Incident Response Jobs

Incident Response
UK

The table below provides summary statistics for permanent job vacancies requiring Incident Response skills. It includes a benchmarking guide to the annual salaries offered in vacancies that cited Incident Response over the 6 months leading up to 16 January 2025, comparing them to the same period in the previous two years.

6 months to
16 Jan 2025
Same period 2024 Same period 2023
Rank 207 280 419
Rank change year-on-year +73 +139 +4
Permanent jobs citing Incident Response 933 641 811
As % of all permanent jobs advertised in the UK 1.43% 1.09% 0.76%
As % of the Processes & Methodologies category 1.56% 1.20% 0.79%
Number of salaries quoted 461 499 583
10th Percentile £42,500 £42,500 £41,047
25th Percentile £56,250 £52,084 £48,750
Median annual salary (50th Percentile) £67,500 £62,500 £65,000
Median % change year-on-year +8.00% -3.85% +8.33%
75th Percentile £82,500 £75,000 £78,750
90th Percentile £102,500 £90,250 £91,250
UK excluding London median annual salary £60,000 £60,000 £55,000
% change year-on-year - +9.09% -

All Process and Methodology Skills
UK

Incident Response falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies requiring process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills 59,910 53,276 102,313
As % of all permanent jobs advertised in the UK 92.01% 90.42% 95.41%
Number of salaries quoted 25,957 38,478 64,616
10th Percentile £35,000 £31,250 £35,000
25th Percentile £45,250 £42,500 £46,250
Median annual salary (50th Percentile) £60,000 £60,000 £62,500
Median % change year-on-year - -4.00% +4.17%
75th Percentile £78,750 £77,500 £82,500
90th Percentile £98,474 £97,500 £100,000
UK excluding London median annual salary £55,000 £51,716 £55,000
% change year-on-year +6.35% -5.97% +10.00%

Incident Response
Job Vacancy Trend

Job postings citing Incident Response as a proportion of all IT jobs advertised.

Job vacancy trend for Incident Response in the UK

Incident Response
Salary Trend

3-month moving average salary quoted in jobs citing Incident Response.

Salary trend for Incident Response in the UK

Incident Response
Salary Histogram

Salary distribution for jobs citing Incident Response over the 6 months to 16 January 2025.

Salary histogram for Incident Response in the UK

Incident Response
Top 18 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Incident Response within the UK over the 6 months to 16 January 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
England +75 868 £66,250 +6.00% 232
London +120 452 £71,250 +1.79% 117
UK excluding London +9 451 £60,000 - 127
Work from Home -25 205 £65,000 - 205
North of England -11 137 £60,500 +16.16% 46
South East -32 87 £69,500 +11.20% 24
Yorkshire +53 70 £60,000 -4.00% 10
South West +44 63 £53,000 +6.00% 12
Midlands -37 59 £45,000 -25.00% 14
North West -49 53 £67,500 +29.60% 35
East of England -12 51 £62,500 -13.79% 12
Scotland +34 43 £63,250 +5.42% 13
West Midlands -48 42 £60,000 - 8
East Midlands -18 17 £45,000 -25.00% 6
North East -5 14 £44,500 +11.25% 2
Wales +21 7 £87,500 +66.67% 5
Isle of Man - 3 £43,000 -
Northern Ireland +14 1 £90,000 +40.63% 3

Incident Response
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 10 (1.07%) SharePoint
2 9 (0.96%) Apache
3 8 (0.86%) Apache Spark
4 7 (0.75%) nginx
5 3 (0.32%) Confluence
5 3 (0.32%) Microsoft Exchange
6 1 (0.11%) Apache Airflow
6 1 (0.11%) IIS
Applications
1 14 (1.50%) Microsoft Office
2 2 (0.21%) 3ds Max
2 2 (0.21%) AutoCAD
2 2 (0.21%) MS Visio
3 1 (0.11%) Chatbot
3 1 (0.11%) Microsoft Excel
3 1 (0.11%) Microsoft PowerPoint
Business Applications
1 2 (0.21%) Elite 3E
Cloud Services
1 358 (38.37%) Azure
2 207 (22.19%) AWS
3 160 (17.15%) GCP
4 113 (12.11%) Microsoft 365
5 111 (11.90%) Cloud Computing
6 74 (7.93%) Azure Sentinel
7 60 (6.43%) Entra ID
8 32 (3.43%) SaaS
9 31 (3.32%) Azure Logic Apps
10 22 (2.36%) AWS CloudFormation
11 21 (2.25%) Microsoft Purview
12 18 (1.93%) IaaS
13 14 (1.50%) PaaS
14 11 (1.18%) Azure DevOps
14 11 (1.18%) Azure Storage
15 9 (0.96%) Amazon CloudWatch
16 8 (0.86%) Azure AKS
16 8 (0.86%) Azure Event Grid
17 6 (0.64%) AWS CloudTrail
17 6 (0.64%) GitHub
Communications & Networking
1 256 (27.44%) Network Security
2 188 (20.15%) Firewall
3 178 (19.08%) Intrusion Detection
4 117 (12.54%) Broadband
5 45 (4.82%) VPN
6 36 (3.86%) WAN
7 29 (3.11%) Internet
8 26 (2.79%) TCP/IP
9 24 (2.57%) LAN
10 17 (1.82%) DNS
11 13 (1.39%) SAN
12 12 (1.29%) HTTP
12 12 (1.29%) SD-WAN
12 12 (1.29%) SMTP
13 10 (1.07%) DMARC
13 10 (1.07%) FTP
13 10 (1.07%) Wireshark
14 8 (0.86%) SSL
14 8 (0.86%) Wi-Fi
15 7 (0.75%) Wireless
Database & Business Intelligence
1 13 (1.39%) MariaDB
2 10 (1.07%) Relational Database
3 8 (0.86%) Hadoop
4 6 (0.64%) Amazon RDS
4 6 (0.64%) Elasticsearch
5 3 (0.32%) Data Lake
5 3 (0.32%) GIS
6 2 (0.21%) Power BI
6 2 (0.21%) SQL Server
7 1 (0.11%) Apache Cassandra
7 1 (0.11%) Azure SQL Data Warehouse
7 1 (0.11%) Azure SQL Database
7 1 (0.11%) Big Data
7 1 (0.11%) BigQuery
7 1 (0.11%) Data Warehouse
7 1 (0.11%) Looker
7 1 (0.11%) MySQL
7 1 (0.11%) Tableau
Development Applications
1 21 (2.25%) Burp Suite
2 11 (1.18%) Jenkins
2 11 (1.18%) JIRA
3 9 (0.96%) Git
3 9 (0.96%) Metasploit
4 7 (0.75%) CircleCI
4 7 (0.75%) GitLab
5 3 (0.32%) Snyk
6 1 (0.11%) Bitbucket
6 1 (0.11%) Octopus Deploy
General
1 353 (37.83%) Social Skills
2 220 (23.58%) Analytical Skills
3 216 (23.15%) Finance
4 122 (13.08%) Telecoms
5 112 (12.00%) Inclusion and Diversity
6 57 (6.11%) Law
7 36 (3.86%) Legal
8 27 (2.89%) Public Sector
8 27 (2.89%) Retail
9 21 (2.25%) Banking
10 19 (2.04%) Military
10 19 (2.04%) Organisational Skills
11 12 (1.29%) Aerospace
12 9 (0.96%) Local Government
13 6 (0.64%) Influencing Skills
14 4 (0.43%) Manufacturing
15 3 (0.32%) Games
15 3 (0.32%) Investment Banking
15 3 (0.32%) Pharmaceutical
15 3 (0.32%) Publishing
Job Titles
1 331 (35.48%) Analyst
2 241 (25.83%) Security Analyst
3 187 (20.04%) Senior
4 134 (14.36%) Architect
5 127 (13.61%) Security Architect
6 113 (12.11%) Senior Analyst
7 109 (11.68%) Cloud Security Analyst
8 79 (8.47%) Senior Security Analyst
9 70 (7.50%) Lead
10 68 (7.29%) SOC Analyst
11 63 (6.75%) Cybersecurity Analyst
12 61 (6.54%) Security Manager
13 54 (5.79%) Security Engineer
14 43 (4.61%) Consultant
15 34 (3.64%) Security Consultant
16 33 (3.54%) Cybersecurity Manager
17 30 (3.22%) Operations Analyst
17 30 (3.22%) Security Operations Analyst
18 28 (3.00%) Cloud Engineer
19 24 (2.57%) Information Security Analyst
Libraries, Frameworks & Software Standards
1 99 (10.61%) HTML
2 14 (1.50%) Azure Blueprints
3 12 (1.29%) ARM Templates
3 12 (1.29%) Kafka
4 11 (1.18%) Elastic Stack
5 10 (1.07%) LDAP
6 8 (0.86%) YAML
7 6 (0.64%) XML
7 6 (0.64%) XML Messaging
8 3 (0.32%) Leaflet
9 2 (0.21%) JSON
9 2 (0.21%) OAuth
9 2 (0.21%) OpenID
9 2 (0.21%) PyTorch
9 2 (0.21%) React
9 2 (0.21%) SailPoint
9 2 (0.21%) SAML
9 2 (0.21%) scikit-learn
9 2 (0.21%) TensorFlow
10 1 (0.11%) CSS
Miscellaneous
1 247 (26.47%) Management Information System
2 238 (25.51%) Cyberattack
3 210 (22.51%) Cyber Threat
4 131 (14.04%) Cloud Native
4 131 (14.04%) Security Posture
5 124 (13.29%) Social Media
6 111 (11.90%) Hybrid Cloud
7 55 (5.89%) Security Operations Centre
8 51 (5.47%) Onboarding
9 39 (4.18%) Self-Motivation
10 30 (3.22%) CSOC
11 28 (3.00%) Cyber Defence
12 23 (2.47%) Virtual Team
13 14 (1.50%) Data Protection Act
13 14 (1.50%) Team-Oriented Environment
14 13 (1.39%) Client/Server
15 10 (1.07%) Data Centre
16 8 (0.86%) Distributed Denial-of-Service
16 8 (0.86%) Housing Association
16 8 (0.86%) Over-the-Top Content
Operating Systems
1 108 (11.58%) Windows
2 54 (5.79%) Linux
3 20 (2.14%) Windows Server
4 14 (1.50%) Windows Vista
5 11 (1.18%) Unix
6 10 (1.07%) Mac OS X
6 10 (1.07%) VMS
7 5 (0.54%) Windows 10
8 3 (0.32%) Apple iOS
8 3 (0.32%) Ubuntu
9 2 (0.21%) Android
9 2 (0.21%) CentOS
9 2 (0.21%) Mac OS
10 1 (0.11%) Debian
10 1 (0.11%) Kali Linux
Processes & Methodologies
1 649 (69.56%) Cybersecurity
2 359 (38.48%) Information Security
3 267 (28.62%) Security Operations
4 255 (27.33%) SIEM
5 248 (26.58%) Risk Management
6 246 (26.37%) Threat Intelligence
7 233 (24.97%) Cloud Security
7 233 (24.97%) Problem-Solving
8 221 (23.69%) Cyber Threat Intelligence
9 202 (21.65%) Mentoring
10 185 (19.83%) Disaster Recovery
11 174 (18.65%) Identity Access Management
12 171 (18.33%) Threat Detection
13 165 (17.68%) Security Architecture
14 162 (17.36%) Vulnerability Management
15 156 (16.72%) Infrastructure as Code
16 152 (16.29%) DevOps
17 131 (14.04%) Security Testing
18 129 (13.83%) Continuous Improvement
19 124 (13.29%) Threat Modelling
Programming Languages
1 71 (7.61%) PowerShell
1 71 (7.61%) Python
2 43 (4.61%) Kusto Query Language
3 33 (3.54%) Bash
4 19 (2.04%) SQL
5 9 (0.96%) Bicep
6 8 (0.86%) Java
7 6 (0.64%) C#
8 4 (0.43%) Ruby
9 2 (0.21%) JavaScript
9 2 (0.21%) Perl
9 2 (0.21%) TypeScript
10 1 (0.11%) C
10 1 (0.11%) C++
10 1 (0.11%) Go
10 1 (0.11%) Search Processing Language
10 1 (0.11%) Shell Script
10 1 (0.11%) VBA
Qualifications
1 215 (23.04%) CISSP
2 190 (20.36%) Security Cleared
3 179 (19.19%) Degree
4 136 (14.58%) CISM
5 121 (12.97%) DV Cleared
6 79 (8.47%) SC Cleared
7 78 (8.36%) CEH
8 73 (7.82%) Computer Science Degree
9 64 (6.86%) CISA
10 57 (6.11%) Cisco Certification
11 48 (5.14%) CompTIA Security+
12 40 (4.29%) GCIH
13 39 (4.18%) GCIA
14 35 (3.75%) (ISC)2 CCSP
15 26 (2.79%) Master's Degree
16 24 (2.57%) OSCP
17 22 (2.36%) CCSP
18 21 (2.25%) GIAC
19 20 (2.14%) Microsoft Certification
20 18 (1.93%) GSEC
Quality Assurance & Compliance
1 313 (33.55%) ISO/IEC 27001
2 277 (29.69%) NIST
3 240 (25.72%) GDPR
4 125 (13.40%) HIPAA
5 57 (6.11%) PCI DSS
6 53 (5.68%) Cyber Essentials
7 31 (3.32%) GRC
8 28 (3.00%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
9 24 (2.57%) Sarbanes-Oxley
10 18 (1.93%) Accessibility
10 18 (1.93%) Cyber Essentials PLUS
10 18 (1.93%) NCSC
11 17 (1.82%) SLA
12 15 (1.61%) SOC 2
13 9 (0.96%) COBIT
14 8 (0.86%) QA
15 7 (0.75%) ISO 22301
15 7 (0.75%) NIST 800
16 4 (0.43%) ISO/IEC 42001
17 3 (0.32%) ISO 14001
System Software
1 100 (10.72%) Docker
2 70 (7.50%) Active Directory
3 16 (1.71%) Virtual Machines
4 11 (1.18%) Virtual Desktop
5 7 (0.75%) Virtual Servers
6 6 (0.64%) Hyper-V
7 5 (0.54%) VMware Infrastructure
8 2 (0.21%) Snort
9 1 (0.11%) Microsoft Virtual Server
9 1 (0.11%) Squid
Systems Management
1 101 (10.83%) Kubernetes
2 51 (5.47%) Terraform
3 40 (4.29%) QRadar
4 29 (3.11%) Microsoft Intune
5 27 (2.89%) Ansible
6 21 (2.25%) CASB
7 13 (1.39%) Grafana
7 13 (1.39%) Prometheus
8 9 (0.96%) CSIRT
8 9 (0.96%) Nmap
9 8 (0.86%) Istio
9 8 (0.86%) Puppet
10 7 (0.75%) Progress Chef
11 5 (0.54%) Argo
11 5 (0.54%) linkerd
12 4 (0.43%) Cacti
12 4 (0.43%) McAfee ePO
13 3 (0.32%) FortiGate
13 3 (0.32%) Nessus
13 3 (0.32%) Single Sign-On
Vendors
1 234 (25.08%) Microsoft
2 58 (6.22%) Splunk
3 34 (3.64%) VMware
4 32 (3.43%) CrowdStrike
5 19 (2.04%) Google
6 15 (1.61%) Rapid7
6 15 (1.61%) Zscaler
7 14 (1.50%) Palo Alto
8 13 (1.39%) IBM
9 12 (1.29%) ServiceNow
10 11 (1.18%) Cisco
10 11 (1.18%) LogRhythm
11 10 (1.07%) Dell
12 9 (0.96%) CheckPoint
12 9 (0.96%) CyberArk
12 9 (0.96%) Darktrace
13 8 (0.86%) Fortinet
13 8 (0.86%) New Relic
14 6 (0.64%) Citrix
14 6 (0.64%) Qualys