Period
to

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for NIST skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited NIST over the 6 months to 17 August 2022 with a comparison to the same period in the previous 2 years.

National Institute of Standards and Technology (NIST)
UK > England
6 months to
17 Aug 2022
Same period 2021 Same period 2020
Rank 469 476 420
Rank change year-on-year +7 -56 +161
Permanent jobs citing NIST 1,005 612 372
As % of all permanent jobs advertised in England 0.72% 0.60% 0.66%
As % of the Quality Assurance & Compliance category 4.14% 4.23% 5.13%
Number of salaries quoted 763 480 296
10th Percentile £42,500 £46,175 £42,500
25th Percentile £53,125 £52,500 £50,000
Median annual salary (50th Percentile) £70,000 £67,500 £63,750
Median % change year-on-year +3.70% +5.88% -5.56%
75th Percentile £83,750 £80,000 £80,000
90th Percentile £93,650 £95,000 £90,000
UK median annual salary £70,000 £65,000 £62,500
% change year-on-year +7.69% +4.00% -7.41%

NIST is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
England
Permanent vacancies with a requirement for quality assurance or compliance skills 24,277 14,463 7,246
As % of all permanent IT jobs advertised in England 17.31% 14.17% 12.80%
Number of salaries quoted 12,419 9,325 5,678
10th Percentile £31,250 £31,250 £31,250
25th Percentile £41,250 £41,250 £41,250
Median annual salary (50th Percentile) £55,000 £55,000 £55,000
Median % change year-on-year - - +10.00%
75th Percentile £75,000 £72,500 £70,000
90th Percentile £91,250 £87,500 £85,000
UK median annual salary £55,000 £53,380 £52,500
% change year-on-year +3.03% +1.68% +5.00%

NIST
Job Vacancy Trend in England

Job postings citing NIST as a proportion of all IT jobs advertised in England.

Job vacancy trend for NIST in England

NIST
Salary Trend in England

3-month moving average salary quoted in jobs citing NIST in England.

Salary trend for NIST in England

NIST
Salary Histogram in England

Salary distribution for jobs citing NIST in England over the 6 months to 17 August 2022.

Salary histogram for NIST in England

NIST
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing NIST within the England region over the 6 months to 17 August 2022. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
London -58 463 £72,500 -3.33% 68
North of England +51 179 £60,000 +9.09% 19
South East -28 153 £76,250 +27.08% 17
North West +30 137 £65,000 +18.18% 11
Midlands -64 74 £62,500 +13.64% 21
South West +46 72 £57,500 -6.12% 13
West Midlands -26 67 £65,000 +15.56% 18
Yorkshire +4 45 £57,500 +4.55% 7
East of England -52 34 £75,000 +15.38% 12
East Midlands -17 7 £43,500 -17.14% 3
North East -5 5 £110,000 +83.33% 1
NIST
UK

For the 6 months to 17 August 2022, IT jobs citing NIST also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for NIST.

1 693 (68.96%) Cybersecurity
2 644 (64.08%) Information Security
3 598 (59.50%) ISO/IEC 27001
4 471 (46.87%) CISSP
5 367 (36.52%) Finance
6 322 (32.04%) CISM
7 298 (29.65%) Risk Management
8 294 (29.25%) Azure
9 241 (23.98%) Social Skills
10 237 (23.58%) AWS
11 234 (23.28%) Security Operations
12 226 (22.49%) SIEM
13 218 (21.69%) Management Information System
14 214 (21.29%) PCI DSS
15 190 (18.91%) Security Architecture
16 187 (18.61%) OWASP
17 183 (18.21%) Microsoft
17 183 (18.21%) Incident Response
18 182 (18.11%) Vulnerability Management
18 182 (18.11%) Cyber Essentials
19 170 (16.92%) Firewall
19 170 (16.92%) Degree
20 167 (16.62%) GRC
21 163 (16.22%) GDPR
22 160 (15.92%) CISA
23 146 (14.53%) Security Management
24 144 (14.33%) Data Protection
24 144 (14.33%) ISMS
25 135 (13.43%) CRISC
26 134 (13.33%) MITRE ATT&CK

NIST
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 18 (1.79%) SharePoint
2 10 (1.00%) Confluence
3 9 (0.90%) Apache Spark
4 6 (0.60%) Apache
4 6 (0.60%) Oracle SOA Suite
5 1 (0.100%) Cloud Foundry
5 1 (0.100%) GemFire
5 1 (0.100%) Oracle Coherence
5 1 (0.100%) Tomcat
Applications
1 14 (1.39%) Microsoft Office
2 13 (1.29%) Microsoft Excel
3 5 (0.50%) MS Visio
4 3 (0.30%) Microsoft PowerPoint
Business Applications
1 1 (0.100%) Distributed Ledger
Cloud Services
1 294 (29.25%) Azure
2 237 (23.58%) AWS
3 100 (9.95%) Microsoft 365
4 75 (7.46%) SaaS
5 58 (5.77%) PaaS
6 55 (5.47%) IaaS
7 45 (4.48%) Azure Sentinel
8 38 (3.78%) GCP
9 28 (2.79%) Azure Active Directory
10 27 (2.69%) Cloud Computing
11 24 (2.39%) Mimecast
12 21 (2.09%) Serverless
13 16 (1.59%) GitHub
14 15 (1.49%) Power Platform
15 11 (1.09%) OneDrive
16 10 (1.00%) Amazon S3
17 8 (0.80%) Azure DevOps
18 5 (0.50%) Azure AKS
18 5 (0.50%) Collibra
18 5 (0.50%) Google Kubernetes Engine
Communications & Networking
1 170 (16.92%) Firewall
2 102 (10.15%) Network Security
3 48 (4.78%) TCP/IP
4 45 (4.48%) Internet
5 40 (3.98%) DNS
6 30 (2.99%) Intrusion Detection
7 25 (2.49%) WAN
8 20 (1.99%) DHCP
9 19 (1.89%) MPLS
9 19 (1.89%) Wireless
10 18 (1.79%) LAN
10 18 (1.79%) VPN
11 15 (1.49%) SD-WAN
12 12 (1.19%) Cisco ISE
12 12 (1.19%) SNMP
12 12 (1.19%) WLAN
13 11 (1.09%) HTTP
14 10 (1.00%) Wi-Fi
15 9 (0.90%) HTTPS
16 7 (0.70%) SSL
Database & Business Intelligence
1 17 (1.69%) NoSQL
2 15 (1.49%) Power BI
3 10 (1.00%) Big Data
4 8 (0.80%) Data Warehouse
5 7 (0.70%) SQL Server
6 5 (0.50%) Apache Cassandra
6 5 (0.50%) DataStage
6 5 (0.50%) DB2
6 5 (0.50%) Hadoop
6 5 (0.50%) HBase
6 5 (0.50%) IBM InfoSphere
6 5 (0.50%) Metadata
7 4 (0.40%) Azure SQL Database
7 4 (0.40%) DTS
7 4 (0.40%) Elasticsearch
8 2 (0.20%) EDRMS
8 2 (0.20%) MySQL
8 2 (0.20%) PostgreSQL
9 1 (0.100%) SQL Server Integration Services
9 1 (0.100%) SQL Server Reporting Services
Development Applications
1 18 (1.79%) Burp Suite
2 17 (1.69%) JIRA
3 14 (1.39%) GitLab
4 12 (1.19%) Git (software)
5 11 (1.09%) Log4j
6 6 (0.60%) Emacs
6 6 (0.60%) Jenkins
6 6 (0.60%) Team Foundation Server
7 5 (0.50%) IBM UrbanCode
7 5 (0.50%) Metasploit
8 1 (0.100%) Ant
8 1 (0.100%) AppScan
8 1 (0.100%) Artifactory
8 1 (0.100%) JUnit
8 1 (0.100%) Snyk
8 1 (0.100%) SonarQube
8 1 (0.100%) Subversion
8 1 (0.100%) Visual Studio
General
1 367 (36.52%) Finance
2 241 (23.98%) Social Skills
3 115 (11.44%) Analytical Skills
4 101 (10.05%) Legal
5 74 (7.36%) Banking
6 60 (5.97%) Telecoms
7 53 (5.27%) Retail
8 41 (4.08%) Public Sector
9 40 (3.98%) Presentation Skills
10 37 (3.68%) Inclusion and Diversity
11 29 (2.89%) Investment Banking
11 29 (2.89%) Law
11 29 (2.89%) Organisational Skills
12 20 (1.99%) Documentation Skills
12 20 (1.99%) Marketing
13 19 (1.89%) Manufacturing
14 13 (1.29%) Influencing Skills
15 12 (1.19%) Advertising
16 11 (1.09%) Automotive
16 11 (1.09%) Electronics
Job Titles
1 226 (22.49%) Analyst
2 187 (18.61%) Security Manager
3 180 (17.91%) Security Analyst
4 117 (11.64%) Architect
5 107 (10.65%) Consultant
6 103 (10.25%) Security Engineer
7 95 (9.45%) Security Consultant
8 84 (8.36%) Security Architect
9 80 (7.96%) Information Analyst
10 77 (7.66%) Information Security Analyst
11 61 (6.07%) Information Manager
12 52 (5.17%) Information Security Manager
13 44 (4.38%) Head of Security
14 41 (4.08%) Senior Security Engineer
15 37 (3.68%) Operational Security Manager
15 37 (3.68%) Security Operations Manager
16 34 (3.38%) Cybersecurity Consultant
17 32 (3.18%) IT Analyst
17 32 (3.18%) Security Officer
18 31 (3.08%) Security Specialist
Libraries, Frameworks & Software Standards
1 24 (2.39%) SAML
2 14 (1.39%) Node.js
3 12 (1.19%) GraphQL
3 12 (1.19%) Web Services
4 11 (1.09%) ARM Templates
4 11 (1.09%) Mason
4 11 (1.09%) OAuth
4 11 (1.09%) React
5 9 (0.90%) .NET
6 6 (0.60%) OpenID
7 5 (0.50%) Elastic Stack
7 5 (0.50%) Kafka
7 5 (0.50%) LDAP
8 4 (0.40%) .NET Framework
9 3 (0.30%) 802.1X
9 3 (0.30%) CSS
9 3 (0.30%) Middleware
10 2 (0.20%) Azure Blueprints
10 2 (0.20%) RabbitMQ
10 2 (0.20%) REST
Miscellaneous
1 218 (21.69%) Management Information System
2 108 (10.75%) Security Operations Centre
3 61 (6.07%) Data Centre
4 54 (5.37%) Public Cloud
5 43 (4.28%) Cyberattack
6 33 (3.28%) Cyberthreat
7 28 (2.79%) Self-Motivation
8 25 (2.49%) Cyber Kill Chain
9 22 (2.19%) Cloud Native
10 17 (1.69%) Data Protection Act
11 16 (1.59%) Cyber Defence
12 14 (1.39%) CESG
12 14 (1.39%) Enterprise Software
12 14 (1.39%) IoT
12 14 (1.39%) Virtual Team
13 13 (1.29%) Mobile App
14 12 (1.19%) CSOC
14 12 (1.19%) Distributed Denial-of-Service
14 12 (1.19%) SCADA
15 11 (1.09%) Embedded Systems
Operating Systems
1 94 (9.35%) Windows
2 48 (4.78%) Linux
3 28 (2.79%) Windows Server
4 17 (1.69%) Unix
5 12 (1.19%) Windows Server 2019
6 11 (1.09%) Kali Linux
7 10 (1.00%) Windows Server 2012
8 5 (0.50%) Windows Server 2016
9 3 (0.30%) Android
9 3 (0.30%) Windows 10
10 1 (0.100%) AIX
10 1 (0.100%) Mac OS X
10 1 (0.100%) Windows Server 2008
10 1 (0.100%) zOS
Processes & Methodologies
1 693 (68.96%) Cybersecurity
2 644 (64.08%) Information Security
3 298 (29.65%) Risk Management
4 234 (23.28%) Security Operations
5 226 (22.49%) SIEM
6 190 (18.91%) Security Architecture
7 187 (18.61%) OWASP
8 183 (18.21%) Incident Response
9 182 (18.11%) Vulnerability Management
10 146 (14.53%) Security Management
11 144 (14.33%) Data Protection
11 144 (14.33%) ISMS
12 134 (13.33%) Agile
12 134 (13.33%) MITRE ATT&CK
13 126 (12.54%) Stakeholder Management
14 114 (11.34%) Information Security Management
15 112 (11.14%) Threat Modelling
16 105 (10.45%) Penetration Testing
17 104 (10.35%) Application Security
18 102 (10.15%) Project Management
Programming Languages
1 74 (7.36%) Python
2 66 (6.57%) PowerShell
3 32 (3.18%) Bash
4 30 (2.99%) SQL
5 22 (2.19%) Java
6 21 (2.09%) C
7 16 (1.59%) C#
8 13 (1.29%) Go
9 12 (1.19%) Perl
10 11 (1.09%) TypeScript
11 5 (0.50%) ABAP
11 5 (0.50%) JavaScript
11 5 (0.50%) Ruby
12 3 (0.30%) C++
12 3 (0.30%) Rust
13 2 (0.20%) Bicep
13 2 (0.20%) PHP
14 1 (0.100%) Erlang
14 1 (0.100%) Search Processing Language
14 1 (0.100%) Shell Script
Qualifications
1 471 (46.87%) CISSP
2 322 (32.04%) CISM
3 170 (16.92%) Degree
4 160 (15.92%) CISA
5 135 (13.43%) CRISC
6 93 (9.25%) Security Cleared
7 72 (7.16%) Cisco Certification
8 70 (6.97%) CEH
9 59 (5.87%) AWS Certification
10 56 (5.57%) CISMP
11 55 (5.47%) Computer Science Degree
11 55 (5.47%) SSCP
12 54 (5.37%) CompTIA Security+
12 54 (5.37%) SC Cleared
13 51 (5.07%) Master's Degree
14 45 (4.48%) (ISC)2 CCSP
14 45 (4.48%) SANS
15 38 (3.78%) GCIH
16 35 (3.48%) OSCP
17 28 (2.79%) GIAC
Quality Assurance & Compliance
1 598 (59.50%) ISO/IEC 27001
2 214 (21.29%) PCI DSS
3 182 (18.11%) Cyber Essentials
4 167 (16.62%) GRC
5 163 (16.22%) GDPR
6 88 (8.76%) COBIT
7 87 (8.66%) NIST 800
8 86 (8.56%) NCSC
9 75 (7.46%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 39 (3.88%) Cyber Essentials PLUS
11 36 (3.58%) ISO/IEC 27005
12 33 (3.28%) SOC 2
13 28 (2.79%) Sarbanes-Oxley
14 18 (1.79%) HIPAA
14 18 (1.79%) ISO 31000
15 16 (1.59%) Actionable Recommendations
16 10 (1.00%) JSP 440
16 10 (1.00%) QA
17 7 (0.70%) HMG Security Policy Framework
18 6 (0.60%) ISO 22301
System Software
1 64 (6.37%) Active Directory
2 19 (1.89%) VMware Infrastructure
3 9 (0.90%) Docker
3 9 (0.90%) Hyper-V
4 7 (0.70%) Virtual Desktop
5 2 (0.20%) Firmware
5 2 (0.20%) Snort
6 1 (0.100%) VMware Workstation
Systems Management
1 41 (4.08%) Nessus
2 26 (2.59%) Terraform
3 25 (2.49%) CASB
4 19 (1.89%) Kubernetes
4 19 (1.89%) Single Sign-On
5 14 (1.39%) FortiGate
6 11 (1.09%) Active Directory Federation Services
6 11 (1.09%) Puppet
6 11 (1.09%) Trend Micro Deep Security
7 8 (0.80%) Ansible
8 7 (0.70%) Microsoft Intune
8 7 (0.70%) SCVMM
9 6 (0.60%) Computer Emergency Response Teams
9 6 (0.60%) CSIRT
10 5 (0.50%) Cisco CUCM
10 5 (0.50%) Istio
10 5 (0.50%) Observium
10 5 (0.50%) QRadar
10 5 (0.50%) Suricata
11 4 (0.40%) SCCM
Vendors
1 183 (18.21%) Microsoft
2 61 (6.07%) Cisco
3 49 (4.88%) CrowdStrike
4 45 (4.48%) Splunk
5 40 (3.98%) Palo Alto
6 30 (2.99%) Fortinet
7 28 (2.79%) Qualys
8 25 (2.49%) Okta
9 23 (2.29%) Google
10 22 (2.19%) CyberArk
10 22 (2.19%) VMware
11 21 (2.09%) IBM
11 21 (2.09%) Proofpoint
12 18 (1.79%) CheckPoint
12 18 (1.79%) Sophos
13 17 (1.69%) Netskope
14 16 (1.59%) Oracle
14 16 (1.59%) Tanium
15 15 (1.49%) Facebook
15 15 (1.49%) Zscaler