Period
to 17 February 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CRISC qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 17 February 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified in Risk and Information Systems Control (CRISC)
UK
6 months to
17 Feb 2018
Same period 2017 Same period 2016
Rank 889 928 1049
Rank change year-on-year +39 +121 +32
Permanent jobs citing CRISC 288 259 261
As % of all permanent IT jobs advertised in the UK 0.16% 0.15% 0.12%
As % of the Qualifications category 0.70% 0.58% 0.45%
Number of salaries quoted 244 222 235
UK median annual salary £69,250 £65,000 £60,000
Median salary % change year-on-year +6.54% +8.33% +2.56%
10th Percentile £42,500 £39,000 £40,500
90th Percentile £100,000 £97,250 £90,750
UK excluding London median annual salary £53,000 £60,000 £50,500
% change year-on-year -11.67% +18.81% -13.68%

CRISC is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 41,388 44,644 58,394
As % of all permanent IT jobs advertised in the UK 23.63% 25.42% 27.70%
Number of salaries quoted 32,108 35,328 46,573
UK median annual salary £47,500 £45,000 £45,000
Median salary % change year-on-year +5.56% - -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £78,750 £76,250 £75,000
UK excluding London median annual salary £42,500 £42,500 £42,500

CRISC
Job Vacancy Trend

Job postings citing CRISC as a percentage of all IT jobs advertised.

Job vacancy trend for CRISC in the UK

CRISC
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CRISC.

Salary trend for CRISC in the UK

CRISC
Salary Histogram

The salary distribution of IT jobs citing CRISC over the 6 months to 17 February 2018.

Salary histogram for CRISC in the UK

CRISC
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CRISC within the UK over the 6 months to 17 February 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +32 280 £68,250 +1.11% 27
UK excluding London +73 157 £53,000 -11.67% 13
London -52 127 £77,500 +14.81% 15
South East +68 79 £52,500 -23.64% 5
North of England +22 48 £54,000 -13.60% 3
North West +6 31 £70,000 +27.27% 2
Midlands -3 20 £61,750 +7.39% 2
West Midlands +1 16 £61,000 +1.67% 2
Yorkshire +14 12 £53,000 -15.20% 1
North East - 5 £48,500 -
East Midlands +18 4 £100,000 +81.82%
East of England +4 3 £62,500 +31.58% 2
Scotland -32 3 £72,500 +75.76%
Wales - 3 £70,000 - 1
South West 0 1 £50,000 -11.11%

For the 6 months to 17 February 2018, IT jobs citing CRISC also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CRISC.

1 262 (90.97%) CISSP
2 252 (87.50%) CISM
3 215 (74.65%) Information Security
4 181 (62.85%) ISO/IEC 27001
5 150 (52.08%) CISA
6 149 (51.74%) Finance
7 103 (35.76%) Cybersecurity
8 98 (34.03%) Risk Management
9 94 (32.64%) Management Information System
10 84 (29.17%) Security Management
11 76 (26.39%) Information Security Management
12 68 (23.61%) GDPR
13 59 (20.49%) Data Protection
14 58 (20.14%) ITIL
15 54 (18.75%) Risk Assessment
15 54 (18.75%) Network Security
16 53 (18.40%) Penetration Testing
17 51 (17.71%) GIAC
18 49 (17.01%) COBIT
19 48 (16.67%) PCI DSS
20 46 (15.97%) Firewall
21 45 (15.63%) Banking
22 43 (14.93%) ISMS
23 42 (14.58%) Stakeholder Management
24 41 (14.24%) Risk Analysis
25 39 (13.54%) SANS
26 38 (13.19%) Security Operations
27 37 (12.85%) Degree
27 37 (12.85%) Agile Software Development
28 34 (11.81%) Active Directory

CRISC
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 21 (7.29%) IIS
1 21 (7.29%) WebSphere
2 2 (0.69%) MS Exchange
Applications
1 2 (0.69%) Chatbot
2 1 (0.35%) Microsoft Excel
2 1 (0.35%) Microsoft Office
2 1 (0.35%) Microsoft PowerPoint
Cloud Services
1 2 (0.69%) Microsoft Azure
1 2 (0.69%) Mimecast
Communications & Networking
1 54 (18.75%) Network Security
2 46 (15.97%) Firewall
3 7 (2.43%) HTTP
4 2 (0.69%) Cisco IPT
4 2 (0.69%) Intrusion Detection
4 2 (0.69%) SAN
5 1 (0.35%) Cisco Nexus
5 1 (0.35%) Internet
5 1 (0.35%) SMS
Database & Business Intelligence
1 21 (7.29%) SQL Server
2 2 (0.69%) Blockchain
Development Applications
1 3 (1.04%) AppScan
General
1 149 (51.74%) Finance
2 45 (15.63%) Banking
3 28 (9.72%) Legal
4 21 (7.29%) Private Banking
5 15 (5.21%) Retail
6 10 (3.47%) Investment Banking
7 9 (3.13%) Front Office
7 9 (3.13%) Games
8 8 (2.78%) Back Office
9 7 (2.43%) French Language
9 7 (2.43%) German Language
9 7 (2.43%) Telecoms
10 6 (2.08%) Law
11 5 (1.74%) Marketing
12 3 (1.04%) Retail Banking
13 2 (0.69%) Automotive
13 2 (0.69%) Manufacturing
14 1 (0.35%) Aerospace
14 1 (0.35%) Financial Institution
Job Titles
1 64 (22.22%) Analyst
2 59 (20.49%) Security Analyst
3 57 (19.79%) Risk Manager
4 55 (19.10%) Information Analyst
4 55 (19.10%) Information Security Analyst
5 52 (18.06%) Security Manager
6 36 (12.50%) Consultant
7 35 (12.15%) Information Manager
8 32 (11.11%) Information Security Manager
9 28 (9.72%) Security Consultant
10 27 (9.38%) IT Manager
11 25 (8.68%) IT Risk Manager
12 21 (7.29%) Finance Manager
12 21 (7.29%) Head of Security
13 20 (6.94%) Infrastructure Manager
14 18 (6.25%) Information Risk Manager
15 14 (4.86%) IT Finance Manager
16 13 (4.51%) IT Infrastructure Manager
16 13 (4.51%) IT Technical Manager
16 13 (4.51%) Technical Infrastructure Manager
Libraries, Frameworks & Software Standards
1 21 (7.29%) MSMQ
1 21 (7.29%) WebSphere MQ
2 4 (1.39%) .NET
3 1 (0.35%) Middleware
3 1 (0.35%) SailPoint
Miscellaneous
1 94 (32.64%) Management Information System
2 29 (10.07%) Analytical Skills
3 17 (5.90%) Security Operations Centre
4 15 (5.21%) Data Protection Act
5 12 (4.17%) CESG
6 11 (3.82%) Data Centre
7 8 (2.78%) BYOD
7 8 (2.78%) Distributed Denial-of-Service
8 6 (2.08%) Cyberthreat
8 6 (2.08%) Greenfield Project
9 5 (1.74%) Computer Science
9 5 (1.74%) Mobile Computing
10 3 (1.04%) Cyberattack
10 3 (1.04%) Taxonomies
10 3 (1.04%) Virtual Team
11 2 (0.69%) Fintech
11 2 (0.69%) Hybrid Cloud
11 2 (0.69%) Mobile App
12 1 (0.35%) FMCG
12 1 (0.35%) Private Cloud
Operating Systems
1 23 (7.99%) Linux
1 23 (7.99%) Windows
1 23 (7.99%) Windows Server
2 21 (7.29%) Unix
3 2 (0.69%) Android
3 2 (0.69%) Apple iOS
Processes & Methodologies
1 215 (74.65%) Information Security
2 103 (35.76%) Cybersecurity
3 98 (34.03%) Risk Management
4 84 (29.17%) Security Management
5 76 (26.39%) Information Security Management
6 59 (20.49%) Data Protection
7 58 (20.14%) ITIL
8 54 (18.75%) Risk Assessment
9 53 (18.40%) Penetration Testing
10 43 (14.93%) ISMS
11 42 (14.58%) Stakeholder Management
12 41 (14.24%) Risk Analysis
13 38 (13.19%) Security Operations
14 37 (12.85%) Agile Software Development
15 32 (11.11%) Process Improvement
16 30 (10.42%) IT Governance
16 30 (10.42%) Strategic Planning
17 27 (9.38%) Data Privacy
18 26 (9.03%) Compliance Audit
18 26 (9.03%) Incident Management
Programming Languages
1 21 (7.29%) SQL
2 8 (2.78%) C
3 4 (1.39%) Java
4 2 (0.69%) C++
4 2 (0.69%) JavaScript
Qualifications
1 262 (90.97%) CISSP
2 252 (87.50%) CISM
3 150 (52.08%) CISA
4 51 (17.71%) GIAC
5 39 (13.54%) SANS
6 37 (12.85%) Degree
7 25 (8.68%) CEH
8 15 (5.21%) Cisco Certification
9 13 (4.51%) CGEIT
9 13 (4.51%) ISO 27001 Lead Auditor
10 12 (4.17%) (ISC)2 CCSP
11 10 (3.47%) ISO 27001 Lead Implementer
12 8 (2.78%) CESG Certified Professional
12 8 (2.78%) Six Sigma Green Belt
13 7 (2.43%) CCSP
13 7 (2.43%) Security Cleared
13 7 (2.43%) SSCP
14 6 (2.08%) DBS Check
14 6 (2.08%) ISEB
14 6 (2.08%) OSCP
Quality Assurance & Compliance
1 181 (62.85%) ISO/IEC 27001
2 68 (23.61%) GDPR
3 49 (17.01%) COBIT
4 48 (16.67%) PCI DSS
5 23 (7.99%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 20 (6.94%) Cyber Essentials
7 15 (5.21%) ISO 31000
8 14 (4.86%) ISO 22301
9 5 (1.74%) ISO/IEC 27005
10 4 (1.39%) HMG Security Policy Framework
10 4 (1.39%) ISO 9001
10 4 (1.39%) ISO/IEC 20000
11 3 (1.04%) COSO
11 3 (1.04%) Sarbanes-Oxley
12 2 (0.69%) Data Quality
12 2 (0.69%) HIPAA
12 2 (0.69%) QA
12 2 (0.69%) SLA
13 1 (0.35%) Cyber Essentials PLUS
System Software
1 34 (11.81%) Active Directory
Systems Management
1 4 (1.39%) HP Fortify
1 4 (1.39%) RSA Archer
2 3 (1.04%) WebInspect
3 2 (0.69%) Backup Exec
3 2 (0.69%) Single Sign-On
4 1 (0.35%) Computer Emergency Response Teams
4 1 (0.35%) CSIRT
Vendors
1 6 (2.08%) Splunk
2 4 (1.39%) HP
2 4 (1.39%) Microsoft
3 3 (1.04%) IBM
3 3 (1.04%) Qualys
3 3 (1.04%) Veracode
4 2 (0.69%) CheckPoint
4 2 (0.69%) Sophos
5 1 (0.35%) Cisco
5 1 (0.35%) F5
5 1 (0.35%) Google
5 1 (0.35%) NetIQ
5 1 (0.35%) Sonatype
5 1 (0.35%) Tableau