Period
to 21 November 2017

The following table provides summary statistics for permanent job vacancies advertised in England with a requirement for OWASP skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited OWASP over the 6 months to 21 November 2017 with a comparison to the same period in the previous 2 years.

Open Web Application Security Project (OWASP)
UK > England
6 months to
21 Nov 2017
Same period 2016 Same period 2015
Rank 738 721 936
Rank change year-on-year -17 +215 +154
Permanent jobs citing OWASP 459 518 350
As % of all permanent IT jobs advertised in England 0.27% 0.29% 0.17%
As % of the Processes & Methodologies category 0.30% 0.33% 0.19%
Number of salaries quoted 370 481 273
England median annual salary £60,000 £55,000 £52,500
Median salary % change year-on-year +9.09% +4.76% +5.00%
10th Percentile £40,000 £36,250 £28,000
90th Percentile £100,000 £78,750 £77,500
UK median annual salary £60,000 £55,000 £52,500
% change year-on-year +9.09% +4.76% +5.00%

OWASP is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in England with a requirement for process or methodology skills.

All Process and Methodology Skills
England
Permanent vacancies with a requirement for process or methodology skills 152449 159358 181424
As % of all permanent IT jobs advertised in England 89.91% 89.39% 88.74%
Number of salaries quoted 121294 133740 151021
England median annual salary £50,000 £50,000 £47,500
Median salary % change year-on-year - +5.26% +5.56%
10th Percentile £28,750 £28,250 £27,500
90th Percentile £80,000 £80,000 £77,500
UK median annual salary £50,000 £49,500 £47,500
% change year-on-year +1.01% +4.21% +5.56%

OWASP
Job Vacancy Trend in England

Job postings citing OWASP as a percentage of all IT jobs advertised in England.

Job vacancy trend for OWASP in England

OWASP
Salary Trend in England

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing OWASP in England.

Salary trend for OWASP in England

OWASP
Salary Histogram in England

The salary distribution of IT jobs citing OWASP in England over the 6 months to 21 November 2017.

Salary histogram for OWASP in England

OWASP
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing OWASP within the England region over the 6 months to 21 November 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
London +59 230 £72,500 +11.54% 15
South East +32 120 £50,000 -9.09% 7
North of England -7 59 £45,000 +5.88% 9
Yorkshire +20 35 £45,000 +5.88% 3
Midlands +25 26 £60,000 +29.73% 2
North West -17 24 £62,500 +47.06% 4
West Midlands +14 18 £60,000 +33.33% 1
South West -7 16 £50,000 -9.09% 3
East of England -22 10 £90,000 +20.00% 1
East Midlands +30 8 £57,500 +21.05% 1
OWASP
UK

For the 6 months to 21 November 2017, IT jobs citing OWASP also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads across the England region with a requirement for OWASP.

1 213 (46.41%) Agile Software Development
2 159 (34.64%) Information Security
3 151 (32.90%) Java
4 141 (30.72%) JavaScript
4 141 (30.72%) Penetration Testing
5 130 (28.32%) Python
6 128 (27.89%) Finance
7 119 (25.93%) CISSP
8 118 (25.71%) ISO/IEC 27001
9 110 (23.97%) SQL
10 106 (23.09%) Linux
11 104 (22.66%) HTML
12 101 (22.00%) .NET
13 100 (21.79%) Amazon AWS
14 95 (20.70%) Security Testing
15 92 (20.04%) Firewall
16 91 (19.83%) Windows
17 86 (18.74%) C#
18 83 (18.08%) Continuous Integration
18 83 (18.08%) DevOps
19 78 (16.99%) Ruby
19 78 (16.99%) CSS
20 75 (16.34%) Scrum
20 75 (16.34%) Open Source
21 74 (16.12%) Security Architecture
21 74 (16.12%) CISM
22 69 (15.03%) Jenkins
23 68 (14.81%) Cybersecurity
23 68 (14.81%) Network Security
24 67 (14.60%) CEH

OWASP
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 46 (10.02%) WebSphere
2 35 (7.63%) Tomcat
3 30 (6.54%) nginx
4 28 (6.10%) OpenStack
5 23 (5.01%) WebLogic
6 20 (4.36%) Cloud Foundry
7 18 (3.92%) JBoss
8 17 (3.70%) Apache
9 15 (3.27%) CloudStack
10 12 (2.61%) Elasticsearch
11 11 (2.40%) IIS
12 7 (1.53%) WebSphere Application Server
13 6 (1.31%) Umbraco
14 5 (1.09%) CMS
14 5 (1.09%) Confluence
14 5 (1.09%) SharePoint
15 3 (0.65%) Oracle SOA Suite
16 1 (0.22%) Apache Solr
16 1 (0.22%) Ethereum
16 1 (0.22%) Hyperledger
Applications
1 3 (0.65%) Microsoft Excel
2 2 (0.44%) Microsoft Office
2 2 (0.44%) Microsoft PowerPoint
2 2 (0.44%) Microsoft Project
2 2 (0.44%) MS Visio
Business Applications
1 6 (1.31%) Payment Gateway
2 1 (0.22%) Salesforce.com CRM
Cloud Services
1 100 (21.79%) Amazon AWS
2 37 (8.06%) Microsoft Azure
3 29 (6.32%) SaaS
4 27 (5.88%) npm
5 22 (4.79%) PaaS
6 10 (2.18%) GitHub
7 7 (1.53%) Cloud Computing
8 5 (1.09%) Amazon ElastiCache
8 5 (1.09%) Amazon S3
8 5 (1.09%) Office 365
9 4 (0.87%) Azure Active Directory
9 4 (0.87%) Google Cloud Platform
10 3 (0.65%) Amazon SQS
10 3 (0.65%) IaaS
10 3 (0.65%) Serverless
11 2 (0.44%) Heroku
12 1 (0.22%) AWS CloudFormation
12 1 (0.22%) AWS Lambda
12 1 (0.22%) BlazeMeter
12 1 (0.22%) Boomi
Communications & Networking
1 92 (20.04%) Firewall
2 68 (14.81%) Network Security
3 44 (9.59%) TCP/IP
4 21 (4.58%) Internet
5 20 (4.36%) Wireless
6 19 (4.14%) DNS
7 15 (3.27%) HTTP
8 13 (2.83%) LDAP
9 12 (2.61%) DHCP
9 12 (2.61%) Intrusion Detection
10 9 (1.96%) Multicast
10 9 (1.96%) WAN
10 9 (1.96%) Wireshark
11 8 (1.74%) LAN
11 8 (1.74%) NAS
11 8 (1.74%) SAN
12 7 (1.53%) SSL
13 5 (1.09%) tcpdump
13 5 (1.09%) VoIP
14 4 (0.87%) CTI
Database & Business Intelligence
1 55 (11.98%) SQL Server
2 51 (11.11%) MySQL
3 34 (7.41%) NoSQL
4 20 (4.36%) SQL Server Integration Services
5 16 (3.49%) MongoDB
6 13 (2.83%) MariaDB
7 9 (1.96%) Data Warehouse
7 9 (1.96%) Relational Database
8 7 (1.53%) Hadoop
8 7 (1.53%) Looker
8 7 (1.53%) Redis
9 5 (1.09%) PostgreSQL
10 4 (0.87%) Azure SQL Database
11 3 (0.65%) Big Data
11 3 (0.65%) Blockchain
11 3 (0.65%) Neo4j
11 3 (0.65%) Oracle Database
11 3 (0.65%) SQL Server 2008
11 3 (0.65%) SQL Server Reporting Services
12 2 (0.44%) DB2
Development Applications
1 69 (15.03%) Jenkins
2 62 (13.51%) Git (software)
3 32 (6.97%) JUnit
4 30 (6.54%) gulp
5 29 (6.32%) TeamCity
6 27 (5.88%) Gradle
6 27 (5.88%) Maven
7 26 (5.66%) Burp Suite
8 24 (5.23%) Subversion
9 23 (5.01%) Metasploit
10 21 (4.58%) Jasmine
11 20 (4.36%) CircleCI
11 20 (4.36%) IBM UrbanCode
11 20 (4.36%) Travis CI
12 18 (3.92%) AppScan
12 18 (3.92%) Visual Studio
13 12 (2.61%) Paros
13 12 (2.61%) Team Foundation Server
14 11 (2.40%) Cucumber
15 10 (2.18%) JIRA
General
1 128 (27.89%) Finance
2 31 (6.75%) Retail
3 20 (4.36%) Legal
4 15 (3.27%) Telecoms
5 13 (2.83%) Banking
6 8 (1.74%) Automotive
7 7 (1.53%) Manufacturing
8 6 (1.31%) Games
9 5 (1.09%) Aerospace
9 5 (1.09%) Billing
10 4 (0.87%) Advertising
10 4 (0.87%) Back Office
11 3 (0.65%) Electronics
11 3 (0.65%) Financial Institution
12 1 (0.22%) Marketing
12 1 (0.22%) Pharmaceutical
12 1 (0.22%) Publishing
12 1 (0.22%) Retail Banking
Job Titles
1 76 (16.56%) Developer
2 66 (14.38%) Consultant
3 60 (13.07%) Security Consultant
4 54 (11.76%) Tester
5 53 (11.55%) Penetration Tester
6 40 (8.71%) DevOps Engineer
7 38 (8.28%) Architect
8 35 (7.63%) Security Manager
9 33 (7.19%) Analyst
10 30 (6.54%) Security Analyst
11 29 (6.32%) Information Security Consultant
12 25 (5.45%) Security Specialist
13 23 (5.01%) Security Engineer
13 23 (5.01%) Senior Developer
14 22 (4.79%) Security Architect
15 21 (4.58%) Applications Engineer
16 20 (4.36%) Information Analyst
16 20 (4.36%) Information Security Analyst
17 19 (4.14%) Security Penetration Tester
17 19 (4.14%) Security Tester
Libraries, Frameworks & Software Standards
1 104 (22.66%) HTML
2 101 (22.00%) .NET
3 78 (16.99%) CSS
4 50 (10.89%) HTML5
5 45 (9.80%) Web Services
6 42 (9.15%) REST
7 41 (8.93%) XML
8 35 (7.63%) AngularJS
9 28 (6.10%) JSON
9 28 (6.10%) RESTful
10 26 (5.66%) ASP.NET
10 26 (5.66%) CSS3
10 26 (5.66%) jQuery
11 22 (4.79%) Ajax
12 19 (4.14%) Spring
13 18 (3.92%) Node.js
14 17 (3.70%) ASP.NET Web API
14 17 (3.70%) J2EE
15 16 (3.49%) ASP.NET MVC
16 15 (3.27%) OAuth
Miscellaneous
1 52 (11.33%) Mobile App
2 39 (8.50%) Management Information System
3 37 (8.06%) Computer Science
4 20 (4.36%) Driving Licence
5 17 (3.70%) User Experience
6 15 (3.27%) Public Cloud
7 13 (2.83%) Cyberthreat
8 12 (2.61%) Cyber Attack
9 11 (2.40%) Analytical Skills
9 11 (2.40%) BYOD
9 11 (2.40%) Clustering
10 10 (2.18%) Cyber Defence
11 9 (1.96%) Enterprise Software
12 8 (1.74%) Data Centre
12 8 (1.74%) Fintech
12 8 (1.74%) FMCG
12 8 (1.74%) iPad
13 6 (1.31%) CESG
13 6 (1.31%) Distributed Denial-of-Service
14 4 (0.87%) Algorithms
Operating Systems
1 106 (23.09%) Linux
2 91 (19.83%) Windows
3 67 (14.60%) Unix
4 41 (8.93%) Android
4 41 (8.93%) Apple iOS
5 20 (4.36%) Red Hat Enterprise Linux
6 15 (3.27%) Kali Linux
7 11 (2.40%) Solaris
7 11 (2.40%) Windows Server
8 10 (2.18%) CentOS
9 8 (1.74%) Oracle Linux
10 5 (1.09%) Windows Server 2008
11 3 (0.65%) AIX
11 3 (0.65%) HPUX
11 3 (0.65%) Ubuntu
11 3 (0.65%) Windows Server 2012
12 2 (0.44%) KNOPPIX
12 2 (0.44%) Mac OS
13 1 (0.22%) Debian
13 1 (0.22%) VMS
Processes & Methodologies
1 213 (46.41%) Agile Software Development
2 159 (34.64%) Information Security
3 141 (30.72%) Penetration Testing
4 95 (20.70%) Security Testing
5 83 (18.08%) Continuous Integration
5 83 (18.08%) DevOps
6 75 (16.34%) Open Source
6 75 (16.34%) Scrum
7 74 (16.12%) Security Architecture
8 68 (14.81%) Cybersecurity
9 52 (11.33%) Web Development
10 51 (11.11%) Risk Management
11 50 (10.89%) Vulnerability Assessment
12 49 (10.68%) Test Automation
13 48 (10.46%) Risk Assessment
14 47 (10.24%) Ethical Hacking
14 47 (10.24%) TDD
15 46 (10.02%) BDD
16 39 (8.50%) Stakeholder Management
17 35 (7.63%) Unit Testing
Programming Languages
1 151 (32.90%) Java
2 141 (30.72%) JavaScript
3 130 (28.32%) Python
4 110 (23.97%) SQL
5 86 (18.74%) C#
6 78 (16.99%) Ruby
7 54 (11.76%) Shell Script
8 45 (9.80%) C++
8 45 (9.80%) PHP
9 32 (6.97%) Perl
10 29 (6.32%) Groovy
11 27 (5.88%) C
12 23 (5.01%) Bash Shell
13 18 (3.92%) Scala
13 18 (3.92%) VB.NET
14 13 (2.83%) T-SQL
15 9 (1.96%) PowerShell
16 6 (1.31%) Objective-C
17 5 (1.09%) Go
18 4 (0.87%) VB
Qualifications
1 119 (25.93%) CISSP
2 74 (16.12%) CISM
3 67 (14.60%) CEH
4 61 (13.29%) Degree
5 42 (9.15%) CREST Certified
6 41 (8.93%) OSCP
6 41 (8.93%) SANS
7 26 (5.66%) Computer Science Degree
8 21 (4.58%) CISA
9 19 (4.14%) Cisco Certification
10 18 (3.92%) OSCE
11 14 (3.05%) Security Cleared
12 13 (2.83%) CCNP
13 12 (2.61%) GPEN
14 11 (2.40%) Tigerscheme
15 10 (2.18%) CHECK Team Leader
16 9 (1.96%) GIAC
16 9 (1.96%) GWAPT
16 9 (1.96%) Master's Degree
16 9 (1.96%) SC Cleared
Quality Assurance & Compliance
1 118 (25.71%) ISO/IEC 27001
2 54 (11.76%) PCI DSS
3 33 (7.19%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 23 (5.01%) GDPR
4 23 (5.01%) ISO/IEC 27005
5 21 (4.58%) ISO 9001
6 12 (2.61%) QA
7 9 (1.96%) Cyber Essentials
7 9 (1.96%) SAS 70
8 8 (1.74%) COBIT
8 8 (1.74%) Web Application Security Consortium
9 7 (1.53%) NIST 800
10 5 (1.09%) Cyber Essentials PLUS
11 4 (0.87%) RMADS
12 3 (0.65%) BS25999
12 3 (0.65%) GPG13
12 3 (0.65%) Sarbanes-Oxley
13 2 (0.44%) WAI
13 2 (0.44%) WCAG
14 1 (0.22%) HIPAA
System Software
1 27 (5.88%) Virtual Machines
2 25 (5.45%) Active Directory
3 19 (4.14%) vSphere
4 18 (3.92%) VMware Infrastructure
5 15 (3.27%) Xen
5 15 (3.27%) XenServer
6 12 (2.61%) Docker
7 5 (1.09%) VMware ESXi
8 3 (0.65%) Firmware
9 1 (0.22%) OpenAM
Systems Management
1 59 (12.85%) Puppet
2 55 (11.98%) Opscode Chef
3 52 (11.33%) Ansible
4 40 (8.71%) Nessus
5 25 (5.45%) Cobbler
5 25 (5.45%) Kubernetes
6 24 (5.23%) Terraform
7 23 (5.01%) Tivoli
8 19 (4.14%) Nmap
9 13 (2.83%) WebInspect
10 10 (2.18%) HP Fortify
11 6 (1.31%) Salt
12 4 (0.87%) Core Impact
12 4 (0.87%) FortiGate
12 4 (0.87%) logstash
12 4 (0.87%) McAfee ePO
12 4 (0.87%) Nagios
12 4 (0.87%) ZABBIX
13 3 (0.65%) Kibana
Vendors
1 65 (14.16%) Microsoft
2 44 (9.59%) Oracle
3 26 (5.66%) Red Hat
4 21 (4.58%) VMware
5 18 (3.92%) IBM
6 15 (3.27%) Cisco
6 15 (3.27%) HP
7 14 (3.05%) EnterpriseDB
8 10 (2.18%) Qualys
9 9 (1.96%) Apple
9 9 (1.96%) Google
9 9 (1.96%) Xamarin
10 8 (1.74%) Juniper
10 8 (1.74%) Sun
11 6 (1.31%) McAfee
11 6 (1.31%) Symantec
12 5 (1.09%) NetApp
12 5 (1.09%) Veracode
13 4 (0.87%) CheckPoint
13 4 (0.87%) Palo Alto