Period
to 2 July 2020

The following table provides summary statistics for permanent job vacancies with a requirement for CREST Certified qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 2 July 2020 with a comparison to the same period in the previous 2 years.

CREST Certification
UK
6 months to
2 Jul 2020
Same period 2019 Same period 2018
Rank 683 809 915
Rank change year-on-year +126 +106 +9
Permanent jobs citing CREST Certified 169 312 294
As % of all permanent jobs advertised in the UK 0.21% 0.21% 0.17%
As % of the Qualifications category 0.99% 0.88% 0.70%
Number of salaries quoted 140 276 256
Median annual salary £67,500 £65,000 £60,000
Median salary % change year-on-year +3.85% +8.33% +9.09%
10th Percentile £48,750 £36,250 £42,500
90th Percentile £80,750 £90,000 £98,750
UK excluding London median annual salary £62,500 £65,000 £60,000
% change year-on-year -3.85% +8.33% +29.73%

CREST Certified is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 17,134 35,618 41,867
As % of all permanent IT jobs advertised in the UK 21.70% 24.41% 23.75%
Number of salaries quoted 12,496 25,681 31,418
Median annual salary £52,500 £50,000 £50,000
Median salary % change year-on-year +5.00% - +11.11%
10th Percentile £29,500 £26,400 £26,250
90th Percentile £85,000 £82,500 £80,000
UK excluding London median annual salary £47,500 £45,000 £44,582
% change year-on-year +5.56% +0.94% +4.90%

CREST Certified
Job Vacancy Trend

Job postings citing CREST Certified as a proportion of all IT jobs advertised.

Job vacancy trend for CREST Certified in the UK

CREST Certified
Salary Trend

3-month moving average salary quoted in jobs citing CREST Certified.

Salary trend for CREST Certified in the UK

CREST Certified
Salary Histogram

Salary distribution for jobs citing CREST Certified over the 6 months to 2 July 2020.

Salary histogram for CREST Certified in the UK

CREST Certified
Top 14 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CREST Certified within the UK over the 6 months to 2 July 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +130 125 £62,500 -3.85% 4
UK excluding London +140 74 £62,500 -3.85% 4
London +139 66 £63,750 -1.92% 2
Midlands +111 36 £60,000 - 1
Work from Home +6 30 £72,500 -3.33%
West Midlands +91 28 £67,500 +22.73% 1
Wales +25 15 £52,500 -14.63% 2
South East +103 10 £62,500 -10.71%
South West +127 8 £51,500 -15.23%
East Midlands +64 8 £52,000 -11.49%
North of England +104 4 £55,000 - 1
North West +86 3 £55,000 -4.35%
Yorkshire +104 1 - - 1
East of England +69 1 - -

For the 6 months to 2 July 2020, IT jobs citing CREST Certified also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CREST Certified.

1 121 (71.60%) Penetration Testing
2 105 (62.13%) Cybersecurity
3 86 (50.89%) Information Security
4 59 (34.91%) Security Testing
5 57 (33.73%) OSCP
5 57 (33.73%) CHECK Team Leader
6 54 (31.95%) SIEM
7 52 (30.77%) CHECK Team Member
7 52 (30.77%) Python
8 50 (29.59%) Linux
9 49 (28.99%) SANS
10 45 (26.63%) Security Cleared
11 39 (23.08%) Windows
11 39 (23.08%) SC Cleared
12 38 (22.49%) Finance
13 35 (20.71%) Vulnerability Management
13 35 (20.71%) Cyberthreat
14 34 (20.12%) Security Operations
14 34 (20.12%) Ethical Hacking
15 33 (19.53%) AWS
16 32 (18.93%) Threat Intelligence
17 31 (18.34%) Cyber Threat Intelligence
17 31 (18.34%) Mobile App
17 31 (18.34%) Data Privacy
18 30 (17.75%) ISO/IEC 27001
18 30 (17.75%) Firewall
19 29 (17.16%) Red Team
20 27 (15.98%) C++
20 27 (15.98%) Kali Linux
21 26 (15.38%) Bash Shell

CREST Certified
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Business Applications
1 14 (8.28%) Sentinel
Cloud Services
1 33 (19.53%) AWS
2 22 (13.02%) Office 365
3 20 (11.83%) Azure
4 14 (8.28%) Logic Apps
5 4 (2.37%) Virtual Private Cloud
Communications & Networking
1 30 (17.75%) Firewall
2 20 (11.83%) TCP/IP
3 16 (9.47%) DNS
4 14 (8.28%) DKIM
4 14 (8.28%) DMARC
4 14 (8.28%) Wireshark
5 8 (4.73%) IPsec
5 8 (4.73%) VPN
6 6 (3.55%) Intrusion Detection
7 3 (1.78%) Network Security
8 2 (1.18%) Ethernet
8 2 (1.18%) HTTP
8 2 (1.18%) LAN
8 2 (1.18%) SAN
8 2 (1.18%) WAN
8 2 (1.18%) Wireless
9 1 (0.59%) Cisco Firepower
9 1 (0.59%) Internet
Database & Business Intelligence
1 1 (0.59%) Blockchain
1 1 (0.59%) MySQL
Development Applications
1 21 (12.43%) Metasploit
2 6 (3.55%) Burp Suite
2 6 (3.55%) JIRA
General
1 38 (22.49%) Finance
2 26 (15.38%) Manufacturing
3 18 (10.65%) Legal
4 4 (2.37%) Games
4 4 (2.37%) Retail
4 4 (2.37%) Telecoms
5 3 (1.78%) Military
6 1 (0.59%) Aerospace
6 1 (0.59%) Financial Institution
6 1 (0.59%) Law
6 1 (0.59%) Public Sector
Job Titles
1 72 (42.60%) Tester
2 70 (41.42%) Penetration Tester
3 34 (20.12%) Analyst
4 27 (15.98%) Security Analyst
5 15 (8.88%) Consultant
6 14 (8.28%) Security Tester
7 13 (7.69%) Security Consultant
8 12 (7.10%) Security Penetration Tester
8 12 (7.10%) Security Specialist
9 9 (5.33%) Senior Tester
10 7 (4.14%) Information Analyst
10 7 (4.14%) Information Security Analyst
10 7 (4.14%) Information Security Specialist
10 7 (4.14%) Information Specialist
10 7 (4.14%) Security Engineer
10 7 (4.14%) Senior Penetration Tester
10 7 (4.14%) SOC Analyst
10 7 (4.14%) Team Leader
11 5 (2.96%) Cybersecurity Analyst
11 5 (2.96%) Security Operations Analyst
Libraries, Frameworks & Software Standards
1 14 (8.28%) Web Services
2 3 (1.78%) Node.js
3 1 (0.59%) Middleware
3 1 (0.59%) ModSecurity
3 1 (0.59%) React
3 1 (0.59%) React Native
Miscellaneous
1 35 (20.71%) Cyberthreat
2 31 (18.34%) Mobile App
3 17 (10.06%) Security Operations Centre
4 16 (9.47%) Cyberattack
5 14 (8.28%) Self-Motivation
6 13 (7.69%) PKI
7 12 (7.10%) Public Cloud
8 8 (4.73%) Distributed Denial-of-Service
8 8 (4.73%) Management Information System
9 6 (3.55%) Driving Licence
10 3 (1.78%) Cyber Defence
11 1 (0.59%) Analytical Skills
11 1 (0.59%) CESG
11 1 (0.59%) Data Centre
11 1 (0.59%) Embedded Systems
Operating Systems
1 50 (29.59%) Linux
2 39 (23.08%) Windows
3 27 (15.98%) Kali Linux
4 24 (14.20%) Mac OS
5 10 (5.92%) Unix
6 4 (2.37%) Android
6 4 (2.37%) Apple iOS
Processes & Methodologies
1 121 (71.60%) Penetration Testing
2 105 (62.13%) Cybersecurity
3 86 (50.89%) Information Security
4 59 (34.91%) Security Testing
5 54 (31.95%) SIEM
6 35 (20.71%) Vulnerability Management
7 34 (20.12%) Ethical Hacking
7 34 (20.12%) Security Operations
8 32 (18.93%) Threat Intelligence
9 31 (18.34%) Cyber Threat Intelligence
9 31 (18.34%) Data Privacy
10 29 (17.16%) Red Team
11 25 (14.79%) Analytics
12 23 (13.61%) Vulnerability Scanning
13 21 (12.43%) Digital Forensics
14 18 (10.65%) Cyber Intelligence
14 18 (10.65%) Secure Coding
15 17 (10.06%) QMS
15 17 (10.06%) Quality Management
16 16 (9.47%) Reverse Engineering
Programming Languages
1 52 (30.77%) Python
2 27 (15.98%) C++
3 26 (15.38%) Bash Shell
4 20 (11.83%) SQL
5 10 (5.92%) Java
6 7 (4.14%) C
7 6 (3.55%) C#
7 6 (3.55%) Go
7 6 (3.55%) Perl
7 6 (3.55%) Shell Script
8 4 (2.37%) PHP
9 3 (1.78%) JavaScript
10 2 (1.18%) PowerShell
Qualifications
1 57 (33.73%) CHECK Team Leader
1 57 (33.73%) OSCP
2 52 (30.77%) CHECK Team Member
3 49 (28.99%) SANS
4 45 (26.63%) Security Cleared
5 39 (23.08%) SC Cleared
6 24 (14.20%) CISSP
7 22 (13.02%) CEH
8 20 (11.83%) GCIH
9 19 (11.24%) Tigerscheme
10 17 (10.06%) Cisco Certification
10 17 (10.06%) GCIA
11 13 (7.69%) CCNA
11 13 (7.69%) CCNP
11 13 (7.69%) OSCE
12 11 (6.51%) GIAC
13 10 (5.92%) CISM
13 10 (5.92%) Cyber Scheme
14 9 (5.33%) CISA
14 9 (5.33%) GXPN
Quality Assurance & Compliance
1 30 (17.75%) ISO/IEC 27001
2 15 (8.88%) GDPR
3 14 (8.28%) HMG Security Policy Framework
4 13 (7.69%) ISO 9001
5 12 (7.10%) Cyber Essentials
6 6 (3.55%) Sarbanes-Oxley
7 5 (2.96%) NIST
7 5 (2.96%) QA
8 4 (2.37%) COBIT
8 4 (2.37%) NCSC
8 4 (2.37%) PCI DSS
9 2 (1.18%) SLA
10 1 (0.59%) JSP 440
10 1 (0.59%) RMADS
System Software
1 24 (14.20%) Active Directory
2 15 (8.88%) Snort
3 14 (8.28%) Docker
4 6 (3.55%) VMware Infrastructure
5 1 (0.59%) BitLocker
Systems Management
1 8 (4.73%) Terraform
2 5 (2.96%) Computer Incident Response Team
3 4 (2.37%) EnCase
4 3 (1.78%) Kubernetes
5 2 (1.18%) Computer Emergency Response Teams
5 2 (1.18%) Host Intrusion Detection System
5 2 (1.18%) QRadar
6 1 (0.59%) FTK
Vendors
1 21 (12.43%) Splunk
2 17 (10.06%) Microsoft
3 14 (8.28%) LogRhythm
4 12 (7.10%) AlienVault
5 6 (3.55%) VMware
6 2 (1.18%) Carbon Black
6 2 (1.18%) CyberArk
7 1 (0.59%) Cellebrite
7 1 (0.59%) CheckPoint
7 1 (0.59%) Cisco
7 1 (0.59%) Darktrace
7 1 (0.59%) Intel
7 1 (0.59%) Palo Alto