Period
to 19 October 2017

The following table provides summary statistics for permanent job vacancies with a requirement for CRISC qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 19 October 2017 with a comparison to the same period in the previous 2 years.

ISACA Certified in Risk and Information Systems Control (CRISC)
UK
6 months to
19 Oct 2017
Same period 2016 Same period 2015
Rank 854 876 1083
Rank change year-on-year +22 +207 +106
Permanent jobs citing CRISC 325 363 235
As % of all permanent IT jobs advertised in the UK 0.19% 0.19% 0.11%
As % of the Qualifications category 0.77% 0.72% 0.39%
Number of salaries quoted 274 322 192
UK median annual salary £60,000 £65,000 £60,000
Median salary % change year-on-year -7.69% +8.33% +4.35%
10th Percentile £42,500 £37,500 £42,500
90th Percentile £90,000 £97,500 £84,000
UK excluding London median annual salary £50,750 £60,000 £51,500
% change year-on-year -15.42% +16.50% +3.00%

CRISC is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 42330 50413 60107
As % of all permanent IT jobs advertised in the UK 24.24% 26.35% 27.40%
Number of salaries quoted 32500 40503 47958
UK median annual salary £46,500 £45,000 £45,000
Median salary % change year-on-year +3.33% - +2.27%
10th Percentile £26,000 £26,250 £25,750
90th Percentile £77,500 £76,250 £73,750
UK excluding London median annual salary £42,500 £42,500 £40,000
% change year-on-year - +6.25% -

CRISC
Job Vacancy Trend

Job postings citing CRISC as a percentage of all IT jobs advertised.

Job vacancy trend for CRISC in the UK

CRISC
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CRISC.

Salary trend for CRISC in the UK

CRISC
Salary Histogram

The salary distribution of IT jobs citing CRISC over the 6 months to 19 October 2017.

Salary histogram for CRISC in the UK

CRISC
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CRISC within the UK over the 6 months to 19 October 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +12 316 £60,000 -7.69% 13
UK excluding London +60 170 £50,750 -15.42% 7
London -27 150 £72,500 +3.57% 6
North of England +43 69 £55,000 -12.00% 2
South East +69 62 £50,000 -25.93% 2
North West +39 58 £55,000 -15.38% 1
East of England -11 18 £45,000 +5.88% 1
Midlands +34 12 £61,250 -5.77% 2
West Midlands +4 11 £60,000 -7.69% 2
Yorkshire +25 10 £47,500 -24.00%
South West +10 4 £50,000 -
Scotland -25 3 £62,500 +20.19%
Wales +20 2 - -
North East +13 1 £45,000 +26.76% 1
East Midlands - 1 £100,000 -

For the 6 months to 19 October 2017, IT jobs citing CRISC also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for CRISC.

1 294 (90.46%) CISSP
2 277 (85.23%) CISM
3 243 (74.77%) Information Security
4 195 (60.00%) CISA
5 171 (52.62%) Finance
6 167 (51.38%) ISO/IEC 27001
7 124 (38.15%) Risk Management
8 104 (32.00%) Cybersecurity
9 93 (28.62%) Management Information System
9 93 (28.62%) ITIL
10 75 (23.08%) Degree
11 73 (22.46%) Security Management
12 66 (20.31%) COBIT
13 65 (20.00%) GDPR
14 61 (18.77%) Information Security Management
15 59 (18.15%) Banking
16 56 (17.23%) Risk Assessment
17 52 (16.00%) Data Protection
18 51 (15.69%) PCI DSS
18 51 (15.69%) SANS
19 46 (14.15%) IT Audit
20 45 (13.85%) Security Operations
21 43 (13.23%) Risk Analysis
21 43 (13.23%) Firewall
22 42 (12.92%) Network Security
23 41 (12.62%) Penetration Testing
24 38 (11.69%) Stakeholder Management
25 37 (11.38%) ISMS
26 33 (10.15%) Security Architecture
26 33 (10.15%) Internal Audit

CRISC
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 15 (4.62%) IIS
1 15 (4.62%) WebSphere
2 10 (3.08%) SharePoint
3 2 (0.62%) MS Exchange
Applications
1 14 (4.31%) Microsoft Excel
2 12 (3.69%) Microsoft PowerPoint
3 11 (3.38%) Microsoft Office
4 2 (0.62%) Chatbot
Cloud Services
1 3 (0.92%) Microsoft Azure
2 2 (0.62%) Mimecast
3 1 (0.31%) Amazon AWS
3 1 (0.31%) Office 365
Communications & Networking
1 43 (13.23%) Firewall
2 42 (12.92%) Network Security
3 10 (3.08%) Internet
4 5 (1.54%) Intrusion Detection
4 5 (1.54%) Reverse Proxy
5 1 (0.31%) Cisco Nexus
5 1 (0.31%) HTTP
5 1 (0.31%) SMS
Database & Business Intelligence
1 15 (4.62%) SQL Server
2 1 (0.31%) GIS
General
1 171 (52.62%) Finance
2 59 (18.15%) Banking
3 23 (7.08%) Private Banking
4 17 (5.23%) Legal
4 17 (5.23%) Manufacturing
4 17 (5.23%) Retail
5 16 (4.92%) Telecoms
6 15 (4.62%) Marketing
7 12 (3.69%) Electronics
8 7 (2.15%) French Language
8 7 (2.15%) Investment Banking
9 6 (1.85%) German Language
10 4 (1.23%) Financial Institution
10 4 (1.23%) Law
11 3 (0.92%) Billing
11 3 (0.92%) Games
12 2 (0.62%) Front Office
12 2 (0.62%) Pharmaceutical
12 2 (0.62%) Retail Banking
13 1 (0.31%) Military
Job Titles
1 81 (24.92%) Analyst
2 58 (17.85%) Security Manager
3 56 (17.23%) Security Analyst
4 49 (15.08%) Information Manager
5 45 (13.85%) Consultant
6 44 (13.54%) Information Analyst
6 44 (13.54%) Information Security Analyst
6 44 (13.54%) Information Security Manager
6 44 (13.54%) Risk Manager
7 36 (11.08%) Security Consultant
8 33 (10.15%) IT Analyst
9 25 (7.69%) Risk Analyst
10 23 (7.08%) IT Risk Analyst
11 21 (6.46%) Security Specialist
12 18 (5.54%) Information Risk Manager
13 17 (5.23%) CISSP Manager
13 17 (5.23%) IT Engineer
14 16 (4.92%) Information Security Specialist
14 16 (4.92%) Information Specialist
15 15 (4.62%) Information Security Consultant
Libraries, Frameworks & Software Standards
1 15 (4.62%) MSMQ
1 15 (4.62%) WebSphere MQ
2 3 (0.92%) .NET
3 1 (0.31%) SailPoint
3 1 (0.31%) Web Services
Miscellaneous
1 93 (28.62%) Management Information System
2 32 (9.85%) Analytical Skills
3 12 (3.69%) Security Operations Centre
4 10 (3.08%) Cyberthreat
5 9 (2.77%) Internet of Things
6 8 (2.46%) CESG
6 8 (2.46%) Distributed Denial-of-Service
6 8 (2.46%) Greenfield Project
6 8 (2.46%) PKI
7 6 (1.85%) Data Protection Act
8 5 (1.54%) FMCG
9 4 (1.23%) Computer Science
10 3 (0.92%) Cyber Attack
10 3 (0.92%) Data Centre
10 3 (0.92%) Taxonomies
11 2 (0.62%) BYOD
11 2 (0.62%) Fintech
11 2 (0.62%) Hybrid Cloud
11 2 (0.62%) Virtual Team
12 1 (0.31%) Private Cloud
Operating Systems
1 19 (5.85%) Windows
2 18 (5.54%) Linux
3 17 (5.23%) Windows Server
4 15 (4.62%) Unix
5 3 (0.92%) Android
5 3 (0.92%) Apple iOS
Processes & Methodologies
1 243 (74.77%) Information Security
2 124 (38.15%) Risk Management
3 104 (32.00%) Cybersecurity
4 93 (28.62%) ITIL
5 73 (22.46%) Security Management
6 61 (18.77%) Information Security Management
7 56 (17.23%) Risk Assessment
8 52 (16.00%) Data Protection
9 46 (14.15%) IT Audit
10 45 (13.85%) Security Operations
11 43 (13.23%) Risk Analysis
12 41 (12.62%) Penetration Testing
13 38 (11.69%) Stakeholder Management
14 37 (11.38%) ISMS
15 33 (10.15%) Internal Audit
15 33 (10.15%) Security Architecture
16 32 (9.85%) Information Security Governance
17 29 (8.92%) SIEM
18 28 (8.62%) IT Governance
18 28 (8.62%) Project Management
Programming Languages
1 16 (4.92%) SQL
2 13 (4.00%) C
3 6 (1.85%) Java
4 4 (1.23%) C#
5 3 (0.92%) C++
5 3 (0.92%) Perl
5 3 (0.92%) Python
Qualifications
1 294 (90.46%) CISSP
2 277 (85.23%) CISM
3 195 (60.00%) CISA
4 75 (23.08%) Degree
5 51 (15.69%) SANS
6 31 (9.54%) GIAC
7 27 (8.31%) CGEIT
8 24 (7.38%) CEH
9 17 (5.23%) CESG Certified Professional
9 17 (5.23%) CISMP
10 14 (4.31%) ISO 27001 Lead Auditor
11 12 (3.69%) Cisco Certification
12 8 (2.46%) (ISC)2 CCSP
13 7 (2.15%) ISO 27001 Lead Implementer
13 7 (2.15%) ISSMP
13 7 (2.15%) SC Cleared
13 7 (2.15%) Security Cleared
14 6 (1.85%) Master's Degree
15 5 (1.54%) ISACA
15 5 (1.54%) MBA
Quality Assurance & Compliance
1 167 (51.38%) ISO/IEC 27001
2 66 (20.31%) COBIT
3 65 (20.00%) GDPR
4 51 (15.69%) PCI DSS
5 22 (6.77%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 17 (5.23%) Sarbanes-Oxley
7 16 (4.92%) Cyber Essentials
8 15 (4.62%) ISO 22301
9 13 (4.00%) ISO 9001
10 12 (3.69%) ISO 14001
11 9 (2.77%) HIPAA
12 7 (2.15%) COSO
13 6 (1.85%) NIST 800
14 4 (1.23%) Cyber Essentials PLUS
15 2 (0.62%) SLA
16 1 (0.31%) HMG Security Policy Framework
16 1 (0.31%) ISO/IEC 27005
System Software
1 29 (8.92%) Active Directory
Systems Management
1 6 (1.85%) RSA Archer
2 2 (0.62%) Backup Exec
Vendors
1 12 (3.69%) Microsoft
2 10 (3.08%) SAP
3 8 (2.46%) Splunk
4 6 (1.85%) CyberArk
5 4 (1.23%) Cisco
6 2 (0.62%) AlienVault
6 2 (0.62%) CheckPoint
6 2 (0.62%) LogLogic
6 2 (0.62%) LogRhythm
6 2 (0.62%) Sophos
7 1 (0.31%) NetIQ