Period
to 25 November 2017

The following table provides summary statistics for permanent job vacancies advertised in Surrey with a requirement for OWASP skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited OWASP over the 6 months to 25 November 2017 with a comparison to the same period in the previous 2 years.

Open Web Application Security Project (OWASP)
South East > Surrey
6 months to
25 Nov 2017
Same period 2016 Same period 2015
Rank 214 262 297
Rank change year-on-year +48 +35 +20
Permanent jobs citing OWASP 37 10 17
As % of all permanent IT jobs advertised in Surrey 0.60% 0.15% 0.20%
As % of the Processes & Methodologies category 0.67% 0.18% 0.23%
Number of salaries quoted 34 5 14
Surrey median annual salary £50,000 £42,500 £72,500
Median salary % change year-on-year +17.65% -41.38% +61.11%
10th Percentile £41,250 £36,750 £38,875
90th Percentile £63,375 £72,500 £75,000
South East median annual salary £50,000 £55,000 £56,250
% change year-on-year -9.09% -2.22% +25.00%

OWASP is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in Surrey with a requirement for process or methodology skills.

All Process and Methodology Skills
Surrey
Permanent vacancies with a requirement for process or methodology skills 5501 5645 7471
As % of all permanent IT jobs advertised in Surrey 88.85% 85.70% 87.19%
Number of salaries quoted 4454 4724 6494
Surrey median annual salary £50,000 £47,500 £45,000
Median salary % change year-on-year +5.26% +5.56% -
10th Percentile £29,750 £28,500 £26,250
90th Percentile £68,750 £70,000 £67,500
South East median annual salary £45,000 £45,000 £45,000

OWASP
Job Vacancy Trend in Surrey

Job postings citing OWASP as a percentage of all IT jobs advertised in Surrey.

Job vacancy trend for OWASP in Surrey

OWASP
Salary Trend in Surrey

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing OWASP in Surrey.

Salary trend for OWASP in Surrey

OWASP
Salary Histogram in Surrey

The salary distribution of IT jobs citing OWASP in Surrey over the 6 months to 25 November 2017.

Salary histogram for OWASP in Surrey

OWASP
Job Locations in Surrey

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing OWASP within the Surrey region over the 6 months to 25 November 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
Staines +14 13 £52,500 - 1
Chertsey +1 5 £42,500 -
Godalming - 2 £20,500 -
Camberley - 2 £86,250 -
Guildford -7 1 £20,500 -70.71%
Woking - 1 - -
OWASP
South East

For the 6 months to 25 November 2017, IT jobs citing OWASP also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads across the Surrey region with a requirement for OWASP.

1 31 (83.78%) CISSP
2 24 (64.86%) CISM
3 23 (62.16%) Penetration Testing
4 22 (59.46%) Information Security
5 18 (48.65%) Ethical Hacking
5 18 (48.65%) CEH
6 16 (43.24%) Risk Assessment
7 15 (40.54%) Risk Management
8 14 (37.84%) TCP/IP
9 13 (35.14%) Agile Software Development
9 13 (35.14%) Degree
9 13 (35.14%) Security Testing
10 12 (32.43%) ISO/IEC 27001
10 12 (32.43%) Finance
11 11 (29.73%) Waterfall
12 10 (27.03%) CRAMM
12 10 (27.03%) ISO/IEC 27005
13 8 (21.62%) Linux
13 8 (21.62%) HTML
13 8 (21.62%) PHP
14 7 (18.92%) XML
14 7 (18.92%) Amazon AWS
14 7 (18.92%) Mobile App
14 7 (18.92%) Cybersecurity
14 7 (18.92%) Forensic Analysis
15 6 (16.22%) Cyberthreat
15 6 (16.22%) Vulnerability Scanning
15 6 (16.22%) Security Architecture
15 6 (16.22%) RESTful
15 6 (16.22%) Apple iOS

OWASP
Co-occurring IT Skills in Surrey by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 2 (5.41%) Elasticsearch
1 2 (5.41%) nginx
Business Applications
1 5 (13.51%) Payment Gateway
Cloud Services
1 7 (18.92%) Amazon AWS
2 2 (5.41%) Amazon S3
2 2 (5.41%) Amazon SQS
2 2 (5.41%) GitHub
Communications & Networking
1 14 (37.84%) TCP/IP
2 5 (13.51%) Internet
3 2 (5.41%) Network Security
4 1 (2.70%) Firewall
4 1 (2.70%) HTTP
4 1 (2.70%) HTTPS
4 1 (2.70%) SMS
Database & Business Intelligence
1 2 (5.41%) MySQL
Development Applications
1 1 (2.70%) AppScan
1 1 (2.70%) Burp Suite
1 1 (2.70%) Gatling
1 1 (2.70%) JMeter
1 1 (2.70%) SoapUI
1 1 (2.70%) Xcode
General
1 12 (32.43%) Finance
2 5 (13.51%) Legal
3 1 (2.70%) Electronics
3 1 (2.70%) Financial Institution
Job Titles
1 14 (37.84%) Tester
2 13 (35.14%) Penetration Tester
3 12 (32.43%) Security Penetration Tester
3 12 (32.43%) Security Tester
4 11 (29.73%) Consultant
4 11 (29.73%) Security Consultant
5 7 (18.92%) Information Security Consultant
5 7 (18.92%) Systems Tester
6 5 (13.51%) Information Assurance Consultant
7 3 (8.11%) Analyst
7 3 (8.11%) Architect
7 3 (8.11%) Cybersecurity Specialist
7 3 (8.11%) Security Analyst
7 3 (8.11%) Security Architect
7 3 (8.11%) Security Specialist
8 2 (5.41%) Graduate
8 2 (5.41%) Network Analyst
8 2 (5.41%) Network Security Analyst
8 2 (5.41%) SOC Analyst
8 2 (5.41%) Web Tester
Libraries, Frameworks & Software Standards
1 8 (21.62%) HTML
2 7 (18.92%) XML
3 6 (16.22%) .NET
3 6 (16.22%) JSON
3 6 (16.22%) RESTful
3 6 (16.22%) Web Services
4 5 (13.51%) ASP.NET Web API
4 5 (13.51%) HTML5
5 3 (8.11%) Ajax
6 2 (5.41%) CSS
6 2 (5.41%) Elastic Stack
6 2 (5.41%) jQuery
6 2 (5.41%) Laravel
6 2 (5.41%) LEMP Stack
6 2 (5.41%) Memcached
7 1 (2.70%) ASP.NET
7 1 (2.70%) REST
Miscellaneous
1 7 (18.92%) Mobile App
2 6 (16.22%) Cyberthreat
3 4 (10.81%) Management Information System
4 1 (2.70%) Analytical Skills
4 1 (2.70%) User Experience
4 1 (2.70%) Virtual Team
Operating Systems
1 8 (21.62%) Linux
2 6 (16.22%) Android
2 6 (16.22%) Apple iOS
2 6 (16.22%) Unix
2 6 (16.22%) Windows
3 2 (5.41%) Ubuntu
4 1 (2.70%) Kali Linux
Processes & Methodologies
1 23 (62.16%) Penetration Testing
2 22 (59.46%) Information Security
3 18 (48.65%) Ethical Hacking
4 16 (43.24%) Risk Assessment
5 15 (40.54%) Risk Management
6 13 (35.14%) Agile Software Development
6 13 (35.14%) Security Testing
7 11 (29.73%) Waterfall
8 10 (27.03%) CRAMM
9 7 (18.92%) Cybersecurity
9 7 (18.92%) Forensic Analysis
10 6 (16.22%) Security Architecture
10 6 (16.22%) Vulnerability Scanning
11 5 (13.51%) Computer Forensics
11 5 (13.51%) Data Protection
11 5 (13.51%) Enterprise Architecture
11 5 (13.51%) Risk Analysis
11 5 (13.51%) Stakeholder Management
11 5 (13.51%) Vulnerability Assessment
11 5 (13.51%) Vulnerability Management
Programming Languages
1 8 (21.62%) PHP
2 6 (16.22%) Java
2 6 (16.22%) Perl
3 5 (13.51%) VB.NET
4 4 (10.81%) JavaScript
5 1 (2.70%) C#
5 1 (2.70%) Objective-C
5 1 (2.70%) Python
5 1 (2.70%) Shell Script
5 1 (2.70%) SQL
Qualifications
1 31 (83.78%) CISSP
2 24 (64.86%) CISM
3 18 (48.65%) CEH
4 13 (35.14%) Degree
5 2 (5.41%) CGEIT
6 1 (2.70%) CISA
6 1 (2.70%) CRISC
6 1 (2.70%) GWAPT
6 1 (2.70%) OSCP
6 1 (2.70%) SANS
Quality Assurance & Compliance
1 12 (32.43%) ISO/IEC 27001
2 10 (27.03%) ISO/IEC 27005
3 1 (2.70%) PCI DSS
Systems Management
1 2 (5.41%) Kibana
1 2 (5.41%) logstash
2 1 (2.70%) WebInspect
Vendors
1 5 (13.51%) Qualys
2 1 (2.70%) HP
2 1 (2.70%) IBM
2 1 (2.70%) Microsoft