Period
to 17 October 2019

The following table provides summary statistics for permanent job vacancies with a requirement for HMG Security Policy Framework skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited HMG Security Policy Framework over the 6 months to 17 October 2019 with a comparison to the same period in the previous 2 years.

HMG Security Policy Framework (SPF)
UK
6 months to
17 Oct 2019
Same period 2018 Same period 2017
Rank 913 1086 1100
Rank change year-on-year +173 +14 +26
Permanent jobs citing HMG Security Policy Framework 157 85 101
As % of all permanent IT jobs advertised in the UK 0.11% 0.052% 0.058%
As % of the Quality Assurance & Compliance category 0.86% 0.39% 0.46%
Number of salaries quoted 129 60 76
UK median annual salary £65,000 £62,500 £65,000
Median salary % change year-on-year +4.00% -3.85% -7.14%
10th Percentile £49,550 £38,750 £42,500
90th Percentile £75,000 £80,000 £100,625
UK excluding London median annual salary £65,000 £60,000 £62,000
% change year-on-year +8.33% -3.23% -11.43%

HMG Security Policy Framework is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 18,163 21,708 21,815
As % of all permanent IT jobs advertised in the UK 13.24% 13.20% 12.46%
Number of salaries quoted 13,553 16,482 16,171
UK median annual salary £50,000 £50,000 £50,000
10th Percentile £28,250 £28,250 £27,500
90th Percentile £82,500 £80,000 £77,500
UK excluding London median annual salary £45,000 £45,000 £42,500
% change year-on-year - +5.88% -

HMG Security Policy Framework
Job Vacancy Trend

Job postings citing HMG Security Policy Framework as a percentage of all IT jobs advertised.

Job vacancy trend for HMG Security Policy Framework in the UK

HMG Security Policy Framework
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing HMG Security Policy Framework.

Salary trend for HMG Security Policy Framework in the UK

HMG Security Policy Framework
Salary Histogram

The salary distribution of IT jobs citing HMG Security Policy Framework over the 6 months to 17 October 2019.

Salary histogram for HMG Security Policy Framework in the UK

HMG Security Policy Framework
Top 13 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing HMG Security Policy Framework within the UK over the 6 months to 17 October 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +196 151 £65,000 +8.33% 26
UK excluding London +145 118 £65,000 +8.33% 18
South West +57 54 £67,500 +3.85% 7
South East +38 29 £70,000 +16.67% 5
London +93 23 £67,500 +17.39% 9
East of England +65 19 £65,000 - 3
Midlands +33 8 £62,500 +54.32% 1
West Midlands +28 8 £62,500 +54.32%
North of England +33 5 £67,500 +87.50% 1
North West - 4 £67,500 - 1
Wales - 2 £48,750 -
Scotland +13 1 £41,330 -31.12% 1
Yorkshire - 1 - -

For the 6 months to 17 October 2019, IT jobs citing HMG Security Policy Framework also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for HMG Security Policy Framework.

1 101 (64.33%) ISO/IEC 27001
2 90 (57.32%) Security Cleared
3 89 (56.69%) Public Sector
4 84 (53.50%) Information Security
5 81 (51.59%) Cybersecurity
6 66 (42.04%) Information Assurance
7 61 (38.85%) Management Information System
8 50 (31.85%) ITIL
9 48 (30.57%) Firewall
10 47 (29.94%) TOGAF
10 47 (29.94%) Enterprise Architecture
10 47 (29.94%) JSP 440
11 46 (29.30%) CISSP
12 45 (28.66%) Risk Management
12 45 (28.66%) Security Architecture
13 40 (25.48%) PCI DSS
14 37 (23.57%) Analytical Skills
15 36 (22.93%) Technical Architecture
16 35 (22.29%) Sarbanes-Oxley
16 35 (22.29%) HMG Infosec
17 34 (21.66%) Service Delivery
18 33 (21.02%) IT Strategy
18 33 (21.02%) Project Delivery
19 32 (20.38%) Critical Thinking
19 32 (20.38%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
19 32 (20.38%) Finance
20 31 (19.75%) SIEM
21 30 (19.11%) Degree
21 30 (19.11%) CESG Certified Professional
21 30 (19.11%) CISM

HMG Security Policy Framework
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 2 (1.27%) IIS
2 1 (0.64%) Tomcat
2 1 (0.64%) WebSphere
Cloud Services
1 1 (0.64%) Azure
1 1 (0.64%) Office 365
Communications & Networking
1 48 (30.57%) Firewall
2 28 (17.83%) Network Security
3 16 (10.19%) Cisco ASA
3 16 (10.19%) Cisco Firepower
4 1 (0.64%) F5 BIG-IP LTM
4 1 (0.64%) HTTP
4 1 (0.64%) HTTPS
4 1 (0.64%) Internet
4 1 (0.64%) IPsec
4 1 (0.64%) LAN
4 1 (0.64%) TCP/IP
4 1 (0.64%) WAN
Database & Business Intelligence
1 1 (0.64%) SQL Server
1 1 (0.64%) SQL Server 2012
Development Applications
1 1 (0.64%) Eclipse
1 1 (0.64%) Fiddler
1 1 (0.64%) Git (software)
1 1 (0.64%) Maven
1 1 (0.64%) SoapUI
General
1 89 (56.69%) Public Sector
2 32 (20.38%) Finance
3 19 (12.10%) Banking
4 15 (9.55%) Local Government
5 7 (4.46%) Military
6 5 (3.18%) Law
6 5 (3.18%) Legal
7 4 (2.55%) Fire and Rescue
7 4 (2.55%) Police
8 3 (1.91%) Telecoms
9 2 (1.27%) Electronics
9 2 (1.27%) Manufacturing
9 2 (1.27%) Marketing
Job Titles
1 71 (45.22%) Consultant
2 61 (38.85%) Security Consultant
3 37 (23.57%) Architect
4 32 (20.38%) Solutions Architect
5 30 (19.11%) Cybersecurity Consultant
6 22 (14.01%) Network Consultant
6 22 (14.01%) Network Security Consultant
7 18 (11.46%) Security Architect
8 16 (10.19%) Firewall Consultant
9 13 (8.28%) Security Solutions Architect
10 12 (7.64%) Security Engineer
11 11 (7.01%) Security Manager
12 10 (6.37%) Security Officer
13 9 (5.73%) Information Manager
13 9 (5.73%) Information Security Consultant
13 9 (5.73%) Information Security Manager
13 9 (5.73%) IT Architect
13 9 (5.73%) IT Security Architect
14 8 (5.10%) Cybersecurity Engineer
15 5 (3.18%) Senior Security Engineer
Libraries, Frameworks & Software Standards
1 20 (12.74%) SOAP
1 20 (12.74%) Web Services
2 19 (12.10%) JSON
2 19 (12.10%) JSP
2 19 (12.10%) XML
3 1 (0.64%) EJB
3 1 (0.64%) Hibernate
3 1 (0.64%) iBATIS
3 1 (0.64%) Java SE
3 1 (0.64%) REST
3 1 (0.64%) Spring
Miscellaneous
1 61 (38.85%) Management Information System
2 37 (23.57%) Analytical Skills
3 29 (18.47%) PKI
4 12 (7.64%) CESG
5 11 (7.01%) Self-Motivation
6 9 (5.73%) Mobile Computing
7 4 (2.55%) Cyberattack
7 4 (2.55%) Data Centre
7 4 (2.55%) Public Cloud
8 2 (1.27%) Cloud Native
8 2 (1.27%) NHS
9 1 (0.64%) Acoustics
9 1 (0.64%) CESG CLAS
9 1 (0.64%) Client/Server
9 1 (0.64%) e-Learning
9 1 (0.64%) Freedom of Information
Operating Systems
1 19 (12.10%) Linux
2 1 (0.64%) Windows
2 1 (0.64%) Windows 7
2 1 (0.64%) Windows Server
2 1 (0.64%) Windows Server 2012
Processes & Methodologies
1 84 (53.50%) Information Security
2 81 (51.59%) Cybersecurity
3 66 (42.04%) Information Assurance
4 50 (31.85%) ITIL
5 47 (29.94%) Enterprise Architecture
5 47 (29.94%) TOGAF
6 45 (28.66%) Risk Management
6 45 (28.66%) Security Architecture
7 36 (22.93%) Technical Architecture
8 34 (21.66%) Service Delivery
9 33 (21.02%) IT Strategy
9 33 (21.02%) Project Delivery
10 32 (20.38%) Critical Thinking
11 31 (19.75%) SIEM
12 29 (18.47%) Cryptography
13 28 (17.83%) Identity Management
13 28 (17.83%) SABSA
13 28 (17.83%) Vulnerability Scanning
14 22 (14.01%) Architectural Design
14 22 (14.01%) GAP Analysis
Programming Languages
1 28 (17.83%) C
2 20 (12.74%) Java
2 20 (12.74%) PowerShell
3 19 (12.10%) C++
3 19 (12.10%) Python
Qualifications
1 90 (57.32%) Security Cleared
2 46 (29.30%) CISSP
3 30 (19.11%) CESG Certified Professional
3 30 (19.11%) CISM
3 30 (19.11%) Degree
4 27 (17.20%) SC Cleared
5 26 (16.56%) Master's Degree
6 15 (9.55%) CISA
7 11 (7.01%) CREST Certified
8 9 (5.73%) TOGAF Certification
9 8 (5.10%) DV Cleared
10 4 (2.55%) CISMP
11 3 (1.91%) CASP
11 3 (1.91%) IISP
11 3 (1.91%) ISO 27001 Lead Auditor
12 2 (1.27%) CRISC
13 1 (0.64%) CLAS
13 1 (0.64%) Computer Science Degree
13 1 (0.64%) GIAC
13 1 (0.64%) SANS
Quality Assurance & Compliance
1 101 (64.33%) ISO/IEC 27001
2 47 (29.94%) JSP 440
3 40 (25.48%) PCI DSS
4 35 (22.29%) HMG Infosec
4 35 (22.29%) Sarbanes-Oxley
5 32 (20.38%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 17 (10.83%) Cyber Essentials
6 17 (10.83%) NIST
7 9 (5.73%) NCSC
8 5 (3.18%) CESG Infosec
8 5 (3.18%) GDPR
8 5 (3.18%) RMADS
9 2 (1.27%) ISO 22301
9 2 (1.27%) PA-DSS
10 1 (0.64%) BS25999
System Software
1 1 (0.64%) Active Directory
Systems Management
1 16 (10.19%) CASB
1 16 (10.19%) Stealthwatch
1 16 (10.19%) Symantec Endpoint Protection
2 1 (0.64%) SCCM
2 1 (0.64%) WSUS
Vendors
1 22 (14.01%) Cisco
2 21 (13.38%) Juniper
2 21 (13.38%) Palo Alto
3 20 (12.74%) Microsoft
4 17 (10.83%) CheckPoint
5 16 (10.19%) McAfee
5 16 (10.19%) Symantec
5 16 (10.19%) Trend Micro
6 5 (3.18%) Capita
6 5 (3.18%) F5
7 2 (1.27%) SAP
7 2 (1.27%) Splunk
8 1 (0.64%) IBM
8 1 (0.64%) VMware