Period
to 21 October 2020

The following table provides summary statistics for permanent job vacancies with a requirement for CSIRT skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited CSIRT over the 6 months to 21 October 2020 with a comparison to the same period in the previous 2 years.

Computer Security Incident Response Team (CSIRT)
UK
6 months to
21 Oct 2020
Same period 2019 Same period 2018
Rank 649 1042 1131
Rank change year-on-year +393 +89 +11
Permanent jobs citing CSIRT 31 39 43
As % of all permanent jobs advertised in the UK 0.063% 0.028% 0.026%
As % of the Systems Management category 0.39% 0.22% 0.25%
Number of salaries quoted 24 23 29
Median annual salary £80,000 £52,500 £52,500
Median salary % change year-on-year +52.38% - -0.94%
10th Percentile £55,000 £30,782 £40,719
90th Percentile £97,000 £70,500 £81,250
UK excluding London median annual salary £63,000 £48,877 £49,500
% change year-on-year +28.89% -1.26% -6.60%

CSIRT is in the Systems Management category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for systems management skills.

All Systems Management Skills
UK
Permanent vacancies with a requirement for systems management skills 7,935 17,778 17,384
As % of all permanent IT jobs advertised in the UK 16.23% 12.98% 10.63%
Number of salaries quoted 6,532 13,415 13,744
Median annual salary £60,000 £57,500 £55,000
Median salary % change year-on-year +4.35% +4.55% +4.76%
10th Percentile £36,750 £32,000 £32,000
90th Percentile £93,750 £90,000 £85,000
UK excluding London median annual salary £50,000 £50,000 £47,500
% change year-on-year - +5.26% +5.56%

CSIRT
Job Vacancy Trend

Job postings citing CSIRT as a proportion of all IT jobs advertised.

Job vacancy trend for CSIRT in the UK

CSIRT
Salary Trend

3-month moving average salary quoted in jobs citing CSIRT.

Salary trend for CSIRT in the UK

CSIRT
Salary Histogram

Salary distribution for jobs citing CSIRT over the 6 months to 21 October 2020.

Salary histogram for CSIRT in the UK

CSIRT
Top 6 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CSIRT within the UK over the 6 months to 21 October 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +369 30 £80,000 +52.38% 6
London +277 24 £90,000 +50.00% 3
UK excluding London +304 6 £63,000 +28.89% 3
Midlands +123 4 £63,000 +12.00%
West Midlands +98 4 £63,000 +12.00%
South West +115 2 £68,750 +40.66% 3

For the 6 months to 21 October 2020, IT jobs citing CSIRT also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CSIRT.

1 31 (100.00%) Cybersecurity
2 22 (70.97%) Firewall
3 20 (64.52%) Cyber Threat Intelligence
3 20 (64.52%) Threat Intelligence
4 15 (48.39%) Intrusion Detection
5 14 (45.16%) Penetration Testing
5 14 (45.16%) DevOps
5 14 (45.16%) SIEM
6 13 (41.94%) Information Security
6 13 (41.94%) CISSP
6 13 (41.94%) Windows
7 12 (38.71%) GCIA
7 12 (38.71%) GCIH
7 12 (38.71%) Network Security
8 11 (35.48%) Azure
8 11 (35.48%) AWS
8 11 (35.48%) Malware Analysis
8 11 (35.48%) OSINT
8 11 (35.48%) (ISC)2 CCSP
8 11 (35.48%) GCFA
8 11 (35.48%) Banking
8 11 (35.48%) Linux
8 11 (35.48%) CCSP
8 11 (35.48%) Cisco Certification
8 11 (35.48%) Management Information System
8 11 (35.48%) Cyber Kill Chain
9 10 (32.26%) Security Monitoring
9 10 (32.26%) Security Operations
9 10 (32.26%) Wireshark
10 9 (29.03%) Threat Detection

CSIRT
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Applications
1 2 (6.45%) Microsoft PowerPoint
Cloud Services
1 11 (35.48%) AWS
1 11 (35.48%) Azure
2 4 (12.90%) GCP
Communications & Networking
1 22 (70.97%) Firewall
2 15 (48.39%) Intrusion Detection
3 12 (38.71%) Network Security
4 10 (32.26%) Wireshark
5 7 (22.58%) LAN
5 7 (22.58%) SSL
5 7 (22.58%) VPN
5 7 (22.58%) WAN
6 3 (9.68%) TCP/IP
6 3 (9.68%) tcpdump
7 1 (3.23%) DNS
General
1 11 (35.48%) Banking
2 7 (22.58%) Investment Banking
3 4 (12.90%) Legal
4 3 (9.68%) Public Sector
5 2 (6.45%) French Language
5 2 (6.45%) German Language
5 2 (6.45%) Italian Language
6 1 (3.23%) Advertising
6 1 (3.23%) Aerospace
6 1 (3.23%) Finance
Job Titles
1 13 (41.94%) Analyst
2 8 (25.81%) Security Analyst
3 7 (22.58%) Information Analyst
3 7 (22.58%) Information Risk Analyst
3 7 (22.58%) Information Security Analyst
3 7 (22.58%) Risk Analyst
3 7 (22.58%) Security Engineer
3 7 (22.58%) Security Risk Analyst
4 6 (19.35%) Senior Analyst
5 4 (12.90%) Cybersecurity Engineer
6 2 (6.45%) Incident Analyst
6 2 (6.45%) Senior Incident Analyst
6 2 (6.45%) Senior Security Engineer
6 2 (6.45%) Systems Engineer
7 1 (3.23%) Consultant
7 1 (3.23%) Cybersecurity Specialist
7 1 (3.23%) Security Specialist
7 1 (3.23%) Senior Security Analyst
Libraries, Frameworks & Software Standards
1 7 (22.58%) YAML
2 3 (9.68%) Web Services
Miscellaneous
1 11 (35.48%) Cyber Kill Chain
1 11 (35.48%) Management Information System
2 9 (29.03%) Cyberthreat
3 8 (25.81%) Cyberattack
3 8 (25.81%) Security Operations Centre
4 7 (22.58%) Robotics
5 2 (6.45%) Analytical Skills
5 2 (6.45%) Greenfield Project
5 2 (6.45%) Self-Motivation
5 2 (6.45%) Virtual Team
6 1 (3.23%) Cybercrime
6 1 (3.23%) PKI
Operating Systems
1 13 (41.94%) Windows
2 11 (35.48%) Linux
3 7 (22.58%) Solaris
3 7 (22.58%) Unix
3 7 (22.58%) Windows Server
3 7 (22.58%) Windows XP
4 1 (3.23%) Mac OS
Processes & Methodologies
1 31 (100.00%) Cybersecurity
2 20 (64.52%) Cyber Threat Intelligence
2 20 (64.52%) Threat Intelligence
3 14 (45.16%) DevOps
3 14 (45.16%) Penetration Testing
3 14 (45.16%) SIEM
4 13 (41.94%) Information Security
5 11 (35.48%) Malware Analysis
5 11 (35.48%) OSINT
6 10 (32.26%) Security Monitoring
6 10 (32.26%) Security Operations
7 9 (29.03%) Threat Detection
8 8 (25.81%) Computer Security
8 8 (25.81%) Threat Modelling
8 8 (25.81%) Vulnerability Management
9 7 (22.58%) Investment Management
9 7 (22.58%) Network Monitoring
9 7 (22.58%) OWASP
9 7 (22.58%) Use Case
9 7 (22.58%) Vulnerability Assessment
Programming Languages
1 6 (19.35%) Bash Shell
1 6 (19.35%) Python
2 3 (9.68%) PowerShell
2 3 (9.68%) SQL
Qualifications
1 13 (41.94%) CISSP
2 12 (38.71%) GCIA
2 12 (38.71%) GCIH
3 11 (35.48%) (ISC)2 CCSP
3 11 (35.48%) CCSP
3 11 (35.48%) Cisco Certification
3 11 (35.48%) GCFA
4 8 (25.81%) CREST Certified
5 7 (22.58%) CISM
6 6 (19.35%) SANS
7 5 (16.13%) CEH
7 5 (16.13%) OSCP
8 4 (12.90%) Degree
8 4 (12.90%) GPEN
8 4 (12.90%) GREM
8 4 (12.90%) OSCE
9 2 (6.45%) Security Cleared
10 1 (3.23%) CFCE
10 1 (3.23%) CompTIA Security+
10 1 (3.23%) GCED
Quality Assurance & Compliance
1 7 (22.58%) COBIT
1 7 (22.58%) NIST
2 2 (6.45%) Cyber Essentials
2 2 (6.45%) GDPR
2 2 (6.45%) HMG Security Policy Framework
2 2 (6.45%) ISO/IEC 20000
3 1 (3.23%) ISO/IEC 27001
System Software
1 8 (25.81%) Active Directory
2 4 (12.90%) Docker
3 1 (3.23%) VMware Infrastructure
Systems Management
1 5 (16.13%) Computer Emergency Response Teams
2 4 (12.90%) Kubernetes
2 4 (12.90%) Terraform
3 3 (9.68%) Computer Incident Response Team
3 3 (9.68%) Network Intrusion Detection System
Vendors
1 8 (25.81%) VMware
2 7 (22.58%) Cisco
3 1 (3.23%) Splunk