Period
to 21 January 2020

The following table provides summary statistics for permanent job vacancies with a requirement for CREST Certified qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 21 January 2020 with a comparison to the same period in the previous 2 years.

CREST Certification
UK
6 months to
21 Jan 2020
Same period 2019 Same period 2018
Rank 808 696 919
Rank change year-on-year -112 +223 -41
Permanent jobs citing CREST Certified 229 434 276
As % of all permanent IT jobs advertised in the UK 0.18% 0.29% 0.16%
As % of the Qualifications category 0.83% 1.19% 0.67%
Number of salaries quoted 171 300 219
UK median annual salary £65,000 £52,500 £60,000
Median salary % change year-on-year +23.81% -12.50% +4.35%
10th Percentile £43,750 £41,250 £39,650
90th Percentile £92,500 £85,000 £88,750
UK excluding London median annual salary £70,000 £45,000 £52,750
% change year-on-year +55.56% -14.69% -0.47%

CREST Certified is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 27,667 36,401 40,891
As % of all permanent IT jobs advertised in the UK 21.91% 24.14% 23.79%
Number of salaries quoted 20,477 26,615 31,744
UK median annual salary £50,000 £50,000 £47,500
Median salary % change year-on-year - +5.26% +5.56%
10th Percentile £27,500 £26,250 £26,250
90th Percentile £82,500 £80,250 £78,750
UK excluding London median annual salary £45,000 £45,000 £42,500
% change year-on-year - +5.88% -

CREST Certified
Job Vacancy Trend

Job postings citing CREST Certified as a percentage of all IT jobs advertised.

Job vacancy trend for CREST Certified in the UK

CREST Certified
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CREST Certified.

Salary trend for CREST Certified in the UK

CREST Certified
Salary Histogram

The salary distribution of IT jobs citing CREST Certified over the 6 months to 21 January 2020.

Salary histogram for CREST Certified in the UK

CREST Certified
Top 14 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CREST Certified within the UK over the 6 months to 21 January 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -58 215 £67,500 +28.57% 31
UK excluding London -70 110 £70,000 +55.56% 15
London +34 108 £65,000 -10.34% 18
South East +60 55 £70,000 +3.70% 3
Midlands +27 34 £70,000 +33.33% 3
West Midlands +23 32 £70,000 +33.33% 1
South West +27 7 £80,000 +30.08% 6
North of England -88 6 £55,000 +22.22% 1
East of England +30 4 £50,000 +32.63%
Yorkshire +34 3 £47,500 -9.52% 1
Wales 0 3 £39,000 -14.29% 2
North West -94 3 £55,000 +22.22%
East Midlands +12 2 £45,000 -43.75% 2
Scotland +27 1 £73,750 -

For the 6 months to 21 January 2020, IT jobs citing CREST Certified also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CREST Certified.

1 144 (62.88%) Cybersecurity
2 129 (56.33%) Penetration Testing
3 90 (39.30%) OSCP
4 83 (36.24%) Security Cleared
5 75 (32.75%) CISSP
6 59 (25.76%) Information Security
7 57 (24.89%) ISO/IEC 27001
8 54 (23.58%) Security Testing
9 53 (23.14%) CHECK Team Leader
10 52 (22.71%) CEH
11 50 (21.83%) Python
12 48 (20.96%) Firewall
13 45 (19.65%) SC Cleared
14 44 (19.21%) CISM
15 40 (17.47%) CHECK Team Member
16 39 (17.03%) Linux
16 39 (17.03%) TOGAF
16 39 (17.03%) Degree
16 39 (17.03%) SABSA
17 38 (16.59%) Tigerscheme
18 37 (16.16%) Security Architecture
19 36 (15.72%) Ethical Hacking
20 34 (14.85%) GIAC
21 32 (13.97%) Management Information System
21 32 (13.97%) SIEM
22 30 (13.10%) Mobile App
22 30 (13.10%) Self-Motivation
23 29 (12.66%) SANS
23 29 (12.66%) Identity Management
24 28 (12.23%) Social Engineering

CREST Certified
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 1 (0.44%) IIS
Applications
1 2 (0.87%) Microsoft Excel
Business Applications
1 3 (1.31%) Sparx Enterprise Architect
Cloud Services
1 12 (5.24%) AWS
2 11 (4.80%) Azure
3 4 (1.75%) Office 365
4 3 (1.31%) SaaS
5 1 (0.44%) Azure Active Directory
5 1 (0.44%) Cloud Computing
5 1 (0.44%) IaaS
5 1 (0.44%) PaaS
Communications & Networking
1 48 (20.96%) Firewall
2 25 (10.92%) TCP/IP
3 21 (9.17%) VPN
4 19 (8.30%) Network Security
5 17 (7.42%) HTTP
5 17 (7.42%) LAN
5 17 (7.42%) WAN
6 10 (4.37%) SMTP
7 9 (3.93%) Internet
8 7 (3.06%) Intrusion Detection
9 4 (1.75%) 802.11
9 4 (1.75%) IPsec
9 4 (1.75%) SNMP
10 3 (1.31%) DNS
11 1 (0.44%) HTTPS
11 1 (0.44%) Wireless
11 1 (0.44%) Wireshark
Database & Business Intelligence
1 6 (2.62%) Blockchain
Development Applications
1 12 (5.24%) Burp Suite
2 11 (4.80%) Metasploit
3 1 (0.44%) AppScan
3 1 (0.44%) JIRA
General
1 22 (9.61%) Finance
2 15 (6.55%) Legal
3 9 (3.93%) Games
3 9 (3.93%) Retail
4 6 (2.62%) Public Sector
5 5 (2.18%) Aerospace
5 5 (2.18%) Banking
6 4 (1.75%) Law
7 3 (1.31%) Advertising
7 3 (1.31%) Military
7 3 (1.31%) Publishing
8 1 (0.44%) Manufacturing
8 1 (0.44%) Telecoms
Job Titles
1 108 (47.16%) Tester
2 104 (45.41%) Penetration Tester
3 32 (13.97%) Architect
3 32 (13.97%) Security Architect
4 27 (11.79%) Consultant
4 27 (11.79%) Security Consultant
5 21 (9.17%) Senior Penetration Tester
5 21 (9.17%) Senior Tester
6 20 (8.73%) Cybersecurity Consultant
7 19 (8.30%) Analyst
8 14 (6.11%) Security Tester
9 11 (4.80%) Security Engineer
10 10 (4.37%) IT Architect
10 10 (4.37%) IT Security Architect
10 10 (4.37%) Security Penetration Tester
11 9 (3.93%) Security Specialist
12 8 (3.49%) Senior Analyst
12 8 (3.49%) SOC Analyst
13 7 (3.06%) Security Analyst
14 6 (2.62%) Web Tester
Libraries, Frameworks & Software Standards
1 4 (1.75%) 802.1X
1 4 (1.75%) ModSecurity
2 2 (0.87%) .NET
Miscellaneous
1 32 (13.97%) Management Information System
2 30 (13.10%) Mobile App
2 30 (13.10%) Self-Motivation
3 23 (10.04%) Cyberthreat
4 17 (7.42%) PKI
5 12 (5.24%) Security Operations Centre
6 8 (3.49%) Virtual Team
7 6 (2.62%) Analytical Skills
8 5 (2.18%) Cyber Kill Chain
8 5 (2.18%) Cyberattack
8 5 (2.18%) Distributed Denial-of-Service
8 5 (2.18%) SCADA
9 4 (1.75%) Data Centre
10 3 (1.31%) Hedge funds
10 3 (1.31%) Public Cloud
11 2 (0.87%) Cyber Defence
11 2 (0.87%) Driving Licence
12 1 (0.44%) Greenfield Project
12 1 (0.44%) Linux Command Line
12 1 (0.44%) Social Media
Operating Systems
1 39 (17.03%) Linux
2 22 (9.61%) Kali Linux
3 17 (7.42%) Windows
4 7 (3.06%) Unix
5 4 (1.75%) Mac OS
6 3 (1.31%) Android
6 3 (1.31%) Apple iOS
7 1 (0.44%) Mac OS X
7 1 (0.44%) Windows Mobile
Processes & Methodologies
1 144 (62.88%) Cybersecurity
2 129 (56.33%) Penetration Testing
3 59 (25.76%) Information Security
4 54 (23.58%) Security Testing
5 39 (17.03%) SABSA
5 39 (17.03%) TOGAF
6 37 (16.16%) Security Architecture
7 36 (15.72%) Ethical Hacking
8 32 (13.97%) SIEM
9 29 (12.66%) Identity Management
10 28 (12.23%) Social Engineering
10 28 (12.23%) Threat Intelligence
11 27 (11.79%) Mentoring
12 26 (11.35%) Cyber Threat Intelligence
13 25 (10.92%) Agile Software Development
14 22 (9.61%) Risk Management
14 22 (9.61%) Security Operations
14 22 (9.61%) Stakeholder Engagement
15 21 (9.17%) Test Automation
16 20 (8.73%) OWASP
Programming Languages
1 50 (21.83%) Python
2 19 (8.30%) C++
3 15 (6.55%) Java
4 13 (5.68%) PowerShell
5 12 (5.24%) Bash Shell
6 10 (4.37%) C#
6 10 (4.37%) Ruby
7 9 (3.93%) C
8 6 (2.62%) Perl
9 4 (1.75%) Lua
9 4 (1.75%) Objective-C
9 4 (1.75%) VB
10 2 (0.87%) Apple Swift
10 2 (0.87%) Kotlin
10 2 (0.87%) PHP
10 2 (0.87%) SQL
11 1 (0.44%) Go
11 1 (0.44%) VB.NET
Qualifications
1 90 (39.30%) OSCP
2 83 (36.24%) Security Cleared
3 75 (32.75%) CISSP
4 53 (23.14%) CHECK Team Leader
5 52 (22.71%) CEH
6 45 (19.65%) SC Cleared
7 44 (19.21%) CISM
8 40 (17.47%) CHECK Team Member
9 39 (17.03%) Degree
10 38 (16.59%) Tigerscheme
11 34 (14.85%) GIAC
12 29 (12.66%) SANS
13 21 (9.17%) CESG Certified Professional
14 18 (7.86%) OSCE
15 15 (6.55%) Cisco Certification
15 15 (6.55%) Master's Degree
16 13 (5.68%) CISA
17 11 (4.80%) GPEN
18 10 (4.37%) CSSLP
19 9 (3.93%) DV Cleared
Quality Assurance & Compliance
1 57 (24.89%) ISO/IEC 27001
2 24 (10.48%) NIST
2 24 (10.48%) PCI DSS
3 20 (8.73%) QA
4 17 (7.42%) NIST 800
5 16 (6.99%) HMG Security Policy Framework
6 14 (6.11%) NCSC
7 12 (5.24%) Cyber Essentials
7 12 (5.24%) GDPR
8 5 (2.18%) COBIT
8 5 (2.18%) RMADS
8 5 (2.18%) Sarbanes-Oxley
9 4 (1.75%) JSP 440
10 2 (0.87%) Cyber Essentials PLUS
10 2 (0.87%) IASME
10 2 (0.87%) SLA
System Software
1 4 (1.75%) Docker
2 1 (0.44%) Active Directory
2 1 (0.44%) Virtual Machines
Systems Management
1 12 (5.24%) Nessus
2 10 (4.37%) Nmap
3 4 (1.75%) Host Intrusion Detection System
4 3 (1.31%) Single Sign-On
4 3 (1.31%) Terraform
5 2 (0.87%) Network Intrusion Detection System
6 1 (0.44%) EnCase
6 1 (0.44%) Kubernetes
Vendors
1 4 (1.75%) Cisco
1 4 (1.75%) Microsoft
1 4 (1.75%) Splunk
2 3 (1.31%) Sparx
3 2 (0.87%) AlienVault
3 2 (0.87%) Juniper
4 1 (0.44%) Google
4 1 (0.44%) IBM
4 1 (0.44%) Intel
4 1 (0.44%) LogRhythm
4 1 (0.44%) Qualys