Period
to 21 September 2017

The median annual salary for an Information Security Manager was £65,000 in advertised job vacancies during the 6 months to 21 September 2017.

The first table below provides salary benchmarking and summary statistics including a comparison to same period in the previous 2 years.

Information Security Manager
UK
6 months to
21 Sep 2017
Same period 2016 Same period 2015
Rank 820 733 898
Rank change year-on-year -87 +165 +178
Permanent jobs requiring an Information Security Manager 359 566 439
As % of all permanent IT jobs advertised in the UK 0.20% 0.29% 0.20%
As % of the Job Titles category 0.21% 0.30% 0.21%
Number of salaries quoted 327 511 394
UK median annual salary £65,000 £60,000 £60,000
Median salary % change year-on-year +8.33% - +3.45%
10th Percentile £47,500 £47,500 £45,000
90th Percentile £88,750 £85,000 £85,000
UK excluding London median annual salary £60,000 £60,000 £52,500
% change year-on-year - +14.29% -8.70%

The following table is for comparison with the above and includes summary statistics for all permanent IT job vacancies. Most job vacancies include a discernible job title that can be normalized. As such, the figures in the second row provide an indication of the number of permanent jobs in our overall sample.

All Permanent IT Job Vacancies
UK
Permanent vacancies in the UK with a recognized job title 169054 187667 211623
% of permanent IT jobs with a recognized job title 95.81% 96.48% 96.45%
Number of salaries quoted 135523 157713 175423
UK median annual salary £47,500 £47,500 £45,000
Median salary % change year-on-year - +5.56% -
10th Percentile £27,500 £26,750 £26,250
90th Percentile £78,750 £77,500 £75,000
UK excluding London median annual salary £42,500 £42,500 £40,000
% change year-on-year - +6.25% -

Information Security Manager
Job Vacancy Trend

Job postings that featured Information Security Manager in the job title as a percentage of all IT jobs advertised.

Job vacancy trend for Information Security Manager in the UK

Information Security Manager
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Information Security Manager.

Salary trend for Information Security Manager in the UK

Information Security Manager
Salary Histogram

The salary distribution of IT jobs citing Information Security Manager over the 6 months to 21 September 2017.

Salary histogram for Information Security Manager in the UK

Information Security Manager
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Information Security Manager within the UK over the 6 months to 21 September 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -104 347 £65,000 +8.33% 17
London -6 186 £70,000 +7.69% 10
UK excluding London -111 171 £60,000 - 8
North of England -49 56 £55,000 -6.78% 5
South East -52 41 £62,500 +4.17%
North West -12 35 £55,000 -1.79% 4
Midlands +17 30 £55,000 -12.00% 2
West Midlands +23 22 £55,000 -12.00% 1
East of England +6 22 £70,000 +12.00%
Yorkshire -17 17 £57,500 -4.17% 1
South West -2 10 £50,000 -23.08%
East Midlands +17 8 £53,250 -14.80% 1
Wales +11 6 £46,250 +11.45%
North East +16 4 £46,250 +15.81%
Scotland -19 4 £57,500 - 1

Information Security Manager Skill Set
Top 30 Co-occurring IT Skills

For the 6 months to 21 September 2017, Information Security Manager job roles required the following IT skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads featuring Information Security Manager in the job title.

1 357 (99.44%) Information Security
2 210 (58.50%) ISO/IEC 27001
3 200 (55.71%) CISSP
4 179 (49.86%) CISM
5 122 (33.98%) Risk Management
6 106 (29.53%) PCI DSS
6 106 (29.53%) Cybersecurity
7 98 (27.30%) CISA
8 93 (25.91%) Finance
9 83 (23.12%) GDPR
10 71 (19.78%) Data Protection
11 61 (16.99%) ISMS
12 59 (16.43%) Security Management
13 51 (14.21%) Degree
14 50 (13.93%) Management Information System
15 49 (13.65%) SIEM
16 48 (13.37%) Incident Management
17 47 (13.09%) Information Security Management
18 45 (12.53%) Project Management
19 44 (12.26%) Stakeholder Management
20 43 (11.98%) Banking
21 42 (11.70%) CRISC
22 41 (11.42%) Legal
23 40 (11.14%) Security Operations
24 39 (10.86%) Penetration Testing
25 38 (10.58%) Vulnerability Management
25 38 (10.58%) Cyber Essentials
26 35 (9.75%) Firewall
27 34 (9.47%) Security Architecture
28 32 (8.91%) Internal Audit

Information Security Manager Skill Set
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 1 (0.28%) Apache
1 1 (0.28%) MS Exchange
1 1 (0.28%) SharePoint
Applications
1 2 (0.56%) Microsoft Office
Cloud Services
1 6 (1.67%) SaaS
2 4 (1.11%) Amazon AWS
2 4 (1.11%) Microsoft Azure
3 2 (0.56%) Cloudflare
4 1 (0.28%) Mimecast
Communications & Networking
1 35 (9.75%) Firewall
2 19 (5.29%) Network Security
3 8 (2.23%) Internet
4 6 (1.67%) TCP/IP
5 3 (0.84%) Intrusion Detection
6 2 (0.56%) DNS
6 2 (0.56%) Intranet
7 1 (0.28%) DMZ
7 1 (0.28%) SMS
7 1 (0.28%) Unified Communications
7 1 (0.28%) VLAN
7 1 (0.28%) VPN
Database & Business Intelligence
1 1 (0.28%) Big Data
Development Applications
1 2 (0.56%) Metasploit
2 1 (0.28%) Subversion
General
1 93 (25.91%) Finance
2 43 (11.98%) Banking
3 41 (11.42%) Legal
4 19 (5.29%) Telecoms
5 15 (4.18%) Marketing
6 14 (3.90%) Manufacturing
7 10 (2.79%) Electronics
8 9 (2.51%) Law
9 8 (2.23%) Retail
10 5 (1.39%) Investment Banking
11 3 (0.84%) Billing
11 3 (0.84%) Games
12 1 (0.28%) Advertising
12 1 (0.28%) French Language
12 1 (0.28%) Publishing
12 1 (0.28%) Welsh Language
Libraries, Frameworks & Software Standards
1 22 (6.13%) SailPoint
2 1 (0.28%) CGI
Miscellaneous
1 50 (13.93%) Management Information System
2 21 (5.85%) Data Protection Act
3 18 (5.01%) Computer Science
4 17 (4.74%) Analytical Skills
5 7 (1.95%) CESG
5 7 (1.95%) Data Centre
5 7 (1.95%) Greenfield Project
6 6 (1.67%) Clustering
6 6 (1.67%) NHS
7 5 (1.39%) Fintech
7 5 (1.39%) Public Cloud
8 4 (1.11%) CESG CLAS
8 4 (1.11%) Internet of Things
8 4 (1.11%) Virtual Team
9 3 (0.84%) Distributed Denial-of-Service
9 3 (0.84%) Freedom of Information
10 2 (0.56%) BYOD
10 2 (0.56%) Freedom of Information Act
10 2 (0.56%) Hybrid Cloud
10 2 (0.56%) Security Operations Centre
Operating Systems
1 28 (7.80%) Linux
2 24 (6.69%) Windows
3 16 (4.46%) Windows Server
4 5 (1.39%) Unix
5 2 (0.56%) Android
5 2 (0.56%) Apple iOS
6 1 (0.28%) OpenBSD
Processes & Methodologies
1 357 (99.44%) Information Security
2 122 (33.98%) Risk Management
3 106 (29.53%) Cybersecurity
4 71 (19.78%) Data Protection
5 61 (16.99%) ISMS
6 59 (16.43%) Security Management
7 49 (13.65%) SIEM
8 48 (13.37%) Incident Management
9 47 (13.09%) Information Security Management
10 45 (12.53%) Project Management
11 44 (12.26%) Stakeholder Management
12 40 (11.14%) Security Operations
13 39 (10.86%) Penetration Testing
14 38 (10.58%) Vulnerability Management
15 34 (9.47%) Security Architecture
16 32 (8.91%) Internal Audit
17 29 (8.08%) ITIL
17 29 (8.08%) Risk Assessment
18 28 (7.80%) Security Monitoring
19 24 (6.69%) Privileged Access Management
Programming Languages
1 22 (6.13%) C
Qualifications
1 200 (55.71%) CISSP
2 179 (49.86%) CISM
3 98 (27.30%) CISA
4 51 (14.21%) Degree
5 42 (11.70%) CRISC
6 24 (6.69%) GIAC
7 22 (6.13%) GISF
7 22 (6.13%) GSEC
8 13 (3.62%) Computer Science Degree
8 13 (3.62%) ISO 27001 Lead Auditor
8 13 (3.62%) Security Cleared
9 12 (3.34%) SANS
10 11 (3.06%) CEH
10 11 (3.06%) Cisco Certification
10 11 (3.06%) CISMP
10 11 (3.06%) ISO 27001 Lead Implementer
11 9 (2.51%) SSCP
12 8 (2.23%) PMI Certification
12 8 (2.23%) PMP
13 7 (1.95%) ISSMP
Quality Assurance & Compliance
1 210 (58.50%) ISO/IEC 27001
2 106 (29.53%) PCI DSS
3 83 (23.12%) GDPR
4 38 (10.58%) Cyber Essentials
5 21 (5.85%) Sarbanes-Oxley
6 19 (5.29%) ISO 9001
7 16 (4.46%) ISO 22301
7 16 (4.46%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 10 (2.79%) RMADS
9 9 (2.51%) ISO 31000
9 9 (2.51%) ISO/IEC 27005
10 8 (2.23%) COBIT
10 8 (2.23%) HMG Security Policy Framework
11 7 (1.95%) HIPAA
11 7 (1.95%) ISO 14001
12 6 (1.67%) Cyber Essentials PLUS
13 4 (1.11%) QA
13 4 (1.11%) SLA
14 1 (0.28%) BS25999
14 1 (0.28%) PA-DSS
System Software
1 18 (5.01%) Active Directory
2 1 (0.28%) Postfix
Systems Management
1 24 (6.69%) Nessus
1 24 (6.69%) SCCM
2 23 (6.41%) WSUS
3 22 (6.13%) McAfee ePO
4 21 (5.85%) Core Impact
4 21 (5.85%) Nexpose
4 21 (5.85%) OpenVAS
4 21 (5.85%) PowerBroker
4 21 (5.85%) QRadar
4 21 (5.85%) RSA Security Analytics
5 5 (1.39%) RSA Archer
6 1 (0.28%) Backup Exec
Vendors
1 27 (7.52%) SolarWinds
2 22 (6.13%) Aveksa
2 22 (6.13%) CyberArk
2 22 (6.13%) McAfee
2 22 (6.13%) Palo Alto
2 22 (6.13%) Splunk
2 22 (6.13%) Symantec
3 21 (5.85%) AlienVault
3 21 (5.85%) ArcSight
3 21 (5.85%) Bomgar
3 21 (5.85%) LogRhythm
3 21 (5.85%) Qualys
4 10 (2.79%) Microsoft
5 8 (2.23%) SAP
6 4 (1.11%) Cisco
7 2 (0.56%) BT
7 2 (0.56%) HP
7 2 (0.56%) Radware
7 2 (0.56%) VMware
8 1 (0.28%) Sophos