Period
to 30 March 2020

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 30 March 2020 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK > England
6 months to
30 Mar 2020
Same period 2019 Same period 2018
Rank 189 196 217
Rank change year-on-year +7 +21 +45
Permanent jobs citing ISO/IEC 27001 2,001 2,474 2,674
As % of all permanent jobs advertised in England 1.83% 1.79% 1.61%
As % of the Quality Assurance & Compliance category 14.79% 12.66% 12.50%
Number of salaries quoted 1,715 1,951 2,222
Median annual salary £55,000 £55,000 £57,500
Median salary % change year-on-year - -4.35% +4.55%
10th Percentile £35,000 £33,750 £36,250
90th Percentile £85,000 £87,500 £82,500
UK median annual salary £55,000 £55,000 £57,500
% change year-on-year - -4.35% +4.55%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
England
Permanent vacancies with a requirement for quality assurance or compliance skills 13,533 19,536 21,399
As % of all permanent IT jobs advertised in England 12.40% 14.11% 12.89%
Number of salaries quoted 10,475 14,307 16,763
Median annual salary £52,500 £50,000 £50,000
Median salary % change year-on-year +5.00% - +5.26%
10th Percentile £29,000 £28,000 £27,500
90th Percentile £85,000 £81,250 £80,000
UK median annual salary £52,500 £50,000 £50,000
% change year-on-year +5.00% - +5.26%

ISO/IEC 27001
Job Vacancy Trend in England

Job postings citing ISO/IEC 27001 as a proportion of all IT jobs advertised in England.

Job vacancy trend for ISO/IEC 27001 in England

ISO/IEC 27001
Salary Trend in England

3-month moving average salary quoted in jobs citing ISO/IEC 27001 in England.

Salary trend for ISO/IEC 27001 in England

ISO/IEC 27001
Salary Histogram in England

Salary distribution for jobs citing ISO/IEC 27001 in England over the 6 months to 30 March 2020.

Salary histogram for ISO/IEC 27001 in England

ISO/IEC 27001
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the England region over the 6 months to 30 March 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
London +21 712 £61,500 -5.38% 49
South East +58 445 £55,000 - 45
Midlands +30 295 £47,500 -9.52% 27
North of England -38 289 £50,000 +11.11% 44
West Midlands +38 235 £47,500 -9.52% 23
North West -34 176 £47,500 -5.00% 30
South West +3 150 £50,000 +8.70% 32
East of England +11 109 £50,000 -9.09% 19
Yorkshire -28 107 £55,000 +37.50% 12
East Midlands +19 58 £47,500 -11.21% 4
North East +9 6 £43,750 -1.34% 2
ISO/IEC 27001
UK

For the 6 months to 30 March 2020, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for ISO/IEC 27001.

1 1,219 (60.92%) Information Security
2 708 (35.38%) Cybersecurity
3 697 (34.83%) CISSP
4 550 (27.49%) GDPR
5 519 (25.94%) CISM
6 446 (22.29%) PCI DSS
7 434 (21.69%) ITIL
8 428 (21.39%) Risk Management
9 400 (19.99%) Azure
10 399 (19.94%) Firewall
11 369 (18.44%) Finance
12 356 (17.79%) NIST
13 351 (17.54%) Microsoft
14 342 (17.09%) Management Information System
15 330 (16.49%) Windows
16 282 (14.09%) Security Management
17 273 (13.64%) CISA
18 269 (13.44%) SIEM
19 264 (13.19%) Degree
20 258 (12.89%) Security Cleared
21 249 (12.44%) Data Protection
22 247 (12.34%) Active Directory
23 236 (11.79%) Office 365
24 224 (11.19%) Cyber Essentials
25 221 (11.04%) Legal
26 219 (10.94%) ISMS
27 218 (10.89%) Agile Software Development
28 216 (10.79%) Penetration Testing
29 212 (10.59%) AWS
30 210 (10.49%) Information Security Management

ISO/IEC 27001
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 57 (2.85%) MS Exchange
2 49 (2.45%) IIS
3 48 (2.40%) SharePoint
4 35 (1.75%) Exchange Server 2013
5 18 (0.90%) Apache
6 12 (0.60%) Skype for Business
7 9 (0.45%) Exchange Server 2010
8 6 (0.30%) Apache Spark
9 5 (0.25%) Confluence
9 5 (0.25%) SharePoint 2010
10 4 (0.20%) Apache Airflow
10 4 (0.20%) nginx
10 4 (0.20%) OpenStack
10 4 (0.20%) SAS
11 3 (0.15%) IBM Domino
11 3 (0.15%) IBM Notes
12 2 (0.100%) CMS
12 2 (0.100%) ColdFusion
12 2 (0.100%) DNN
12 2 (0.100%) Drupal
Applications
1 55 (2.75%) Microsoft Office
2 18 (0.90%) Microsoft Excel
3 9 (0.45%) Spreadsheet
4 5 (0.25%) MS Visio
5 4 (0.20%) Microsoft Project
6 3 (0.15%) Microsoft PowerPoint
7 1 (0.050%) Adobe Creative Suite
7 1 (0.050%) AutoCAD
7 1 (0.050%) InfoPath
7 1 (0.050%) Revit
Business Applications
1 8 (0.40%) Elite 3E
2 6 (0.30%) Carpe Diem
3 4 (0.20%) Dynamics CRM
3 4 (0.20%) Oracle Financials
3 4 (0.20%) Sentinel
4 3 (0.15%) Distributed Ledger
5 2 (0.100%) Dynamics NAV
6 1 (0.050%) Infor M3
6 1 (0.050%) NetSuite
6 1 (0.050%) Salesforce.com CRM
6 1 (0.050%) Sparx Enterprise Architect
Cloud Services
1 400 (19.99%) Azure
2 236 (11.79%) Office 365
3 212 (10.59%) AWS
4 94 (4.70%) SaaS
5 70 (3.50%) IaaS
6 67 (3.35%) PaaS
7 33 (1.65%) GCP
8 29 (1.45%) Cloud Computing
9 26 (1.30%) Azure Active Directory
10 22 (1.10%) Power Platform
11 21 (1.05%) Mimecast
12 19 (0.95%) Serverless
13 11 (0.55%) G Suite
13 11 (0.55%) Virtual Private Cloud
14 10 (0.50%) Amazon EC2
15 9 (0.45%) PowerApps
16 8 (0.40%) Amazon GuardDuty
16 8 (0.40%) AWS CloudTrail
17 7 (0.35%) Heroku
18 6 (0.30%) Amazon S3
Communications & Networking
1 399 (19.94%) Firewall
2 150 (7.50%) Network Security
3 117 (5.85%) DNS
4 113 (5.65%) LAN
5 111 (5.55%) VPN
6 107 (5.35%) TCP/IP
7 100 (5.00%) WAN
8 80 (4.00%) Intrusion Detection
9 72 (3.60%) DHCP
10 71 (3.55%) Internet
11 48 (2.40%) SAN
12 36 (1.80%) VLAN
13 33 (1.65%) MPLS
13 33 (1.65%) Wireshark
14 31 (1.55%) Wireless
15 30 (1.50%) HTTP
16 24 (1.20%) Cisco ASA
17 23 (1.15%) Wi-Fi
18 20 (1.00%) IPsec
18 20 (1.00%) SMTP
Database & Business Intelligence
1 122 (6.10%) SQL Server
2 55 (2.75%) Relational Database
3 32 (1.60%) MySQL
4 18 (0.90%) Power BI
5 16 (0.80%) PostgreSQL
6 15 (0.75%) Big Data
6 15 (0.75%) SQL Server 2012
7 13 (0.65%) SQL Server 2008
8 10 (0.50%) Hadoop
9 9 (0.45%) NoSQL
10 8 (0.40%) Azure SQL Database
10 8 (0.40%) Data Warehouse
11 7 (0.35%) SQL Server 2014
12 6 (0.30%) Apache Hive
12 6 (0.30%) Blockchain
12 6 (0.30%) QlikView
12 6 (0.30%) RDBMS
12 6 (0.30%) Redis
13 5 (0.25%) Neo4j
13 5 (0.25%) SQL Server Reporting Services
Development Applications
1 33 (1.65%) Visual Studio
2 30 (1.50%) JIRA
3 25 (1.25%) Team Foundation Server
4 22 (1.10%) Git (software)
5 13 (0.65%) Metasploit
6 11 (0.55%) Jenkins
7 9 (0.45%) Burp Suite
8 7 (0.35%) Selenium
8 7 (0.35%) WinDbg
9 5 (0.25%) Subversion
10 4 (0.20%) Bitbucket
10 4 (0.20%) PHPUnit
11 3 (0.15%) GitLab
11 3 (0.15%) RSpec
12 2 (0.100%) Snyk
13 1 (0.050%) Cucumber
13 1 (0.050%) Mercurial
13 1 (0.050%) SonarQube
13 1 (0.050%) SpecFlow
General
1 369 (18.44%) Finance
2 221 (11.04%) Legal
3 128 (6.40%) Public Sector
4 110 (5.50%) Law
5 105 (5.25%) Retail
6 74 (3.70%) Telecoms
7 55 (2.75%) Manufacturing
8 52 (2.60%) Banking
9 21 (1.05%) Marketing
10 17 (0.85%) Automotive
11 16 (0.80%) Electronics
11 16 (0.80%) Financial Institution
12 9 (0.45%) Advertising
12 9 (0.45%) Games
13 8 (0.40%) Back Office
14 7 (0.35%) Aerospace
14 7 (0.35%) Pharmaceutical
14 7 (0.35%) Police
15 5 (0.25%) Local Government
16 3 (0.15%) Military
Job Titles
1 378 (18.89%) Analyst
2 285 (14.24%) Security Analyst
3 273 (13.64%) Security Manager
4 193 (9.65%) Information Manager
5 190 (9.50%) Information Security Manager
6 175 (8.75%) Consultant
7 164 (8.20%) Information Analyst
8 163 (8.15%) Information Security Analyst
9 157 (7.85%) Security Engineer
10 132 (6.60%) Security Consultant
11 127 (6.35%) Architect
12 121 (6.05%) IT Manager
13 113 (5.65%) Security Officer
14 89 (4.45%) Security Architect
15 80 (4.00%) Information Security Officer
16 74 (3.70%) Infrastructure Engineer
17 71 (3.55%) Information Officer
18 68 (3.40%) Security Specialist
19 65 (3.25%) Cybersecurity Consultant
20 58 (2.90%) IT Engineer
Libraries, Frameworks & Software Standards
1 60 (3.00%) .NET
2 45 (2.25%) CSS
3 43 (2.15%) HTML
3 43 (2.15%) OAuth
4 36 (1.80%) Web Services
5 35 (1.75%) OpenID
6 34 (1.70%) HTML5
7 33 (1.65%) Twitter Bootstrap
8 32 (1.60%) AngularJS
8 32 (1.60%) SAML
9 31 (1.55%) .NET Framework
9 31 (1.55%) jQuery
10 29 (1.45%) CSS3
11 28 (1.40%) Entity Framework
11 28 (1.40%) SailPoint
12 24 (1.20%) ADO.NET
12 24 (1.20%) WinForms
13 12 (0.60%) ASP.NET
14 11 (0.55%) Sass
15 10 (0.50%) LDAP
Miscellaneous
1 342 (17.09%) Management Information System
2 102 (5.10%) Analytical Skills
3 95 (4.75%) Self-Motivation
4 81 (4.05%) Data Centre
5 68 (3.40%) Data Protection Act
6 63 (3.15%) Cyberthreat
7 48 (2.40%) Driving Licence
8 40 (2.00%) PKI
9 37 (1.85%) Greenfield Project
10 33 (1.65%) Public Cloud
11 32 (1.60%) CESG
12 28 (1.40%) Enterprise Storage
13 27 (1.35%) Clustering
14 26 (1.30%) Security Operations Centre
15 21 (1.05%) Cyberattack
16 20 (1.00%) Hybrid Cloud
17 18 (0.90%) Cloud Native
18 16 (0.80%) Distributed Denial-of-Service
19 14 (0.70%) Cyber Defence
19 14 (0.70%) Virtual Team
Operating Systems
1 330 (16.49%) Windows
2 194 (9.70%) Linux
3 148 (7.40%) Windows Server
4 65 (3.25%) Windows Server 2012
5 59 (2.95%) Windows 10
6 45 (2.25%) Windows Server 2016
7 31 (1.55%) Unix
8 30 (1.50%) Windows Server 2008
9 20 (1.00%) Windows 7
10 14 (0.70%) Red Hat Enterprise Linux
11 11 (0.55%) CentOS
11 11 (0.55%) Windows Server 2019
12 10 (0.50%) Mac OS
13 9 (0.45%) VMS
13 9 (0.45%) Windows Server 2003
13 9 (0.45%) Windows XP
14 8 (0.40%) Apple iOS
15 6 (0.30%) Android
16 5 (0.25%) Solaris
17 4 (0.20%) Debian
Processes & Methodologies
1 1,219 (60.92%) Information Security
2 708 (35.38%) Cybersecurity
3 434 (21.69%) ITIL
4 428 (21.39%) Risk Management
5 282 (14.09%) Security Management
6 269 (13.44%) SIEM
7 249 (12.44%) Data Protection
8 219 (10.94%) ISMS
9 218 (10.89%) Agile Software Development
10 216 (10.79%) Penetration Testing
11 210 (10.49%) Information Security Management
12 201 (10.04%) Security Architecture
13 178 (8.90%) Vulnerability Management
14 169 (8.45%) Problem-Solving
15 165 (8.25%) Stakeholder Management
16 157 (7.85%) Continuous Improvement
17 154 (7.70%) Incident Management
17 154 (7.70%) Risk Assessment
18 144 (7.20%) Project Management
19 139 (6.95%) Security Operations
Programming Languages
1 130 (6.50%) PowerShell
2 119 (5.95%) Python
3 83 (4.15%) SQL
4 50 (2.50%) C#
5 48 (2.40%) JavaScript
6 32 (1.60%) C
7 27 (1.35%) Ruby
8 26 (1.30%) VB.NET
9 25 (1.25%) VB
10 24 (1.20%) VB6
11 23 (1.15%) PHP
12 19 (0.95%) Data Analysis Expressions (DAX)
13 18 (0.90%) C++
14 15 (0.75%) Java
14 15 (0.75%) T-SQL
15 12 (0.60%) Bash Shell
16 8 (0.40%) Shell Script
17 7 (0.35%) VBScript
18 6 (0.30%) Perl
18 6 (0.30%) PHP 7
Qualifications
1 697 (34.83%) CISSP
2 519 (25.94%) CISM
3 273 (13.64%) CISA
4 264 (13.19%) Degree
5 258 (12.89%) Security Cleared
6 181 (9.05%) SC Cleared
7 174 (8.70%) Cisco Certification
8 99 (4.95%) CRISC
9 96 (4.80%) CEH
10 80 (4.00%) CCNA
11 72 (3.60%) CESG Certified Professional
12 68 (3.40%) (ISC)2 CCSP
13 66 (3.30%) ISO 27001 Lead Auditor
14 62 (3.10%) CCNP
15 61 (3.05%) Microsoft Certification
16 47 (2.35%) CISMP
17 46 (2.30%) ISO 27001 Lead Implementer
18 44 (2.20%) CREST Certified
19 42 (2.10%) CCSP
20 41 (2.05%) DV Cleared
Quality Assurance & Compliance
1 550 (27.49%) GDPR
2 446 (22.29%) PCI DSS
3 356 (17.79%) NIST
4 224 (11.19%) Cyber Essentials
5 143 (7.15%) ISO 9001
6 132 (6.60%) COBIT
7 107 (5.35%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 102 (5.10%) SLA
9 83 (4.15%) HMG Security Policy Framework
9 83 (4.15%) ISO/IEC 20000
10 77 (3.85%) NCSC
11 72 (3.60%) QA
12 67 (3.35%) Sarbanes-Oxley
13 61 (3.05%) ISO 22301
14 57 (2.85%) Cyber Essentials PLUS
15 50 (2.50%) NIST 800
16 41 (2.05%) JSP 440
17 32 (1.60%) RMADS
18 24 (1.20%) Data Quality
19 22 (1.10%) BS25999
System Software
1 247 (12.34%) Active Directory
2 149 (7.45%) VMware Infrastructure
3 98 (4.90%) Hyper-V
4 23 (1.15%) XenApp
5 21 (1.05%) Docker
6 19 (0.95%) BitLocker
6 19 (0.95%) XenDesktop
7 16 (0.80%) NFS
7 16 (0.80%) Virtual Machines
8 14 (0.70%) VMware ESXi
8 14 (0.70%) vSphere
9 9 (0.45%) Virtual Desktop
10 6 (0.30%) HDFS
10 6 (0.30%) Microsoft Virtual Server
10 6 (0.30%) Virtual Servers
11 5 (0.25%) Firmware
11 5 (0.25%) KVM
11 5 (0.25%) Squid
12 2 (0.100%) PowerHA
12 2 (0.100%) Veritas Cluster Server
Systems Management
1 40 (2.00%) Nessus
2 34 (1.70%) SCCM
3 21 (1.05%) Nmap
4 20 (1.00%) Ansible
5 17 (0.85%) Backup Exec
6 16 (0.80%) Microsoft Intune
6 16 (0.80%) Terraform
7 14 (0.70%) CASB
8 13 (0.65%) SCOM
9 12 (0.60%) Norton AntiVirus
10 11 (0.55%) Puppet
11 10 (0.50%) FortiGate
11 10 (0.50%) Kubernetes
12 9 (0.45%) HP Fortify
12 9 (0.45%) WebInspect
13 8 (0.40%) Single Sign-On
14 7 (0.35%) Prometheus
15 6 (0.30%) Cisco CUCM
15 6 (0.30%) Opscode Chef
16 5 (0.25%) Forefront Identity Manager
Vendors
1 351 (17.54%) Microsoft
2 193 (9.65%) VMware
3 156 (7.80%) Cisco
4 80 (4.00%) Citrix
5 49 (2.45%) HP
6 43 (2.15%) Juniper
7 38 (1.90%) Qualys
8 30 (1.50%) CheckPoint
8 30 (1.50%) CyberArk
9 28 (1.40%) ForgeRock
9 28 (1.40%) Fortinet
9 28 (1.40%) Oracle
9 28 (1.40%) Sophos
10 27 (1.35%) NetApp
10 27 (1.35%) Splunk
11 26 (1.30%) Palo Alto
12 24 (1.20%) Google
12 24 (1.20%) Red Hat
12 24 (1.20%) Xamarin
13 22 (1.10%) Meraki