Period
to 10 December 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CRISC qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 10 December 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified in Risk and Information Systems Control (CRISC)
UK
6 months to
10 Dec 2018
Same period 2017 Same period 2016
Rank 805 874 921
Rank change year-on-year +69 +47 +162
Permanent jobs citing CRISC 337 323 316
As % of all permanent IT jobs advertised in the UK 0.21% 0.18% 0.17%
As % of the Qualifications category 0.89% 0.75% 0.65%
Number of salaries quoted 245 273 276
UK median annual salary £75,000 £65,000 £67,500
Median salary % change year-on-year +15.38% -3.70% +12.50%
10th Percentile £49,250 £42,500 £37,500
90th Percentile £92,500 £91,250 £97,500
UK excluding London median annual salary £65,000 £52,500 £62,500
% change year-on-year +23.81% -16.00% +19.05%

CRISC is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 38,035 42,884 48,437
As % of all permanent IT jobs advertised in the UK 23.76% 24.02% 26.20%
Number of salaries quoted 27,994 32,977 38,701
UK median annual salary £50,000 £47,500 £45,000
Median salary % change year-on-year +5.26% +5.56% -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £81,250 £77,500 £77,500
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +2.41%

CRISC
Job Vacancy Trend

Job postings citing CRISC as a percentage of all IT jobs advertised.

Job vacancy trend for CRISC in the UK

CRISC
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CRISC.

Salary trend for CRISC in the UK

CRISC
Salary Histogram

The salary distribution of IT jobs citing CRISC over the 6 months to 10 December 2018.

Salary histogram for CRISC in the UK

CRISC
Top 14 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CRISC within the UK over the 6 months to 10 December 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +59 324 £75,000 +15.38% 53
London +134 191 £75,000 - 32
UK excluding London +15 138 £65,000 +23.81% 22
South East +7 56 £67,500 +35.00% 6
North of England -32 28 £50,000 -9.09% 8
Midlands +40 22 £57,500 +4.55% 2
West Midlands +41 19 £57,500 +15.00% 1
East of England +33 17 £77,500 +72.22% 3
North West -26 15 £50,000 -16.67% 6
Yorkshire +26 11 £52,319 -0.35% 2
Scotland +11 11 £75,000 +3.45%
South West +8 4 £54,000 +8.00% 2
East Midlands +8 3 £67,500 -32.50% 1
North East -5 2 £51,069 +5.30%

For the 6 months to 10 December 2018, IT jobs citing CRISC also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CRISC.

1 292 (86.65%) CISSP
2 248 (73.59%) CISM
3 234 (69.44%) Information Security
4 219 (64.99%) CISA
5 165 (48.96%) ISO/IEC 27001
6 163 (48.37%) Risk Management
7 134 (39.76%) Cybersecurity
8 89 (26.41%) PCI DSS
9 85 (25.22%) Finance
10 83 (24.63%) Stakeholder Management
11 75 (22.26%) Management Information System
12 69 (20.47%) Degree
13 68 (20.18%) COBIT
14 65 (19.29%) GDPR
15 59 (17.51%) ITIL
16 45 (13.35%) IT Audit
17 43 (12.76%) Data Protection
18 42 (12.46%) Banking
19 40 (11.87%) Security Architecture
20 35 (10.39%) Agile Software Development
21 34 (10.09%) CEH
22 33 (9.79%) Computer Science Degree
22 33 (9.79%) Network Security
23 32 (9.50%) SIEM
23 32 (9.50%) Penetration Testing
24 30 (8.90%) Project Management
24 30 (8.90%) Analytical Skills
25 29 (8.61%) Security Operations
25 29 (8.61%) Legal
25 29 (8.61%) Continuous Improvement

CRISC
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 3 (0.89%) IIS
2 2 (0.59%) SharePoint
Applications
1 4 (1.19%) Microsoft Office
2 1 (0.30%) Microsoft Excel
2 1 (0.30%) Microsoft Project
2 1 (0.30%) MS Visio
2 1 (0.30%) Spreadsheet
Business Applications
1 4 (1.19%) Distributed Ledger
Cloud Services
1 12 (3.56%) Amazon AWS
1 12 (3.56%) SaaS
2 8 (2.37%) Microsoft Azure
3 6 (1.78%) Cloud Computing
3 6 (1.78%) Office 365
Communications & Networking
1 33 (9.79%) Network Security
2 27 (8.01%) Firewall
3 11 (3.26%) HTTP
4 6 (1.78%) ATM
5 4 (1.19%) TCP/IP
6 3 (0.89%) Internet
6 3 (0.89%) VPN
7 2 (0.59%) Cisco ISE
7 2 (0.59%) IPsec
7 2 (0.59%) LAN
7 2 (0.59%) NetScaler
7 2 (0.59%) SMS
7 2 (0.59%) WAN
7 2 (0.59%) Wireless
8 1 (0.30%) Intrusion Detection
8 1 (0.30%) SSL
Database & Business Intelligence
1 3 (0.89%) Data Mining
2 1 (0.30%) Geospatial Data
Development Applications
1 1 (0.30%) AppScan
General
1 85 (25.22%) Finance
2 42 (12.46%) Banking
3 29 (8.61%) Legal
4 18 (5.34%) Investment Banking
5 17 (5.04%) Retail
6 10 (2.97%) Manufacturing
7 7 (2.08%) Law
8 5 (1.48%) Retail Banking
9 2 (0.59%) Pharmaceutical
9 2 (0.59%) Telecoms
10 1 (0.30%) Marketing
Job Titles
1 73 (21.66%) Analyst
2 70 (20.77%) Security Manager
3 56 (16.62%) Information Manager
4 49 (14.54%) Information Security Manager
5 41 (12.17%) Security Analyst
6 37 (10.98%) Consultant
6 37 (10.98%) Risk Manager
7 35 (10.39%) Security Consultant
8 34 (10.09%) IT Analyst
8 34 (10.09%) Risk Analyst
9 31 (9.20%) IT Manager
10 29 (8.61%) IT Risk Analyst
11 18 (5.34%) Architect
11 18 (5.34%) IT Risk Manager
11 18 (5.34%) Security Architect
11 18 (5.34%) Senior Consultant
12 17 (5.04%) Senior Analyst
12 17 (5.04%) Senior Security Analyst
12 17 (5.04%) Senior Security Consultant
13 16 (4.75%) Cybersecurity Analyst
Libraries, Frameworks & Software Standards
1 4 (1.19%) REST
2 2 (0.59%) OLE
2 2 (0.59%) SOAP
3 1 (0.30%) SailPoint
Miscellaneous
1 75 (22.26%) Management Information System
2 30 (8.90%) Analytical Skills
3 11 (3.26%) Security Operations Centre
4 10 (2.97%) Self-Motivation
5 9 (2.67%) Cyber Kill Chain
6 8 (2.37%) Data Protection Act
6 8 (2.37%) PKI
7 6 (1.78%) Algorithms
7 6 (1.78%) BYOD
7 6 (1.78%) Fintech
8 5 (1.48%) Cyberthreat
8 5 (1.48%) Greenfield Project
9 4 (1.19%) Distributed Denial-of-Service
9 4 (1.19%) PMI
9 4 (1.19%) Robotics
10 3 (0.89%) SCADA
11 2 (0.59%) Digital Media
11 2 (0.59%) Enterprise Software
11 2 (0.59%) Mobile App
12 1 (0.30%) Cyberattack
Operating Systems
1 26 (7.72%) Linux
2 17 (5.04%) Windows
3 14 (4.15%) Unix
Processes & Methodologies
1 234 (69.44%) Information Security
2 163 (48.37%) Risk Management
3 134 (39.76%) Cybersecurity
4 83 (24.63%) Stakeholder Management
5 59 (17.51%) ITIL
6 45 (13.35%) IT Audit
7 43 (12.76%) Data Protection
8 40 (11.87%) Security Architecture
9 35 (10.39%) Agile Software Development
10 32 (9.50%) Penetration Testing
10 32 (9.50%) SIEM
11 30 (8.90%) Project Management
12 29 (8.61%) Continuous Improvement
12 29 (8.61%) Security Operations
13 26 (7.72%) Computer Science
13 26 (7.72%) Risk Assessment
14 25 (7.42%) Security Management
15 24 (7.12%) Change Management
15 24 (7.12%) Security Testing
16 22 (6.53%) Cryptography
Programming Languages
1 6 (1.78%) SQL
2 4 (1.19%) C
2 4 (1.19%) PowerShell
3 2 (0.59%) Java
3 2 (0.59%) PHP
3 2 (0.59%) Python
Qualifications
1 292 (86.65%) CISSP
2 248 (73.59%) CISM
3 219 (64.99%) CISA
4 69 (20.47%) Degree
5 34 (10.09%) CEH
6 33 (9.79%) Computer Science Degree
7 27 (8.01%) CGEIT
8 24 (7.12%) Security Cleared
9 22 (6.53%) SANS
10 17 (5.04%) OSCP
11 15 (4.45%) GIAC
12 14 (4.15%) Cisco Certification
13 13 (3.86%) (ISC)2 CCSP
14 12 (3.56%) SC Cleared
15 11 (3.26%) GSEC
16 9 (2.67%) CREST Certified
17 8 (2.37%) ISACA
18 7 (2.08%) CISMP
18 7 (2.08%) TOGAF Certification
19 6 (1.78%) CESG Certified Professional
Quality Assurance & Compliance
1 165 (48.96%) ISO/IEC 27001
2 89 (26.41%) PCI DSS
3 68 (20.18%) COBIT
4 65 (19.29%) GDPR
5 15 (4.45%) QA
6 12 (3.56%) Cyber Essentials
7 10 (2.97%) ISO 22301
8 8 (2.37%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
9 7 (2.08%) Sarbanes-Oxley
10 6 (1.78%) COSO
10 6 (1.78%) ISAE 3402
11 5 (1.48%) NIST 800
12 4 (1.19%) HIPAA
13 2 (0.59%) SLA
14 1 (0.30%) Cyber Essentials PLUS
System Software
1 3 (0.89%) Active Directory
2 2 (0.59%) Docker
2 2 (0.59%) Virtual Machines
3 1 (0.30%) ProxySG
Systems Management
1 9 (2.67%) CSIRT
2 7 (2.08%) CASB
3 3 (0.89%) RSA Archer
4 2 (0.59%) Host Intrusion Detection System
5 1 (0.30%) HP Fortify
5 1 (0.30%) WebInspect
Vendors
1 15 (4.45%) Microsoft
2 12 (3.56%) LogRhythm
2 12 (3.56%) Symantec
3 9 (2.67%) WorldPay
4 4 (1.19%) Palo Alto
5 3 (0.89%) CheckPoint
5 3 (0.89%) Cisco
5 3 (0.89%) Qualys
6 2 (0.59%) Citrix
6 2 (0.59%) F5
6 2 (0.59%) Google
6 2 (0.59%) McAfee
6 2 (0.59%) Sophos
6 2 (0.59%) Trend Micro
6 2 (0.59%) Zscaler
7 1 (0.30%) HP
7 1 (0.30%) IBM
7 1 (0.30%) Juniper
7 1 (0.30%) Oracle
7 1 (0.30%) Veracode