Period
to 19 July 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CRISC qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 19 July 2018 with a comparison to the same period in the previous 2 years.

ISACA Certified in Risk and Information Systems Control (CRISC)
UK
6 months to
19 Jul 2018
Same period 2017 Same period 2016
Rank 908 944 888
Rank change year-on-year +36 -56 +197
Permanent jobs citing CRISC 290 248 405
As % of all permanent IT jobs advertised in the UK 0.17% 0.14% 0.20%
As % of the Qualifications category 0.70% 0.56% 0.73%
Number of salaries quoted 204 202 343
UK median annual salary £75,000 £58,750 £55,000
Median salary % change year-on-year +27.66% +6.82% -8.33%
10th Percentile £50,000 £42,500 £36,300
90th Percentile £102,500 £80,000 £83,750
UK excluding London median annual salary £61,000 £50,000 £52,500
% change year-on-year +22.00% -4.76% +5.00%

CRISC is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 41,390 43,960 55,181
As % of all permanent IT jobs advertised in the UK 23.77% 24.74% 27.16%
Number of salaries quoted 30,812 34,077 44,431
UK median annual salary £50,000 £45,000 £46,000
Median salary % change year-on-year +11.11% -2.17% +2.22%
10th Percentile £26,250 £26,250 £26,250
90th Percentile £80,000 £77,500 £75,000
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +6.25%

CRISC
Job Vacancy Trend

Job postings citing CRISC as a percentage of all IT jobs advertised.

Job vacancy trend for CRISC in the UK

CRISC
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CRISC.

Salary trend for CRISC in the UK

CRISC
Salary Histogram

The salary distribution of IT jobs citing CRISC over the 6 months to 19 July 2018.

Salary histogram for CRISC in the UK

CRISC
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CRISC within the UK over the 6 months to 19 July 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +34 278 £75,000 +27.66% 21
London +80 166 £82,500 +22.22% 14
UK excluding London +1 120 £61,000 +22.00% 10
Midlands +20 35 £61,000 +6.09% 2
West Midlands +20 33 £61,000 +0.21% 2
South East +11 33 £67,500 +35.00% 3
North of England -30 28 £55,000 - 2
East of England 0 18 £82,225 +73.11%
Yorkshire +29 15 £50,000 +5.26%
North West -17 12 £55,000 - 2
Scotland -12 7 £62,500 - 3
East Midlands +8 2 £75,000 +30.43%
Wales +10 1 £70,000 -
South West +3 1 £47,250 -5.50%
North East -14 1 £36,000 -44.62%

For the 6 months to 19 July 2018, IT jobs citing CRISC also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CRISC.

1 258 (88.97%) CISSP
2 238 (82.07%) CISM
3 207 (71.38%) CISA
4 190 (65.52%) Information Security
5 141 (48.62%) Risk Management
6 129 (44.48%) Finance
7 102 (35.17%) Cybersecurity
8 97 (33.45%) ISO/IEC 27001
9 65 (22.41%) Management Information System
10 63 (21.72%) COBIT
11 62 (21.38%) PCI DSS
12 60 (20.69%) ITIL
13 55 (18.97%) GDPR
14 50 (17.24%) Degree
15 47 (16.21%) Stakeholder Management
16 46 (15.86%) Analytical Skills
17 45 (15.52%) Data Protection
18 44 (15.17%) Agile Software Development
19 36 (12.41%) GIAC
20 32 (11.03%) Security Architecture
20 32 (11.03%) SIEM
21 31 (10.69%) CEH
21 31 (10.69%) Firewall
22 30 (10.34%) Banking
22 30 (10.34%) Security Testing
22 30 (10.34%) SANS
23 28 (9.66%) Security Management
24 27 (9.31%) Identity Management
24 27 (9.31%) Problem-Solving
25 26 (8.97%) Legal

CRISC
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 7 (2.41%) IIS
2 1 (0.34%) WebSphere
Applications
1 3 (1.03%) Microsoft Office
2 1 (0.34%) Microsoft Project
2 1 (0.34%) MS Visio
2 1 (0.34%) Spreadsheet
Cloud Services
1 13 (4.48%) Amazon AWS
2 5 (1.72%) Microsoft Azure
3 3 (1.03%) IaaS
3 3 (1.03%) Virtual Private Cloud
4 2 (0.69%) Cloud Computing
5 1 (0.34%) Office 365
Communications & Networking
1 31 (10.69%) Firewall
2 26 (8.97%) Network Security
3 11 (3.79%) Cisco Firepower
3 11 (3.79%) HTTP
4 8 (2.76%) Cisco IPT
5 6 (2.07%) SMS
5 6 (2.07%) WebEx
6 5 (1.72%) Cisco ASA
7 4 (1.38%) LAN
7 4 (1.38%) SAN
7 4 (1.38%) TCP/IP
8 3 (1.03%) VPN
9 2 (0.69%) Internet
9 2 (0.69%) SCCP
9 2 (0.69%) WAN
10 1 (0.34%) Intrusion Detection
10 1 (0.34%) SSL
Database & Business Intelligence
1 1 (0.34%) SQL Server
Development Applications
1 5 (1.72%) AppScan
General
1 129 (44.48%) Finance
2 30 (10.34%) Banking
3 26 (8.97%) Legal
4 20 (6.90%) Investment Banking
5 17 (5.86%) Games
6 16 (5.52%) Retail
7 13 (4.48%) Back Office
8 6 (2.07%) Telecoms
9 5 (1.72%) Manufacturing
10 4 (1.38%) Pharmaceutical
11 3 (1.03%) French Language
11 3 (1.03%) Law
12 2 (0.69%) Marketing
13 1 (0.34%) Financial Institution
13 1 (0.34%) Front Office
13 1 (0.34%) Private Banking
Job Titles
1 65 (22.41%) Analyst
2 47 (16.21%) Risk Manager
3 43 (14.83%) Security Analyst
4 40 (13.79%) Security Manager
5 30 (10.34%) IT Manager
6 27 (9.31%) Information Manager
7 25 (8.62%) Consultant
8 24 (8.28%) Architect
8 24 (8.28%) Security Architect
9 22 (7.59%) Information Analyst
9 22 (7.59%) Information Security Analyst
9 22 (7.59%) Information Security Manager
10 21 (7.24%) Security Specialist
10 21 (7.24%) Senior Analyst
10 21 (7.24%) Senior Security Analyst
11 20 (6.90%) IT Risk Manager
12 19 (6.55%) Risk Analyst
13 17 (5.86%) Head of Security
13 17 (5.86%) Security Consultant
14 15 (5.17%) Information Security Specialist
Libraries, Frameworks & Software Standards
1 5 (1.72%) Web Services
2 1 (0.34%) .NET
2 1 (0.34%) MSMQ
2 1 (0.34%) WebSphere MQ
Miscellaneous
1 65 (22.41%) Management Information System
2 46 (15.86%) Analytical Skills
3 19 (6.55%) Computer Science
4 13 (4.48%) Data Protection Act
5 12 (4.14%) Data Centre
6 11 (3.79%) BYOD
7 8 (2.76%) SCADA
8 7 (2.41%) Self-Motivation
9 6 (2.07%) Video Conferencing
10 5 (1.72%) Cyberthreat
10 5 (1.72%) Greenfield Project
11 4 (1.38%) Distributed Denial-of-Service
11 4 (1.38%) Fintech
11 4 (1.38%) Security Operations Centre
12 3 (1.03%) Credit Risk
12 3 (1.03%) Market Risk
12 3 (1.03%) Virtual Team
13 2 (0.69%) Client/Server
13 2 (0.69%) Digital Media
14 1 (0.34%) FMCG
Operating Systems
1 5 (1.72%) Linux
2 4 (1.38%) Windows
3 2 (0.69%) Unix
4 1 (0.34%) Android
4 1 (0.34%) Apple iOS
4 1 (0.34%) Windows Server
Processes & Methodologies
1 190 (65.52%) Information Security
2 141 (48.62%) Risk Management
3 102 (35.17%) Cybersecurity
4 60 (20.69%) ITIL
5 47 (16.21%) Stakeholder Management
6 45 (15.52%) Data Protection
7 44 (15.17%) Agile Software Development
8 32 (11.03%) Security Architecture
8 32 (11.03%) SIEM
9 30 (10.34%) Security Testing
10 28 (9.66%) Security Management
11 27 (9.31%) Identity Management
11 27 (9.31%) Problem-Solving
12 24 (8.28%) DevOps
12 24 (8.28%) Vulnerability Management
13 23 (7.93%) Risk Assessment
14 21 (7.24%) IT Audit
15 20 (6.90%) Internal Audit
15 20 (6.90%) Waterfall
16 19 (6.55%) Threat Intelligence
Programming Languages
1 7 (2.41%) Python
2 6 (2.07%) C
3 4 (1.38%) Java
4 3 (1.03%) C#
4 3 (1.03%) C++
4 3 (1.03%) Perl
5 2 (0.69%) Bash Shell
5 2 (0.69%) PowerShell
6 1 (0.34%) SQL
Qualifications
1 258 (88.97%) CISSP
2 238 (82.07%) CISM
3 207 (71.38%) CISA
4 50 (17.24%) Degree
5 36 (12.41%) GIAC
6 31 (10.69%) CEH
7 30 (10.34%) SANS
8 23 (7.93%) Cisco Certification
9 20 (6.90%) (ISC)2 CCSP
10 17 (5.86%) CCSP
11 16 (5.52%) CGEIT
12 13 (4.48%) ISEB
13 12 (4.14%) OSCP
14 10 (3.45%) Security Cleared
15 9 (3.10%) Computer Science Degree
16 7 (2.41%) ISO 27001 Lead Implementer
17 6 (2.07%) IISP
18 5 (1.72%) CESG Certified Professional
18 5 (1.72%) CREST Certified
18 5 (1.72%) PCI QSA
Quality Assurance & Compliance
1 97 (33.45%) ISO/IEC 27001
2 63 (21.72%) COBIT
3 62 (21.38%) PCI DSS
4 55 (18.97%) GDPR
5 14 (4.83%) Cyber Essentials
6 12 (4.14%) ISO 22301
7 9 (3.10%) Sarbanes-Oxley
8 8 (2.76%) SLA
9 4 (1.38%) HIPAA
9 4 (1.38%) ISO 31000
9 4 (1.38%) NIST 800
9 4 (1.38%) QA
10 3 (1.03%) Actionable Recommendations
10 3 (1.03%) COSO
10 3 (1.03%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
11 2 (0.69%) ISAE 3402
11 2 (0.69%) PMO
12 1 (0.34%) FATCA
12 1 (0.34%) ISO/IEC 27005
12 1 (0.34%) MiFID
System Software
1 3 (1.03%) Active Directory
2 1 (0.34%) ProxySG
2 1 (0.34%) Virtual Desktop
Systems Management
1 8 (2.76%) CSIRT
2 5 (1.72%) HP Fortify
2 5 (1.72%) WebInspect
3 4 (1.38%) CASB
4 2 (0.69%) Host Intrusion Detection System
4 2 (0.69%) RSA Archer
5 1 (0.34%) Computer Emergency Response Teams
Vendors
1 12 (4.14%) Cisco
2 10 (3.45%) Qualys
3 6 (2.07%) McAfee
3 6 (2.07%) Microsoft
3 6 (2.07%) Splunk
3 6 (2.07%) WorldPay
4 5 (1.72%) HP
4 5 (1.72%) IBM
4 5 (1.72%) Veracode
5 4 (1.38%) Palo Alto
6 3 (1.03%) ServiceNow
7 2 (0.69%) Cognizant
7 2 (0.69%) Google
8 1 (0.34%) Blue Coat
8 1 (0.34%) CheckPoint
8 1 (0.34%) Juniper