Period
to 2 March 2021

The following table provides summary statistics for permanent job vacancies with a requirement for HMG Security Policy Framework skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited HMG Security Policy Framework over the 6 months to 2 March 2021 with a comparison to the same period in the previous 2 years.

HMG Security Policy Framework (SPF)
UK
6 months to
2 Mar 2021
Same period 2020 Same period 2019
Rank 724 876 1024
Rank change year-on-year +152 +148 +87
Permanent jobs citing HMG Security Policy Framework 93 155 88
As % of all permanent jobs advertised in the UK 0.12% 0.13% 0.059%
As % of the Quality Assurance & Compliance category 1.03% 1.02% 0.42%
Number of salaries quoted 49 148 56
Median annual salary £70,000 £72,500 £65,000
Median salary % change year-on-year -3.45% +11.54% -7.14%
10th Percentile £42,720 £46,250 £39,733
90th Percentile £130,000 £88,750 £77,500
UK excluding London median annual salary £67,500 £64,250 £65,000
% change year-on-year +5.06% -1.15% -

HMG Security Policy Framework is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 8,991 15,207 20,918
As % of all permanent IT jobs advertised in the UK 11.93% 12.54% 13.91%
Number of salaries quoted 6,459 11,870 15,511
Median annual salary £52,500 £52,500 £50,000
Median salary % change year-on-year - +5.00% -
10th Percentile £31,149 £28,500 £27,500
90th Percentile £85,000 £83,750 £81,250
UK excluding London median annual salary £47,500 £45,000 £45,000
% change year-on-year +5.56% - +4.65%

HMG Security Policy Framework
Job Vacancy Trend

Job postings citing HMG Security Policy Framework as a proportion of all IT jobs advertised.

Job vacancy trend for HMG Security Policy Framework in the UK

HMG Security Policy Framework
Salary Trend

3-month moving average salary quoted in jobs citing HMG Security Policy Framework.

Salary trend for HMG Security Policy Framework in the UK

HMG Security Policy Framework
Salary Histogram

Salary distribution for jobs citing HMG Security Policy Framework over the 6 months to 2 March 2021.

Salary histogram for HMG Security Policy Framework in the UK

HMG Security Policy Framework
Top 11 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing HMG Security Policy Framework within the UK over the 6 months to 2 March 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
UK excluding London +128 72 £67,500 +5.06% 7
England +155 68 £67,500 +3.85% 7
South East +116 23 £72,500 +3.57% 3
South West +20 19 £65,000 -1.89% 2
Scotland +43 16 - - 1
Midlands +72 11 £67,500 +22.73% 1
West Midlands +56 11 £67,500 +17.39% 1
London +128 7 £75,000 - 1
Work from Home -139 7 £130,000 +62.50% 3
North of England +55 3 £40,000 -27.27%
Yorkshire +41 3 £40,000 -

For the 6 months to 2 March 2021, IT jobs citing HMG Security Policy Framework also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for HMG Security Policy Framework.

1 87 (93.55%) ISO/IEC 27001
2 74 (79.57%) Information Security
3 63 (67.74%) NCSC
4 46 (49.46%) Cybersecurity
4 46 (49.46%) Risk Management
5 42 (45.16%) SABSA
6 36 (38.71%) TOGAF
6 36 (38.71%) JSP 440
7 34 (36.56%) CISSP
8 32 (34.41%) Information Assurance
9 31 (33.33%) CESG
9 31 (33.33%) CESG Certified Professional
10 30 (32.26%) Security Cleared
10 30 (32.26%) Risk Analysis
11 26 (27.96%) CISM
11 26 (27.96%) Public Sector
12 25 (26.88%) Migration
13 22 (23.66%) Management Information System
14 21 (22.58%) Finance
14 21 (22.58%) Security Architecture
15 19 (20.43%) NIST
15 19 (20.43%) GDPR
16 18 (19.35%) Security Testing
16 18 (19.35%) SC Cleared
17 17 (18.28%) DV Cleared
17 17 (18.28%) Manufacturing
17 17 (18.28%) Risk Assessment
18 15 (16.13%) Agile Software Development
19 14 (15.05%) CISA
20 13 (13.98%) RMADS

HMG Security Policy Framework
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 5 (5.38%) IIS
2 1 (1.08%) MS Exchange
2 1 (1.08%) SharePoint
2 1 (1.08%) Skype for Business
Applications
1 3 (3.23%) Microsoft PowerPoint
2 2 (2.15%) Microsoft Excel
3 1 (1.08%) MS Visio
Business Applications
1 9 (9.68%) Infor M3
Cloud Services
1 8 (8.60%) Azure
2 5 (5.38%) AWS
3 4 (4.30%) GCP
4 3 (3.23%) IaaS
4 3 (3.23%) PaaS
4 3 (3.23%) SaaS
5 1 (1.08%) Cloud Computing
5 1 (1.08%) Microsoft 365
Communications & Networking
1 11 (11.83%) Firewall
2 6 (6.45%) Intrusion Detection
3 5 (5.38%) RTP
4 4 (4.30%) Internet
5 3 (3.23%) Network Security
6 2 (2.15%) DNS
7 1 (1.08%) DHCP
7 1 (1.08%) DKIM
7 1 (1.08%) DMARC
7 1 (1.08%) FTP
7 1 (1.08%) Skype
7 1 (1.08%) Wireless
General
1 26 (27.96%) Public Sector
2 21 (22.58%) Finance
3 17 (18.28%) Manufacturing
4 12 (12.90%) Telecoms
5 9 (9.68%) Electronics
5 9 (9.68%) Marketing
6 2 (2.15%) Aerospace
6 2 (2.15%) French Language
6 2 (2.15%) German Language
6 2 (2.15%) Italian Language
6 2 (2.15%) Retail
7 1 (1.08%) Local Government
7 1 (1.08%) Police
Job Titles
1 41 (44.09%) Architect
1 41 (44.09%) Security Architect
2 24 (25.81%) Consultant
3 20 (21.51%) Security Consultant
4 10 (10.75%) Cybersecurity Consultant
4 10 (10.75%) Information Security Consultant
5 8 (8.60%) Information Assurance Consultant
5 8 (8.60%) Senior Consultant
5 8 (8.60%) Senior Information Assurance Consultant
6 6 (6.45%) Information Manager
6 6 (6.45%) Managing Consultant
7 5 (5.38%) Information Security Manager
7 5 (5.38%) Security Manager
8 4 (4.30%) Information Assurance Engineer
8 4 (4.30%) Senior Architect
8 4 (4.30%) Senior Information Security Consultant
8 4 (4.30%) Senior Security Architect
8 4 (4.30%) Senior Security Consultant
9 3 (3.23%) AWS Architect
9 3 (3.23%) Information Assurance Practitioner
Miscellaneous
1 31 (33.33%) CESG
2 22 (23.66%) Management Information System
3 7 (7.53%) Data Protection Act
4 3 (3.23%) Freedom of Information
4 3 (3.23%) Freedom of Information Act
4 3 (3.23%) PKI
4 3 (3.23%) Virtual Team
5 2 (2.15%) Analytical Skills
5 2 (2.15%) NHS
5 2 (2.15%) Public Cloud
5 2 (2.15%) Self-Motivation
6 1 (1.08%) CCTV
6 1 (1.08%) CESG CLAS
6 1 (1.08%) Cyberthreat
6 1 (1.08%) e-Learning
Operating Systems
1 2 (2.15%) Linux
1 2 (2.15%) Windows
2 1 (1.08%) Android
2 1 (1.08%) CentOS
2 1 (1.08%) Windows Server 2008
2 1 (1.08%) Windows Server 2012
2 1 (1.08%) Windows Server 2016
Processes & Methodologies
1 74 (79.57%) Information Security
2 46 (49.46%) Cybersecurity
2 46 (49.46%) Risk Management
3 42 (45.16%) SABSA
4 36 (38.71%) TOGAF
5 32 (34.41%) Information Assurance
6 30 (32.26%) Risk Analysis
7 25 (26.88%) Migration
8 21 (22.58%) Security Architecture
9 18 (19.35%) Security Testing
10 17 (18.28%) Risk Assessment
11 15 (16.13%) Agile Software Development
12 11 (11.83%) Enterprise Architecture
13 10 (10.75%) Security Management
14 9 (9.68%) Business Intelligence
14 9 (9.68%) Data Privacy
14 9 (9.68%) Digital Marketing
14 9 (9.68%) Programme Management
14 9 (9.68%) Security Monitoring
15 8 (8.60%) ISMS
Programming Languages
1 1 (1.08%) Python
Qualifications
1 34 (36.56%) CISSP
2 31 (33.33%) CESG Certified Professional
3 30 (32.26%) Security Cleared
4 26 (27.96%) CISM
5 18 (19.35%) SC Cleared
6 17 (18.28%) DV Cleared
7 14 (15.05%) CISA
8 7 (7.53%) ISO 27001 Lead Implementer
9 6 (6.45%) CRISC
9 6 (6.45%) PCI QSA
9 6 (6.45%) SANS
10 5 (5.38%) IISP
11 4 (4.30%) CASP
11 4 (4.30%) Degree
11 4 (4.30%) FFIEC
12 2 (2.15%) (ISC)2 CCSP
12 2 (2.15%) Cisco Certification
13 1 (1.08%) CFCE
13 1 (1.08%) CLAS
13 1 (1.08%) GCED
Quality Assurance & Compliance
1 87 (93.55%) ISO/IEC 27001
2 63 (67.74%) NCSC
3 36 (38.71%) JSP 440
4 19 (20.43%) GDPR
4 19 (20.43%) NIST
5 13 (13.98%) Cyber Essentials
5 13 (13.98%) ISO/IEC 27005
5 13 (13.98%) RMADS
6 11 (11.83%) PCI DSS
7 9 (9.68%) Government Security Classifications
7 9 (9.68%) Sarbanes-Oxley
8 6 (6.45%) COBIT
8 6 (6.45%) NIST 800
8 6 (6.45%) PA-DSS
9 4 (4.30%) Cyber Essentials PLUS
10 2 (2.15%) ISO/IEC 20000
11 1 (1.08%) HMG Infosec
11 1 (1.08%) ISO 22301
11 1 (1.08%) ISO 31000
11 1 (1.08%) QA
System Software
1 2 (2.15%) Active Directory
1 2 (2.15%) VMware Infrastructure
2 1 (1.08%) VMware ESXi
2 1 (1.08%) vSphere
Systems Management
1 2 (2.15%) CSIRT
2 1 (1.08%) Nagios
Vendors
1 9 (9.68%) SAP
2 5 (5.38%) Microsoft
3 4 (4.30%) Google
4 2 (2.15%) Splunk
4 2 (2.15%) VMware
5 1 (1.08%) hybris
5 1 (1.08%) Red Hat
5 1 (1.08%) Remedy