Period
to 24 May 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CRISC qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 24 May 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified in Risk and Information Systems Control (CRISC)
UK
6 months to
24 May 2018
Same period 2017 Same period 2016
Rank 896 931 921
Rank change year-on-year +35 -10 +181
Permanent jobs citing CRISC 275 215 362
As % of all permanent IT jobs advertised in the UK 0.16% 0.13% 0.18%
As % of the Qualifications category 0.68% 0.51% 0.65%
Number of salaries quoted 201 173 309
UK median annual salary £65,000 £60,000 £56,500
Median salary % change year-on-year +8.33% +6.19% -3.42%
10th Percentile £44,500 £42,500 £38,750
90th Percentile £105,000 £81,000 £77,500
UK excluding London median annual salary £60,000 £52,500 £52,500
% change year-on-year +14.29% - +5.00%

CRISC is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 40,648 42,221 55,631
As % of all permanent IT jobs advertised in the UK 23.57% 24.94% 27.70%
Number of salaries quoted 30,801 33,126 44,634
UK median annual salary £49,000 £45,000 £45,000
Median salary % change year-on-year +8.89% - -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £80,000 £77,500 £75,000
UK excluding London median annual salary £44,900 £42,000 £42,500
% change year-on-year +6.90% -1.18% +6.25%

CRISC
Job Vacancy Trend

Job postings citing CRISC as a percentage of all IT jobs advertised.

Job vacancy trend for CRISC in the UK

CRISC
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CRISC.

Salary trend for CRISC in the UK

CRISC
Salary Histogram

The salary distribution of IT jobs citing CRISC over the 6 months to 24 May 2018.

Salary histogram for CRISC in the UK

CRISC
Top 14 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CRISC within the UK over the 6 months to 24 May 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +62 266 £65,000 +8.33% 23
London +45 146 £80,000 +28.00% 11
UK excluding London +10 125 £60,000 +14.29% 13
South East +12 37 £55,000 +4.76% 2
North of England +11 37 £55,000 - 2
Midlands +10 35 £61,000 +6.09% 3
West Midlands +15 32 £61,000 -2.79% 3
Yorkshire +31 18 £50,000 +5.26% 2
North West -13 17 £55,000 -8.33%
East of England -5 14 £82,225 +73.11% 4
East Midlands -4 3 £90,000 +63.64%
Scotland -29 3 £71,250 +67.65% 1
North East -22 2 £42,250 -35.00%
Wales - 2 £70,000 -

For the 6 months to 24 May 2018, IT jobs citing CRISC also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CRISC.

1 235 (85.45%) CISM
2 234 (85.09%) CISSP
3 189 (68.73%) CISA
4 188 (68.36%) Information Security
5 138 (50.18%) Finance
6 129 (46.91%) ISO/IEC 27001
7 125 (45.45%) Risk Management
8 93 (33.82%) Cybersecurity
9 72 (26.18%) Management Information System
10 65 (23.64%) GDPR
11 59 (21.45%) Data Protection
12 58 (21.09%) PCI DSS
12 58 (21.09%) COBIT
13 55 (20.00%) ITIL
14 48 (17.45%) Degree
15 47 (17.09%) Agile Software Development
16 42 (15.27%) Stakeholder Management
16 42 (15.27%) Analytical Skills
17 38 (13.82%) Security Management
18 37 (13.45%) CEH
19 33 (12.00%) ISMS
19 33 (12.00%) SANS
20 32 (11.64%) Legal
21 31 (11.27%) Information Security Management
22 30 (10.91%) Security Testing
23 29 (10.55%) GIAC
23 29 (10.55%) Banking
24 25 (9.09%) SIEM
25 22 (8.00%) Firewall
25 22 (8.00%) Problem-Solving

CRISC
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 14 (5.09%) IIS
2 9 (3.27%) WebSphere
Applications
1 2 (0.73%) Microsoft Office
Cloud Services
1 8 (2.91%) Amazon AWS
2 3 (1.09%) Virtual Private Cloud
3 2 (0.73%) IaaS
Communications & Networking
1 22 (8.00%) Firewall
2 18 (6.55%) Network Security
3 12 (4.36%) HTTP
4 8 (2.91%) Cisco IPT
5 6 (2.18%) SAN
5 6 (2.18%) WebEx
6 5 (1.82%) Cisco ASA
6 5 (1.82%) Cisco Firepower
7 4 (1.45%) SMS
8 3 (1.09%) Intrusion Detection
9 2 (0.73%) Internet
9 2 (0.73%) LAN
9 2 (0.73%) SCCP
9 2 (0.73%) VPN
Database & Business Intelligence
1 9 (3.27%) SQL Server
2 1 (0.36%) Blockchain
Development Applications
1 5 (1.82%) AppScan
General
1 138 (50.18%) Finance
2 32 (11.64%) Legal
3 29 (10.55%) Banking
4 20 (7.27%) Retail
5 18 (6.55%) Games
6 13 (4.73%) Back Office
7 12 (4.36%) Investment Banking
8 11 (4.00%) Telecoms
9 9 (3.27%) Private Banking
10 4 (1.45%) French Language
10 4 (1.45%) Manufacturing
10 4 (1.45%) Marketing
11 3 (1.09%) Front Office
11 3 (1.09%) Law
12 1 (0.36%) Automotive
12 1 (0.36%) Financial Institution
12 1 (0.36%) German Language
Job Titles
1 57 (20.73%) Analyst
2 47 (17.09%) Risk Manager
3 44 (16.00%) Security Manager
4 41 (14.91%) Security Analyst
5 33 (12.00%) IT Manager
6 29 (10.55%) Consultant
7 24 (8.73%) Information Manager
8 23 (8.36%) Information Analyst
8 23 (8.36%) Information Security Analyst
8 23 (8.36%) Information Security Manager
8 23 (8.36%) IT Risk Manager
9 21 (7.64%) Senior Analyst
9 21 (7.64%) Senior Security Analyst
10 19 (6.91%) Head of Security
11 18 (6.55%) Security Consultant
12 17 (6.18%) Cybersecurity Manager
12 17 (6.18%) Risk Analyst
12 17 (6.18%) Security Specialist
13 15 (5.45%) Architect
13 15 (5.45%) Security Architect
Libraries, Frameworks & Software Standards
1 9 (3.27%) MSMQ
1 9 (3.27%) WebSphere MQ
2 5 (1.82%) .NET
2 5 (1.82%) Web Services
3 1 (0.36%) Middleware
Miscellaneous
1 72 (26.18%) Management Information System
2 42 (15.27%) Analytical Skills
3 19 (6.91%) Computer Science
4 16 (5.82%) Self-Motivation
5 15 (5.45%) Data Centre
5 15 (5.45%) Data Protection Act
6 12 (4.36%) BYOD
7 8 (2.91%) Distributed Denial-of-Service
8 6 (2.18%) SCADA
8 6 (2.18%) Security Operations Centre
8 6 (2.18%) Video Conferencing
9 4 (1.45%) Cyberthreat
9 4 (1.45%) Fintech
9 4 (1.45%) Virtual Team
10 3 (1.09%) CESG
11 2 (0.73%) Client/Server
11 2 (0.73%) Credit Risk
11 2 (0.73%) Market Risk
11 2 (0.73%) Mobile App
11 2 (0.73%) Mobile Computing
Operating Systems
1 10 (3.64%) Linux
2 9 (3.27%) Unix
2 9 (3.27%) Windows
2 9 (3.27%) Windows Server
3 3 (1.09%) Android
3 3 (1.09%) Apple iOS
Processes & Methodologies
1 188 (68.36%) Information Security
2 125 (45.45%) Risk Management
3 93 (33.82%) Cybersecurity
4 59 (21.45%) Data Protection
5 55 (20.00%) ITIL
6 47 (17.09%) Agile Software Development
7 42 (15.27%) Stakeholder Management
8 38 (13.82%) Security Management
9 33 (12.00%) ISMS
10 31 (11.27%) Information Security Management
11 30 (10.91%) Security Testing
12 25 (9.09%) SIEM
13 22 (8.00%) Problem-Solving
14 21 (7.64%) Vulnerability Management
15 20 (7.27%) DevOps
15 20 (7.27%) Security Operations
16 19 (6.91%) Risk Assessment
16 19 (6.91%) Waterfall
17 18 (6.55%) Identity Management
17 18 (6.55%) Incident Management
Programming Languages
1 9 (3.27%) SQL
2 8 (2.91%) Java
3 5 (1.82%) C++
3 5 (1.82%) Python
4 4 (1.45%) C
5 3 (1.09%) C#
5 3 (1.09%) Perl
6 2 (0.73%) Bash Shell
6 2 (0.73%) JavaScript
Qualifications
1 235 (85.45%) CISM
2 234 (85.09%) CISSP
3 189 (68.73%) CISA
4 48 (17.45%) Degree
5 37 (13.45%) CEH
6 33 (12.00%) SANS
7 29 (10.55%) GIAC
8 21 (7.64%) Cisco Certification
9 19 (6.91%) (ISC)2 CCSP
10 17 (6.18%) CGEIT
11 16 (5.82%) ISEB
12 15 (5.45%) CCSP
13 14 (5.09%) ISO 27001 Lead Auditor
13 14 (5.09%) ISO 27001 Lead Implementer
14 13 (4.73%) OSCP
15 9 (3.27%) Computer Science Degree
16 8 (2.91%) PCI QSA
16 8 (2.91%) Security Cleared
17 7 (2.55%) GCIH
18 6 (2.18%) Six Sigma Green Belt
Quality Assurance & Compliance
1 129 (46.91%) ISO/IEC 27001
2 65 (23.64%) GDPR
3 58 (21.09%) COBIT
3 58 (21.09%) PCI DSS
4 17 (6.18%) ISO 22301
5 15 (5.45%) Cyber Essentials
6 12 (4.36%) ISO 31000
7 11 (4.00%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 8 (2.91%) SLA
9 7 (2.55%) Sarbanes-Oxley
10 4 (1.45%) ISO/IEC 27005
10 4 (1.45%) NIST 800
10 4 (1.45%) QA
11 3 (1.09%) Actionable Recommendations
11 3 (1.09%) COSO
11 3 (1.09%) HMG Security Policy Framework
11 3 (1.09%) ISO 9001
12 2 (0.73%) HIPAA
12 2 (0.73%) ISAE 3402
12 2 (0.73%) PMO
System Software
1 4 (1.45%) Active Directory
2 1 (0.36%) Virtual Desktop
Systems Management
1 8 (2.91%) CSIRT
2 6 (2.18%) HP Fortify
3 5 (1.82%) WebInspect
4 2 (0.73%) CASB
4 2 (0.73%) RSA Archer
5 1 (0.36%) Computer Emergency Response Teams
Vendors
1 10 (3.64%) Qualys
2 6 (2.18%) HP
3 5 (1.82%) Cisco
3 5 (1.82%) IBM
3 5 (1.82%) Microsoft
3 5 (1.82%) Veracode
3 5 (1.82%) WorldPay
4 3 (1.09%) ServiceNow
5 2 (0.73%) Cognizant
6 1 (0.36%) F5
6 1 (0.36%) Sonatype
6 1 (0.36%) Tableau