Period
to 11 November 2019

The following table provides summary statistics for permanent job vacancies with a requirement for CRISC qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 11 November 2019 with a comparison to the same period in the previous 2 years.

ISACA Certified in Risk and Information Systems Control (CRISC)
UK
6 months to
11 Nov 2019
Same period 2018 Same period 2017
Rank 829 827 904
Rank change year-on-year -2 +77 -9
Permanent jobs citing CRISC 245 321 318
As % of all permanent IT jobs advertised in the UK 0.18% 0.20% 0.18%
As % of the Qualifications category 0.79% 0.84% 0.73%
Number of salaries quoted 192 237 262
UK median annual salary £64,500 £75,000 £65,000
Median salary % change year-on-year -14.00% +15.38% -
10th Percentile £41,325 £51,250 £42,500
90th Percentile £103,500 £94,600 £91,250
UK excluding London median annual salary £60,000 £70,000 £52,000
% change year-on-year -14.29% +34.62% -13.33%

CRISC is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 30,844 38,075 43,526
As % of all permanent IT jobs advertised in the UK 22.72% 23.69% 24.26%
Number of salaries quoted 22,734 28,188 33,460
UK median annual salary £50,000 £50,000 £47,500
Median salary % change year-on-year - +5.26% +5.56%
10th Percentile £27,250 £26,250 £26,000
90th Percentile £82,500 £81,250 £77,500
UK excluding London median annual salary £45,000 £45,000 £42,500
% change year-on-year - +5.88% -

CRISC
Job Vacancy Trend

Job postings citing CRISC as a percentage of all IT jobs advertised.

Job vacancy trend for CRISC in the UK

CRISC
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CRISC.

Salary trend for CRISC in the UK

CRISC
Salary Histogram

The salary distribution of IT jobs citing CRISC over the 6 months to 11 November 2019.

Salary histogram for CRISC in the UK

CRISC
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CRISC within the UK over the 6 months to 11 November 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +27 237 £64,500 -14.00% 23
UK excluding London +75 134 £60,000 -14.29% 15
London -11 107 £67,500 -12.90% 10
South East +34 40 £62,500 -10.71% 5
Midlands +47 39 £45,000 -21.74%
North of England +50 34 £52,727 +14.00% 2
West Midlands +24 21 £45,000 -21.74%
North West +45 20 £55,000 +10.00%
East Midlands +47 18 £75,000 +11.11%
Yorkshire +14 12 £86,250 +146.43% 2
South West +22 11 £55,000 +4.76% 4
East of England +47 6 £60,000 -22.58% 2
Scotland +15 3 £125,000 +66.67% 1
North East +18 2 £41,285 -6.70%
Wales - 1 £37,500 -

For the 6 months to 11 November 2019, IT jobs citing CRISC also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CRISC.

1 193 (78.78%) CISSP
2 170 (69.39%) CISM
3 164 (66.94%) CISA
4 158 (64.49%) Cybersecurity
5 143 (58.37%) Information Security
6 115 (46.94%) ISO/IEC 27001
7 99 (40.41%) Risk Management
8 93 (37.96%) NIST
9 83 (33.88%) Degree
10 73 (29.80%) Finance
11 64 (26.12%) ITIL
12 62 (25.31%) Security Architecture
13 57 (23.27%) Management Information System
14 56 (22.86%) GDPR
15 53 (21.63%) Security Cleared
16 50 (20.41%) PCI DSS
17 46 (18.78%) COBIT
18 41 (16.73%) Risk Assessment
19 34 (13.88%) Security Management
19 34 (13.88%) Azure
20 33 (13.47%) AWS
20 33 (13.47%) SC Cleared
21 31 (12.65%) Decision-Making
22 30 (12.24%) Microsoft
22 30 (12.24%) Cloud Computing
23 29 (11.84%) CompTIA Security+
24 27 (11.02%) Cisco Certification
25 26 (10.61%) (ISC)2 CCSP
26 23 (9.39%) CEH
26 23 (9.39%) ISMS

CRISC
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 17 (6.94%) IIS
2 5 (2.04%) SharePoint
3 1 (0.41%) Elasticsearch
Applications
1 4 (1.63%) Microsoft PowerPoint
2 3 (1.22%) Microsoft Excel
2 3 (1.22%) Microsoft Office
Business Applications
1 1 (0.41%) SAP GRC
Cloud Services
1 34 (13.88%) Azure
2 33 (13.47%) AWS
3 30 (12.24%) Cloud Computing
4 15 (6.12%) GCP
4 15 (6.12%) Office 365
5 4 (1.63%) PaaS
6 3 (1.22%) IaaS
6 3 (1.22%) Microsoft Flow
6 3 (1.22%) Power Platform
7 2 (0.82%) Azure Active Directory
8 1 (0.41%) Mimecast
8 1 (0.41%) SaaS
Communications & Networking
1 19 (7.76%) Firewall
2 12 (4.90%) RTP
3 8 (3.27%) LAN
4 6 (2.45%) SAN
5 5 (2.04%) Network Security
6 2 (0.82%) DNS
6 2 (0.82%) WAN
7 1 (0.41%) Cisco IPT
7 1 (0.41%) HTTP
7 1 (0.41%) Internet
7 1 (0.41%) Kerberos
7 1 (0.41%) SMTP
7 1 (0.41%) TCP/IP
7 1 (0.41%) VPN
Database & Business Intelligence
1 4 (1.63%) Big Data
2 2 (0.82%) SQL Server
3 1 (0.41%) Power BI
General
1 73 (29.80%) Finance
2 17 (6.94%) Banking
2 17 (6.94%) Financial Institution
3 13 (5.31%) Public Sector
4 9 (3.67%) Legal
5 8 (3.27%) Billing
6 6 (2.45%) Games
7 3 (1.22%) Law
8 2 (0.82%) Advertising
8 2 (0.82%) Aerospace
8 2 (0.82%) Local Government
8 2 (0.82%) Manufacturing
8 2 (0.82%) Private Banking
8 2 (0.82%) Retail
8 2 (0.82%) Retail Banking
9 1 (0.41%) Investment Banking
9 1 (0.41%) Marketing
Job Titles
1 43 (17.55%) Security Manager
2 39 (15.92%) Consultant
3 31 (12.65%) Security Specialist
4 29 (11.84%) Security Consultant
5 27 (11.02%) Analyst
6 24 (9.80%) Security Analyst
7 22 (8.98%) Information Manager
7 22 (8.98%) Information Security Manager
8 20 (8.16%) Architect
8 20 (8.16%) Security Architect
9 18 (7.35%) Compliance Manager
9 18 (7.35%) Information Analyst
9 18 (7.35%) Information Security Analyst
9 18 (7.35%) Risk Manager
10 17 (6.94%) Cybersecurity Consultant
10 17 (6.94%) Cybersecurity Specialist
11 16 (6.53%) Cybersecurity Architect
12 14 (5.71%) Security Compliance Manager
12 14 (5.71%) Senior Manager
13 13 (5.31%) Security Officer
Libraries, Frameworks & Software Standards
1 3 (1.22%) SailPoint
2 2 (0.82%) D3.js
2 2 (0.82%) SAML
Miscellaneous
1 57 (23.27%) Management Information System
2 21 (8.57%) Mobile Computing
3 12 (4.90%) Reinsurance
4 11 (4.49%) Analytical Skills
4 11 (4.49%) Data Centre
5 10 (4.08%) Cyberthreat
6 9 (3.67%) Enterprise Software
7 8 (3.27%) Client/Server
8 7 (2.86%) Cyberattack
9 6 (2.45%) Self-Motivation
10 5 (2.04%) Data Protection Act
10 5 (2.04%) User Experience
11 4 (1.63%) Anti-Piracy
11 4 (1.63%) Blog
11 4 (1.63%) Podcast
11 4 (1.63%) Security Operations Centre
11 4 (1.63%) Social Media
12 3 (1.22%) PMI
13 2 (0.82%) PKI
13 2 (0.82%) Smart Meter
Operating Systems
1 7 (2.86%) Windows
2 2 (0.82%) Linux
3 1 (0.41%) Mac OS X
Processes & Methodologies
1 158 (64.49%) Cybersecurity
2 143 (58.37%) Information Security
3 99 (40.41%) Risk Management
4 64 (26.12%) ITIL
5 62 (25.31%) Security Architecture
6 41 (16.73%) Risk Assessment
7 34 (13.88%) Security Management
8 31 (12.65%) Decision-Making
9 23 (9.39%) Continuous Improvement
9 23 (9.39%) ISMS
10 22 (8.98%) Penetration Testing
11 20 (8.16%) Business Continuity
11 20 (8.16%) Stakeholder Management
12 19 (7.76%) Information Security Management
13 17 (6.94%) Agile Software Development
13 17 (6.94%) Coaching
13 17 (6.94%) Cyber Resilience
13 17 (6.94%) Information Assurance
14 16 (6.53%) Internal Audit
14 16 (6.53%) Security Operations
Programming Languages
1 5 (2.04%) PowerShell
2 2 (0.82%) C
3 1 (0.41%) Java
Qualifications
1 193 (78.78%) CISSP
2 170 (69.39%) CISM
3 164 (66.94%) CISA
4 83 (33.88%) Degree
5 53 (21.63%) Security Cleared
6 33 (13.47%) SC Cleared
7 29 (11.84%) CompTIA Security+
8 27 (11.02%) Cisco Certification
9 26 (10.61%) (ISC)2 CCSP
10 23 (9.39%) CEH
11 21 (8.57%) CISMP
12 17 (6.94%) CESG Certified Professional
12 17 (6.94%) DV Cleared
12 17 (6.94%) IISP
13 14 (5.71%) ISEB
13 14 (5.71%) SANS
14 12 (4.90%) ISSMP
15 8 (3.27%) CGEIT
15 8 (3.27%) GSEC
16 7 (2.86%) PMI Certification
Quality Assurance & Compliance
1 115 (46.94%) ISO/IEC 27001
2 93 (37.96%) NIST
3 56 (22.86%) GDPR
4 50 (20.41%) PCI DSS
5 46 (18.78%) COBIT
6 17 (6.94%) SLA
7 16 (6.53%) Cyber Essentials
7 16 (6.53%) Sarbanes-Oxley
8 15 (6.12%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
9 8 (3.27%) ITGC
10 5 (2.04%) ISO 22301
10 5 (2.04%) ISO 9001
11 4 (1.63%) NCSC
12 2 (0.82%) COSO
12 2 (0.82%) HMG Security Policy Framework
12 2 (0.82%) ISO/IEC 27005
13 1 (0.41%) Cyber Essentials PLUS
13 1 (0.41%) ISO 31000
13 1 (0.41%) ISO/IEC 20000
13 1 (0.41%) NIST 800
System Software
1 18 (7.35%) Active Directory
Systems Management
1 5 (2.04%) Single Sign-On
2 2 (0.82%) Microsoft Intune
3 1 (0.41%) RSA Archer
Vendors
1 30 (12.24%) Microsoft
2 4 (1.63%) CA
2 4 (1.63%) Google
3 2 (0.82%) BeyondTrust
3 2 (0.82%) CheckPoint
3 2 (0.82%) CyberArk
3 2 (0.82%) Tableau
4 1 (0.41%) AlienVault
4 1 (0.41%) McAfee
4 1 (0.41%) Okta
4 1 (0.41%) SAP
4 1 (0.41%) Splunk
4 1 (0.41%) TOWER Software