Period
to 15 November 2018

The following table provides summary statistics for permanent job vacancies with a requirement for CSSLP qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 15 November 2018 with a comparison to the same period in the previous 2 years.

(ISC)² Certified Secure Software Lifecycle Professional (ISC2 CSSLP)
UK
6 months to
15 Nov 2018
Same period 2017 Same period 2016
Rank 1019 1168 1214
Rank change year-on-year +149 +46 +78
Permanent jobs citing CSSLP 121 31 30
As % of all permanent IT jobs advertised in the UK 0.074% 0.017% 0.016%
As % of the Qualifications category 0.31% 0.071% 0.060%
Number of salaries quoted 39 20 22
UK median annual salary £65,000 £50,000 £65,000
Median salary % change year-on-year +30.00% -23.08% +4.84%
10th Percentile £40,000 £39,875 £31,250
90th Percentile £90,250 £72,525 £90,000
UK excluding London median annual salary £65,000 £46,500 £35,000
% change year-on-year +39.78% +32.86% -49.09%

CSSLP is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 38,690 43,793 50,355
As % of all permanent IT jobs advertised in the UK 23.74% 24.26% 26.35%
Number of salaries quoted 28,625 33,646 40,390
UK median annual salary £50,000 £47,500 £45,000
Median salary % change year-on-year +5.26% +5.56% -
10th Percentile £26,250 £26,000 £26,250
90th Percentile £80,900 £77,500 £76,250
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +3.66%

CSSLP
Job Vacancy Trend

Job postings citing CSSLP as a percentage of all IT jobs advertised.

Job vacancy trend for CSSLP in the UK

CSSLP
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing CSSLP.

Salary trend for CSSLP in the UK

CSSLP
Salary Histogram

The salary distribution of IT jobs citing CSSLP over the 6 months to 15 November 2018.

Salary histogram for CSSLP in the UK

CSSLP
Top 10 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing CSSLP within the UK over the 6 months to 15 November 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +135 118 £65,000 +30.00% 5
UK excluding London +106 103 £65,000 +39.78% 4
East of England +105 97 £65,000 +39.78%
London +57 18 £85,000 +30.77% 3
Scotland - 3 - -
North of England - 2 £75,000 -
Yorkshire - 1 £75,000 -
Midlands - 1 £57,500 - 1
North West - 1 £75,000 -
West Midlands - 1 £57,500 - 1

For the 6 months to 15 November 2018, IT jobs citing CSSLP also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for CSSLP.

1 115 (95.04%) CISSP
2 102 (84.30%) SANS
3 98 (80.99%) SSCP
4 80 (66.12%) SIEM
5 79 (65.29%) Microsoft
6 78 (64.46%) Security Operations
7 70 (57.85%) Retail
8 60 (49.59%) Symantec
9 59 (48.76%) Cybersecurity
10 58 (47.93%) CompTIA Security+
10 58 (47.93%) CISA
10 58 (47.93%) CISM
10 58 (47.93%) GIAC
11 57 (47.11%) Continuous Improvement
12 55 (45.45%) Firewall
13 51 (42.15%) Security Operations Centre
14 48 (39.67%) Data Loss Prevention
15 43 (35.54%) Windows
15 43 (35.54%) ISSAP
15 43 (35.54%) ISSEP
16 41 (33.88%) Risk Management
17 40 (33.06%) VMware
17 40 (33.06%) Cisco
17 40 (33.06%) Cisco Certification
17 40 (33.06%) Microsoft Certification
17 40 (33.06%) RHCE
17 40 (33.06%) Red Hat
17 40 (33.06%) CCIE
17 40 (33.06%) CCSP
17 40 (33.06%) CCNP

CSSLP
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 2 (1.65%) Apache
1 2 (1.65%) nginx
Cloud Services
1 20 (16.53%) Amazon AWS
2 10 (8.26%) Microsoft Azure
3 8 (6.61%) Mimecast
3 8 (6.61%) Office 365
4 6 (4.96%) Google Cloud Platform
Communications & Networking
1 55 (45.45%) Firewall
2 26 (21.49%) Intrusion Detection
3 25 (20.66%) Wireshark
4 12 (9.92%) Network Security
5 8 (6.61%) DKIM
5 8 (6.61%) DMARC
6 6 (4.96%) HTTP
6 6 (4.96%) Reverse Proxy
6 6 (4.96%) SSL
6 6 (4.96%) Wireless
7 4 (3.31%) TCP/IP
8 2 (1.65%) SNMP
Database & Business Intelligence
1 4 (3.31%) NoSQL
2 1 (0.83%) Big Data
Development Applications
1 12 (9.92%) Metasploit
2 3 (2.48%) Atlassian Bamboo
2 3 (2.48%) TeamCity
3 1 (0.83%) Jenkins
General
1 70 (57.85%) Retail
2 8 (6.61%) Finance
3 6 (4.96%) Telecoms
4 2 (1.65%) Legal
5 1 (0.83%) Banking
5 1 (0.83%) Retail Banking
Job Titles
1 36 (29.75%) Security Engineer
2 29 (23.97%) Security Manager
3 28 (23.14%) Engineering Manager
4 24 (19.83%) Architect
5 21 (17.36%) Security Architect
6 18 (14.88%) Analyst
6 18 (14.88%) SIEM Analyst
6 18 (14.88%) SIEM Engineer
6 18 (14.88%) SOC Analyst
6 18 (14.88%) SOC Engineer
7 17 (14.05%) IT Architect
7 17 (14.05%) IT Security Architect
7 17 (14.05%) Service Architect
8 12 (9.92%) Vulnerability Management Engineer
9 8 (6.61%) Consultant
9 8 (6.61%) Security Consultant
10 6 (4.96%) Penetration Tester
10 6 (4.96%) Tester
11 5 (4.13%) Senior Security Engineer
12 4 (3.31%) Principal Consultant
Libraries, Frameworks & Software Standards
1 6 (4.96%) Node.js
1 6 (4.96%) SOAP
2 3 (2.48%) .NET
3 2 (1.65%) Elastic Stack
3 2 (1.65%) Twitter Bootstrap
3 2 (1.65%) Web Services
4 1 (0.83%) .NET Framework
Miscellaneous
1 51 (42.15%) Security Operations Centre
2 28 (23.14%) Analytical Skills
3 23 (19.01%) Cyber Kill Chain
3 23 (19.01%) Cyberthreat
3 23 (19.01%) Self-Motivation
4 17 (14.05%) Data Centre
5 11 (9.09%) PKI
6 7 (5.79%) Mobile App
7 6 (4.96%) CESG
7 6 (4.96%) Cyberattack
7 6 (4.96%) Embedded Systems
8 5 (4.13%) Computer Science
9 4 (3.31%) Cyber Defence
10 2 (1.65%) Blog
10 2 (1.65%) Distributed Denial-of-Service
Operating Systems
1 43 (35.54%) Windows
2 37 (30.58%) Unix
3 21 (17.36%) Linux
4 12 (9.92%) Kali Linux
5 2 (1.65%) Debian
5 2 (1.65%) Red Hat Enterprise Linux
Processes & Methodologies
1 80 (66.12%) SIEM
2 78 (64.46%) Security Operations
3 59 (48.76%) Cybersecurity
4 57 (47.11%) Continuous Improvement
5 48 (39.67%) Data Loss Prevention
6 41 (33.88%) Risk Management
7 40 (33.06%) Event Correlation
7 40 (33.06%) Problem-Solving
8 39 (32.23%) Penetration Testing
9 38 (31.40%) Security Architecture
10 34 (28.10%) Application Performance Monitoring
10 34 (28.10%) Identity Access Management
10 34 (28.10%) Performance Monitoring
11 29 (23.97%) Information Security
11 29 (23.97%) Mentoring
12 26 (21.49%) Vulnerability Assessment
13 25 (20.66%) Analytics
13 25 (20.66%) Infrastructure Engineering
13 25 (20.66%) Threat Intelligence
14 24 (19.83%) Due Diligence
Programming Languages
1 21 (17.36%) Perl
1 21 (17.36%) Python
2 14 (11.57%) Ruby
3 13 (10.74%) PHP
4 12 (9.92%) Go
5 9 (7.44%) Bash Shell
6 8 (6.61%) SQL
7 7 (5.79%) Java
8 4 (3.31%) PowerShell
9 3 (2.48%) C
9 3 (2.48%) C#
9 3 (2.48%) C++
10 1 (0.83%) Apple Swift
10 1 (0.83%) JavaScript
10 1 (0.83%) Kotlin
10 1 (0.83%) Objective-C
Qualifications
1 115 (95.04%) CISSP
2 102 (84.30%) SANS
3 98 (80.99%) SSCP
4 58 (47.93%) CISA
4 58 (47.93%) CISM
4 58 (47.93%) CompTIA Security+
4 58 (47.93%) GIAC
5 43 (35.54%) ISSAP
5 43 (35.54%) ISSEP
6 40 (33.06%) CCIE
6 40 (33.06%) CCNP
6 40 (33.06%) CCSP
6 40 (33.06%) Cisco Certification
6 40 (33.06%) GCWN
6 40 (33.06%) MCSE
6 40 (33.06%) Microsoft Certification
6 40 (33.06%) RHCA
6 40 (33.06%) RHCE
6 40 (33.06%) VCDX
6 40 (33.06%) VMware Certified Professional (VCP)
Quality Assurance & Compliance
1 4 (3.31%) PCI DSS
2 2 (1.65%) ISO/IEC 27001
System Software
1 17 (14.05%) VMware Infrastructure
2 3 (2.48%) Firmware
Systems Management
1 23 (19.01%) RSA Security Analytics
2 12 (9.92%) Nessus
2 12 (9.92%) Nmap
3 3 (2.48%) Host Intrusion Detection System
4 2 (1.65%) SELinux
Vendors
1 79 (65.29%) Microsoft
2 60 (49.59%) Symantec
3 40 (33.06%) Cisco
3 40 (33.06%) Red Hat
3 40 (33.06%) VMware
4 37 (30.58%) Sophos
5 23 (19.01%) Splunk
6 12 (9.92%) Netsparker
6 12 (9.92%) Qualys
7 8 (6.61%) Forcepoint
8 6 (4.96%) Google