Period
to 25 May 2018

The following table provides summary statistics for permanent job vacancies with a requirement for HMG Security Policy Framework skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited HMG Security Policy Framework over the 6 months to 25 May 2018 with a comparison to the same period in the previous 2 years.

HMG Security Policy Framework (SPF)
UK
6 months to
25 May 2018
Same period 2017 Same period 2016
Rank 1075 1075 1100
Rank change year-on-year 0 +25 +27
Permanent jobs citing HMG Security Policy Framework 102 112 195
As % of all permanent IT jobs advertised in the UK 0.059% 0.066% 0.097%
As % of the Quality Assurance & Compliance category 0.45% 0.55% 0.74%
Number of salaries quoted 77 83 164
UK median annual salary £65,000 £45,269 £55,000
Median salary % change year-on-year +43.59% -17.69% -8.33%
10th Percentile £44,500 £32,940 £39,913
90th Percentile £90,000 £85,750 £77,500
UK excluding London median annual salary £58,000 £45,269 £55,000
% change year-on-year +28.12% -17.69% -4.35%

HMG Security Policy Framework is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 22,787 20,324 26,450
As % of all permanent IT jobs advertised in the UK 13.10% 12.02% 13.18%
Number of salaries quoted 17,503 15,904 20,957
UK median annual salary £50,000 £47,500 £47,500
Median salary % change year-on-year +5.26% - +5.56%
10th Percentile £28,250 £26,250 £26,250
90th Percentile £80,000 £77,500 £75,000
UK excluding London median annual salary £45,000 £40,000 £42,500
% change year-on-year +12.50% -5.88% +6.25%

HMG Security Policy Framework
Job Vacancy Trend

Job postings citing HMG Security Policy Framework as a percentage of all IT jobs advertised.

Job vacancy trend for HMG Security Policy Framework in the UK

HMG Security Policy Framework
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing HMG Security Policy Framework.

Salary trend for HMG Security Policy Framework in the UK

HMG Security Policy Framework
Salary Histogram

The salary distribution of IT jobs citing HMG Security Policy Framework over the 6 months to 25 May 2018.

Salary histogram for HMG Security Policy Framework in the UK

HMG Security Policy Framework
Top 13 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing HMG Security Policy Framework within the UK over the 6 months to 25 May 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +15 77 £61,250 +21.79% 5
UK excluding London -27 55 £58,000 +28.12% 4
London -6 23 £70,000 -12.50% 2
South West -19 19 £58,000 +28.12%
South East -6 17 £52,500 +59.09% 2
East of England -3 8 £65,000 -40.91%
West Midlands - 6 £40,500 -
Midlands - 6 £40,500 -
North of England -6 2 £36,000 -46.67% 1
Scotland - 2 £50,500 - 1
North West -14 1 - -
Wales -40 1 £35,000 -22.68%
North East - 1 £36,000 - 1

For the 6 months to 25 May 2018, IT jobs citing HMG Security Policy Framework also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for HMG Security Policy Framework.

1 96 (94.12%) ISO/IEC 27001
2 59 (57.84%) Information Security
3 48 (47.06%) Information Assurance
4 47 (46.08%) PCI DSS
5 45 (44.12%) CISSP
6 43 (42.16%) Security Cleared
6 43 (42.16%) CESG Certified Professional
7 40 (39.22%) CESG
7 40 (39.22%) Management Information System
7 40 (39.22%) Risk Management
8 37 (36.27%) CISM
9 36 (35.29%) Sarbanes-Oxley
10 33 (32.35%) JSP 440
11 30 (29.41%) Security Architecture
12 29 (28.43%) SABSA
12 29 (28.43%) TOGAF
13 28 (27.45%) Customer Requirements
14 25 (24.51%) Cybersecurity
14 25 (24.51%) SC Cleared
14 25 (24.51%) DV Cleared
14 25 (24.51%) RMADS
14 25 (24.51%) GAP Analysis
15 24 (23.53%) COBIT
16 23 (22.55%) Risk Analysis
16 23 (22.55%) Presales
17 22 (21.57%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
18 21 (20.59%) Cisco
19 20 (19.61%) Symantec
19 20 (19.61%) McAfee
19 20 (19.61%) Firewall

HMG Security Policy Framework
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 15 (14.71%) IIS
2 4 (3.92%) SharePoint
3 2 (1.96%) CMS
3 2 (1.96%) Sitefinity
Applications
1 2 (1.96%) Microsoft Office
Business Applications
1 2 (1.96%) Dynamics CRM
Communications & Networking
1 20 (19.61%) Firewall
2 13 (12.75%) Cisco Firepower
2 13 (12.75%) Internet
3 9 (8.82%) Network Security
Database & Business Intelligence
1 14 (13.73%) Big Data
2 2 (1.96%) SQL Server
Development Applications
1 4 (3.92%) Rational DOORS
General
1 16 (15.69%) Finance
2 9 (8.82%) Local Government
2 9 (8.82%) Telecoms
3 6 (5.88%) Legal
4 2 (1.96%) Electronics
4 2 (1.96%) Manufacturing
4 2 (1.96%) Marketing
5 1 (0.98%) Publishing
Job Titles
1 57 (55.88%) Consultant
2 45 (44.12%) Security Consultant
3 24 (23.53%) Architect
4 23 (22.55%) Security Architect
5 16 (15.69%) Cloud Architect
6 15 (14.71%) Cybersecurity Consultant
7 14 (13.73%) Information Assurance Consultant
8 9 (8.82%) Principal Architect
8 9 (8.82%) Principal Consultant
8 9 (8.82%) Principal Security Architect
8 9 (8.82%) Principal Security Consultant
9 8 (7.84%) Senior Architect
9 8 (7.84%) Senior Security Architect
10 7 (6.86%) Information Assurance Engineer
10 7 (6.86%) Network Consultant
10 7 (6.86%) Network Security Consultant
11 6 (5.88%) Security Officer
12 5 (4.90%) Information Security Officer
13 4 (3.92%) Information Officer
13 4 (3.92%) Information Security Consultant
Libraries, Frameworks & Software Standards
1 2 (1.96%) .NET
1 2 (1.96%) .NET Framework
Miscellaneous
1 40 (39.22%) CESG
1 40 (39.22%) Management Information System
2 10 (9.80%) CESG CLAS
3 9 (8.82%) PKI
3 9 (8.82%) Self-Motivation
4 6 (5.88%) Analytical Skills
5 5 (4.90%) BYOD
5 5 (4.90%) NHS
6 4 (3.92%) Cyberthreat
6 4 (3.92%) Freedom of Information
7 3 (2.94%) Driving Licence
8 2 (1.96%) Data Centre
8 2 (1.96%) Distributed Denial-of-Service
8 2 (1.96%) Internet of Things
9 1 (0.98%) Data Protection Act
Operating Systems
1 2 (1.96%) Windows
1 2 (1.96%) Windows 7
1 2 (1.96%) Windows Server
1 2 (1.96%) Windows Server 2008
1 2 (1.96%) Windows Server 2012
Processes & Methodologies
1 59 (57.84%) Information Security
2 48 (47.06%) Information Assurance
3 40 (39.22%) Risk Management
4 30 (29.41%) Security Architecture
5 29 (28.43%) SABSA
5 29 (28.43%) TOGAF
6 28 (27.45%) Customer Requirements
7 25 (24.51%) Cybersecurity
7 25 (24.51%) GAP Analysis
8 23 (22.55%) Presales
8 23 (22.55%) Risk Analysis
9 20 (19.61%) Security Management
10 19 (18.63%) Risk Assessment
11 16 (15.69%) Change Control
11 16 (15.69%) Security Testing
12 14 (13.73%) Stakeholder Engagement
13 13 (12.75%) Stakeholder Management
14 12 (11.76%) ISMS
14 12 (11.76%) Mentoring
14 12 (11.76%) Service Delivery
Programming Languages
1 14 (13.73%) C
2 2 (1.96%) SQL
Qualifications
1 45 (44.12%) CISSP
2 43 (42.16%) CESG Certified Professional
2 43 (42.16%) Security Cleared
3 37 (36.27%) CISM
4 25 (24.51%) DV Cleared
4 25 (24.51%) SC Cleared
5 15 (14.71%) IISP
6 14 (13.73%) CLAS
6 14 (13.73%) Degree
7 9 (8.82%) CREST Certified
7 9 (8.82%) TOGAF Certification
8 8 (7.84%) CISA
9 6 (5.88%) GIAC
9 6 (5.88%) ISACA
9 6 (5.88%) SANS
10 5 (4.90%) CCIE
10 5 (4.90%) CCNP
10 5 (4.90%) Cisco Certification
10 5 (4.90%) ISO 27001 Lead Auditor
11 4 (3.92%) Master's Degree
Quality Assurance & Compliance
1 96 (94.12%) ISO/IEC 27001
2 47 (46.08%) PCI DSS
3 36 (35.29%) Sarbanes-Oxley
4 33 (32.35%) JSP 440
5 25 (24.51%) RMADS
6 24 (23.53%) COBIT
7 22 (21.57%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 10 (9.80%) GDPR
9 7 (6.86%) Cyber Essentials
10 6 (5.88%) ISO 22301
11 5 (4.90%) ISO 31000
12 2 (1.96%) ISO/IEC 27005
13 1 (0.98%) Cyber Essentials PLUS
13 1 (0.98%) ISO 9001
13 1 (0.98%) NIST 800
Systems Management
1 3 (2.94%) RSA Security Analytics
2 2 (1.96%) Host Intrusion Detection System
Vendors
1 21 (20.59%) Cisco
2 20 (19.61%) McAfee
2 20 (19.61%) Symantec
3 17 (16.67%) F5
4 16 (15.69%) CheckPoint
4 16 (15.69%) Juniper
4 16 (15.69%) Palo Alto
5 6 (5.88%) Trend Micro
6 2 (1.96%) ArcSight
6 2 (1.96%) Blue Coat
6 2 (1.96%) FireEye
6 2 (1.96%) Forcepoint
6 2 (1.96%) Fortinet
6 2 (1.96%) Microsoft
6 2 (1.96%) Oracle
6 2 (1.96%) Radware
6 2 (1.96%) SAP
6 2 (1.96%) TippingPoint
6 2 (1.96%) Zscaler
7 1 (0.98%) Computacenter