the 6 months to 29 May 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +125 170 £55,000 -16.67% 6
UK excluding London +156 108 £55,000 -6.78% 4
London +77 69 £61,250 -30.00% 2
South East +118 44 £50,000 -23.08% 1
Midlands +87 25 £55,000 +18.92%
West Midlands +78 25 £55,000 +15.79%
South West +99 16 £55,000 -21.43% 2
Work from Home +55 15 £70,000 -6.67%
North of England +98 13 £50,000 -9.09%
North West +60 10 £45,000 -25.00%
Scotland +62 4 £47,500 +26.67%
Yorkshire +88 3 £55,000 +4.76%
East of England +69 3 £70,000 +16.67% 1
Northern Ireland - 2 £50,000 -
Wales -2 1 £70,000 -

For the 6 months to 29 May 2020, IT jobs citing CRISC also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CRISC.

1 156 (87.15%) CISSP
2 140 (78.21%) CISM
3 121 (67.60%) Information Security
4 120 (67.04%) Risk Management
5 115 (64.25%) Cybersecurity
6 87 (48.60%) CISA
7 80 (44.69%) ISO/IEC 27001
8 61 (34.08%) NIST
9 53 (29.61%) Security Cleared
10 48 (26.82%) Management Information System
11 46 (25.70%) SC Cleared
12 45 (25.14%) CESG Certified Professional
13 43 (24.02%) Risk Assessment
14 38 (21.23%) Information Assurance
15 36 (20.11%) Agile Software Development
16 35 (19.55%) Finance
16 35 (19.55%) Security Architecture
16 35 (19.55%) Degree
17 33 (18.44%) Security Management
18 30 (16.76%) Remediation Plan
18 30 (16.76%) Cyber Essentials
19 28 (15.64%) GDPR
19 28 (15.64%) Cisco Certification
20 27 (15.08%) (ISC)2 CCSP
21 25 (13.97%) PCI DSS
22 23 (12.85%) Data Protection
22 23 (12.85%) CEH
22 23 (12.85%) NCSC
23 22 (12.29%) Public Cloud
24 21 (11.73%) Firewall

CRISC
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 4 (2.23%) IIS
2 3 (1.68%) SharePoint
Applications
1 10 (5.59%) Microsoft Excel
2 1 (0.56%) Microsoft Office
2 1 (0.56%) Microsoft PowerPoint
Business Applications
1 2 (1.12%) Remedy ITSM
Cloud Services
1 17 (9.50%) Azure
2 15 (8.38%) AWS
3 12 (6.70%) Cloud Computing
4 5 (2.79%) Office 365
5 3 (1.68%) GCP
6 2 (1.12%) PaaS
6 2 (1.12%) SaaS
7 1 (0.56%) IaaS
7 1 (0.56%) Power Automate
7 1 (0.56%) Power Platform
Communications & Networking
1 21 (11.73%) Firewall
2 7 (3.91%) HTTP
2 7 (3.91%) Network Security
3 1 (0.56%) Cisco IPT
3 1 (0.56%) DMZ
3 1 (0.56%) Kerberos
3 1 (0.56%) LAN
3 1 (0.56%) Skype
3 1 (0.56%) TCP/IP
Database & Business Intelligence
1 4 (2.23%) SQL Server
2 1 (0.56%) Power BI
Development Applications
1 2 (1.12%) JIRA
2 1 (0.56%) Snyk
2 1 (0.56%) SonarQube
General
1 35 (19.55%) Finance
2 16 (8.94%) Legal
3 5 (2.79%) Law
4 4 (2.23%) Marketing
5 2 (1.12%) Military
5 2 (1.12%) Retail
6 1 (0.56%) Aerospace
6 1 (0.56%) Banking
6 1 (0.56%) Digital Economy
6 1 (0.56%) Financial Institution
6 1 (0.56%) Manufacturing
6 1 (0.56%) Public Sector
6 1 (0.56%) Telecoms
Job Titles
1 51 (28.49%) Analyst
2 36 (20.11%) Consultant
2 36 (20.11%) Security Consultant
2 36 (20.11%) Security Manager
3 32 (17.88%) Security Analyst
4 30 (16.76%) Risk Analyst
5 23 (12.85%) Governance Analyst
6 20 (11.17%) Cybersecurity Consultant
7 17 (9.50%) Information Analyst
7 17 (9.50%) Information Security Analyst
8 16 (8.94%) IT Manager
9 15 (8.38%) Information Security Manager
9 15 (8.38%) Security Risk Analyst
10 14 (7.82%) IT Security Manager
11 13 (7.26%) IT Analyst
12 12 (6.70%) Information Security Consultant
12 12 (6.70%) IT Governance Analyst
12 12 (6.70%) IT Risk Analyst
12 12 (6.70%) Risk Manager
12 12 (6.70%) Security Specialist
Libraries, Frameworks & Software Standards
1 2 (1.12%) ModSecurity
1 2 (1.12%) SailPoint
2 1 (0.56%) LDAP
2 1 (0.56%) TensorFlow
Miscellaneous
1 48 (26.82%) Management Information System
2 22 (12.29%) Public Cloud
3 20 (11.17%) Cyberthreat
3 20 (11.17%) Self-Motivation
4 14 (7.82%) Analytical Skills
5 8 (4.47%) Mobile Computing
6 7 (3.91%) BYOD
7 3 (1.68%) Cloud Native
7 3 (1.68%) Enterprise Software
8 2 (1.12%) Data Centre
8 2 (1.12%) Data Protection Act
8 2 (1.12%) PMI
8 2 (1.12%) Reinsurance
8 2 (1.12%) User Experience
9 1 (0.56%) CESG
9 1 (0.56%) Hedge funds
9 1 (0.56%) PKI
9 1 (0.56%) SCADA
Operating Systems
1 9 (5.03%) Windows
2 5 (2.79%) Linux
3 4 (2.23%) Unix
4 1 (0.56%) Android
4 1 (0.56%) Windows 10
4 1 (0.56%) Windows Server
4 1 (0.56%) Windows Server 2012
4 1 (0.56%) Windows Server 2016
Processes & Methodologies
1 121 (67.60%) Information Security
2 120 (67.04%) Risk Management
3 115 (64.25%) Cybersecurity
4 43 (24.02%) Risk Assessment
5 38 (21.23%) Information Assurance
6 36 (20.11%) Agile Software Development
7 35 (19.55%) Security Architecture
8 33 (18.44%) Security Management
9 30 (16.76%) Remediation Plan
10 23 (12.85%) Data Protection
11 18 (10.06%) Analytics
12 17 (9.50%) Data Analytics
12 17 (9.50%) ITIL
13 13 (7.26%) Information Security Management
13 13 (7.26%) ISMS
13 13 (7.26%) IT Audit
14 12 (6.70%) Decision-Making
15 11 (6.15%) Identity Access Management
15 11 (6.15%) Penetration Testing
16 10 (5.59%) Information Security Governance
Programming Languages
1 12 (6.70%) SQL
2 10 (5.59%) PowerShell
3 3 (1.68%) Python
4 2 (1.12%) C#
5 1 (0.56%) C
5 1 (0.56%) Go
5 1 (0.56%) Java
5 1 (0.56%) Julia
5 1 (0.56%) MATLAB
5 1 (0.56%) R
5 1 (0.56%) Scala
Qualifications
1 156 (87.15%) CISSP
2 140 (78.21%) CISM
3 87 (48.60%) CISA
4 53 (29.61%) Security Cleared
5 46 (25.70%) SC Cleared
6 45 (25.14%) CESG Certified Professional
7 35 (19.55%) Degree
8 28 (15.64%) Cisco Certification
9 27 (15.08%) (ISC)2 CCSP
10 23 (12.85%) CEH
11 16 (8.94%) CompTIA Security+
12 14 (7.82%) ISO 27001 Lead Auditor
13 11 (6.15%) CCSP
13 11 (6.15%) CGEIT
13 11 (6.15%) CISMP
13 11 (6.15%) Computer Science Degree
14 8 (4.47%) Master's Degree
15 7 (3.91%) DV Cleared
16 4 (2.23%) ITIL Certification
16 4 (2.23%) PMI Certification
Quality Assurance & Compliance
1 80 (44.69%) ISO/IEC 27001
2 61 (34.08%) NIST
3 30 (16.76%) Cyber Essentials
4 28 (15.64%) GDPR
5 25 (13.97%) PCI DSS
6 23 (12.85%) NCSC
7 20 (11.17%) JSP 440
8 19 (10.61%) RMADS
8 19 (10.61%) Sarbanes-Oxley
9 15 (8.38%) COBIT
10 8 (4.47%) NIST 800
11 6 (3.35%) ISO/IEC 27005
12 5 (2.79%) ISO 22301
12 5 (2.79%) SLA
13 4 (2.23%) QA
14 3 (1.68%) COSO
14 3 (1.68%) ISAE 3402
14 3 (1.68%) SSAE 16
15 2 (1.12%) HMG Security Policy Framework
15 2 (1.12%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
System Software
1 3 (1.68%) Active Directory
2 1 (0.56%) NDS
Systems Management
1 3 (1.68%) RSA Archer
2 1 (0.56%) Ansible
2 1 (0.56%) NetIQ Identity Manager
2 1 (0.56%) Oracle Identity Management
2 1 (0.56%) Puppet
2 1 (0.56%) Single Sign-On
2 1 (0.56%) Terraform
Vendors
1 13 (7.26%) Microsoft
2 3 (1.68%) McAfee
3 2 (1.12%) Cisco
3 2 (1.12%) ForgeRock
3 2 (1.12%) Juniper
3 2 (1.12%) NetIQ
3 2 (1.12%) Oracle
3 2 (1.12%) Remedy
4 1 (0.56%) CheckPoint
4 1 (0.56%) CyberArk
4 1 (0.56%) LogRhythm
4 1 (0.56%) Okta
4 1 (0.56%) Splunk