Incident Response Jobs

Incident Response
UK

The following table provides summary statistics for permanent job vacancies with a requirement for Incident Response skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Incident Response over the 6 months to 8 May 2024 with a comparison to the same period in the previous 2 years.

6 months to
8 May 2024		 Same period 2023 Same period 2022
Rank 291 372 439
Rank change year-on-year +81 +67 -3
Permanent jobs citing Incident Response 971 904 1,311
As % of all permanent jobs advertised in the UK 0.98% 0.89% 0.83%
As % of the Processes & Methodologies category 1.14% 0.93% 0.87%
Number of salaries quoted 738 622 831
10th Percentile £42,746 £38,750 £38,750
25th Percentile £51,250 £47,500 £48,750
Median annual salary (50th Percentile) £65,000 £65,000 £62,500
Median % change year-on-year - +4.00% +4.17%
75th Percentile £80,000 £77,500 £80,000
90th Percentile £97,500 £92,500 £92,500
UK excluding London median annual salary £55,000 £52,500 £53,112
% change year-on-year +4.76% -1.15% +1.17%

All Process and Methodology Skills
UK

Incident Response is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills 84,937 97,101 150,579
As % of all permanent jobs advertised in the UK 85.64% 95.61% 95.65%
Number of salaries quoted 59,853 57,006 82,680
10th Percentile £29,000 £34,000 £33,515
25th Percentile £40,000 £45,000 £43,750
Median annual salary (50th Percentile) £55,000 £61,180 £60,000
Median % change year-on-year -10.10% +1.97% +9.09%
75th Percentile £72,500 £81,250 £80,000
90th Percentile £92,500 £100,000 £96,750
UK excluding London median annual salary £50,000 £55,000 £52,500
% change year-on-year -9.09% +4.76% +9.38%

Incident Response
Job Vacancy Trend

Job postings citing Incident Response as a proportion of all IT jobs advertised.

Job vacancy trend for Incident Response in the UK

Incident Response
Salary Trend

3-month moving average salary quoted in jobs citing Incident Response.

Salary trend for Incident Response in the UK

Incident Response
Salary Histogram

Salary distribution for jobs citing Incident Response over the 6 months to 8 May 2024.

Salary histogram for Incident Response in the UK

Incident Response
Top 19 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Incident Response within the UK over the 6 months to 8 May 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Permanent
IT Job Ads		 Median Salary
Past 6 Months		 Median Salary
% Change
on Same Period
Last Year		 Live
Jobs
England +104 860 £65,000 - 236
UK excluding London +68 604 £55,000 +4.76% 147
Work from Home -7 328 £70,000 +12.00% 139
London +88 319 £75,000 +4.90% 89
North of England +144 199 £52,084 -13.19% 44
North West +80 131 £52,084 -13.19% 23
Midlands +19 127 £60,000 +20.00% 27
South East -12 114 £65,000 +18.18% 39
West Midlands +37 97 £60,000 +9.09% 21
South West +29 78 £50,000 -0.99% 15
Yorkshire +111 59 £60,000 -2.04% 16
Scotland -54 45 £63,750 +21.43% 13
East Midlands -23 30 £65,000 +36.84% 6
East of England +8 16 £52,500 +10.53% 5
Wales -3 14 £62,500 +13.64% 3
North East +4 9 £70,000 +3.70% 5
Isle of Man -13 8 £46,500 +3.33% 2
Northern Ireland +20 2 - - 1
Channel Islands - 1 £100,000 -

Incident Response
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 19 (1.96%) Microsoft Exchange
2 15 (1.54%) SharePoint
3 9 (0.93%) IIS
4 6 (0.62%) Apache
5 1 (0.10%) Confluence
5 1 (0.10%) nginx
Applications
1 54 (5.56%) Microsoft Office
2 39 (4.02%) Microsoft Excel
3 38 (3.91%) Microsoft PowerPoint
4 3 (0.31%) Microsoft Project
4 3 (0.31%) MS Visio
Business Applications
1 6 (0.62%) Dynamics CRM
2 1 (0.10%) Payment Gateway
2 1 (0.10%) SAP S/4HANA
Cloud Services
1 265 (27.29%) Azure
2 152 (15.65%) Microsoft 365
3 132 (13.59%) AWS
4 66 (6.80%) SaaS
5 40 (4.12%) Azure Sentinel
6 35 (3.60%) GCP
7 24 (2.47%) Entra ID
8 20 (2.06%) PaaS
9 19 (1.96%) IaaS
10 16 (1.65%) Cloud Computing
11 12 (1.24%) Amazon CloudWatch
12 11 (1.13%) Amazon S3
12 11 (1.13%) Power Platform
13 10 (1.03%) Amazon GuardDuty
13 10 (1.03%) AWS CloudTrail
14 9 (0.93%) Amazon ECS
14 9 (0.93%) Serverless
15 8 (0.82%) AWS CloudFormation
15 8 (0.82%) Cloudflare
16 6 (0.62%) Virtual Private Cloud
Communications & Networking
1 240 (24.72%) Firewall
2 85 (8.75%) Intrusion Detection
3 65 (6.69%) Network Security
4 43 (4.43%) TCP/IP
5 35 (3.60%) VPN
6 29 (2.99%) Internet
7 20 (2.06%) DNS
8 19 (1.96%) LAN
9 18 (1.85%) WAN
10 12 (1.24%) SAN
10 12 (1.24%) Wireshark
11 7 (0.72%) DHCP
11 7 (0.72%) HTTP
11 7 (0.72%) SMTP
12 5 (0.51%) SSL
12 5 (0.51%) VLAN
13 4 (0.41%) DMZ
13 4 (0.41%) NetScaler
14 3 (0.31%) Broadband
14 3 (0.31%) tcpdump
Database & Business Intelligence
1 36 (3.71%) SQL Server
2 22 (2.27%) MySQL
3 16 (1.65%) RDBMS
3 16 (1.65%) Relational Database
4 13 (1.34%) MongoDB
5 12 (1.24%) BigQuery
5 12 (1.24%) Data Hub
5 12 (1.24%) DB2
5 12 (1.24%) Enterprise Data Warehouse
6 7 (0.72%) Amazon RDS
7 6 (0.62%) Azure SQL Database
7 6 (0.62%) SQL Server Reporting Services
8 4 (0.41%) PostgreSQL
8 4 (0.41%) Power BI
9 2 (0.21%) Metabase
9 2 (0.21%) Oracle Database
9 2 (0.21%) Redis
10 1 (0.10%) Hadoop
10 1 (0.10%) MariaDB
Development Applications
1 6 (0.62%) Visual Studio
2 4 (0.41%) Burp Suite
2 4 (0.41%) Metasploit
3 3 (0.31%) Jenkins
4 2 (0.21%) Git
4 2 (0.21%) GitLab
4 2 (0.21%) JIRA
4 2 (0.21%) Snyk
4 2 (0.21%) sqlmap
5 1 (0.10%) Bitbucket
5 1 (0.10%) TeamCity
General
1 320 (32.96%) Social Skills
2 209 (21.52%) Finance
3 145 (14.93%) Analytical Skills
4 82 (8.44%) Legal
5 74 (7.62%) Law
6 51 (5.25%) Public Sector
7 43 (4.43%) Military
8 42 (4.33%) Banking
9 41 (4.22%) Manufacturing
10 28 (2.88%) Marketing
11 24 (2.47%) Inclusion and Diversity
12 21 (2.16%) Documentation Skills
12 21 (2.16%) Games
13 18 (1.85%) Presentation Skills
14 16 (1.65%) Financial Institution
14 16 (1.65%) Spanish Language
15 15 (1.54%) Retail
16 12 (1.24%) Influencing Skills
17 11 (1.13%) French Language
18 8 (0.82%) Pharmaceutical
Job Titles
1 269 (27.70%) Analyst
2 153 (15.76%) Security Analyst
3 143 (14.73%) Senior
4 88 (9.06%) Cybersecurity Analyst
5 87 (8.96%) Lead
6 86 (8.86%) Security Engineer
7 84 (8.65%) Senior Analyst
8 74 (7.62%) Security Manager
9 57 (5.87%) SOC Analyst
10 51 (5.25%) Consultant
10 51 (5.25%) Senior Security Analyst
11 47 (4.84%) Architect
12 45 (4.63%) IT Analyst
13 44 (4.53%) Security Consultant
14 40 (4.12%) Security Architect
15 39 (4.02%) IT Security Analyst
16 36 (3.71%) Security Specialist
17 35 (3.60%) Incident Manager
18 32 (3.30%) Cybersecurity Consultant
18 32 (3.30%) Service Manager
Libraries, Frameworks & Software Standards
1 15 (1.54%) .NET
2 11 (1.13%) Web Services
3 8 (0.82%) Laravel
4 7 (0.72%) XML
5 6 (0.62%) .NET Framework
6 5 (0.51%) Node.js
7 4 (0.41%) EDI
7 4 (0.41%) Kafka
8 3 (0.31%) HTML
8 3 (0.31%) Vue
8 3 (0.31%) web3js
9 2 (0.21%) CSS
9 2 (0.21%) D3.js
9 2 (0.21%) Elastic Stack
9 2 (0.21%) React
9 2 (0.21%) Sass
10 1 (0.10%) OAuth
10 1 (0.10%) SOAP
10 1 (0.10%) Symfony
10 1 (0.10%) YAML
Miscellaneous
1 172 (17.71%) Cyber Threat
2 146 (15.04%) Management Information System
3 98 (10.09%) Cyberattack
3 98 (10.09%) Security Posture
4 80 (8.24%) Security Operations Centre
5 63 (6.49%) Operational Technology
6 41 (4.22%) Cyber Kill Chain
7 39 (4.02%) Driving Licence
8 33 (3.40%) Industrial Internet of Things
9 26 (2.68%) Public Cloud
10 25 (2.57%) Cyber Defence
11 23 (2.37%) Analytical Mindset
12 22 (2.27%) Data Centre
13 19 (1.96%) Client/Server
14 16 (1.65%) SCADA
15 13 (1.34%) Cloud Security Posture
16 12 (1.24%) Cloud Native
16 12 (1.24%) Data Fabric
17 11 (1.13%) Data Protection Act
18 8 (0.82%) Self-Motivation
Operating Systems
1 195 (20.08%) Windows
2 120 (12.36%) Linux
3 53 (5.46%) Unix
4 43 (4.43%) Windows Server
5 18 (1.85%) Mac OS X
6 16 (1.65%) zOS
7 10 (1.03%) Kali Linux
8 8 (0.82%) Ubuntu
9 7 (0.72%) Windows Server 2012
10 5 (0.51%) Windows 10
11 4 (0.41%) CentOS
11 4 (0.41%) Solaris
11 4 (0.41%) Windows Server 2016
12 3 (0.31%) Mac OS
13 2 (0.21%) Apple iOS
13 2 (0.21%) Windows 7
14 1 (0.10%) AIX
14 1 (0.10%) Amazon Linux
14 1 (0.10%) Android
14 1 (0.10%) Data ONTAP
Processes & Methodologies
1 674 (69.41%) Cybersecurity
2 286 (29.45%) Information Security
3 284 (29.25%) Security Operations
4 258 (26.57%) SIEM
5 197 (20.29%) Problem-Solving
6 177 (18.23%) Incident Management
7 170 (17.51%) Threat Intelligence
8 164 (16.89%) Cyber Threat Intelligence
9 157 (16.17%) Risk Management
10 151 (15.55%) Vulnerability Management
11 103 (10.61%) Computer Science
12 102 (10.50%) Penetration Testing
13 101 (10.40%) Disaster Recovery
14 96 (9.89%) Cloud Security
15 84 (8.65%) Security Architecture
16 82 (8.44%) Change Management
17 81 (8.34%) ITIL
18 80 (8.24%) Vulnerability Assessment
19 77 (7.93%) Service Delivery
20 73 (7.52%) Roadmaps
Programming Languages
1 70 (7.21%) PowerShell
2 63 (6.49%) Python
3 29 (2.99%) SQL
4 25 (2.57%) Bash
5 13 (1.34%) Java
6 11 (1.13%) C#
6 11 (1.13%) PHP
7 9 (0.93%) JavaScript
8 8 (0.82%) Rust
9 6 (0.62%) T-SQL
10 5 (0.51%) C++
11 4 (0.41%) Kusto Query Language
12 3 (0.31%) Go
13 2 (0.21%) Lisp
13 2 (0.21%) Shell Script
14 1 (0.10%) Bicep
14 1 (0.10%) Perl
14 1 (0.10%) Ruby
14 1 (0.10%) TypeScript
Qualifications
1 263 (27.09%) CISSP
1 263 (27.09%) Degree
2 143 (14.73%) CISM
3 113 (11.64%) Security Cleared
4 61 (6.28%) Cisco Certification
5 54 (5.56%) CEH
5 54 (5.56%) Computer Science Degree
5 54 (5.56%) SC Cleared
6 51 (5.25%) CompTIA Security+
7 45 (4.63%) GIAC
8 42 (4.33%) (ISC)2 CCSP
9 40 (4.12%) CISA
10 37 (3.81%) CCSP
11 33 (3.40%) Master's Degree
12 24 (2.47%) AWS Certification
12 24 (2.47%) CREST Certified
12 24 (2.47%) GCIH
13 22 (2.27%) OSCP
14 20 (2.06%) Azure Certification
14 20 (2.06%) GCIA
Quality Assurance & Compliance
1 249 (25.64%) ISO/IEC 27001
2 145 (14.93%) NIST
3 97 (9.99%) Cyber Essentials
4 75 (7.72%) GDPR
5 65 (6.69%) PCI DSS
6 42 (4.33%) ISO 9001
6 42 (4.33%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 39 (4.02%) ISO/IEC 17025
8 36 (3.71%) GRC
9 35 (3.60%) NCSC
10 20 (2.06%) JSP 440
11 18 (1.85%) Cyber Essentials PLUS
12 11 (1.13%) SLA
13 9 (0.93%) COBIT
14 8 (0.82%) Accessibility
14 8 (0.82%) QA
14 8 (0.82%) SOC 2
15 7 (0.72%) HIPAA
15 7 (0.72%) NIST 800
15 7 (0.72%) Sarbanes-Oxley
System Software
1 75 (7.72%) Active Directory
2 29 (2.99%) VMware Infrastructure
3 13 (1.34%) Hyper-V
4 8 (0.82%) Docker
5 5 (0.51%) Virtual Machines
5 5 (0.51%) VMware NSX
6 3 (0.31%) Terminal Services
6 3 (0.31%) Virtual Desktop
6 3 (0.31%) VMware ESXi
7 2 (0.21%) Virtual Servers
8 1 (0.10%) XenApp
Systems Management
1 37 (3.81%) EnCase
2 25 (2.57%) QRadar
3 20 (2.06%) Terraform
4 18 (1.85%) Microsoft Intune
5 16 (1.65%) CSIRT
6 13 (1.34%) Kubernetes
7 9 (0.93%) Single Sign-On
8 8 (0.82%) SCCM
9 7 (0.72%) Ansible
10 5 (0.51%) Prometheus
10 5 (0.51%) Suricata
11 4 (0.41%) Cacti
11 4 (0.41%) CASB
11 4 (0.41%) Computer Emergency Response Teams
11 4 (0.41%) Grafana
12 3 (0.31%) Nessus
12 3 (0.31%) Nmap
12 3 (0.31%) SELinux
13 2 (0.21%) Data Guard
13 2 (0.21%) Host Intrusion Detection System
Vendors
1 297 (30.59%) Microsoft
2 54 (5.56%) VMware
3 42 (4.33%) Splunk
4 39 (4.02%) Dell
5 33 (3.40%) Oracle
5 33 (3.40%) Qualys
6 28 (2.88%) Cisco
7 24 (2.47%) CrowdStrike
8 20 (2.06%) IBM
9 15 (1.54%) Google
10 14 (1.44%) Darktrace
10 14 (1.44%) ServiceNow
11 13 (1.34%) Databricks
12 12 (1.24%) Citrix
12 12 (1.24%) F5
13 9 (0.93%) CyberArk
13 9 (0.93%) Datto
13 9 (0.93%) Juniper
13 9 (0.93%) Sun
14 8 (0.82%) Xero
282 Incident Response jobs Nationwide