Period
to 17 August 2017

The following table provides summary statistics for permanent job vacancies with a requirement for CRISC qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 17 August 2017 with a comparison to the same period in the previous 2 years.

ISACA Certified in Risk and Information Systems Control (CRISC)
UK
6 months to
17 Aug 2017
Same period 2016 Same period 2015
Rank 899 851 1046
Rank change year-on-year -48 +195 +147
Permanent jobs citing CRISC 273 402 246
As % of all permanent IT jobs advertised in the UK 0.16% 0.20% 0.11%
As % of the Qualifications category 0.63% 0.76% 0.41%
Number of salaries quoted 214 337 197
UK median annual salary £59,000 £57,500 £60,000
Median salary % change year-on-year +2.61% -4.17% +4.35%
10th Percentile £42,500 £36,500 £42,500
90th Percentile £80,000 £87,500 £84,000
UK excluding London median annual salary £50,000 £55,000 £51,000
% change year-on-year -9.09% +7.84% +7.37%

CRISC is in the academic qualifications and professional certifications category. The following table is for comparison with the above and provides summary statistics for all academic qualifications and professional certifications cited in permanent job vacancies.

Academic & Professional Certification
UK
Permanent job vacancies requiring academic qualifications or professional certifications 42994 53127 59835
As % of all permanent IT job vacancies advertised in the UK 24.42% 26.83% 27.54%
Number of salaries quoted 33062 42941 47460
UK median annual salary £45,000 £45,000 £45,000
10th Percentile £26,250 £26,250 £25,500
90th Percentile £77,500 £75,000 £72,500
UK excluding London median annual salary £42,500 £42,252 £40,000
% change year-on-year +0.59% +5.63% -

CRISC
Job Vacancy Trend

Job postings citing CRISC as a percentage of all IT jobs advertised.

Job vacancy trend for CRISC in the UK

CRISC
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CRISC.

Salary trend for CRISC in the UK

CRISC
Salary Histogram

The salary distribution of IT jobs citing CRISC over the 6 months to 17 August 2017.

Salary histogram for CRISC in the UK

CRISC
Top 14 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CRISC within the UK over the 6 months to 17 August 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -5 266 £59,000 +2.61% 25
UK excluding London -12 143 £50,000 -9.09% 18
London -18 128 £67,500 +3.85% 8
North of England +24 59 £55,000 -12.00% 6
North West +14 48 £55,000 -15.38% 4
South East +27 28 £50,000 -13.04% 8
East of England -19 25 £45,000 +5.88%
West Midlands +29 24 £62,750 +0.40% 1
Midlands +29 24 £62,750 +4.58% 1
Yorkshire +11 10 £47,500 -19.15% 2
Scotland -1 3 £62,500 -5.66% 1
South West -11 3 £50,000 -28.57% 2
North East +26 1 £65,000 +83.10%
Wales +16 1 - -

For the 6 months to 17 August 2017, IT jobs citing CRISC also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for CRISC.

1 242 (88.64%) CISSP
2 224 (82.05%) CISM
3 205 (75.09%) CISA
4 204 (74.73%) Information Security
5 142 (52.01%) Finance
6 130 (47.62%) ISO/IEC 27001
7 110 (40.29%) Risk Management
8 86 (31.50%) ITIL
9 80 (29.30%) Cybersecurity
10 60 (21.98%) Degree
11 59 (21.61%) COBIT
12 57 (20.88%) Management Information System
12 57 (20.88%) IT Audit
13 51 (18.68%) PCI DSS
14 49 (17.95%) SANS
15 48 (17.58%) Security Management
16 47 (17.22%) Banking
17 45 (16.48%) GDPR
18 43 (15.75%) Data Protection
19 39 (14.29%) ISMS
20 36 (13.19%) Information Security Management
21 33 (12.09%) Information Security Governance
22 32 (11.72%) CGEIT
23 31 (11.36%) Stakeholder Management
24 30 (10.99%) Security Architecture
24 30 (10.99%) Analytical Skills
25 29 (10.62%) SIEM
25 29 (10.62%) Risk Assessment
26 27 (9.89%) Internal Audit
27 26 (9.52%) Vulnerability Assessment

CRISC
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 10 (3.66%) SharePoint
2 8 (2.93%) IIS
2 8 (2.93%) WebSphere
Applications
1 13 (4.76%) Microsoft Excel
2 11 (4.03%) Microsoft PowerPoint
3 10 (3.66%) Microsoft Office
Cloud Services
1 1 (0.37%) Amazon AWS
1 1 (0.37%) Microsoft Azure
1 1 (0.37%) Office 365
Communications & Networking
1 22 (8.06%) Firewall
2 12 (4.40%) Network Security
3 10 (3.66%) Internet
4 7 (2.56%) Intrusion Detection
5 6 (2.20%) Reverse Proxy
6 2 (0.73%) HTTP
Database & Business Intelligence
1 8 (2.93%) SQL Server
2 3 (1.10%) GIS
3 1 (0.37%) Big Data
General
1 142 (52.01%) Finance
2 47 (17.22%) Banking
3 16 (5.86%) Manufacturing
3 16 (5.86%) Private Banking
4 15 (5.49%) Telecoms
5 14 (5.13%) Marketing
6 12 (4.40%) Electronics
6 12 (4.40%) Retail
7 8 (2.93%) Legal
8 5 (1.83%) Financial Institution
8 5 (1.83%) Games
9 4 (1.47%) Military
9 4 (1.47%) Pharmaceutical
10 3 (1.10%) Billing
10 3 (1.10%) Investment Banking
11 2 (0.73%) Back Office
11 2 (0.73%) French Language
11 2 (0.73%) Retail Banking
12 1 (0.37%) Advertising
12 1 (0.37%) Law
Job Titles
1 71 (26.01%) Analyst
2 49 (17.95%) Security Manager
3 41 (15.02%) IT Analyst
4 38 (13.92%) Security Analyst
5 37 (13.55%) Information Manager
6 35 (12.82%) Information Security Manager
7 30 (10.99%) Consultant
7 30 (10.99%) IT Risk Analyst
7 30 (10.99%) Risk Analyst
8 27 (9.89%) Risk Manager
9 25 (9.16%) Information Analyst
9 25 (9.16%) Information Security Analyst
10 22 (8.06%) Security Consultant
11 21 (7.69%) Security Specialist
12 18 (6.59%) Auditor
12 18 (6.59%) IT Security Analyst
13 17 (6.23%) IT Engineer
14 16 (5.86%) CISSP Analyst
14 16 (5.86%) Information Security Consultant
14 16 (5.86%) IT Manager
Libraries, Frameworks & Software Standards
1 8 (2.93%) MSMQ
1 8 (2.93%) WebSphere MQ
2 3 (1.10%) .NET
3 1 (0.37%) Middleware
3 1 (0.37%) Web Services
Miscellaneous
1 57 (20.88%) Management Information System
2 30 (10.99%) Analytical Skills
3 9 (3.30%) Cyberthreat
3 9 (3.30%) Greenfield Project
3 9 (3.30%) Internet of Things
4 8 (2.93%) PKI
5 7 (2.56%) Data Protection Act
5 7 (2.56%) Distributed Denial-of-Service
6 4 (1.47%) FMCG
7 3 (1.10%) Computer Science
8 2 (0.73%) BYOD
8 2 (0.73%) Cyber Attack
8 2 (0.73%) Data Centre
8 2 (0.73%) Public Cloud
9 1 (0.37%) CESG
9 1 (0.37%) Digital Media
9 1 (0.37%) Enterprise Software
9 1 (0.37%) Fintech
9 1 (0.37%) Taxonomies
9 1 (0.37%) Virtual Team
Operating Systems
1 11 (4.03%) Linux
1 11 (4.03%) Windows
2 9 (3.30%) Unix
3 8 (2.93%) Windows Server
4 3 (1.10%) Android
4 3 (1.10%) Apple iOS
Processes & Methodologies
1 204 (74.73%) Information Security
2 110 (40.29%) Risk Management
3 86 (31.50%) ITIL
4 80 (29.30%) Cybersecurity
5 57 (20.88%) IT Audit
6 48 (17.58%) Security Management
7 43 (15.75%) Data Protection
8 39 (14.29%) ISMS
9 36 (13.19%) Information Security Management
10 33 (12.09%) Information Security Governance
11 31 (11.36%) Stakeholder Management
12 30 (10.99%) Security Architecture
13 29 (10.62%) Risk Assessment
13 29 (10.62%) SIEM
14 27 (9.89%) Internal Audit
15 26 (9.52%) Change Management
15 26 (9.52%) Vulnerability Assessment
15 26 (9.52%) Vulnerability Management
16 23 (8.42%) Security Operations
17 20 (7.33%) Continuous Improvement
Programming Languages
1 10 (3.66%) SQL
2 7 (2.56%) C
3 6 (2.20%) Java
4 4 (1.47%) C#
5 3 (1.10%) C++
5 3 (1.10%) Perl
5 3 (1.10%) Python
Qualifications
1 242 (88.64%) CISSP
2 224 (82.05%) CISM
3 205 (75.09%) CISA
4 60 (21.98%) Degree
5 49 (17.95%) SANS
6 32 (11.72%) CGEIT
7 23 (8.42%) CEH
8 17 (6.23%) ISO 27001 Lead Auditor
9 16 (5.86%) CESG Certified Professional
10 15 (5.49%) CISMP
11 11 (4.03%) Cisco Certification
12 9 (3.30%) ISO 27001 Lead Implementer
12 9 (3.30%) SC Cleared
12 9 (3.30%) Security Cleared
13 8 (2.93%) (ISC)2 CCSP
13 8 (2.93%) ISACA
13 8 (2.93%) ISSMP
13 8 (2.93%) MCP
14 6 (2.20%) GIAC
14 6 (2.20%) Master's Degree
Quality Assurance & Compliance
1 130 (47.62%) ISO/IEC 27001
2 59 (21.61%) COBIT
3 51 (18.68%) PCI DSS
4 45 (16.48%) GDPR
5 18 (6.59%) Sarbanes-Oxley
6 16 (5.86%) Cyber Essentials
6 16 (5.86%) ISO 22301
7 14 (5.13%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 13 (4.76%) ISO 14001
8 13 (4.76%) ISO 9001
9 9 (3.30%) HIPAA
10 6 (2.20%) NIST 800
11 4 (1.47%) COSO
12 3 (1.10%) Cyber Essentials PLUS
13 2 (0.73%) SLA
14 1 (0.37%) FINRA
14 1 (0.37%) HMG Security Policy Framework
System Software
1 8 (2.93%) Active Directory
Systems Management
1 3 (1.10%) RSA Archer
2 1 (0.37%) CSIRT
Vendors
1 15 (5.49%) Microsoft
2 10 (3.66%) SAP
3 8 (2.93%) AlienVault
3 8 (2.93%) LogLogic
3 8 (2.93%) LogRhythm
4 6 (2.20%) CyberArk
5 3 (1.10%) Cisco
6 2 (0.73%) Splunk
7 1 (0.37%) HP
7 1 (0.37%) Oracle