Period
to 20 November 2017

The following table provides summary statistics for permanent job vacancies with a requirement for CREST Certified qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 20 November 2017 with a comparison to the same period in the previous 2 years.

CREST Certification
UK
6 months to
20 Nov 2017
Same period 2016 Same period 2015
Rank 886 808 1073
Rank change year-on-year -78 +265 +40
Permanent jobs citing CREST Certified 307 431 238
As % of all permanent IT jobs advertised in the UK 0.17% 0.23% 0.11%
As % of the Qualifications category 0.71% 0.88% 0.40%
Number of salaries quoted 244 327 167
UK median annual salary £59,000 £57,500 £55,750
Median salary % change year-on-year +2.61% +3.14% +6.19%
10th Percentile £35,000 £41,250 £36,250
90th Percentile £88,750 £85,000 £82,000
UK excluding London median annual salary £49,000 £55,000 £55,750
% change year-on-year -10.91% -1.35% +6.19%

CREST Certified is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 43165 49027 60087
As % of all permanent IT jobs advertised in the UK 24.01% 26.21% 27.47%
Number of salaries quoted 33185 39333 47990
UK median annual salary £47,500 £45,000 £45,000
Median salary % change year-on-year +5.56% - +1.12%
10th Percentile £26,000 £26,250 £25,750
90th Percentile £77,500 £76,250 £75,000
UK excluding London median annual salary £42,500 £42,500 £41,000
% change year-on-year - +3.66% +2.50%

CREST Certified
Job Vacancy Trend

Job postings citing CREST Certified as a percentage of all IT jobs advertised.

Job vacancy trend for CREST Certified in the UK

CREST Certified
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CREST Certified.

Salary trend for CREST Certified in the UK

CREST Certified
Salary Histogram

The salary distribution of IT jobs citing CREST Certified over the 6 months to 20 November 2017.

Salary histogram for CREST Certified in the UK

CREST Certified
Top 14 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CREST Certified within the UK over the 6 months to 20 November 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -81 278 £57,500 - 39
London -55 142 £60,000 -7.69% 14
UK excluding London -43 135 £49,000 -10.91% 27
South East +1 49 £46,250 -7.50% 12
South West +21 25 £60,000 +11.63% 2
North of England -32 23 £53,000 -3.64% 6
Midlands -9 21 £62,500 +19.05% 2
West Midlands -2 20 £62,500 +19.05% 1
Yorkshire -27 12 £47,500 -13.64% 2
North West -15 11 £62,500 +25.00% 4
East of England +9 9 £49,000 -2.00% 2
Scotland - 7 £37,500 -
East Midlands +20 1 - - 1
Wales - 1 £72,500 - 3

For the 6 months to 20 November 2017, IT jobs citing CREST Certified also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for CREST Certified.

1 194 (63.19%) Penetration Testing
2 160 (52.12%) Information Security
3 133 (43.32%) Cybersecurity
4 109 (35.50%) OSCP
5 102 (33.22%) Windows
6 99 (32.25%) Security Cleared
7 86 (28.01%) CISSP
8 75 (24.43%) Linux
8 75 (24.43%) ISO/IEC 27001
9 69 (22.48%) Unix
10 66 (21.50%) GIAC
11 65 (21.17%) SC Cleared
12 63 (20.52%) SIEM
12 63 (20.52%) SANS
13 59 (19.22%) Degree
14 58 (18.89%) Security Testing
15 57 (18.57%) Security Architecture
16 56 (18.24%) Firewall
17 53 (17.26%) GCIH
17 53 (17.26%) TCP/IP
17 53 (17.26%) Network Security
18 49 (15.96%) Java
19 48 (15.64%) ITIL
19 48 (15.64%) Cyberthreat
20 44 (14.33%) CEH
20 44 (14.33%) Security Operations
21 43 (14.01%) Finance
22 42 (13.68%) OWASP
23 40 (13.03%) Nessus
23 40 (13.03%) Mentoring

CREST Certified
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 3 (0.98%) IIS
Applications
1 1 (0.33%) Microsoft Excel
Cloud Services
1 8 (2.61%) SaaS
2 2 (0.65%) Amazon AWS
3 1 (0.33%) Microsoft Azure
Communications & Networking
1 56 (18.24%) Firewall
2 53 (17.26%) Network Security
2 53 (17.26%) TCP/IP
3 34 (11.07%) Wireless
4 30 (9.77%) Internet
5 13 (4.23%) LAN
5 13 (4.23%) WAN
6 10 (3.26%) HTTP
7 8 (2.61%) Cisco ASA
7 8 (2.61%) Wireshark
8 7 (2.28%) DNS
9 6 (1.95%) tcpdump
10 5 (1.63%) Cisco Wireless
10 5 (1.63%) HTTPS
10 5 (1.63%) IPsec
10 5 (1.63%) VoIP
10 5 (1.63%) VPN
11 4 (1.30%) Wi-Fi
12 3 (0.98%) Wireless Security
13 1 (0.33%) NFC
Database & Business Intelligence
1 6 (1.95%) SQL Server
2 1 (0.33%) PostgreSQL
Development Applications
1 33 (10.75%) Burp Suite
2 32 (10.42%) Metasploit
3 5 (1.63%) AppScan
3 5 (1.63%) Paros
4 1 (0.33%) Eclipse
4 1 (0.33%) Xcode
General
1 43 (14.01%) Finance
2 11 (3.58%) Legal
2 11 (3.58%) Telecoms
3 7 (2.28%) Manufacturing
4 5 (1.63%) Banking
4 5 (1.63%) Law
4 5 (1.63%) Retail
5 4 (1.30%) Aerospace
5 4 (1.30%) Local Government
5 4 (1.30%) Marketing
6 3 (0.98%) Automotive
6 3 (0.98%) Publishing
7 2 (0.65%) Electronics
7 2 (0.65%) Games
Job Titles
1 131 (42.67%) Tester
2 124 (40.39%) Penetration Tester
3 78 (25.41%) Consultant
4 66 (21.50%) Security Consultant
5 46 (14.98%) Analyst
6 33 (10.75%) Security Tester
6 33 (10.75%) Senior Penetration Tester
6 33 (10.75%) Senior Tester
7 28 (9.12%) SOC Analyst
8 26 (8.47%) Cybersecurity Consultant
8 26 (8.47%) Security Penetration Tester
9 25 (8.14%) Lead Tester
10 23 (7.49%) Security Analyst
11 20 (6.51%) Senior Consultant
12 19 (6.19%) Lead Security Consultant
12 19 (6.19%) Team Leader
13 16 (5.21%) Senior Security Consultant
14 11 (3.58%) Security Manager
15 8 (2.61%) Architect
15 8 (2.61%) Security Architect
Libraries, Frameworks & Software Standards
1 30 (9.77%) .NET
2 20 (6.51%) Web Services
3 3 (0.98%) HTML
4 2 (0.65%) Middleware
5 1 (0.33%) Elastic Stack
Miscellaneous
1 48 (15.64%) Cyberthreat
2 37 (12.05%) Management Information System
3 28 (9.12%) Cyber Attack
3 28 (9.12%) Security Operations Centre
4 26 (8.47%) Analytical Skills
5 25 (8.14%) Computer Science
5 25 (8.14%) Mobile App
6 12 (3.91%) PKI
7 10 (3.26%) CESG
8 8 (2.61%) Distributed Denial-of-Service
8 8 (2.61%) NHS
9 7 (2.28%) Data Protection Act
10 6 (1.95%) Data Centre
11 5 (1.63%) Driving Licence
11 5 (1.63%) Linux Command Line
12 4 (1.30%) iPad
13 3 (0.98%) Life Science
14 2 (0.65%) Client/Server
14 2 (0.65%) Cyber Defence
14 2 (0.65%) Cybercrime
Operating Systems
1 102 (33.22%) Windows
2 75 (24.43%) Linux
3 69 (22.48%) Unix
4 24 (7.82%) Kali Linux
5 22 (7.17%) Android
5 22 (7.17%) Apple iOS
6 7 (2.28%) Solaris
7 5 (1.63%) CentOS
7 5 (1.63%) Debian
7 5 (1.63%) Red Hat Enterprise Linux
7 5 (1.63%) Ubuntu
8 2 (0.65%) KNOPPIX
Processes & Methodologies
1 194 (63.19%) Penetration Testing
2 160 (52.12%) Information Security
3 133 (43.32%) Cybersecurity
4 63 (20.52%) SIEM
5 58 (18.89%) Security Testing
6 57 (18.57%) Security Architecture
7 48 (15.64%) ITIL
8 44 (14.33%) Security Operations
9 42 (13.68%) OWASP
10 40 (13.03%) Mentoring
11 39 (12.70%) Ethical Hacking
11 39 (12.70%) Threat Intelligence
12 37 (12.05%) Cyber Threat Intelligence
13 33 (10.75%) Vulnerability Management
14 31 (10.10%) Incident Management
15 30 (9.77%) Service Management
16 28 (9.12%) Social Engineering
17 25 (8.14%) Malware Analysis
17 25 (8.14%) Vulnerability Scanning
18 24 (7.82%) Coaching
Programming Languages
1 49 (15.96%) Java
2 32 (10.42%) Python
3 31 (10.10%) Ruby
4 29 (9.45%) C
5 28 (9.12%) SQL
6 22 (7.17%) C++
7 15 (4.89%) Bash Shell
8 14 (4.56%) Perl
9 10 (3.26%) C#
10 7 (2.28%) VB
11 5 (1.63%) C-shell
11 5 (1.63%) Korn
11 5 (1.63%) PHP
12 3 (0.98%) PowerShell
12 3 (0.98%) Shell Script
12 3 (0.98%) VB.NET
Qualifications
1 109 (35.50%) OSCP
2 99 (32.25%) Security Cleared
3 86 (28.01%) CISSP
4 66 (21.50%) GIAC
5 65 (21.17%) SC Cleared
6 63 (20.52%) SANS
7 59 (19.22%) Degree
8 53 (17.26%) GCIH
9 44 (14.33%) CEH
10 36 (11.73%) GCIA
11 34 (11.07%) CISM
11 34 (11.07%) DV Cleared
12 29 (9.45%) Tigerscheme
13 27 (8.79%) CHECK Team Leader
13 27 (8.79%) CHECK Team Member
14 23 (7.49%) OSCE
15 21 (6.84%) Cyber Scheme
16 20 (6.51%) CISA
17 19 (6.19%) Cisco Certification
17 19 (6.19%) GCFA
Quality Assurance & Compliance
1 75 (24.43%) ISO/IEC 27001
2 37 (12.05%) PCI DSS
3 12 (3.91%) GDPR
4 11 (3.58%) Cyber Essentials
5 9 (2.93%) Cyber Essentials PLUS
5 9 (2.93%) NIST 800
6 7 (2.28%) HMG Security Policy Framework
7 4 (1.30%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 2 (0.65%) COBIT
8 2 (0.65%) GPG13
9 1 (0.33%) IASME
System Software
1 6 (1.95%) Snort
2 5 (1.63%) pfSense
3 4 (1.30%) Active Directory
Systems Management
1 40 (13.03%) Nessus
2 23 (7.49%) Nmap
3 9 (2.93%) Core Impact
3 9 (2.93%) CSIRT
4 8 (2.61%) Computer Emergency Response Teams
5 6 (1.95%) EnCase
6 5 (1.63%) FortiGate
6 5 (1.63%) HP Fortify
6 5 (1.63%) WebInspect
7 4 (1.30%) Host Intrusion Detection System
7 4 (1.30%) Network Intrusion Detection System
7 4 (1.30%) Trend Micro Deep Security
8 3 (0.98%) WMI
9 1 (0.33%) logstash
9 1 (0.33%) QRadar
Vendors
1 14 (4.56%) Cisco
2 13 (4.23%) Microsoft
3 12 (3.91%) Red Hat
4 8 (2.61%) CheckPoint
5 7 (2.28%) Splunk
6 5 (1.63%) Aruba
6 5 (1.63%) Extreme Networks
6 5 (1.63%) F5
6 5 (1.63%) Fortinet
6 5 (1.63%) Juniper
6 5 (1.63%) Palo Alto
6 5 (1.63%) SonicWALL
6 5 (1.63%) WatchGuard
7 4 (1.30%) Citrix
7 4 (1.30%) McAfee
7 4 (1.30%) NetWitness
7 4 (1.30%) Sourcefire
7 4 (1.30%) Trend Micro
8 2 (0.65%) ArcSight
8 2 (0.65%) Intel