MITRE ATT&CK Jobs, Co-occurring Skills & Salary Benchmarking

MITRE ATT&CK
UK

The following table provides summary statistics for permanent job vacancies with a requirement for MITRE ATT&CK skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited MITRE ATT&CK over the 6 months to 27 April 2024 with a comparison to the same period in the previous 2 years.

Location	6 months to 27 Apr 2024	Same period 2023	Same period 2022
Rank	764	702	951
Rank change year-on-year	-62	+249	-130
Permanent jobs citing MITRE ATT&CK	132	274	281
As % of all permanent jobs advertised in the UK	0.13%	0.26%	0.18%
As % of the Processes & Methodologies category	0.16%	0.27%	0.19%
Number of salaries quoted	104	158	222
10^th Percentile	-	£40,350	£50,125
25^th Percentile	£47,000	£55,000	£55,000
Median annual salary (50^th Percentile)	£63,750	£65,000	£63,750
Median % change year-on-year	-1.92%	+1.96%	-1.92%
75^th Percentile	£71,250	£81,250	£81,250
90^th Percentile	£91,991	£99,725	£100,000
UK excluding London median annual salary	£47,000	£60,000	£62,525
% change year-on-year	-21.67%	-4.04%	+0.04%

All Process and Methodology Skills
UK

MITRE ATT&CK is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills	84,305	100,095	147,310
As % of all permanent jobs advertised in the UK	85.99%	95.64%	95.57%
Number of salaries quoted	59,591	58,745	83,129
10^th Percentile	£29,000	£34,000	£33,500
25^th Percentile	£40,000	£45,000	£43,750
Median annual salary (50^th Percentile)	£55,000	£62,000	£60,000
Median % change year-on-year	-11.29%	+3.33%	+9.09%
75^th Percentile	£72,500	£82,500	£80,000
90^th Percentile	£92,500	£100,000	£96,250
UK excluding London median annual salary	£50,000	£55,000	£52,500
% change year-on-year	-9.09%	+4.76%	+9.38%

MITRE ATT&CK
Job Vacancy Trend

Job postings citing MITRE ATT&CK as a proportion of all IT jobs advertised.

Job vacancy trend for MITRE ATT&amp;CK in the UK

MITRE ATT&CK
Salary Trend

3-month moving average salary quoted in jobs citing MITRE ATT&CK.

Salary trend for MITRE ATT&amp;CK in the UK

MITRE ATT&CK
Salary Histogram

Salary distribution for jobs citing MITRE ATT&CK over the 6 months to 27 April 2024.

Salary histogram for MITRE ATT&amp;CK in the UK

MITRE ATT&CK
Top 13 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing MITRE ATT&CK within the UK over the 6 months to 27 April 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location	Rank Change on Same Period Last Year	Matching Permanent IT Job Ads	Median Salary Past 6 Months	Median Salary % Change on Same Period Last Year	Live Jobs
England	-17	105	£65,000	+1.96%	28
Work from Home	+80	75	£57,500	-15.13%	8
UK excluding London	+7	68	£47,000	-21.67%	21
London	+18	53	£68,500	+3.01%	8
South East	+31	20	£58,750	+17.50%	4
North of England	+42	19	£47,000	-21.67%	4
Scotland	-52	19	£47,000	+16.46%	2
North West	+4	18	£47,000	-21.67%	2
South West	+4	8	£57,500	+42.48%	4
Yorkshire	+92	1	£62,500	+4.17%	2
West Midlands	+18	1	-	-	4
East of England	+11	1	£60,000	-14.29%
Midlands	0	1	-	-	5

MITRE ATT&CK
Top 30 Co-occurring Skills and Capabilities

For the 6 months to 27 April 2024, job vacancies citing MITRE ATT&CK also mentioned the following skills and capabilities in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for MITRE ATT&CK.

1	82 (62.12%)	SIEM
2	79 (59.85%)	Cybersecurity
3	71 (53.79%)	Azure
4	62 (46.97%)	Security Operations
4	62 (46.97%)	Incident Response
5	61 (46.21%)	Information Security
6	57 (43.18%)	NIST
7	49 (37.12%)	Cyberattack
8	45 (34.09%)	SOAR
8	45 (34.09%)	Cloud Security
9	44 (33.33%)	Threat Intelligence
9	44 (33.33%)	Cyber Threat Intelligence
10	41 (31.06%)	Microsoft 365
11	40 (30.30%)	Vulnerability Management
12	38 (28.79%)	Finance

13	37 (28.03%)	Social Skills
14	35 (26.52%)	CISSP
15	34 (25.76%)	Firewall
16	32 (24.24%)	ISO/IEC 27001
16	32 (24.24%)	Vulnerability Remediation
17	30 (22.73%)	CASB
17	30 (22.73%)	Microsoft
17	30 (22.73%)	Cyber Threat
18	29 (21.97%)	DNS
19	27 (20.45%)	CISM
19	27 (20.45%)	Cyber Kill Chain
20	26 (19.70%)	DKIM
20	26 (19.70%)	DMARC
20	26 (19.70%)	Application Security
20	26 (19.70%)	Internet

MITRE ATT&CK
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
Applications
Cloud Services
Communications & Networking
Database & Business Intelligence
Development Applications
General
Job Titles
Libraries, Frameworks & Software Standards
Miscellaneous
Operating Systems
Processes & Methodologies
Programming Languages
Qualifications
Quality Assurance & Compliance
System Software
Systems Management
Vendors

Application Platforms
1	6 (4.55%)	Microsoft Exchange

Applications
1	6 (4.55%)	Microsoft Office

Cloud Services
1	71 (53.79%)	Azure
2	41 (31.06%)	Microsoft 365
3	15 (11.36%)	IaaS
3	15 (11.36%)	SaaS
4	14 (10.61%)	AWS
5	13 (9.85%)	PaaS
6	10 (7.58%)	Entra ID
7	6 (4.55%)	Azure Sentinel
7	6 (4.55%)	Azure Service Fabric
7	6 (4.55%)	GCP
8	4 (3.03%)	Amazon S3
9	1 (0.76%)	Azure AKS
9	1 (0.76%)	Cloud Computing
9	1 (0.76%)	Google Kubernetes Engine

Communications & Networking
1	34 (25.76%)	Firewall
2	29 (21.97%)	DNS
3	26 (19.70%)	DKIM
3	26 (19.70%)	DMARC
3	26 (19.70%)	Internet
4	10 (7.58%)	Wireshark
5	9 (6.82%)	Intrusion Detection
5	9 (6.82%)	Network Security
6	8 (6.06%)	TCP/IP
7	4 (3.03%)	HTTP
7	4 (3.03%)	SMTP
7	4 (3.03%)	SSL
8	2 (1.52%)	802.11
8	2 (1.52%)	Bluetooth
8	2 (1.52%)	ZigBee
9	1 (0.76%)	Cisco IPT
9	1 (0.76%)	tcpdump

Database & Business Intelligence
1	6 (4.55%)	Azure SQL Database
2	4 (3.03%)	SQL Server
3	1 (0.76%)	Hadoop

Development Applications
1	7 (5.30%)	Metasploit
2	4 (3.03%)	Burp Suite

General
1	38 (28.79%)	Finance
2	37 (28.03%)	Social Skills
3	10 (7.58%)	Analytical Skills
3	10 (7.58%)	Law
4	8 (6.06%)	Legal
5	7 (5.30%)	Inclusion and Diversity
6	6 (4.55%)	Banking
6	6 (4.55%)	Games
6	6 (4.55%)	Marketing
7	4 (3.03%)	Presentation Skills
8	3 (2.27%)	Manufacturing
8	3 (2.27%)	Public Sector
9	2 (1.52%)	Cyber-Physical System
9	2 (1.52%)	Organisational Skills
9	2 (1.52%)	Retail
10	1 (0.76%)	Automotive
10	1 (0.76%)	Financial Institution
10	1 (0.76%)	Retail Banking
10	1 (0.76%)	Telecoms

Job Titles
1	69 (52.27%)	Analyst
2	61 (46.21%)	Security Analyst
3	27 (20.45%)	Information Analyst
3	27 (20.45%)	Information Security Analyst
4	21 (15.91%)	Cybersecurity Analyst
4	21 (15.91%)	Senior
5	14 (10.61%)	Lead
6	13 (9.85%)	Architect
7	11 (8.33%)	Security Engineer
8	10 (7.58%)	Senior Analyst
9	9 (6.82%)	IT Analyst
9	9 (6.82%)	IT Security Analyst
9	9 (6.82%)	Senior Security Analyst
10	8 (6.06%)	Security Manager
10	8 (6.06%)	SOC Manager
11	6 (4.55%)	Email Analyst
11	6 (4.55%)	Lead Architect
11	6 (4.55%)	Security Architect
11	6 (4.55%)	SOC Engineer
11	6 (4.55%)	Vulnerability Management Analyst

Libraries, Frameworks & Software Standards
1	11 (8.33%)	REST
2	10 (7.58%)	OAuth
2	10 (7.58%)	SAML
3	6 (4.55%)	SOAP
3	6 (4.55%)	Web Services
4	4 (3.03%)	Kafka
5	2 (1.52%)	802.1X

Miscellaneous
1	49 (37.12%)	Cyberattack
2	30 (22.73%)	Cyber Threat
3	27 (20.45%)	Cyber Kill Chain
4	22 (16.67%)	Security Operations Centre
5	19 (14.39%)	Cyber Defence
6	18 (13.64%)	Management Information System
7	10 (7.58%)	Public Cloud
7	10 (7.58%)	Security Posture
8	6 (4.55%)	Distributed Systems
9	4 (3.03%)	Insider Threat
10	3 (2.27%)	Operational Technology
10	3 (2.27%)	SCADA
10	3 (2.27%)	Self-Motivation
11	2 (1.52%)	CAN bus
11	2 (1.52%)	IoT
12	1 (0.76%)	Blog
12	1 (0.76%)	Cybercrime
12	1 (0.76%)	Mobile App
12	1 (0.76%)	PKI
12	1 (0.76%)	Tandem

Operating Systems
1	14 (10.61%)	Windows
2	11 (8.33%)	Linux
3	5 (3.79%)	Unix
4	4 (3.03%)	CentOS
4	4 (3.03%)	Solaris
4	4 (3.03%)	Ubuntu
4	4 (3.03%)	zOS
5	1 (0.76%)	Mac OS X

Processes & Methodologies
1	82 (62.12%)	SIEM
2	79 (59.85%)	Cybersecurity
3	62 (46.97%)	Incident Response
3	62 (46.97%)	Security Operations
4	61 (46.21%)	Information Security
5	45 (34.09%)	Cloud Security
5	45 (34.09%)	SOAR
6	44 (33.33%)	Cyber Threat Intelligence
6	44 (33.33%)	Threat Intelligence
7	40 (30.30%)	Vulnerability Management
8	32 (24.24%)	Vulnerability Remediation
9	26 (19.70%)	Application Security
10	21 (15.91%)	Threat Modelling
11	20 (15.15%)	OWASP
12	18 (13.64%)	Cyber Intelligence
12	18 (13.64%)	Identity Access Management
13	17 (12.88%)	Problem Management
14	15 (11.36%)	Change Management
14	15 (11.36%)	Continuous Improvement
14	15 (11.36%)	Vulnerability Scanning

Programming Languages
1	6 (4.55%)	SQL
2	2 (1.52%)	Kusto Query Language
3	1 (0.76%)	Bash
3	1 (0.76%)	PowerShell
3	1 (0.76%)	Python

Qualifications
1	35 (26.52%)	CISSP
2	27 (20.45%)	CISM
3	24 (18.18%)	GIAC
4	18 (13.64%)	Degree
5	12 (9.09%)	Security Cleared
6	11 (8.33%)	SC Cleared
7	8 (6.06%)	Computer Science Degree
7	8 (6.06%)	SANS
8	7 (5.30%)	CEH
9	6 (4.55%)	AWS Certified Cloud Practitioner
9	6 (4.55%)	DV Cleared
9	6 (4.55%)	Master's Degree
10	5 (3.79%)	(ISC)2 CCSP
10	5 (3.79%)	CCSP
10	5 (3.79%)	Cisco Certification
10	5 (3.79%)	CREST Certified
10	5 (3.79%)	CRISC
10	5 (3.79%)	GCIH
10	5 (3.79%)	GPEN
11	4 (3.03%)	GCIA

Quality Assurance & Compliance
1	57 (43.18%)	NIST
2	32 (24.24%)	ISO/IEC 27001
3	19 (14.39%)	NCSC
4	16 (12.12%)	PCI DSS
5	13 (9.85%)	GDPR
6	9 (6.82%)	GRC
7	8 (6.06%)	Cyber Essentials
8	7 (5.30%)	COBIT
9	6 (4.55%)	ISO/IEC 27002 (supersedes ISO/IEC 17799)
9	6 (4.55%)	Web Application Security Consortium
10	4 (3.03%)	Cyber Essentials PLUS
10	4 (3.03%)	ISO 9001
11	3 (2.27%)	SOC 2
12	2 (1.52%)	ISO 31000
13	1 (0.76%)	Actionable Recommendations
13	1 (0.76%)	AIFMD
13	1 (0.76%)	California Consumer Privacy Act
13	1 (0.76%)	ISO 22301
13	1 (0.76%)	PSD2
13	1 (0.76%)	Sarbanes-Oxley

System Software
1	8 (6.06%)	Active Directory
2	2 (1.52%)	Virtual Machines
3	1 (0.76%)	Docker
3	1 (0.76%)	Hyper-V

Systems Management
1	30 (22.73%)	CASB
2	8 (6.06%)	CSIRT
3	6 (4.55%)	Computer Emergency Response Teams
3	6 (4.55%)	Kubernetes
4	4 (3.03%)	Nessus
4	4 (3.03%)	Nmap
4	4 (3.03%)	QRadar
5	1 (0.76%)	Microsoft Intune
5	1 (0.76%)	Terraform

Vendors
1	30 (22.73%)	Microsoft
2	14 (10.61%)	Qualys
3	11 (8.33%)	Splunk
4	3 (2.27%)	IBM
5	2 (1.52%)	Intel
6	1 (0.76%)	CrowdStrike
6	1 (0.76%)	Darktrace
6	1 (0.76%)	Netskope
6	1 (0.76%)	Palo Alto
6	1 (0.76%)	VMware
6	1 (0.76%)	Zscaler

MITRE ATT&CKUK

All Process and Methodology SkillsUK

MITRE ATT&CKJob Vacancy Trend

MITRE ATT&CKSalary Trend

MITRE ATT&CKSalary Histogram

MITRE ATT&CKTop 13 Job Locations

MITRE ATT&CKTop 30 Co-occurring Skills and Capabilities

MITRE ATT&CKCo-occurring Skills and Capabilities by Category