Period
to 31 October 2020

The following table provides summary statistics for permanent job vacancies with a requirement for CREST Certified qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 31 October 2020 with a comparison to the same period in the previous 2 years.

CREST Certification
UK
6 months to
31 Oct 2020
Same period 2019 Same period 2018
Rank 596 839 818
Rank change year-on-year +243 -21 +93
Permanent jobs citing CREST Certified 91 230 371
As % of all permanent jobs advertised in the UK 0.18% 0.17% 0.23%
As % of the Qualifications category 0.86% 0.74% 0.95%
Number of salaries quoted 74 185 301
Median annual salary £66,250 £67,500 £60,000
Median salary % change year-on-year -1.85% +12.50% -
10th Percentile £48,750 £41,250 £42,500
90th Percentile £90,000 £90,000 £80,000
UK excluding London median annual salary £57,500 £65,000 £50,000
% change year-on-year -11.54% +30.00% -

CREST Certified is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 10,524 31,249 38,957
As % of all permanent IT jobs advertised in the UK 21.16% 22.86% 23.73%
Number of salaries quoted 7,905 22,988 28,809
Median annual salary £55,000 £50,000 £50,000
Median salary % change year-on-year +10.00% - +5.26%
10th Percentile £31,250 £27,000 £26,250
90th Percentile £87,500 £82,500 £81,250
UK excluding London median annual salary £50,000 £45,000 £45,000
% change year-on-year +11.11% - +5.88%

CREST Certified
Job Vacancy Trend

Job postings citing CREST Certified as a proportion of all IT jobs advertised.

Job vacancy trend for CREST Certified in the UK

CREST Certified
Salary Trend

3-month moving average salary quoted in jobs citing CREST Certified.

Salary trend for CREST Certified in the UK

CREST Certified
Salary Histogram

Salary distribution for jobs citing CREST Certified over the 6 months to 31 October 2020.

Salary histogram for CREST Certified in the UK

CREST Certified
Top 14 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CREST Certified within the UK over the 6 months to 31 October 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +237 73 £62,500 -5.66% 20
UK excluding London +235 51 £57,500 -11.54% 16
London +210 31 £85,000 +30.77% 6
Midlands +112 19 £62,500 -10.71% 5
West Midlands +92 19 £62,500 -10.71% 3
Work from Home -7 13 £72,500 -0.85% 1
South East +177 12 £57,500 -4.17% 2
Wales +56 8 - -
North of England +170 5 - - 4
East of England +140 4 £56,250 +12.50% 2
North West +125 4 - - 3
South West +126 2 - - 1
Yorkshire +120 1 - - 1
Scotland +92 1 £56,500 -23.39% 2

For the 6 months to 31 October 2020, IT jobs citing CREST Certified also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CREST Certified.

1 61 (67.03%) Cybersecurity
2 54 (59.34%) Penetration Testing
3 43 (47.25%) SIEM
4 40 (43.96%) Linux
5 37 (40.66%) Information Security
6 36 (39.56%) Windows
7 32 (35.16%) Security Operations
8 29 (31.87%) Security Testing
9 26 (28.57%) Security Cleared
9 26 (28.57%) Cyberthreat
10 25 (27.47%) Firewall
11 24 (26.37%) Digital Forensics
11 24 (26.37%) AWS
12 23 (25.27%) Threat Intelligence
13 22 (24.18%) Microsoft
13 22 (24.18%) Active Directory
13 22 (24.18%) Cyber Threat Intelligence
13 22 (24.18%) Azure
14 21 (23.08%) GCIA
15 20 (21.98%) SC Cleared
15 20 (21.98%) Finance
15 20 (21.98%) SANS
16 19 (20.88%) Security Operations Centre
17 18 (19.78%) OSCP
17 18 (19.78%) Mac OS
17 18 (19.78%) Wireshark
17 18 (19.78%) GCIH
18 17 (18.68%) Ethical Hacking
18 17 (18.68%) Splunk
19 16 (17.58%) Network Architecture

CREST Certified
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Business Applications
1 8 (8.79%) Sentinel
Cloud Services
1 24 (26.37%) AWS
2 22 (24.18%) Azure
3 13 (14.29%) Office 365
4 8 (8.79%) Logic Apps
5 3 (3.30%) GCP
6 2 (2.20%) Virtual Private Cloud
Communications & Networking
1 25 (27.47%) Firewall
2 18 (19.78%) Wireshark
3 11 (12.09%) Intrusion Detection
4 9 (9.89%) DNS
4 9 (9.89%) TCP/IP
4 9 (9.89%) VPN
5 8 (8.79%) DKIM
5 8 (8.79%) DMARC
6 7 (7.69%) LAN
6 7 (7.69%) SSL
6 7 (7.69%) WAN
7 5 (5.49%) Network Security
8 2 (2.20%) IPsec
9 1 (1.10%) Cisco Firepower
9 1 (1.10%) DHCP
9 1 (1.10%) FTP
9 1 (1.10%) HTTP
9 1 (1.10%) POP3
9 1 (1.10%) SMTP
9 1 (1.10%) Wireless
Database & Business Intelligence
1 1 (1.10%) MySQL
Development Applications
1 16 (17.58%) Metasploit
2 8 (8.79%) Burp Suite
3 6 (6.59%) JIRA
General
1 20 (21.98%) Finance
2 13 (14.29%) Manufacturing
3 10 (10.99%) Banking
4 7 (7.69%) Investment Banking
5 5 (5.49%) Legal
6 2 (2.20%) Military
6 2 (2.20%) Retail
7 1 (1.10%) Aerospace
7 1 (1.10%) Games
7 1 (1.10%) Telecoms
Job Titles
1 28 (30.77%) Analyst
2 23 (25.27%) Penetration Tester
2 23 (25.27%) Tester
3 20 (21.98%) Security Analyst
4 9 (9.89%) Information Analyst
4 9 (9.89%) Information Security Analyst
4 9 (9.89%) SOC Analyst
5 8 (8.79%) Senior Analyst
6 7 (7.69%) Information Risk Analyst
6 7 (7.69%) Risk Analyst
6 7 (7.69%) Security Risk Analyst
6 7 (7.69%) Senior Penetration Tester
6 7 (7.69%) Senior Tester
7 5 (5.49%) Automation Engineer
7 5 (5.49%) QA Automation Engineer
7 5 (5.49%) QA Engineer
8 4 (4.40%) Team Leader
9 3 (3.30%) Consultant
9 3 (3.30%) Incident Responder
9 3 (3.30%) Security Specialist
Libraries, Frameworks & Software Standards
1 8 (8.79%) Web Services
2 7 (7.69%) YAML
3 5 (5.49%) .NET
3 5 (5.49%) Gherkin
4 1 (1.10%) Elastic Stack
4 1 (1.10%) Middleware
4 1 (1.10%) React
4 1 (1.10%) React Native
Miscellaneous
1 26 (28.57%) Cyberthreat
2 19 (20.88%) Security Operations Centre
3 16 (17.58%) Cyberattack
4 14 (15.38%) Management Information System
5 12 (13.19%) Mobile App
6 11 (12.09%) Cyber Kill Chain
7 8 (8.79%) PKI
8 7 (7.69%) Robotics
9 5 (5.49%) Driving Licence
10 4 (4.40%) Public Cloud
11 3 (3.30%) Distributed Denial-of-Service
11 3 (3.30%) Self-Motivation
12 2 (2.20%) Cyber Defence
13 1 (1.10%) Analytical Skills
13 1 (1.10%) CESG
13 1 (1.10%) Embedded Systems
13 1 (1.10%) Linux Command Line
13 1 (1.10%) PMI
Operating Systems
1 40 (43.96%) Linux
2 36 (39.56%) Windows
3 18 (19.78%) Mac OS
4 16 (17.58%) Kali Linux
5 10 (10.99%) Unix
6 7 (7.69%) Solaris
6 7 (7.69%) Windows Server
6 7 (7.69%) Windows XP
7 1 (1.10%) Android
7 1 (1.10%) Apple iOS
Processes & Methodologies
1 61 (67.03%) Cybersecurity
2 54 (59.34%) Penetration Testing
3 43 (47.25%) SIEM
4 37 (40.66%) Information Security
5 32 (35.16%) Security Operations
6 29 (31.87%) Security Testing
7 24 (26.37%) Digital Forensics
8 23 (25.27%) Threat Intelligence
9 22 (24.18%) Cyber Threat Intelligence
10 17 (18.68%) Ethical Hacking
11 16 (17.58%) Network Architecture
11 16 (17.58%) Vulnerability Management
12 15 (16.48%) Threat Modelling
13 13 (14.29%) Analytics
14 12 (13.19%) Cyber Intelligence
14 12 (13.19%) Data Privacy
14 12 (13.19%) Security Monitoring
15 11 (12.09%) OWASP
15 11 (12.09%) Vulnerability Scanning
16 10 (10.99%) Reverse Engineering
Programming Languages
1 15 (16.48%) Python
1 15 (16.48%) SQL
2 8 (8.79%) Bash Shell
3 7 (7.69%) Shell Script
4 5 (5.49%) TypeScript
5 3 (3.30%) C++
6 1 (1.10%) Java
6 1 (1.10%) PHP
6 1 (1.10%) PowerShell
Qualifications
1 26 (28.57%) Security Cleared
2 21 (23.08%) GCIA
3 20 (21.98%) SANS
3 20 (21.98%) SC Cleared
4 18 (19.78%) GCIH
4 18 (19.78%) OSCP
5 16 (17.58%) CEH
6 14 (15.38%) CISSP
7 13 (14.29%) GCFA
8 12 (13.19%) Cisco Certification
9 11 (12.09%) CHECK Team Leader
10 10 (10.99%) CISM
11 8 (8.79%) CHECK Team Member
11 8 (8.79%) GIAC
12 7 (7.69%) (ISC)2 CCSP
12 7 (7.69%) CCSP
13 5 (5.49%) CCNP
14 4 (4.40%) CISA
14 4 (4.40%) Cyber Scheme
15 3 (3.30%) OSCE
Quality Assurance & Compliance
1 15 (16.48%) ISO/IEC 27001
2 13 (14.29%) ISO 9001
2 13 (14.29%) NIST
3 10 (10.99%) Cyber Essentials
4 8 (8.79%) COBIT
4 8 (8.79%) HMG Security Policy Framework
5 6 (6.59%) GDPR
6 5 (5.49%) NIST 800
6 5 (5.49%) QA
7 2 (2.20%) Cyber Essentials PLUS
7 2 (2.20%) IASME
7 2 (2.20%) PCI DSS
7 2 (2.20%) SLA
8 1 (1.10%) NCSC
8 1 (1.10%) Sarbanes-Oxley
System Software
1 22 (24.18%) Active Directory
2 9 (9.89%) Snort
3 3 (3.30%) VMware Infrastructure
4 2 (2.20%) Docker
5 1 (1.10%) BitLocker
Systems Management
1 8 (8.79%) CSIRT
1 8 (8.79%) EnCase
2 5 (5.49%) Computer Incident Response Team
3 4 (4.40%) Host Intrusion Detection System
4 2 (2.20%) Computer Emergency Response Teams
4 2 (2.20%) QRadar
4 2 (2.20%) Terraform
5 1 (1.10%) Ansible
5 1 (1.10%) FTK
5 1 (1.10%) Network Intrusion Detection System
5 1 (1.10%) Opscode Chef
5 1 (1.10%) Puppet
Vendors
1 22 (24.18%) Microsoft
2 17 (18.68%) Splunk
3 13 (14.29%) LogRhythm
4 11 (12.09%) AlienVault
5 10 (10.99%) VMware
6 9 (9.89%) Cisco
7 3 (3.30%) Google
8 1 (1.10%) Carbon Black
8 1 (1.10%) Cellebrite
8 1 (1.10%) CheckPoint
8 1 (1.10%) Darktrace
8 1 (1.10%) Palo Alto