Period
to 20 January 2020

The following table provides summary statistics for permanent job vacancies advertised in the UK excluding London with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 20 January 2020 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK > UK excluding London
6 months to
20 Jan 2020
Same period 2019 Same period 2018
Rank 166 154 231
Rank change year-on-year -12 +77 +2
Permanent jobs citing ISO/IEC 27001 1,430 1,816 1,442
As % of all permanent IT jobs advertised in the UK excluding London 2.02% 2.17% 1.46%
As % of the Quality Assurance & Compliance category 15.42% 15.10% 12.15%
Number of salaries quoted 1,160 1,412 1,109
UK excluding London median annual salary £52,534 £50,000 £50,000
Median salary % change year-on-year +5.07% - -
10th Percentile £32,500 £31,250 £32,500
90th Percentile £80,000 £75,000 £73,750
UK median annual salary £55,000 £55,000 £55,000

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in the UK excluding London with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK excluding London
Permanent vacancies with a requirement for quality assurance or compliance skills 9,273 12,027 11,867
As % of all permanent IT jobs advertised in the UK excluding London 13.10% 14.38% 11.99%
Number of salaries quoted 7,181 8,831 9,184
UK excluding London median annual salary £45,000 £45,000 £42,500
Median salary % change year-on-year - +5.88% -
10th Percentile £26,250 £25,625 £25,000
90th Percentile £72,500 £70,000 £68,750
UK median annual salary £52,000 £50,000 £50,000
% change year-on-year +4.00% - +5.26%

ISO/IEC 27001
Job Vacancy Trend in the UK excluding London

Job postings citing ISO/IEC 27001 as a percentage of all IT jobs advertised in the UK excluding London.

Job vacancy trend for ISO/IEC 27001 in the UK excluding London

ISO/IEC 27001
Salary Trend in the UK excluding London

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing ISO/IEC 27001 in the UK excluding London.

Salary trend for ISO/IEC 27001 in the UK excluding London

ISO/IEC 27001
Salary Histogram in the UK excluding London

The salary distribution of IT jobs citing ISO/IEC 27001 in the UK excluding London over the 6 months to 20 January 2020.

Salary histogram for ISO/IEC 27001 in the UK excluding London

ISO/IEC 27001
Job Locations in the UK excluding London

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the UK excluding London region over the 6 months to 20 January 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
South East +34 508 £60,000 +9.09% 49
Midlands +36 307 £52,500 +5.00% 57
West Midlands +14 246 £52,500 +5.00% 47
North of England -96 245 £50,000 +11.11% 61
South West -12 143 £52,500 +16.67% 27
North West -95 143 £47,250 -5.50% 32
East of England +36 123 £47,500 -13.64% 33
Yorkshire -20 95 £52,500 +31.25% 28
Scotland +59 60 £66,986 +36.71% 8
East Midlands +36 60 £47,500 -12.04% 10
Wales +12 41 £45,500 +1.68% 13
Northern Ireland +6 10 £42,500 -5.56% 2
North East -1 7 £42,500 - 1
ISO/IEC 27001
UK

For the 6 months to 20 January 2020, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the UK excluding London region with a requirement for ISO/IEC 27001.

1 861 (60.21%) Information Security
2 493 (34.48%) CISSP
3 471 (32.94%) Cybersecurity
4 395 (27.62%) CISM
5 375 (26.22%) ITIL
6 356 (24.90%) GDPR
7 334 (23.36%) PCI DSS
8 306 (21.40%) Firewall
9 300 (20.98%) Management Information System
10 278 (19.44%) NIST
11 244 (17.06%) SIEM
12 238 (16.64%) Azure
13 237 (16.57%) Finance
14 236 (16.50%) Risk Management
15 230 (16.08%) Degree
16 215 (15.03%) Microsoft
17 213 (14.90%) Windows
18 212 (14.83%) Security Management
19 206 (14.41%) Security Cleared
20 178 (12.45%) ISMS
21 171 (11.96%) Agile Software Development
21 171 (11.96%) Data Protection
22 165 (11.54%) Active Directory
23 163 (11.40%) CISA
24 154 (10.77%) Cyber Essentials
25 153 (10.70%) Linux
26 152 (10.63%) Penetration Testing
27 149 (10.42%) Security Architecture
28 146 (10.21%) Security Operations
29 144 (10.07%) AWS

ISO/IEC 27001
Co-occurring IT Skills in the UK excluding London by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 43 (3.01%) SharePoint
2 33 (2.31%) IIS
3 32 (2.24%) MS Exchange
4 15 (1.05%) Skype for Business
5 10 (0.70%) Apache
6 7 (0.49%) Exchange Server 2013
7 4 (0.28%) BizTalk Server
7 4 (0.28%) Exchange Server 2010
7 4 (0.28%) nginx
7 4 (0.28%) SAS
8 3 (0.21%) Tomcat
9 2 (0.14%) Confluence
9 2 (0.14%) Elasticsearch
10 1 (0.070%) Apache Spark
10 1 (0.070%) CMS
10 1 (0.070%) EPiServer
10 1 (0.070%) SharePoint 2013
Applications
1 56 (3.92%) Microsoft Office
2 27 (1.89%) Microsoft Excel
3 16 (1.12%) Spreadsheet
4 5 (0.35%) Microsoft PowerPoint
5 3 (0.21%) MS Visio
6 1 (0.070%) Adobe Creative Suite
6 1 (0.070%) AutoCAD
6 1 (0.070%) Revit
Business Applications
1 5 (0.35%) Salesforce.com CRM
2 4 (0.28%) Oracle Financials
3 2 (0.14%) Dynamics CRM
4 1 (0.070%) Dynamics NAV
4 1 (0.070%) Infor M3
4 1 (0.070%) Sentinel
Cloud Services
1 238 (16.64%) Azure
2 144 (10.07%) AWS
3 123 (8.60%) Office 365
4 54 (3.78%) SaaS
5 40 (2.80%) Cloud Computing
6 28 (1.96%) GCP
7 27 (1.89%) IaaS
7 27 (1.89%) PaaS
8 25 (1.75%) Power Platform
9 17 (1.19%) Serverless
10 11 (0.77%) Azure Active Directory
10 11 (0.77%) PowerApps
11 10 (0.70%) Virtual Private Cloud
12 9 (0.63%) Amazon EC2
13 5 (0.35%) Amazon GuardDuty
13 5 (0.35%) AWS CloudTrail
13 5 (0.35%) Dynamics 365
13 5 (0.35%) OneDrive
14 4 (0.28%) AWS CloudFormation
14 4 (0.28%) Azure Functions
Communications & Networking
1 306 (21.40%) Firewall
2 144 (10.07%) Network Security
3 102 (7.13%) TCP/IP
4 97 (6.78%) WAN
5 93 (6.50%) LAN
6 82 (5.73%) DNS
7 74 (5.17%) Intrusion Detection
8 71 (4.97%) VPN
9 65 (4.55%) Internet
10 55 (3.85%) DHCP
11 30 (2.10%) HTTP
12 23 (1.61%) SAN
13 21 (1.47%) VLAN
14 20 (1.40%) Wireless
15 19 (1.33%) Ethernet
16 18 (1.26%) RTP
16 18 (1.26%) VoIP
17 17 (1.19%) BGP
18 16 (1.12%) IPsec
18 16 (1.12%) Skype
Database & Business Intelligence
1 96 (6.71%) SQL Server
2 45 (3.15%) Relational Database
3 19 (1.33%) Power BI
4 16 (1.12%) Big Data
4 16 (1.12%) MySQL
5 14 (0.98%) Amazon RDS
6 11 (0.77%) Data Warehouse
6 11 (0.77%) SQL Server Integration Services
7 10 (0.70%) SQL Server 2008
7 10 (0.70%) SQL Server 2012
8 7 (0.49%) QlikView
8 7 (0.49%) SQL Server Reporting Services
9 6 (0.42%) Hadoop
9 6 (0.42%) SQL Server 2014
10 5 (0.35%) Amazon Redshift
10 5 (0.35%) Azure SQL Database
10 5 (0.35%) BigQuery
10 5 (0.35%) Bigtable
10 5 (0.35%) Oracle Reports
10 5 (0.35%) SQL Server Analysis Services
Development Applications
1 26 (1.82%) Visual Studio
2 20 (1.40%) Team Foundation Server
3 15 (1.05%) JIRA
4 10 (0.70%) Metasploit
5 9 (0.63%) Git (software)
6 7 (0.49%) Burp Suite
7 6 (0.42%) Jenkins
8 4 (0.28%) Bitbucket
8 4 (0.28%) WinDbg
9 2 (0.14%) GitLab
10 1 (0.070%) Mercurial
10 1 (0.070%) Subversion
10 1 (0.070%) TestRail
General
1 237 (16.57%) Finance
2 141 (9.86%) Public Sector
3 131 (9.16%) Legal
4 93 (6.50%) Retail
5 87 (6.08%) Telecoms
6 58 (4.06%) Manufacturing
7 28 (1.96%) Marketing
8 24 (1.68%) Law
9 23 (1.61%) Automotive
10 16 (1.12%) Electronics
11 12 (0.84%) Financial Institution
12 10 (0.70%) Banking
13 9 (0.63%) Aerospace
13 9 (0.63%) Games
14 8 (0.56%) Military
15 6 (0.42%) Pharmaceutical
16 5 (0.35%) Local Government
17 4 (0.28%) Advertising
17 4 (0.28%) Back Office
18 3 (0.21%) Japanese Language
Job Titles
1 225 (15.73%) Analyst
2 182 (12.73%) Security Manager
3 176 (12.31%) Security Analyst
4 163 (11.40%) Consultant
5 148 (10.35%) Information Manager
6 143 (10.00%) Information Security Manager
7 119 (8.32%) Security Engineer
8 115 (8.04%) Security Consultant
9 105 (7.34%) Architect
10 103 (7.20%) Information Analyst
11 99 (6.92%) Information Security Analyst
12 75 (5.24%) Security Architect
13 73 (5.10%) Security Officer
14 65 (4.55%) Information Security Officer
15 63 (4.41%) Information Officer
16 55 (3.85%) IT Manager
16 55 (3.85%) IT Support
17 52 (3.64%) IT Engineer
18 50 (3.50%) Head of Security
19 47 (3.29%) Cybersecurity Consultant
Libraries, Frameworks & Software Standards
1 60 (4.20%) .NET
2 32 (2.24%) CSS
3 30 (2.10%) HTML
4 26 (1.82%) .NET Framework
5 25 (1.75%) Entity Framework
5 25 (1.75%) Twitter Bootstrap
6 24 (1.68%) AngularJS
7 23 (1.61%) HTML5
8 21 (1.47%) Web Services
9 20 (1.40%) ADO.NET
9 20 (1.40%) CSS3
9 20 (1.40%) jQuery
9 20 (1.40%) WinForms
10 10 (0.70%) Elastic Stack
10 10 (0.70%) OAuth
10 10 (0.70%) OpenID
11 9 (0.63%) ASP.NET
11 9 (0.63%) OAuth2
11 9 (0.63%) XACML
12 8 (0.56%) SOAP
Miscellaneous
1 300 (20.98%) Management Information System
2 93 (6.50%) Analytical Skills
3 76 (5.31%) Self-Motivation
4 63 (4.41%) Data Protection Act
5 44 (3.08%) PKI
6 37 (2.59%) Security Operations Centre
7 34 (2.38%) Cyberthreat
8 33 (2.31%) Clustering
8 33 (2.31%) Cyberattack
8 33 (2.31%) Greenfield Project
9 30 (2.10%) Data Centre
10 25 (1.75%) User Experience
11 23 (1.61%) CCTV
11 23 (1.61%) Driving Licence
12 21 (1.47%) CESG
13 18 (1.26%) Distributed Denial-of-Service
14 15 (1.05%) Client/Server
15 12 (0.84%) Public Cloud
15 12 (0.84%) SWIFT
16 10 (0.70%) Replication
Operating Systems
1 213 (14.90%) Windows
2 153 (10.70%) Linux
3 91 (6.36%) Windows Server
4 41 (2.87%) Windows 10
5 38 (2.66%) Windows Server 2008
6 29 (2.03%) Windows Server 2012
7 16 (1.12%) Unix
8 14 (0.98%) Windows Server 2003
9 13 (0.91%) Red Hat Enterprise Linux
10 12 (0.84%) CentOS
11 9 (0.63%) Mac OS
11 9 (0.63%) VMS
12 8 (0.56%) Apple iOS
12 8 (0.56%) Windows 7
13 7 (0.49%) HPUX
14 6 (0.42%) Windows XP
15 5 (0.35%) Solaris
16 4 (0.28%) Android
16 4 (0.28%) Windows 8
17 1 (0.070%) Kali Linux
Processes & Methodologies
1 861 (60.21%) Information Security
2 471 (32.94%) Cybersecurity
3 375 (26.22%) ITIL
4 244 (17.06%) SIEM
5 236 (16.50%) Risk Management
6 212 (14.83%) Security Management
7 178 (12.45%) ISMS
8 171 (11.96%) Agile Software Development
8 171 (11.96%) Data Protection
9 152 (10.63%) Penetration Testing
10 149 (10.42%) Security Architecture
11 146 (10.21%) Security Operations
12 135 (9.44%) Problem-Solving
13 134 (9.37%) Continuous Improvement
14 133 (9.30%) Information Security Management
15 130 (9.09%) Vulnerability Management
16 129 (9.02%) Project Management
17 121 (8.46%) Stakeholder Management
17 121 (8.46%) TOGAF
18 120 (8.39%) Incident Management
Programming Languages
1 77 (5.38%) SQL
2 75 (5.24%) PowerShell
3 72 (5.03%) Python
4 44 (3.08%) C#
5 33 (2.31%) JavaScript
6 29 (2.03%) C
7 28 (1.96%) VB.NET
8 21 (1.47%) Ruby
8 21 (1.47%) VB
9 20 (1.40%) VB6
10 14 (0.98%) Data Analysis Expressions (DAX)
11 12 (0.84%) Java
12 10 (0.70%) Bash Shell
13 8 (0.56%) PHP
14 7 (0.49%) T-SQL
15 5 (0.35%) VBScript
16 4 (0.28%) Perl
16 4 (0.28%) RPG
16 4 (0.28%) VBA
17 3 (0.21%) PHP 7
Qualifications
1 493 (34.48%) CISSP
2 395 (27.62%) CISM
3 230 (16.08%) Degree
4 206 (14.41%) Security Cleared
5 163 (11.40%) CISA
6 130 (9.09%) SC Cleared
7 83 (5.80%) Cisco Certification
8 78 (5.45%) CEH
9 68 (4.76%) Microsoft Certification
10 62 (4.34%) CRISC
11 61 (4.27%) CESG Certified Professional
12 57 (3.99%) ISO 27001 Lead Auditor
13 50 (3.50%) GIAC
14 45 (3.15%) SSCP
15 44 (3.08%) MCSE
16 42 (2.94%) CISMP
17 39 (2.73%) CCNA
18 37 (2.59%) SANS
19 35 (2.45%) CREST Certified
20 29 (2.03%) MCSA
Quality Assurance & Compliance
1 356 (24.90%) GDPR
2 334 (23.36%) PCI DSS
3 278 (19.44%) NIST
4 154 (10.77%) Cyber Essentials
5 133 (9.30%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 123 (8.60%) ISO 9001
7 106 (7.41%) SLA
8 86 (6.01%) COBIT
9 81 (5.66%) HMG Security Policy Framework
10 62 (4.34%) Sarbanes-Oxley
11 60 (4.20%) ISO 22301
12 56 (3.92%) NCSC
13 52 (3.64%) ISO/IEC 20000
14 47 (3.29%) QA
15 34 (2.38%) NIST 800
16 31 (2.17%) Cyber Essentials PLUS
17 27 (1.89%) JSP 440
18 22 (1.54%) RMADS
19 18 (1.26%) ISO 14001
20 16 (1.12%) Data Quality
System Software
1 165 (11.54%) Active Directory
2 99 (6.92%) VMware Infrastructure
3 67 (4.69%) Hyper-V
4 21 (1.47%) Virtual Machines
5 20 (1.40%) vSphere
6 17 (1.19%) VMware ESXi
7 12 (0.84%) Docker
8 8 (0.56%) BitLocker
9 5 (0.35%) Firmware
10 4 (0.28%) pfSense
10 4 (0.28%) Virtual Servers
10 4 (0.28%) VMware NSX
10 4 (0.28%) XenApp
11 3 (0.21%) KVM
11 3 (0.21%) Sendmail
11 3 (0.21%) Squid
12 2 (0.14%) Citrix Hypervisor
12 2 (0.14%) ISA Server
12 2 (0.14%) Postfix
12 2 (0.14%) Virtual Desktop
Systems Management
1 33 (2.31%) SCCM
2 27 (1.89%) Nessus
3 24 (1.68%) Ansible
4 18 (1.26%) Kubernetes
5 15 (1.05%) Forefront Identity Manager
6 14 (0.98%) Microsoft Intune
6 14 (0.98%) Norton AntiVirus
7 13 (0.91%) Nmap
8 10 (0.70%) CASB
9 9 (0.63%) HP Fortify
9 9 (0.63%) Nagios
9 9 (0.63%) Puppet
9 9 (0.63%) Single Sign-On
9 9 (0.63%) WebInspect
10 6 (0.42%) FortiGate
11 5 (0.35%) OpenVAS
11 5 (0.35%) Opscode Chef
11 5 (0.35%) Prometheus
11 5 (0.35%) SCOM
11 5 (0.35%) Terraform
Vendors
1 215 (15.03%) Microsoft
2 123 (8.60%) VMware
3 95 (6.64%) Cisco
4 34 (2.38%) Oracle
5 31 (2.17%) Juniper
6 28 (1.96%) Fortinet
7 27 (1.89%) Google
8 23 (1.61%) CheckPoint
9 22 (1.54%) Palo Alto
10 21 (1.47%) Qualys
10 21 (1.47%) SAP
11 20 (1.40%) Xamarin
12 18 (1.26%) Veeam
13 17 (1.19%) Apple
13 17 (1.19%) Red Hat
13 17 (1.19%) Symantec
14 16 (1.12%) Citrix
14 16 (1.12%) HP
14 16 (1.12%) McAfee
15 15 (1.05%) Barracuda Networks