Period
to 5 May 2021

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for GRC skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited GRC over the 6 months to 5 May 2021 with a comparison to the same period in the previous 2 years.

Governance, Risk Management and Compliance (GRC)
UK > England
6 months to
5 May 2021
Same period 2020 Same period 2019
Rank 583 689 730
Rank change year-on-year +106 +41 +30
Permanent jobs citing GRC 261 241 370
As % of all permanent jobs advertised in England 0.33% 0.25% 0.27%
As % of the Quality Assurance & Compliance category 2.76% 2.04% 1.89%
Number of salaries quoted 202 190 248
10th Percentile £43,875 £39,875 £41,425
25th Percentile £52,500 £45,000 £50,938
Median annual salary (50th Percentile) £65,000 £62,500 £65,000
Median % change year-on-year +4.00% -3.85% +4.00%
75th Percentile £80,000 £80,000 £83,750
90th Percentile £95,000 £88,750 £93,250
UK median annual salary £65,000 £60,000 £65,000
% change year-on-year +8.33% -7.69% +3.59%

GRC is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
England
Permanent vacancies with a requirement for quality assurance or compliance skills 9,466 11,836 19,535
As % of all permanent IT jobs advertised in England 12.13% 12.49% 14.34%
Number of salaries quoted 6,806 9,268 14,362
10th Percentile £31,250 £29,307 £28,000
25th Percentile £41,250 £38,475 £37,500
Median annual salary (50th Percentile) £55,000 £53,000 £50,000
Median % change year-on-year +3.77% +6.00% -
75th Percentile £70,000 £70,000 £67,500
90th Percentile £85,000 £85,000 £83,750
UK median annual salary £52,500 £52,500 £50,000
% change year-on-year - +5.00% -

GRC
Job Vacancy Trend in England

Job postings citing GRC as a proportion of all IT jobs advertised in England.

Job vacancy trend for GRC in England

GRC
Salary Trend in England

3-month moving average salary quoted in jobs citing GRC in England.

Salary trend for GRC in England

GRC
Salary Histogram in England

Salary distribution for jobs citing GRC in England over the 6 months to 5 May 2021.

Salary histogram for GRC in England

GRC
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing GRC within the England region over the 6 months to 5 May 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
London +56 128 £75,000 +7.14% 11
South East +59 43 £56,250 -10.00% 5
Midlands +19 35 £51,500 -1.90% 4
West Midlands +20 33 £50,750 +1.50% 4
North of England +8 23 £60,000 +14.29% 4
East of England +45 20 £75,000 +5.26% 2
Yorkshire -11 12 £58,750 +46.88% 1
North West +4 9 £60,000 +9.09% 3
South West -4 5 £63,750 +82.14% 1
North East - 2 £80,000 -
GRC
UK

For the 6 months to 5 May 2021, IT jobs citing GRC also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for GRC.

1 160 (61.30%) Information Security
2 97 (37.16%) Cybersecurity
3 93 (35.63%) ISO/IEC 27001
4 79 (30.27%) Risk Management
5 73 (27.97%) CISSP
6 64 (24.52%) Azure
7 58 (22.22%) Social Skills
8 57 (21.84%) Management Information System
9 53 (20.31%) Finance
10 52 (19.92%) ITIL
10 52 (19.92%) Agile Software Development
10 52 (19.92%) SaaS
11 50 (19.16%) PCI DSS
12 46 (17.62%) .NET
12 46 (17.62%) CISM
13 45 (17.24%) Degree
14 44 (16.86%) NIST
15 41 (15.71%) Security Operations
16 40 (15.33%) GDPR
16 40 (15.33%) CISA
17 35 (13.41%) DevOps
18 33 (12.64%) C#
19 32 (12.26%) SQL
19 32 (12.26%) ServiceNow
20 31 (11.88%) Stakeholder Management
20 31 (11.88%) COBIT
21 28 (10.73%) JavaScript
22 27 (10.34%) SQL Server
22 27 (10.34%) Security Management
22 27 (10.34%) Security Architecture

GRC
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 9 (3.45%) IIS
2 8 (3.07%) SharePoint
3 5 (1.92%) Apache Airflow
3 5 (1.92%) Gunicorn
3 5 (1.92%) OpenStack
4 2 (0.77%) Confluence
5 1 (0.38%) Elasticsearch
5 1 (0.38%) MS Exchange
Applications
1 18 (6.90%) Microsoft Excel
2 15 (5.75%) Microsoft PowerPoint
2 15 (5.75%) MS Visio
3 1 (0.38%) Microsoft Project
Business Applications
1 5 (1.92%) Sparx Enterprise Architect
2 4 (1.53%) SAP CRM
3 2 (0.77%) NetSuite
3 2 (0.77%) SAP BPC
3 2 (0.77%) SAP CO
3 2 (0.77%) SAP FI
3 2 (0.77%) SAP FI/CO
3 2 (0.77%) SAP GRC
4 1 (0.38%) Elite 3E
4 1 (0.38%) Remedy ITSM
4 1 (0.38%) Salesforce.com CRM
Cloud Services
1 64 (24.52%) Azure
2 52 (19.92%) SaaS
3 21 (8.05%) AWS
3 21 (8.05%) Cloud Computing
4 18 (6.90%) Microsoft 365
5 11 (4.21%) IaaS
5 11 (4.21%) PaaS
6 9 (3.45%) BPaaS
6 9 (3.45%) GCP
7 7 (2.68%) Power Platform
8 4 (1.53%) IBM Cloud
9 2 (0.77%) Dynamics 365
10 1 (0.38%) Salesforce Service Cloud
Communications & Networking
1 20 (7.66%) Firewall
2 10 (3.83%) Internet
3 9 (3.45%) SSL
3 9 (3.45%) VPN
3 9 (3.45%) WAAS
4 6 (2.30%) TCP/IP
5 5 (1.92%) Unified Communications
6 4 (1.53%) Reverse Proxy
7 3 (1.15%) BGP
7 3 (1.15%) Cisco ASA
7 3 (1.15%) Cisco Nexus
7 3 (1.15%) DNS
7 3 (1.15%) F5 BIG-IP GTM
7 3 (1.15%) F5 BIG-IP LTM
7 3 (1.15%) IPsec
7 3 (1.15%) IPv4
7 3 (1.15%) IPv6
7 3 (1.15%) MPLS
7 3 (1.15%) Network Security
7 3 (1.15%) OSPF
Database & Business Intelligence
1 27 (10.34%) SQL Server
2 9 (3.45%) Big Data
2 9 (3.45%) Data Warehouse
3 7 (2.68%) Power BI
4 5 (1.92%) Data Mining
5 4 (1.53%) Tableau
6 2 (0.77%) Relational Database
6 2 (0.77%) SAP BW
7 1 (0.38%) PostgreSQL
Development Applications
1 15 (5.75%) Git (software)
2 3 (1.15%) JIRA
3 1 (0.38%) Bitbucket
General
1 58 (22.22%) Social Skills
2 53 (20.31%) Finance
3 26 (9.96%) Public Sector
4 18 (6.90%) Legal
5 16 (6.13%) Banking
6 12 (4.60%) Analytical Skills
7 11 (4.21%) Presentation Skills
8 8 (3.07%) Law
9 4 (1.53%) Manufacturing
9 4 (1.53%) Russian Language
10 3 (1.15%) Retail
11 2 (0.77%) Investment Banking
11 2 (0.77%) Retail Banking
12 1 (0.38%) Aerospace
12 1 (0.38%) Marketing
Job Titles
1 39 (14.94%) Developer
2 35 (13.41%) Consultant
3 34 (13.03%) Analyst
4 30 (11.49%) Security Analyst
4 30 (11.49%) Security Specialist
5 25 (9.58%) Security Consultant
6 20 (7.66%) Information Officer
6 20 (7.66%) Information Security Officer
6 20 (7.66%) Security Officer
7 19 (7.28%) Security Manager
8 18 (6.90%) Information Security Specialist
8 18 (6.90%) Information Specialist
9 17 (6.51%) Information Analyst
9 17 (6.51%) Information Security Analyst
10 16 (6.13%) Senior Developer
11 15 (5.75%) Software Developer
12 13 (4.98%) Head of Security
13 12 (4.60%) Architect
13 12 (4.60%) Head of Information
13 12 (4.60%) Head of Information Security
Libraries, Frameworks & Software Standards
1 46 (17.62%) .NET
2 19 (7.28%) REST
3 18 (6.90%) .NET Framework
4 16 (6.13%) AngularJS
5 15 (5.75%) jQuery
6 12 (4.60%) Middleware
7 8 (3.07%) .NET Core
7 8 (3.07%) Web Services
8 7 (2.68%) HTML
8 7 (2.68%) XML
9 6 (2.30%) LDAP
9 6 (2.30%) SOAP
10 5 (1.92%) Apache Thrift
10 5 (1.92%) Kafka
10 5 (1.92%) NumPy
10 5 (1.92%) Pandas
10 5 (1.92%) pytest
10 5 (1.92%) WSDL
11 4 (1.53%) Velocity
12 1 (0.38%) Spring
Miscellaneous
1 57 (21.84%) Management Information System
2 20 (7.66%) Mobile App
3 19 (7.28%) Cyberthreat
4 16 (6.13%) Enterprise Software
5 8 (3.07%) Greenfield Project
5 8 (3.07%) Public Cloud
6 6 (2.30%) Algorithms
6 6 (2.30%) Data Structures
6 6 (2.30%) Self-Motivation
7 5 (1.92%) Enterprise Storage
7 5 (1.92%) Internet of Things
7 5 (1.92%) N-Tier
7 5 (1.92%) User Experience
8 4 (1.53%) IVR
9 3 (1.15%) Cyberattack
9 3 (1.15%) Cybercrime
9 3 (1.15%) Data Centre
9 3 (1.15%) Data Protection Act
9 3 (1.15%) SCADA
9 3 (1.15%) Security Operations Centre
Operating Systems
1 22 (8.43%) Windows
2 17 (6.51%) Linux
3 9 (3.45%) Windows Server
4 5 (1.92%) Unix
Processes & Methodologies
1 160 (61.30%) Information Security
2 97 (37.16%) Cybersecurity
3 79 (30.27%) Risk Management
4 52 (19.92%) Agile Software Development
4 52 (19.92%) ITIL
5 41 (15.71%) Security Operations
6 35 (13.41%) DevOps
7 31 (11.88%) Stakeholder Management
8 27 (10.34%) Continuous Improvement
8 27 (10.34%) Security Architecture
8 27 (10.34%) Security Management
9 26 (9.96%) ISMS
10 24 (9.20%) Microservices
11 23 (8.81%) Information Security Management
11 23 (8.81%) SIEM
12 22 (8.43%) Data Privacy
13 21 (8.05%) ITSM
13 21 (8.05%) Vulnerability Management
14 20 (7.66%) Analytics
14 20 (7.66%) Identity Access Management
Programming Languages
1 33 (12.64%) C#
2 32 (12.26%) SQL
3 28 (10.73%) JavaScript
4 15 (5.75%) Java
5 12 (4.60%) Python
6 9 (3.45%) PHP
7 6 (2.30%) C
7 6 (2.30%) Kotlin
8 4 (1.53%) PowerShell
8 4 (1.53%) VB.NET
8 4 (1.53%) VBScript
9 3 (1.15%) VBA
Qualifications
1 73 (27.97%) CISSP
2 46 (17.62%) CISM
3 45 (17.24%) Degree
4 40 (15.33%) CISA
5 17 (6.51%) ISO 27001 Lead Auditor
6 14 (5.36%) CRISC
7 13 (4.98%) Security Cleared
8 7 (2.68%) Cisco Certification
9 6 (2.30%) Computer Science Degree
9 6 (2.30%) ITIL Certification
10 5 (1.92%) DV Cleared
10 5 (1.92%) ISACA
10 5 (1.92%) SC Cleared
11 4 (1.53%) (ISC)2 CCSP
11 4 (1.53%) MCSE
11 4 (1.53%) Microsoft Certification
12 3 (1.15%) CCIE
12 3 (1.15%) CCNP
12 3 (1.15%) CISMP
12 3 (1.15%) JNCIP
Quality Assurance & Compliance
1 93 (35.63%) ISO/IEC 27001
2 50 (19.16%) PCI DSS
3 44 (16.86%) NIST
4 40 (15.33%) GDPR
5 31 (11.88%) COBIT
6 22 (8.43%) Cyber Essentials
7 18 (6.90%) QA
8 10 (3.83%) Cyber Essentials PLUS
9 9 (3.45%) 21 CFR Part 11
9 9 (3.45%) HIPAA
9 9 (3.45%) ITGC
9 9 (3.45%) Sarbanes-Oxley
10 5 (1.92%) ISO 22301
10 5 (1.92%) ISO 9001
11 3 (1.15%) COSO
11 3 (1.15%) FedRAMP
11 3 (1.15%) NIST 800
11 3 (1.15%) SOC 2
12 2 (0.77%) ISO/IEC 20000
12 2 (0.77%) NCSC
System Software
1 23 (8.81%) Docker
2 10 (3.83%) Active Directory
3 5 (1.92%) VMware Infrastructure
4 3 (1.15%) Firmware
Systems Management
1 19 (7.28%) Kubernetes
2 5 (1.92%) Opscode Chef
2 5 (1.92%) Puppet
3 4 (1.53%) RSA Archer
3 4 (1.53%) Single Sign-On
4 1 (0.38%) Oracle Identity Management
4 1 (0.38%) Oracle Identity Manager
Vendors
1 32 (12.26%) ServiceNow
2 16 (6.13%) Microsoft
3 8 (3.07%) Google
4 6 (2.30%) BMC
4 6 (2.30%) HP
4 6 (2.30%) Ivanti
4 6 (2.30%) Salesforce.com
4 6 (2.30%) SAP
4 6 (2.30%) VMware
5 5 (1.92%) BiZZdesign
5 5 (1.92%) Citrix
5 5 (1.92%) Oracle
5 5 (1.92%) Sparx
6 4 (1.53%) Cisco
6 4 (1.53%) Genesys
6 4 (1.53%) IBM
6 4 (1.53%) Pega
7 3 (1.15%) F5
7 3 (1.15%) Juniper
7 3 (1.15%) Mellanox