Period
to 17 October 2017

The following table provides summary statistics for permanent job vacancies with a requirement for CREST Certified qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 17 October 2017 with a comparison to the same period in the previous 2 years.

CREST Certification
UK
6 months to
17 Oct 2017
Same period 2016 Same period 2015
Rank 873 803 1076
Rank change year-on-year -70 +273 +47
Permanent jobs citing CREST Certified 308 459 221
As % of all permanent IT jobs advertised in the UK 0.18% 0.24% 0.10%
As % of the Qualifications category 0.73% 0.91% 0.37%
Number of salaries quoted 245 342 149
UK median annual salary £60,000 £57,500 £55,000
Median salary % change year-on-year +4.35% +4.55% +4.76%
10th Percentile £35,000 £41,250 £36,250
90th Percentile £88,750 £85,000 £75,000
UK excluding London median annual salary £47,500 £55,000 £50,000
% change year-on-year -13.64% +10.00% -4.76%

CREST Certified is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 42411 50574 59670
As % of all permanent IT jobs advertised in the UK 24.25% 26.36% 27.40%
Number of salaries quoted 32595 40691 47603
UK median annual salary £46,500 £45,000 £45,000
Median salary % change year-on-year +3.33% - +2.27%
10th Percentile £26,000 £26,250 £25,750
90th Percentile £77,500 £76,250 £73,750
UK excluding London median annual salary £42,500 £42,500 £40,000
% change year-on-year - +6.25% -

CREST Certified
Job Vacancy Trend

Job postings citing CREST Certified as a percentage of all IT jobs advertised.

Job vacancy trend for CREST Certified in the UK

CREST Certified
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CREST Certified.

Salary trend for CREST Certified in the UK

CREST Certified
Salary Histogram

The salary distribution of IT jobs citing CREST Certified over the 6 months to 17 October 2017.

Salary histogram for CREST Certified in the UK

CREST Certified
Top 13 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CREST Certified within the UK over the 6 months to 17 October 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -80 275 £56,250 -2.17% 22
UK excluding London -29 143 £47,500 -13.64% 9
London -42 136 £62,500 -3.85% 14
South East +31 53 £45,000 -10.00% 3
South West +25 30 £60,000 +9.09% 1
West Midlands +28 24 £55,000 +4.76%
Midlands +22 24 £55,000 +4.76%
North of England -44 22 £57,500 +4.55% 2
North West -16 12 £67,500 +35.00% 2
Yorkshire -9 10 £47,500 -13.64%
Scotland +3 9 £37,500 -
East of England +15 4 - - 2
Wales +16 1 £72,500 +61.11% 1

For the 6 months to 17 October 2017, IT jobs citing CREST Certified also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for CREST Certified.

1 190 (61.69%) Penetration Testing
2 157 (50.97%) Information Security
3 143 (46.43%) Cybersecurity
4 115 (37.34%) OSCP
5 108 (35.06%) Security Cleared
6 98 (31.82%) Windows
7 92 (29.87%) CISSP
8 76 (24.68%) SC Cleared
9 75 (24.35%) ISO/IEC 27001
10 73 (23.70%) Security Architecture
11 70 (22.73%) Security Testing
11 70 (22.73%) Degree
12 65 (21.10%) Linux
12 65 (21.10%) Network Security
13 61 (19.81%) GIAC
14 59 (19.16%) SIEM
14 59 (19.16%) SANS
15 58 (18.83%) GCIH
15 58 (18.83%) Java
16 55 (17.86%) Unix
17 54 (17.53%) Ethical Hacking
18 51 (16.56%) Firewall
19 50 (16.23%) TCP/IP
20 49 (15.91%) CEH
20 49 (15.91%) OWASP
20 49 (15.91%) Cyberthreat
21 45 (14.61%) ITIL
22 44 (14.29%) Threat Intelligence
23 42 (13.64%) Security Operations
23 42 (13.64%) Cyber Threat Intelligence

CREST Certified
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 2 (0.65%) IIS
Applications
1 1 (0.32%) Microsoft Excel
Cloud Services
1 15 (4.87%) SaaS
2 8 (2.60%) Amazon AWS
2 8 (2.60%) Microsoft Azure
Communications & Networking
1 65 (21.10%) Network Security
2 51 (16.56%) Firewall
3 50 (16.23%) TCP/IP
4 32 (10.39%) Internet
5 25 (8.12%) Wireless
6 12 (3.90%) HTTP
7 11 (3.57%) LAN
7 11 (3.57%) WAN
7 11 (3.57%) Wireshark
8 10 (3.25%) DNS
9 9 (2.92%) tcpdump
10 7 (2.27%) Cisco ASA
11 5 (1.62%) Cisco Wireless
11 5 (1.62%) HTTPS
11 5 (1.62%) IPsec
11 5 (1.62%) VoIP
11 5 (1.62%) VPN
12 4 (1.30%) Wi-Fi
13 3 (0.97%) SSL
13 3 (0.97%) Telnet
Database & Business Intelligence
1 5 (1.62%) SQL Server
2 3 (0.97%) Big Data
3 1 (0.32%) PostgreSQL
Development Applications
1 32 (10.39%) Metasploit
2 26 (8.44%) Burp Suite
3 8 (2.60%) Eclipse
3 8 (2.60%) Xcode
4 5 (1.62%) AppScan
4 5 (1.62%) Paros
General
1 40 (12.99%) Finance
2 10 (3.25%) Legal
3 8 (2.60%) Telecoms
4 5 (1.62%) Law
4 5 (1.62%) Manufacturing
4 5 (1.62%) Retail
5 4 (1.30%) Aerospace
5 4 (1.30%) Banking
5 4 (1.30%) Local Government
5 4 (1.30%) Marketing
6 3 (0.97%) Automotive
7 2 (0.65%) Publishing
8 1 (0.32%) Electronics
8 1 (0.32%) Games
Job Titles
1 135 (43.83%) Tester
2 126 (40.91%) Penetration Tester
3 70 (22.73%) Consultant
4 64 (20.78%) Security Consultant
5 49 (15.91%) Analyst
6 33 (10.71%) Cybersecurity Consultant
7 30 (9.74%) SOC Analyst
8 29 (9.42%) Security Tester
9 25 (8.12%) Senior Penetration Tester
9 25 (8.12%) Senior Tester
10 22 (7.14%) Security Analyst
11 20 (6.49%) Security Penetration Tester
12 18 (5.84%) Team Leader
13 16 (5.19%) Lead Tester
14 14 (4.55%) Senior Consultant
15 13 (4.22%) Ethical Hacker
15 13 (4.22%) Lead Security Consultant
15 13 (4.22%) Security Manager
16 11 (3.57%) Senior Security Consultant
17 9 (2.92%) Manual Tester
Libraries, Frameworks & Software Standards
1 35 (11.36%) .NET
2 32 (10.39%) Web Services
3 3 (0.97%) HTML
Miscellaneous
1 49 (15.91%) Cyberthreat
2 35 (11.36%) Management Information System
3 34 (11.04%) Analytical Skills
4 30 (9.74%) Computer Science
4 30 (9.74%) Cyber Attack
4 30 (9.74%) Mobile App
5 25 (8.12%) Security Operations Centre
6 12 (3.90%) Driving Licence
6 12 (3.90%) PKI
7 11 (3.57%) CESG
8 7 (2.27%) NHS
9 6 (1.95%) Data Centre
10 5 (1.62%) Distributed Denial-of-Service
10 5 (1.62%) Linux Command Line
11 4 (1.30%) iPad
11 4 (1.30%) Life Science
12 3 (0.97%) Data Protection Act
13 2 (0.65%) Cybercrime
13 2 (0.65%) Embedded Systems
14 1 (0.32%) Blog
Operating Systems
1 98 (31.82%) Windows
2 65 (21.10%) Linux
3 55 (17.86%) Unix
4 20 (6.49%) Android
4 20 (6.49%) Apple iOS
5 15 (4.87%) Kali Linux
6 9 (2.92%) Solaris
7 5 (1.62%) CentOS
7 5 (1.62%) Debian
7 5 (1.62%) Red Hat Enterprise Linux
7 5 (1.62%) Ubuntu
8 2 (0.65%) KNOPPIX
Processes & Methodologies
1 190 (61.69%) Penetration Testing
2 157 (50.97%) Information Security
3 143 (46.43%) Cybersecurity
4 73 (23.70%) Security Architecture
5 70 (22.73%) Security Testing
6 59 (19.16%) SIEM
7 54 (17.53%) Ethical Hacking
8 49 (15.91%) OWASP
9 45 (14.61%) ITIL
10 44 (14.29%) Threat Intelligence
11 42 (13.64%) Cyber Threat Intelligence
11 42 (13.64%) Security Operations
12 38 (12.34%) Mentoring
13 33 (10.71%) Vulnerability Management
14 31 (10.06%) Incident Management
15 28 (9.09%) Social Engineering
16 25 (8.12%) Network Monitoring
16 25 (8.12%) Service Management
17 23 (7.47%) Coaching
17 23 (7.47%) Software Engineering
Programming Languages
1 58 (18.83%) Java
2 35 (11.36%) Python
2 35 (11.36%) Ruby
3 30 (9.74%) C
4 25 (8.12%) SQL
5 22 (7.14%) C++
6 21 (6.82%) Perl
7 11 (3.57%) Bash Shell
8 9 (2.92%) VB
9 8 (2.60%) C#
10 5 (1.62%) C-shell
10 5 (1.62%) Korn
11 3 (0.97%) PHP
11 3 (0.97%) PowerShell
11 3 (0.97%) Shell Script
12 2 (0.65%) VB.NET
Qualifications
1 115 (37.34%) OSCP
2 108 (35.06%) Security Cleared
3 92 (29.87%) CISSP
4 76 (24.68%) SC Cleared
5 70 (22.73%) Degree
6 61 (19.81%) GIAC
7 59 (19.16%) SANS
8 58 (18.83%) GCIH
9 49 (15.91%) CEH
10 41 (13.31%) DV Cleared
11 36 (11.69%) Tigerscheme
12 35 (11.36%) CISM
12 35 (11.36%) GCIA
13 34 (11.04%) CHECK Team Member
14 28 (9.09%) OSCE
15 27 (8.77%) CHECK Team Leader
16 23 (7.47%) Cyber Scheme
17 15 (4.87%) CISA
18 14 (4.55%) GPEN
19 11 (3.57%) CESG Certified Professional
Quality Assurance & Compliance
1 75 (24.35%) ISO/IEC 27001
2 34 (11.04%) PCI DSS
3 17 (5.52%) Cyber Essentials
4 16 (5.19%) Cyber Essentials PLUS
5 9 (2.92%) GDPR
6 7 (2.27%) HMG Security Policy Framework
6 7 (2.27%) NIST 800
7 3 (0.97%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 1 (0.32%) BS25999
8 1 (0.32%) COBIT
8 1 (0.32%) HIPAA
8 1 (0.32%) IASME
8 1 (0.32%) Sarbanes-Oxley
System Software
1 11 (3.57%) Snort
2 5 (1.62%) pfSense
3 1 (0.32%) Active Directory
Systems Management
1 37 (12.01%) Nessus
2 20 (6.49%) Nmap
3 7 (2.27%) CSIRT
4 6 (1.95%) Computer Emergency Response Teams
5 5 (1.62%) Core Impact
5 5 (1.62%) FortiGate
5 5 (1.62%) HP Fortify
5 5 (1.62%) WebInspect
6 4 (1.30%) Host Intrusion Detection System
6 4 (1.30%) Network Intrusion Detection System
7 3 (0.97%) WMI
8 2 (0.65%) Computer Incident Response Team
8 2 (0.65%) RSA enVision
9 1 (0.32%) QRadar
9 1 (0.32%) Trend Micro Deep Security
Vendors
1 14 (4.55%) Red Hat
2 12 (3.90%) Cisco
3 8 (2.60%) Microsoft
4 7 (2.27%) CheckPoint
5 6 (1.95%) ArcSight
6 5 (1.62%) Aruba
6 5 (1.62%) Extreme Networks
6 5 (1.62%) F5
6 5 (1.62%) Fortinet
6 5 (1.62%) Juniper
6 5 (1.62%) LogRhythm
6 5 (1.62%) Palo Alto
6 5 (1.62%) SonicWALL
6 5 (1.62%) WatchGuard
7 4 (1.30%) Splunk
8 1 (0.32%) Google
8 1 (0.32%) McAfee
8 1 (0.32%) SAP
8 1 (0.32%) Sourcefire
8 1 (0.32%) Trend Micro