Period
to 24 April 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CSIRT skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited CSIRT over the 6 months to 24 April 2018 with a comparison to the same period in the previous 2 years.

Computer Security Incident Response Team (CSIRT)
UK
6 months to
24 Apr 2018
Same period 2017 Same period 2016
Rank 1102 1078 1199
Rank change year-on-year -24 +121 +87
Permanent jobs citing CSIRT 81 98 70
As % of all permanent IT jobs advertised in the UK 0.046% 0.058% 0.034%
As % of the Systems Management category 0.46% 0.66% 0.41%
Number of salaries quoted 39 66 62
UK median annual salary £62,500 £65,000 £75,000
Median salary % change year-on-year -3.85% -13.33% +57.89%
UK excluding London median annual salary £57,500 £49,500 £75,000
% change year-on-year +16.16% -34.00% +36.36%

CSIRT is in the Systems Management category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for systems management skills.

All Systems Management Skills
UK
Permanent vacancies with a requirement for systems management skills 17,453 14,900 17,232
As % of all permanent IT jobs advertised in the UK 9.85% 8.77% 8.47%
Number of salaries quoted 13,865 12,066 13,939
UK median annual salary £55,000 £52,500 £50,000
Median salary % change year-on-year +4.76% +5.00% +5.26%
10th Percentile £31,500 £30,685 £30,061
90th Percentile £84,750 £80,000 £75,000
UK excluding London median annual salary £47,500 £45,000 £42,500
% change year-on-year +5.56% +5.88% -

CSIRT
Job Vacancy Trend

Job postings citing CSIRT as a percentage of all IT jobs advertised.

Job vacancy trend for CSIRT in the UK

CSIRT
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CSIRT.

Salary trend for CSIRT in the UK

CSIRT
Salary Histogram

The salary distribution of IT jobs citing CSIRT over the 6 months to 24 April 2018.

Salary histogram for CSIRT in the UK

CSIRT
Top 12 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CSIRT within the UK over the 6 months to 24 April 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -47 75 £61,250 -5.77% 5
London -64 52 £57,500 -17.86% 1
UK excluding London -10 18 £57,500 +16.16% 4
North of England -14 6 £65,000 +4.00% 1
South West - 6 £55,000 - 1
Yorkshire +12 4 £65,000 +4.00% 1
South East -8 4 £60,000 +71.43% 1
North West -24 1 £62,500 +71.23%
North East -27 1 £38,200 -41.23%
Midlands - 1 - - 1
West Midlands - 1 - - 1
Scotland - 1 - -

For the 6 months to 24 April 2018, IT jobs citing CSIRT also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CSIRT.

1 63 (77.78%) Information Security
2 52 (64.20%) Firewall
3 48 (59.26%) SIEM
4 45 (55.56%) Cybersecurity
4 45 (55.56%) Windows
5 42 (51.85%) Security Operations
6 41 (50.62%) Network Security
7 40 (49.38%) Linux
8 37 (45.68%) Degree
9 36 (44.44%) Computer Science
9 36 (44.44%) Vulnerability Management
10 35 (43.21%) GCIH
11 34 (41.98%) Management Information System
12 32 (39.51%) GIAC
12 32 (39.51%) GCIA
12 32 (39.51%) Vulnerability Assessment
13 31 (38.27%) Self-Motivation
14 30 (37.04%) Virtual Machines
14 30 (37.04%) QRadar
14 30 (37.04%) Nessus
14 30 (37.04%) Information Assurance
14 30 (37.04%) Oracle
15 29 (35.80%) BeyondTrust
16 24 (29.63%) C
17 22 (27.16%) CISSP
18 21 (25.93%) CISM
18 21 (25.93%) Cyberthreat
19 17 (20.99%) CISA
19 17 (20.99%) Security Monitoring
20 16 (19.75%) Threat Analysis

CSIRT
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Cloud Services
1 2 (2.47%) Amazon AWS
1 2 (2.47%) Office 365
1 2 (2.47%) SaaS
Communications & Networking
1 52 (64.20%) Firewall
2 41 (50.62%) Network Security
3 7 (8.64%) Cisco ASA
3 7 (8.64%) F5 BIG-IP GTM
3 7 (8.64%) F5 BIG-IP LTM
3 7 (8.64%) Intrusion Detection
3 7 (8.64%) TCP/IP
4 6 (7.41%) Sourcefire
5 3 (3.70%) SAN
6 2 (2.47%) DNS
6 2 (2.47%) FTP
6 2 (2.47%) HTTP
6 2 (2.47%) NAS
6 2 (2.47%) SMTP
7 1 (1.23%) BIG-IP
Database & Business Intelligence
1 6 (7.41%) Big Data
General
1 10 (12.35%) Finance
2 7 (8.64%) Legal
3 6 (7.41%) Military
4 4 (4.94%) Law
5 1 (1.23%) Banking
5 1 (1.23%) Financial Institution
5 1 (1.23%) Investment Banking
5 1 (1.23%) Retail
Job Titles
1 35 (43.21%) Analyst
2 30 (37.04%) Security Analyst
3 18 (22.22%) Incident Analyst
4 14 (17.28%) Security Incident Analyst
5 13 (16.05%) Senior Analyst
6 10 (12.35%) Security Engineer
6 10 (12.35%) SOC Analyst
7 9 (11.11%) Junior
7 9 (11.11%) Senior Security Analyst
8 8 (9.88%) Consultant
8 8 (9.88%) Senior Incident Analyst
9 7 (8.64%) Junior Analyst
9 7 (8.64%) SIEM Analyst
10 6 (7.41%) CISSP Specialist
10 6 (7.41%) Cybersecurity Architect
10 6 (7.41%) Information Specialist
10 6 (7.41%) Junior Security Analyst
10 6 (7.41%) Security Manager
10 6 (7.41%) Security Solutions Architect
10 6 (7.41%) Security Support Engineer
Libraries, Frameworks & Software Standards
1 1 (1.23%) Middleware
Miscellaneous
1 36 (44.44%) Computer Science
2 34 (41.98%) Management Information System
3 31 (38.27%) Self-Motivation
4 21 (25.93%) Cyberthreat
5 10 (12.35%) Cyberattack
6 9 (11.11%) Security Operations Centre
7 7 (8.64%) Analytical Skills
7 7 (8.64%) Distributed Denial-of-Service
8 3 (3.70%) PKI
9 2 (2.47%) Cyber Kill Chain
9 2 (2.47%) Fintech
9 2 (2.47%) Hedge funds
10 1 (1.23%) Freedom of Information
10 1 (1.23%) NHS
Operating Systems
1 45 (55.56%) Windows
2 40 (49.38%) Linux
3 11 (13.58%) Unix
4 6 (7.41%) VMS
5 1 (1.23%) Kali Linux
Processes & Methodologies
1 63 (77.78%) Information Security
2 48 (59.26%) SIEM
3 45 (55.56%) Cybersecurity
4 42 (51.85%) Security Operations
5 36 (44.44%) Vulnerability Management
6 32 (39.51%) Vulnerability Assessment
7 30 (37.04%) Information Assurance
8 17 (20.99%) Security Monitoring
9 16 (19.75%) Threat Analysis
10 15 (18.52%) Remediation Plan
11 13 (16.05%) Malware Analysis
12 11 (13.58%) Computer Security
12 11 (13.58%) Reverse Engineering
13 9 (11.11%) Problem-Solving
14 8 (9.88%) Continuous Improvement
14 8 (9.88%) Stakeholder Engagement
15 7 (8.64%) Cyber Threat Intelligence
15 7 (8.64%) Security Testing
15 7 (8.64%) Threat Intelligence
15 7 (8.64%) Validation
Programming Languages
1 24 (29.63%) C
2 5 (6.17%) SQL
3 3 (3.70%) Bash Shell
3 3 (3.70%) Perl
3 3 (3.70%) PowerShell
3 3 (3.70%) Python
4 1 (1.23%) C#
4 1 (1.23%) C++
4 1 (1.23%) Java
4 1 (1.23%) PHP
Qualifications
1 37 (45.68%) Degree
2 35 (43.21%) GCIH
3 32 (39.51%) GCIA
3 32 (39.51%) GIAC
4 22 (27.16%) CISSP
5 21 (25.93%) CISM
6 17 (20.99%) CISA
7 8 (9.88%) SANS
8 7 (8.64%) CRISC
9 5 (6.17%) CEH
10 4 (4.94%) Network+ Certification
10 4 (4.94%) Novell Certification
11 3 (3.70%) Computer Science Degree
12 2 (2.47%) CHFI
12 2 (2.47%) CREST Certified
12 2 (2.47%) GCFA
13 1 (1.23%) EC-Council LPT
13 1 (1.23%) ECSA
13 1 (1.23%) ISEB
13 1 (1.23%) ISEB Practitioner
Quality Assurance & Compliance
1 6 (7.41%) ISO/IEC 27001
1 6 (7.41%) PCI DSS
1 6 (7.41%) PMO
2 5 (6.17%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
3 4 (4.94%) COBIT
4 3 (3.70%) GPG13
5 2 (2.47%) BS7799
5 2 (2.47%) GDPR
5 2 (2.47%) ISO 22301
5 2 (2.47%) NIST 800
6 1 (1.23%) Cyber Essentials
6 1 (1.23%) SLA
System Software
1 30 (37.04%) Virtual Machines
2 7 (8.64%) ProxySG
3 3 (3.70%) Active Directory
3 3 (3.70%) VMware Infrastructure
Systems Management
1 30 (37.04%) Nessus
1 30 (37.04%) QRadar
2 11 (13.58%) Computer Emergency Response Teams
3 4 (4.94%) Host Intrusion Detection System
4 1 (1.23%) Computer Incident Response Team
Vendors
1 30 (37.04%) Oracle
2 29 (35.80%) BeyondTrust
3 7 (8.64%) Blue Coat
3 7 (8.64%) Cisco
3 7 (8.64%) F5
3 7 (8.64%) Forcepoint
3 7 (8.64%) Juniper
4 4 (4.94%) Sun
5 3 (3.70%) VMware
6 1 (1.23%) Intel
6 1 (1.23%) McAfee
6 1 (1.23%) Splunk