Period
to 10 December 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CSIRT skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited CSIRT over the 6 months to 10 December 2018 with a comparison to the same period in the previous 2 years.

Computer Security Incident Response Team (CSIRT)
UK
6 months to
10 Dec 2018
Same period 2017 Same period 2016
Rank 1071 1102 1111
Rank change year-on-year +31 +9 +116
Permanent jobs citing CSIRT 62 92 124
As % of all permanent IT jobs advertised in the UK 0.039% 0.052% 0.067%
As % of the Systems Management category 0.35% 0.57% 0.75%
Number of salaries quoted 31 54 111
UK median annual salary £60,000 £53,000 £62,500
Median salary % change year-on-year +13.21% -15.20% -16.67%
10th Percentile £46,000 £32,500 £45,000
90th Percentile £86,250 £85,250 £85,000
UK excluding London median annual salary £49,500 £53,000 £62,500
% change year-on-year -6.60% -15.20% -16.67%

CSIRT is in the Systems Management category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for systems management skills.

All Systems Management Skills
UK
Permanent vacancies with a requirement for systems management skills 17,794 16,117 16,558
As % of all permanent IT jobs advertised in the UK 11.11% 9.03% 8.96%
Number of salaries quoted 14,055 13,202 13,394
UK median annual salary £55,000 £52,500 £50,000
Median salary % change year-on-year +4.76% +5.00% -
10th Percentile £32,500 £31,250 £31,250
90th Percentile £86,250 £82,500 £78,750
UK excluding London median annual salary £50,000 £45,000 £45,000
% change year-on-year +11.11% - +5.88%

CSIRT
Job Vacancy Trend

Job postings citing CSIRT as a percentage of all IT jobs advertised.

Job vacancy trend for CSIRT in the UK

CSIRT
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CSIRT.

Salary trend for CSIRT in the UK

CSIRT
Salary Histogram

The salary distribution of IT jobs citing CSIRT over the 6 months to 10 December 2018.

Salary histogram for CSIRT in the UK

CSIRT
Top 5 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CSIRT within the UK over the 6 months to 10 December 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +24 62 £60,000 +13.21% 3
London +54 40 £65,000 +18.18%
UK excluding London +60 22 £49,500 -6.60% 3
South East +30 14 £63,750 +20.28% 1
East of England +32 8 £49,500 +41.43% 1

For the 6 months to 10 December 2018, IT jobs citing CSIRT also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CSIRT.

1 48 (77.42%) Cybersecurity
2 40 (64.52%) Linux
2 40 (64.52%) Firewall
3 38 (61.29%) CEH
4 36 (58.06%) Information Security
5 34 (54.84%) Vulnerability Management
6 32 (51.61%) SIEM
6 32 (51.61%) GCIA
7 30 (48.39%) Windows
8 28 (45.16%) Degree
8 28 (45.16%) Security Operations
9 27 (43.55%) SANS
9 27 (43.55%) GCIH
9 27 (43.55%) Management Information System
10 25 (40.32%) GIAC
10 25 (40.32%) CISSP
11 24 (38.71%) TCP/IP
12 22 (35.48%) Legal
13 20 (32.26%) PowerShell
13 20 (32.26%) Problem-Solving
14 19 (30.65%) Threat Detection
14 19 (30.65%) Threat Intelligence
14 19 (30.65%) Computer Security
14 19 (30.65%) Incident Management
15 18 (29.03%) Intrusion Detection
15 18 (29.03%) Forensic Analysis
15 18 (29.03%) Cyber Threat Intelligence
16 17 (27.42%) Security Operations Centre
16 17 (27.42%) Malware Analysis
17 16 (25.81%) Computer Forensics

CSIRT
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Cloud Services
1 1 (1.61%) Amazon AWS
1 1 (1.61%) AWS Lambda
1 1 (1.61%) Serverless
Communications & Networking
1 40 (64.52%) Firewall
2 24 (38.71%) TCP/IP
3 18 (29.03%) Intrusion Detection
4 11 (17.74%) SSL
4 11 (17.74%) VPN
5 9 (14.52%) DNS
5 9 (14.52%) HTTP
5 9 (14.52%) MPLS
6 5 (8.06%) Network Security
7 2 (3.23%) FTP
7 2 (3.23%) IPsec
Database & Business Intelligence
1 1 (1.61%) Maltego
General
1 22 (35.48%) Legal
2 5 (8.06%) Finance
Job Titles
1 35 (56.45%) Analyst
2 30 (48.39%) Security Analyst
3 28 (45.16%) Cybersecurity Analyst
4 24 (38.71%) Senior Analyst
4 24 (38.71%) Senior Cybersecurity Analyst
4 24 (38.71%) Senior Security Analyst
5 9 (14.52%) SOC Analyst
6 7 (11.29%) Incident Analyst
6 7 (11.29%) Incident Manager
6 7 (11.29%) Security Incident Analyst
6 7 (11.29%) Senior Incident Analyst
7 5 (8.06%) Security Manager
8 4 (6.45%) Security Engineer
8 4 (6.45%) Security Incident Manager
8 4 (6.45%) Team Leader
9 3 (4.84%) Cyber Security Incident Manager
9 3 (4.84%) Cybersecurity Manager
10 2 (3.23%) Data Manager
10 2 (3.23%) IT Analyst
10 2 (3.23%) Senior Consultant
Libraries, Frameworks & Software Standards
1 16 (25.81%) Regular Expression
2 1 (1.61%) Elastic Stack
Miscellaneous
1 27 (43.55%) Management Information System
2 17 (27.42%) Security Operations Centre
3 9 (14.52%) Cyber Kill Chain
4 5 (8.06%) Linux Command Line
5 3 (4.84%) Analytical Skills
5 3 (4.84%) Cyberthreat
5 3 (4.84%) Data Protection Act
6 2 (3.23%) Cyber Defence
6 2 (3.23%) Cyberattack
7 1 (1.61%) Freedom of Information
7 1 (1.61%) Freedom of Information Act
Operating Systems
1 40 (64.52%) Linux
2 30 (48.39%) Windows
3 15 (24.19%) Unix
4 4 (6.45%) Red Hat Enterprise Linux
4 4 (6.45%) Windows Server
5 1 (1.61%) Mac OS
Processes & Methodologies
1 48 (77.42%) Cybersecurity
2 36 (58.06%) Information Security
3 34 (54.84%) Vulnerability Management
4 32 (51.61%) SIEM
5 28 (45.16%) Security Operations
6 20 (32.26%) Problem-Solving
7 19 (30.65%) Computer Security
7 19 (30.65%) Incident Management
7 19 (30.65%) Threat Detection
7 19 (30.65%) Threat Intelligence
8 18 (29.03%) Cyber Threat Intelligence
8 18 (29.03%) Forensic Analysis
9 17 (27.42%) Malware Analysis
10 16 (25.81%) Computer Forensics
11 15 (24.19%) Critical Thinking
11 15 (24.19%) E-Discovery
11 15 (24.19%) Network Design
11 15 (24.19%) Strategic Thinking
12 12 (19.35%) ITIL
13 11 (17.74%) Change Management
Programming Languages
1 20 (32.26%) PowerShell
2 15 (24.19%) SQL
3 9 (14.52%) JavaScript
3 9 (14.52%) Python
4 4 (6.45%) Perl
4 4 (6.45%) VBA
Qualifications
1 38 (61.29%) CEH
2 32 (51.61%) GCIA
3 28 (45.16%) Degree
4 27 (43.55%) GCIH
4 27 (43.55%) SANS
5 25 (40.32%) CISSP
5 25 (40.32%) GIAC
6 14 (22.58%) CompTIA Security+
7 12 (19.35%) CISM
8 10 (16.13%) CISA
8 10 (16.13%) CREST Certified
9 9 (14.52%) CCNA
9 9 (14.52%) Cisco Certification
9 9 (14.52%) CRISC
9 9 (14.52%) OSCP
10 6 (9.68%) Computer Science Degree
11 5 (8.06%) GSEC
12 2 (3.23%) GCFA
12 2 (3.23%) Microsoft Certification
12 2 (3.23%) SSCP
Quality Assurance & Compliance
1 6 (9.68%) SLA
2 5 (8.06%) GDPR
2 5 (8.06%) ISO/IEC 27001
3 2 (3.23%) PCI DSS
System Software
1 2 (3.23%) Active Directory
2 1 (1.61%) Docker
Systems Management
1 15 (24.19%) Host Intrusion Detection System
1 15 (24.19%) QRadar
2 5 (8.06%) Computer Emergency Response Teams
3 4 (6.45%) AirWatch
3 4 (6.45%) Computer Incident Response Team
3 4 (6.45%) Nessus
3 4 (6.45%) Norton AntiVirus
4 2 (3.23%) CASB
5 1 (1.61%) Kubernetes
Vendors
1 15 (24.19%) Sun
2 11 (17.74%) Microsoft
2 11 (17.74%) Symantec
3 6 (9.68%) LogRhythm
3 6 (9.68%) Qualys
4 5 (8.06%) Splunk
5 4 (6.45%) ArcSight
5 4 (6.45%) CyberArk
5 4 (6.45%) Google
5 4 (6.45%) Meraki
5 4 (6.45%) Okta
6 2 (3.23%) Cisco
6 2 (3.23%) Forcepoint
6 2 (3.23%) Palo Alto
7 1 (1.61%) IBM