Period
to 26 September 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CRISC qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 26 September 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified in Risk and Information Systems Control (CRISC)
UK
6 months to
26 Sep 2018
Same period 2017 Same period 2016
Rank 844 890 880
Rank change year-on-year +46 -10 +172
Permanent jobs citing CRISC 312 304 378
As % of all permanent IT jobs advertised in the UK 0.19% 0.17% 0.20%
As % of the Qualifications category 0.79% 0.70% 0.74%
Number of salaries quoted 233 249 334
UK median annual salary £75,000 £60,000 £62,500
Median salary % change year-on-year +25.00% -4.00% +4.17%
10th Percentile £51,250 £42,500 £37,500
90th Percentile £97,500 £88,750 £97,500
UK excluding London median annual salary £65,000 £52,500 £55,000
% change year-on-year +23.81% -4.55% -

CRISC is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 39,491 43,532 51,130
As % of all permanent IT jobs advertised in the UK 23.59% 24.50% 26.52%
Number of salaries quoted 29,285 33,385 41,242
UK median annual salary £50,000 £46,000 £45,000
Median salary % change year-on-year +8.70% +2.22% -
10th Percentile £26,250 £26,000 £26,250
90th Percentile £80,000 £77,500 £76,250
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +6.25%

CRISC
Job Vacancy Trend

Job postings citing CRISC as a percentage of all IT jobs advertised.

Job vacancy trend for CRISC in the UK

CRISC
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CRISC.

Salary trend for CRISC in the UK

CRISC
Salary Histogram

The salary distribution of IT jobs citing CRISC over the 6 months to 26 September 2018.

Salary histogram for CRISC in the UK

CRISC
Top 14 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CRISC within the UK over the 6 months to 26 September 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +19 296 £75,000 +25.00% 27
London +78 188 £80,000 +14.29% 11
UK excluding London -22 112 £65,000 +23.81% 17
East of England +34 30 £77,500 +67.57% 2
South East -11 27 £70,000 +40.00% 5
Midlands +32 23 £58,500 -6.40% 2
West Midlands +31 21 £57,500 -8.00% 2
North of England -24 21 £50,000 -9.09% 4
North West -30 12 £50,000 -9.09% 1
Scotland +6 10 £75,000 +31.58%
Yorkshire +30 8 £65,000 +36.84% 2
East Midlands +5 2 £67,500 -32.50%
South West +14 1 £47,250 -5.50% 3
North East -13 1 £36,000 -20.00% 1

For the 6 months to 26 September 2018, IT jobs citing CRISC also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CRISC.

1 274 (87.82%) CISSP
2 233 (74.68%) CISM
3 211 (67.63%) CISA
4 205 (65.71%) Information Security
5 143 (45.83%) Risk Management
6 116 (37.18%) Cybersecurity
7 112 (35.90%) ISO/IEC 27001
8 100 (32.05%) Finance
9 79 (25.32%) COBIT
10 75 (24.04%) PCI DSS
11 68 (21.79%) Stakeholder Management
12 66 (21.15%) GDPR
13 64 (20.51%) ITIL
14 59 (18.91%) Management Information System
15 57 (18.27%) Degree
16 41 (13.14%) Data Protection
17 40 (12.82%) SIEM
18 37 (11.86%) Agile Software Development
19 34 (10.90%) Security Architecture
20 33 (10.58%) Network Security
20 33 (10.58%) GIAC
20 33 (10.58%) IT Audit
21 32 (10.26%) Banking
22 31 (9.94%) Risk Assessment
23 30 (9.62%) SANS
24 28 (8.97%) Analytical Skills
24 28 (8.97%) Penetration Testing
25 25 (8.01%) CEH
26 23 (7.37%) Firewall
27 22 (7.05%) Business Continuity

CRISC
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 9 (2.88%) IIS
Applications
1 4 (1.28%) Microsoft Office
2 1 (0.32%) Microsoft Excel
2 1 (0.32%) Microsoft Project
2 1 (0.32%) MS Visio
2 1 (0.32%) Spreadsheet
Cloud Services
1 18 (5.77%) Amazon AWS
2 12 (3.85%) SaaS
3 8 (2.56%) Microsoft Azure
4 4 (1.28%) Office 365
5 3 (0.96%) IaaS
6 2 (0.64%) Cloud Computing
6 2 (0.64%) Virtual Private Cloud
Communications & Networking
1 33 (10.58%) Network Security
2 23 (7.37%) Firewall
3 10 (3.21%) Cisco Firepower
4 9 (2.88%) HTTP
5 6 (1.92%) ATM
6 4 (1.28%) Cisco ASA
6 4 (1.28%) LAN
6 4 (1.28%) SAN
6 4 (1.28%) TCP/IP
7 2 (0.64%) Internet
7 2 (0.64%) SCCP
7 2 (0.64%) SMS
7 2 (0.64%) WAN
8 1 (0.32%) Cisco IPT
8 1 (0.32%) SSL
8 1 (0.32%) VPN
8 1 (0.32%) WebEx
Development Applications
1 1 (0.32%) AppScan
General
1 100 (32.05%) Finance
2 32 (10.26%) Banking
3 21 (6.73%) Retail
4 20 (6.41%) Investment Banking
4 20 (6.41%) Legal
5 6 (1.92%) Manufacturing
6 5 (1.60%) Law
6 5 (1.60%) Telecoms
7 4 (1.28%) Games
7 4 (1.28%) Pharmaceutical
8 3 (0.96%) French Language
9 1 (0.32%) Front Office
9 1 (0.32%) Marketing
9 1 (0.32%) Retail Banking
Job Titles
1 59 (18.91%) Security Manager
2 54 (17.31%) Analyst
3 52 (16.67%) Risk Manager
4 42 (13.46%) Information Manager
5 37 (11.86%) Information Security Manager
6 36 (11.54%) IT Manager
7 33 (10.58%) Consultant
8 31 (9.94%) Security Analyst
9 28 (8.97%) Security Consultant
10 25 (8.01%) IT Analyst
11 24 (7.69%) IT Risk Manager
12 22 (7.05%) Risk Analyst
13 19 (6.09%) Architect
13 19 (6.09%) IT Risk Analyst
13 19 (6.09%) Security Architect
14 15 (4.81%) Security Officer
15 14 (4.49%) Security Specialist
16 13 (4.17%) Information Security Consultant
16 13 (4.17%) IT Director
16 13 (4.17%) IT Security Manager
Libraries, Frameworks & Software Standards
1 4 (1.28%) Web Services
2 3 (0.96%) REST
3 2 (0.64%) OLE
4 1 (0.32%) SailPoint
4 1 (0.32%) SOAP
Miscellaneous
1 59 (18.91%) Management Information System
2 28 (8.97%) Analytical Skills
3 22 (7.05%) Computer Science
4 13 (4.17%) Data Protection Act
5 8 (2.56%) SCADA
5 8 (2.56%) Security Operations Centre
6 7 (2.24%) BYOD
6 7 (2.24%) Self-Motivation
7 6 (1.92%) Algorithms
7 6 (1.92%) PKI
8 5 (1.60%) Greenfield Project
9 4 (1.28%) Distributed Denial-of-Service
9 4 (1.28%) Fintech
9 4 (1.28%) PMI
10 3 (0.96%) Cyberthreat
10 3 (0.96%) Data Centre
11 2 (0.64%) Client/Server
11 2 (0.64%) Credit Risk
11 2 (0.64%) Enterprise Software
11 2 (0.64%) Virtual Team
Operating Systems
1 16 (5.13%) Linux
2 15 (4.81%) Windows
3 14 (4.49%) Unix
Processes & Methodologies
1 205 (65.71%) Information Security
2 143 (45.83%) Risk Management
3 116 (37.18%) Cybersecurity
4 68 (21.79%) Stakeholder Management
5 64 (20.51%) ITIL
6 41 (13.14%) Data Protection
7 40 (12.82%) SIEM
8 37 (11.86%) Agile Software Development
9 34 (10.90%) Security Architecture
10 33 (10.58%) IT Audit
11 31 (9.94%) Risk Assessment
12 28 (8.97%) Penetration Testing
13 22 (7.05%) Business Continuity
14 21 (6.73%) Cryptography
14 21 (6.73%) Problem-Solving
14 21 (6.73%) Security Management
15 20 (6.41%) Security Testing
16 19 (6.09%) Identity Access Management
16 19 (6.09%) Vulnerability Management
17 18 (5.77%) Identity Management
Programming Languages
1 6 (1.92%) C
1 6 (1.92%) Python
2 3 (0.96%) SQL
3 2 (0.64%) Bash Shell
3 2 (0.64%) C#
3 2 (0.64%) C++
3 2 (0.64%) Java
3 2 (0.64%) Perl
3 2 (0.64%) PowerShell
Qualifications
1 274 (87.82%) CISSP
2 233 (74.68%) CISM
3 211 (67.63%) CISA
4 57 (18.27%) Degree
5 33 (10.58%) GIAC
6 30 (9.62%) SANS
7 25 (8.01%) CEH
8 21 (6.73%) CGEIT
9 19 (6.09%) Computer Science Degree
10 16 (5.13%) Cisco Certification
11 14 (4.49%) (ISC)2 CCSP
12 10 (3.21%) GCIH
12 10 (3.21%) Security Cleared
13 9 (2.88%) IISP
14 8 (2.56%) GSEC
15 7 (2.24%) SSCP
16 6 (1.92%) CCSP
16 6 (1.92%) GCIA
16 6 (1.92%) GISP
16 6 (1.92%) ISACA
Quality Assurance & Compliance
1 112 (35.90%) ISO/IEC 27001
2 79 (25.32%) COBIT
3 75 (24.04%) PCI DSS
4 66 (21.15%) GDPR
5 12 (3.85%) Cyber Essentials
5 12 (3.85%) ISO 22301
6 9 (2.88%) SLA
7 7 (2.24%) Sarbanes-Oxley
8 5 (1.60%) COSO
8 5 (1.60%) NIST 800
9 4 (1.28%) HIPAA
9 4 (1.28%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 3 (0.96%) Actionable Recommendations
11 2 (0.64%) ISAE 3402
11 2 (0.64%) PMO
12 1 (0.32%) ISO 31000
System Software
1 3 (0.96%) Active Directory
2 2 (0.64%) Docker
3 1 (0.32%) ProxySG
Systems Management
1 3 (0.96%) RSA Archer
2 2 (0.64%) CASB
2 2 (0.64%) CSIRT
2 2 (0.64%) Host Intrusion Detection System
3 1 (0.32%) HP Fortify
3 1 (0.32%) WebInspect
Vendors
1 12 (3.85%) LogRhythm
2 11 (3.53%) Cisco
3 9 (2.88%) WorldPay
4 6 (1.92%) McAfee
4 6 (1.92%) Splunk
5 5 (1.60%) Microsoft
5 5 (1.60%) Qualys
6 4 (1.28%) Palo Alto
7 3 (0.96%) ServiceNow
8 2 (0.64%) Cognizant
8 2 (0.64%) Google
9 1 (0.32%) Blue Coat
9 1 (0.32%) CheckPoint
9 1 (0.32%) HP
9 1 (0.32%) IBM
9 1 (0.32%) Juniper
9 1 (0.32%) Oracle
9 1 (0.32%) Sybase
9 1 (0.32%) Veracode