Period
to 12 July 2020

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 12 July 2020 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK
6 months to
12 Jul 2020
Same period 2019 Same period 2018
Rank 183 177 215
Rank change year-on-year -6 +38 +34
Permanent jobs citing ISO/IEC 27001 1,463 2,911 2,909
As % of all permanent jobs advertised in the UK 1.90% 1.98% 1.64%
As % of the Quality Assurance & Compliance category 15.53% 14.49% 12.63%
Number of salaries quoted 1,248 2,148 2,470
Median annual salary £57,500 £52,500 £57,500
Median salary % change year-on-year +9.52% -8.70% +4.55%
10th Percentile £36,250 £31,000 £33,975
90th Percentile £90,000 £85,000 £85,000
UK excluding London median annual salary £50,000 £47,500 £50,000
% change year-on-year +5.26% -5.00% +5.26%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 9,421 20,094 23,030
As % of all permanent IT jobs advertised in the UK 12.21% 13.65% 12.99%
Number of salaries quoted 7,183 14,765 17,598
Median annual salary £52,500 £50,000 £50,000
Median salary % change year-on-year +5.00% - +5.26%
10th Percentile £30,000 £28,250 £28,125
90th Percentile £85,000 £83,750 £80,000
UK excluding London median annual salary £47,500 £45,000 £45,000
% change year-on-year +5.56% - +8.43%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a proportion of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Trend

3-month moving average salary quoted in jobs citing ISO/IEC 27001.

Salary trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Histogram

Salary distribution for jobs citing ISO/IEC 27001 over the 6 months to 12 July 2020.

Salary histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 12 July 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +3 1,346 £57,500 +6.48% 111
UK excluding London -16 855 £50,000 +5.26% 101
London +55 532 £65,000 -3.70% 27
South East +46 235 £50,000 -9.09% 26
North of England -72 233 £51,000 +7.37% 26
Midlands +31 183 £49,250 -6.19% 14
West Midlands +19 148 £52,500 - 11
North West +58 135 £50,000 - 12
Work from Home +50 110 £60,000 +26.32% 11
South West +60 100 £55,000 +15.79% 12
Yorkshire -74 91 £55,000 +22.22% 11
East of England -1 63 £50,000 -9.09% 6
East Midlands +50 34 £42,500 -15.00% 3
Wales -19 25 £42,000 -6.67% 3
Scotland +66 19 £45,000 -5.26% 14
North East +19 7 £45,000 -7.69% 3
Northern Ireland -10 1 £40,000 -41.82%

For the 6 months to 12 July 2020, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for ISO/IEC 27001.

1 898 (61.38%) Information Security
2 506 (34.59%) CISSP
3 497 (33.97%) Cybersecurity
4 363 (24.81%) Risk Management
5 357 (24.40%) PCI DSS
6 338 (23.10%) GDPR
7 334 (22.83%) Azure
8 332 (22.69%) CISM
9 288 (19.69%) Finance
10 286 (19.55%) Firewall
11 272 (18.59%) Microsoft
12 270 (18.46%) NIST
13 254 (17.36%) Windows
14 242 (16.54%) ITIL
15 240 (16.40%) Management Information System
16 220 (15.04%) AWS
17 212 (14.49%) Security Architecture
18 205 (14.01%) Security Management
19 202 (13.81%) Active Directory
20 201 (13.74%) Security Cleared
21 183 (12.51%) ISMS
22 182 (12.44%) CISA
22 182 (12.44%) Cyber Essentials
23 169 (11.55%) Legal
23 169 (11.55%) Office 365
24 167 (11.41%) Data Protection
25 162 (11.07%) Cisco Certification
26 156 (10.66%) Agile Software Development
27 154 (10.53%) Degree
28 153 (10.46%) Linux

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 43 (2.94%) MS Exchange
2 42 (2.87%) Exchange Server 2013
3 39 (2.67%) SharePoint
4 36 (2.46%) IIS
5 8 (0.55%) Exchange Server 2010
5 8 (0.55%) Skype for Business
6 7 (0.48%) Apache
6 7 (0.48%) OpenStack
7 6 (0.41%) Confluence
7 6 (0.41%) Tomcat
7 6 (0.41%) WebSphere
8 5 (0.34%) SharePoint 2010
9 4 (0.27%) ColdFusion
10 3 (0.21%) CMS
10 3 (0.21%) Elasticsearch
10 3 (0.21%) Gluu
11 2 (0.14%) SAS
12 1 (0.068%) nginx
12 1 (0.068%) SharePoint 2013
Applications
1 36 (2.46%) Microsoft Office
2 11 (0.75%) Microsoft Excel
3 6 (0.41%) Microsoft PowerPoint
4 4 (0.27%) MS Visio
5 1 (0.068%) InfoPath
5 1 (0.068%) Spreadsheet
Business Applications
1 8 (0.55%) Elite 3E
2 6 (0.41%) Carpe Diem
3 4 (0.27%) Sentinel
4 2 (0.14%) Salesforce.com CRM
5 1 (0.068%) Distributed Ledger
5 1 (0.068%) Oracle Applications
5 1 (0.068%) SAP MM
5 1 (0.068%) SAP R/3
5 1 (0.068%) SAP Retail
Cloud Services
1 334 (22.83%) Azure
2 220 (15.04%) AWS
3 169 (11.55%) Office 365
4 130 (8.89%) SaaS
5 97 (6.63%) PaaS
6 91 (6.22%) IaaS
7 26 (1.78%) Power Platform
8 24 (1.64%) Mimecast
9 23 (1.57%) GCP
10 21 (1.44%) Azure Active Directory
10 21 (1.44%) Serverless
11 18 (1.23%) Cloud Computing
12 17 (1.16%) AWS Lambda
12 17 (1.16%) PowerApps
13 14 (0.96%) Azure Functions
14 11 (0.75%) GitHub
15 9 (0.62%) Heroku
16 7 (0.48%) G Suite
17 6 (0.41%) Amazon EC2
17 6 (0.41%) Amazon S3
Communications & Networking
1 286 (19.55%) Firewall
2 107 (7.31%) VPN
3 103 (7.04%) DNS
4 89 (6.08%) TCP/IP
5 88 (6.02%) LAN
6 72 (4.92%) Network Security
7 70 (4.78%) WAN
8 48 (3.28%) DHCP
8 48 (3.28%) SAN
9 38 (2.60%) Internet
9 38 (2.60%) MPLS
10 30 (2.05%) Intrusion Detection
11 28 (1.91%) VLAN
11 28 (1.91%) Wireless
12 24 (1.64%) iSCSI
13 23 (1.57%) Wi-Fi
14 20 (1.37%) VoIP
15 19 (1.30%) Cisco ASA
15 19 (1.30%) HTTP
15 19 (1.30%) Wireshark
Database & Business Intelligence
1 91 (6.22%) SQL Server
2 31 (2.12%) MySQL
3 28 (1.91%) Relational Database
4 17 (1.16%) Big Data
4 17 (1.16%) PostgreSQL
5 13 (0.89%) SQL Server 2012
6 10 (0.68%) Power BI
7 9 (0.62%) Redis
8 7 (0.48%) Amazon RDS
8 7 (0.48%) Hadoop
9 6 (0.41%) DB2
9 6 (0.41%) SQL Server 2008
10 5 (0.34%) RDBMS
11 4 (0.27%) Azure SQL Database
11 4 (0.27%) Electronic Patient Records
12 3 (0.21%) Amazon DynamoDB
12 3 (0.21%) Blockchain
12 3 (0.21%) SQL Server Reporting Services
13 2 (0.14%) Data Warehouse
13 2 (0.14%) SQL Server Integration Services
Development Applications
1 23 (1.57%) JIRA
2 21 (1.44%) Git (software)
3 13 (0.89%) Jenkins
4 12 (0.82%) Visual Studio
5 10 (0.68%) Selenium
6 9 (0.62%) Team Foundation Server
7 7 (0.48%) WinDbg
8 5 (0.34%) Metasploit
8 5 (0.34%) RSpec
9 4 (0.27%) Subversion
10 3 (0.21%) Burp Suite
10 3 (0.21%) Snyk
10 3 (0.21%) Vagrant
11 2 (0.14%) Atlassian Bamboo
11 2 (0.14%) GitLab
11 2 (0.14%) PHPUnit
12 1 (0.068%) IntelliJ
12 1 (0.068%) Mercurial
12 1 (0.068%) Ranorex
12 1 (0.068%) SonarQube
General
1 288 (19.69%) Finance
2 169 (11.55%) Legal
3 79 (5.40%) Law
4 55 (3.76%) Telecoms
5 53 (3.62%) Retail
6 52 (3.55%) Manufacturing
7 47 (3.21%) Public Sector
8 37 (2.53%) Banking
9 24 (1.64%) Back Office
10 22 (1.50%) Marketing
11 10 (0.68%) Games
12 9 (0.62%) Advertising
13 7 (0.48%) Police
14 5 (0.34%) Aerospace
14 5 (0.34%) Financial Institution
15 3 (0.21%) Automotive
15 3 (0.21%) Electronics
15 3 (0.21%) Local Government
15 3 (0.21%) Pharmaceutical
16 2 (0.14%) French Language
Job Titles
1 233 (15.93%) Analyst
2 172 (11.76%) Consultant
3 168 (11.48%) Security Manager
4 160 (10.94%) Security Analyst
5 147 (10.05%) Architect
6 114 (7.79%) Security Consultant
7 102 (6.97%) Information Analyst
8 100 (6.84%) Security Architect
9 97 (6.63%) Information Security Analyst
10 92 (6.29%) Information Manager
11 89 (6.08%) Security Officer
12 87 (5.95%) IT Manager
12 87 (5.95%) Security Engineer
13 82 (5.60%) Information Security Manager
14 74 (5.06%) Cybersecurity Consultant
15 71 (4.85%) Cloud Architect
16 66 (4.51%) Infrastructure Engineer
17 65 (4.44%) Security Specialist
18 54 (3.69%) Information Security Officer
19 46 (3.14%) IT Security Manager
Libraries, Frameworks & Software Standards
1 76 (5.19%) OAuth
2 75 (5.13%) OpenID
3 68 (4.65%) SAML
4 45 (3.08%) SailPoint
5 27 (1.85%) .NET
6 25 (1.71%) Web Services
7 23 (1.57%) CSS
8 18 (1.23%) HTML
9 15 (1.03%) HTML5
10 14 (0.96%) .NET Framework
10 14 (0.96%) AngularJS
11 13 (0.89%) REST
11 13 (0.89%) Twitter Bootstrap
12 12 (0.82%) CSS3
12 12 (0.82%) jQuery
12 12 (0.82%) SOAP
13 11 (0.75%) Node.js
14 10 (0.68%) Sass
15 9 (0.62%) ADO.NET
15 9 (0.62%) Middleware
Miscellaneous
1 240 (16.40%) Management Information System
2 90 (6.15%) Analytical Skills
3 74 (5.06%) Data Centre
4 73 (4.99%) Cyberthreat
5 55 (3.76%) Self-Motivation
6 44 (3.01%) Cloud Native
6 44 (3.01%) Driving Licence
7 42 (2.87%) Data Protection Act
8 38 (2.60%) PKI
9 37 (2.53%) Cyberattack
10 36 (2.46%) Public Cloud
11 30 (2.05%) Enterprise Storage
12 28 (1.91%) CESG
13 20 (1.37%) Hybrid Cloud
14 17 (1.16%) Clustering
15 15 (1.03%) Greenfield Project
16 13 (0.89%) Blog
17 12 (0.82%) Handset
18 11 (0.75%) Cyber Defence
18 11 (0.75%) Private Cloud
Operating Systems
1 254 (17.36%) Windows
2 153 (10.46%) Linux
3 124 (8.48%) Windows Server
4 41 (2.80%) Windows Server 2012
5 30 (2.05%) Windows 10
6 29 (1.98%) Windows Server 2016
7 26 (1.78%) Unix
8 21 (1.44%) Mac OS
9 18 (1.23%) Windows Server 2008
10 11 (0.75%) Windows Server 2019
11 10 (0.68%) Windows 7
12 7 (0.48%) CentOS
13 6 (0.41%) AIX
13 6 (0.41%) Debian
13 6 (0.41%) Windows Server 2003
13 6 (0.41%) Windows XP
14 5 (0.34%) Apple iOS
14 5 (0.34%) Red Hat Enterprise Linux
15 4 (0.27%) Amazon Linux
16 3 (0.21%) Solaris
Processes & Methodologies
1 898 (61.38%) Information Security
2 497 (33.97%) Cybersecurity
3 363 (24.81%) Risk Management
4 242 (16.54%) ITIL
5 212 (14.49%) Security Architecture
6 205 (14.01%) Security Management
7 183 (12.51%) ISMS
8 167 (11.41%) Data Protection
9 156 (10.66%) Agile Software Development
10 138 (9.43%) Penetration Testing
10 138 (9.43%) SIEM
11 133 (9.09%) Information Security Management
12 124 (8.48%) Problem-Solving
13 113 (7.72%) Identity Access Management
14 110 (7.52%) Vulnerability Management
15 104 (7.11%) Information Assurance
15 104 (7.11%) Infrastructure Engineering
16 100 (6.84%) Data Privacy
17 98 (6.70%) Risk Assessment
18 97 (6.63%) DevOps
Programming Languages
1 128 (8.75%) PowerShell
2 72 (4.92%) Python
3 52 (3.55%) SQL
4 23 (1.57%) Java
5 22 (1.50%) JavaScript
6 21 (1.44%) C#
7 19 (1.30%) C
7 19 (1.30%) PHP
8 18 (1.23%) Ruby
9 16 (1.09%) T-SQL
10 13 (0.89%) VB.NET
11 11 (0.75%) Bash Shell
11 11 (0.75%) C++
12 10 (0.68%) Shell Script
12 10 (0.68%) VB
13 9 (0.62%) Data Analysis Expressions (DAX)
13 9 (0.62%) VB6
14 8 (0.55%) Go
14 8 (0.55%) VBScript
15 7 (0.48%) Scala
Qualifications
1 506 (34.59%) CISSP
2 332 (22.69%) CISM
3 201 (13.74%) Security Cleared
4 182 (12.44%) CISA
5 162 (11.07%) Cisco Certification
6 154 (10.53%) Degree
7 134 (9.16%) SC Cleared
8 95 (6.49%) CCNA
9 89 (6.08%) CCNP
10 81 (5.54%) CRISC
11 62 (4.24%) DV Cleared
12 55 (3.76%) ISO 27001 Lead Auditor
13 52 (3.55%) CESG Certified Professional
14 47 (3.21%) CEH
15 44 (3.01%) (ISC)2 CCSP
15 44 (3.01%) Microsoft Certification
16 35 (2.39%) ISO 27001 Lead Implementer
17 31 (2.12%) MCSE
18 30 (2.05%) DBS Check
19 28 (1.91%) CREST Certified
Quality Assurance & Compliance
1 357 (24.40%) PCI DSS
2 338 (23.10%) GDPR
3 270 (18.46%) NIST
4 182 (12.44%) Cyber Essentials
5 103 (7.04%) ISO 9001
6 102 (6.97%) COBIT
7 75 (5.13%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 64 (4.37%) SLA
9 63 (4.31%) NIST 800
10 61 (4.17%) ISO/IEC 20000
11 57 (3.90%) NCSC
12 53 (3.62%) Sarbanes-Oxley
13 51 (3.49%) HMG Security Policy Framework
14 48 (3.28%) JSP 440
15 39 (2.67%) Cyber Essentials PLUS
15 39 (2.67%) QA
16 36 (2.46%) ISO 22301
17 26 (1.78%) BS25999
18 24 (1.64%) RMADS
19 15 (1.03%) ISO/IEC 27005
System Software
1 202 (13.81%) Active Directory
2 118 (8.07%) VMware Infrastructure
3 81 (5.54%) Hyper-V
4 37 (2.53%) Docker
5 28 (1.91%) XenApp
6 27 (1.85%) BitLocker
7 26 (1.78%) XenDesktop
8 24 (1.64%) NFS
9 13 (0.89%) Virtual Servers
10 8 (0.55%) Microsoft Virtual Server
10 8 (0.55%) VMware ESXi
10 8 (0.55%) vSphere
11 7 (0.48%) Virtual Desktop
12 4 (0.27%) Virtual Machines
13 3 (0.21%) Firmware
13 3 (0.21%) iptables
13 3 (0.21%) PowerHA
13 3 (0.21%) Veritas Cluster Server
14 2 (0.14%) KVM
14 2 (0.14%) Squid
Systems Management
1 42 (2.87%) Terraform
2 31 (2.12%) SCCM
3 24 (1.64%) Backup Exec
4 21 (1.44%) Nessus
5 19 (1.30%) Ansible
6 18 (1.23%) Kubernetes
7 17 (1.16%) Microsoft Intune
8 11 (0.75%) Puppet
8 11 (0.75%) SCOM
9 10 (0.68%) Computer Emergency Response Teams
10 9 (0.62%) FortiGate
11 7 (0.48%) Host Intrusion Detection System
11 7 (0.48%) Nmap
12 6 (0.41%) Cisco CUCM
12 6 (0.41%) OSSEC
13 5 (0.34%) Computer Incident Response Team
13 5 (0.34%) Failover Clustering
13 5 (0.34%) Single Sign-On
14 4 (0.27%) Graylog
14 4 (0.27%) Prometheus
Vendors
1 272 (18.59%) Microsoft
2 144 (9.84%) VMware
3 108 (7.38%) Cisco
4 89 (6.08%) Citrix
5 55 (3.76%) ForgeRock
6 45 (3.08%) CyberArk
6 45 (3.08%) HP
7 34 (2.32%) Sophos
8 28 (1.91%) Google
8 28 (1.91%) Veeam
9 23 (1.57%) Juniper
9 23 (1.57%) Meraki
9 23 (1.57%) Splunk
10 21 (1.44%) Qualys
11 20 (1.37%) CheckPoint
11 20 (1.37%) Salesforce.com
12 19 (1.30%) Oracle
13 18 (1.23%) Palo Alto
14 17 (1.16%) Fortinet
15 16 (1.09%) Red Hat