Period
to 20 July 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CSIRT skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited CSIRT over the 6 months to 20 July 2018 with a comparison to the same period in the previous 2 years.

Computer Security Incident Response Team (CSIRT)
UK
6 months to
20 Jul 2018
Same period 2017 Same period 2016
Rank 1132 1119 1204
Rank change year-on-year -13 +85 +91
Permanent jobs citing CSIRT 48 92 87
As % of all permanent IT jobs advertised in the UK 0.027% 0.052% 0.043%
As % of the Systems Management category 0.27% 0.58% 0.49%
Number of salaries quoted 34 59 73
UK median annual salary £59,500 £53,000 £62,500
Median salary % change year-on-year +12.26% -15.20% +23.76%
10th Percentile £42,413 £35,100 £47,500
90th Percentile £82,500 £80,000 £78,750
UK excluding London median annual salary £56,250 £53,000 £62,500
% change year-on-year +6.13% -15.20% +31.58%

CSIRT is in the Systems Management category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for systems management skills.

All Systems Management Skills
UK
Permanent vacancies with a requirement for systems management skills 17,960 15,827 17,897
As % of all permanent IT jobs advertised in the UK 10.26% 8.93% 8.82%
Number of salaries quoted 14,210 12,763 14,498
UK median annual salary £55,000 £52,500 £50,000
Median salary % change year-on-year +4.76% +5.00% +5.26%
10th Percentile £31,250 £30,000 £30,500
90th Percentile £85,000 £82,500 £75,000
UK excluding London median annual salary £47,500 £45,000 £42,500
% change year-on-year +5.56% +5.88% -

CSIRT
Job Vacancy Trend

Job postings citing CSIRT as a percentage of all IT jobs advertised.

Job vacancy trend for CSIRT in the UK

CSIRT
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CSIRT.

Salary trend for CSIRT in the UK

CSIRT
Salary Histogram

The salary distribution of IT jobs citing CSIRT over the 6 months to 20 July 2018.

Salary histogram for CSIRT in the UK

CSIRT
Top 9 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CSIRT within the UK over the 6 months to 20 July 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -14 44 £57,500 +8.49% 8
London -46 23 £75,000 +36.36% 3
UK excluding London +16 22 £56,250 +6.13% 5
South West - 7 £55,000 -
North of England +16 5 £65,000 +28.08% 2
East of England +10 5 £47,125 +34.64%
Yorkshire - 5 £65,000 - 2
South East -5 3 £60,000 +13.21% 3
Scotland -17 2 £75,000 -

For the 6 months to 20 July 2018, IT jobs citing CSIRT also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CSIRT.

1 30 (62.50%) Firewall
2 24 (50.00%) Information Security
3 21 (43.75%) Cybersecurity
4 19 (39.58%) SIEM
5 17 (35.42%) Security Operations
6 16 (33.33%) Malware Analysis
6 16 (33.33%) CISSP
7 15 (31.25%) Windows
8 14 (29.17%) Finance
8 14 (29.17%) Vulnerability Management
9 13 (27.08%) Network Security
9 13 (27.08%) Degree
9 13 (27.08%) GCIH
10 12 (25.00%) CISA
11 11 (22.92%) CISM
11 11 (22.92%) Management Information System
11 11 (22.92%) GCIA
11 11 (22.92%) QRadar
12 10 (20.83%) Linux
12 10 (20.83%) TCP/IP
12 10 (20.83%) Cisco
12 10 (20.83%) Vulnerability Assessment
13 9 (18.75%) Matrix Management
13 9 (18.75%) DNS
13 9 (18.75%) HTTP
13 9 (18.75%) Python
14 8 (16.67%) Juniper
14 8 (16.67%) Forcepoint
14 8 (16.67%) Computer Security
14 8 (16.67%) Cisco ASA

CSIRT
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Cloud Services
1 1 (2.08%) Amazon AWS
1 1 (2.08%) AWS Lambda
1 1 (2.08%) Serverless
Communications & Networking
1 30 (62.50%) Firewall
2 13 (27.08%) Network Security
3 10 (20.83%) TCP/IP
4 9 (18.75%) DNS
4 9 (18.75%) HTTP
5 8 (16.67%) Cisco ASA
5 8 (16.67%) F5 BIG-IP GTM
5 8 (16.67%) F5 BIG-IP LTM
6 7 (14.58%) Sourcefire
7 5 (10.42%) MPLS
7 5 (10.42%) SSL
7 5 (10.42%) VPN
8 4 (8.33%) FTP
8 4 (8.33%) SMTP
9 1 (2.08%) BIG-IP
9 1 (2.08%) Intrusion Detection
9 1 (2.08%) SAN
Database & Business Intelligence
1 1 (2.08%) Big Data
1 1 (2.08%) Maltego
General
1 14 (29.17%) Finance
2 2 (4.17%) Financial Institution
2 2 (4.17%) Legal
3 1 (2.08%) Banking
3 1 (2.08%) Investment Banking
3 1 (2.08%) Law
3 1 (2.08%) Military
Job Titles
1 14 (29.17%) Analyst
2 11 (22.92%) Security Analyst
2 11 (22.92%) Security Engineer
3 7 (14.58%) CISSP Specialist
3 7 (14.58%) Information Security Specialist
3 7 (14.58%) Information Specialist
3 7 (14.58%) Security Specialist
3 7 (14.58%) Security Support Engineer
3 7 (14.58%) SOC Analyst
3 7 (14.58%) Support Engineer
4 4 (8.33%) Consultant
4 4 (8.33%) Incident Analyst
4 4 (8.33%) Junior
4 4 (8.33%) Junior Analyst
4 4 (8.33%) Junior Security Analyst
4 4 (8.33%) Security Incident Analyst
4 4 (8.33%) SIEM Analyst
5 3 (6.25%) Cybersecurity Analyst
5 3 (6.25%) Senior Consultant
6 2 (4.17%) Senior Cybersecurity Analyst
Libraries, Frameworks & Software Standards
1 1 (2.08%) Elastic Stack
1 1 (2.08%) Regular Expression
Miscellaneous
1 11 (22.92%) Management Information System
2 8 (16.67%) Computer Science
3 6 (12.50%) Cyberthreat
3 6 (12.50%) Self-Motivation
4 5 (10.42%) Analytical Skills
4 5 (10.42%) Security Operations Centre
5 4 (8.33%) Cyber Kill Chain
6 3 (6.25%) Cyberattack
7 1 (2.08%) Data Protection Act
7 1 (2.08%) Distributed Denial-of-Service
7 1 (2.08%) Freedom of Information
7 1 (2.08%) Freedom of Information Act
7 1 (2.08%) PKI
Operating Systems
1 15 (31.25%) Windows
2 10 (20.83%) Linux
3 2 (4.17%) Red Hat Enterprise Linux
3 2 (4.17%) Unix
3 2 (4.17%) Windows Server
4 1 (2.08%) Mac OS
4 1 (2.08%) VMS
Processes & Methodologies
1 24 (50.00%) Information Security
2 21 (43.75%) Cybersecurity
3 19 (39.58%) SIEM
4 17 (35.42%) Security Operations
5 16 (33.33%) Malware Analysis
6 14 (29.17%) Vulnerability Management
7 10 (20.83%) Vulnerability Assessment
8 9 (18.75%) Matrix Management
9 8 (16.67%) Computer Security
9 8 (16.67%) Information Assurance
10 7 (14.58%) Security Monitoring
11 6 (12.50%) Critical Thinking
11 6 (12.50%) ITIL
11 6 (12.50%) Reverse Engineering
11 6 (12.50%) Security Architecture
12 5 (10.42%) Cyber Threat Intelligence
12 5 (10.42%) Incident Management
12 5 (10.42%) Problem-Solving
12 5 (10.42%) Remediation Plan
12 5 (10.42%) Threat Analysis
Programming Languages
1 9 (18.75%) Python
2 7 (14.58%) Perl
2 7 (14.58%) PowerShell
3 6 (12.50%) C
4 5 (10.42%) Bash Shell
5 4 (8.33%) JavaScript
6 2 (4.17%) VBA
Qualifications
1 16 (33.33%) CISSP
2 13 (27.08%) Degree
2 13 (27.08%) GCIH
3 12 (25.00%) CISA
4 11 (22.92%) CISM
4 11 (22.92%) GCIA
5 8 (16.67%) CRISC
6 7 (14.58%) CEH
7 6 (12.50%) GIAC
8 4 (8.33%) CCNA
8 4 (8.33%) Cisco Certification
8 4 (8.33%) CompTIA Security+
8 4 (8.33%) GCFA
9 3 (6.25%) SANS
10 2 (4.17%) CHFI
11 1 (2.08%) CREST Certified
11 1 (2.08%) EC-Council LPT
11 1 (2.08%) ECSA
11 1 (2.08%) GREM
11 1 (2.08%) PRINCE2 Certification
Quality Assurance & Compliance
1 4 (8.33%) GDPR
1 4 (8.33%) NIST 800
2 3 (6.25%) PCI DSS
2 3 (6.25%) SLA
3 1 (2.08%) COBIT
3 1 (2.08%) ISO/IEC 27001
3 1 (2.08%) PMO
System Software
1 8 (16.67%) ProxySG
2 6 (12.50%) Virtual Machines
3 1 (2.08%) Active Directory
3 1 (2.08%) Docker
Systems Management
1 11 (22.92%) QRadar
2 7 (14.58%) Computer Emergency Response Teams
3 6 (12.50%) Nessus
4 2 (4.17%) Computer Incident Response Team
5 1 (2.08%) Kubernetes
Vendors
1 10 (20.83%) Cisco
2 8 (16.67%) Blue Coat
2 8 (16.67%) F5
2 8 (16.67%) Forcepoint
2 8 (16.67%) Juniper
3 6 (12.50%) BeyondTrust
3 6 (12.50%) Oracle
4 2 (4.17%) LogRhythm
4 2 (4.17%) Palo Alto
4 2 (4.17%) Splunk
5 1 (2.08%) Intel
5 1 (2.08%) McAfee