Period
to 25 June 2018

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 25 June 2018 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK
6 months to
25 Jun 2018
Same period 2017 Same period 2016
Rank 216 246 210
Rank change year-on-year +30 -36 +64
Permanent jobs citing ISO/IEC 27001 2,804 2,435 3,321
As % of all permanent IT jobs advertised in the UK 1.61% 1.41% 1.66%
As % of the Quality Assurance & Compliance category 12.22% 11.65% 12.60%
Number of salaries quoted 2,270 2,050 2,771
UK median annual salary £55,000 £55,000 £55,000
10th Percentile £33,500 £35,000 £36,250
90th Percentile £83,750 £80,125 £80,000
UK excluding London median annual salary £50,000 £47,500 £51,000
% change year-on-year +5.26% -6.86% +13.33%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 22,938 20,894 26,351
As % of all permanent IT jobs advertised in the UK 13.18% 12.07% 13.15%
Number of salaries quoted 17,563 16,110 20,926
UK median annual salary £50,000 £47,500 £47,500
Median salary % change year-on-year +5.26% - +5.56%
10th Percentile £28,250 £26,500 £26,250
90th Percentile £80,000 £77,500 £76,250
UK excluding London median annual salary £45,000 £41,500 £42,500
% change year-on-year +8.43% -2.35% +6.25%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing ISO/IEC 27001.

Salary trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Histogram

The salary distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 25 June 2018.

Salary histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 25 June 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +30 2,628 £55,000 - 302
UK excluding London +36 1,690 £50,000 +5.26% 216
London +6 1,026 £63,500 +1.60% 99
South East +41 507 £55,000 - 48
North of England +54 432 £47,500 +5.56% 67
Midlands +43 321 £45,000 -5.26% 50
West Midlands +41 260 £48,000 -4.00% 44
Yorkshire +106 225 £46,250 +2.78% 24
North West -8 180 £49,500 -1.00% 33
East of England +21 176 £54,000 +8.00% 21
South West +19 169 £50,000 -12.66% 17
East Midlands +23 61 £42,555 -5.43% 6
Scotland -7 58 £46,750 -6.50% 8
North East -16 27 £62,500 +38.89% 10
Wales -61 23 £35,000 -22.22% 4
Isle of Man - 5 £55,000 -
Northern Ireland +6 4 - - 1

For the 6 months to 25 June 2018, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for ISO/IEC 27001.

1 1,720 (61.34%) Information Security
2 1,073 (38.27%) CISSP
3 843 (30.06%) CISM
4 825 (29.42%) PCI DSS
5 742 (26.46%) Cybersecurity
6 727 (25.93%) GDPR
7 687 (24.50%) ITIL
8 630 (22.47%) Finance
9 628 (22.40%) Firewall
10 561 (20.01%) Risk Management
11 543 (19.37%) Management Information System
12 498 (17.76%) Data Protection
13 491 (17.51%) Windows
14 457 (16.30%) SIEM
15 447 (15.94%) Degree
16 432 (15.41%) CISA
17 423 (15.09%) Microsoft
18 317 (11.31%) Security Management
19 313 (11.16%) Agile Software Development
20 287 (10.24%) Network Security
21 281 (10.02%) Cyber Essentials
22 276 (9.84%) Microsoft Azure
23 274 (9.77%) VMware
24 272 (9.70%) Linux
25 270 (9.63%) Security Architecture
25 270 (9.63%) Analytical Skills
26 259 (9.24%) Active Directory
27 256 (9.13%) Windows Server
28 255 (9.09%) Legal
28 255 (9.09%) Penetration Testing

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 76 (2.71%) MS Exchange
2 61 (2.18%) IIS
3 52 (1.85%) SharePoint
4 44 (1.57%) Skype for Business
5 27 (0.96%) Apache
6 24 (0.86%) Exchange Server 2013
7 22 (0.78%) Exchange Server 2010
8 19 (0.68%) CMS
9 15 (0.53%) Exchange Server 2007
9 15 (0.53%) Oracle Service Bus
10 9 (0.32%) Apache Spark
10 9 (0.32%) Tomcat
11 7 (0.25%) Elasticsearch
12 6 (0.21%) JBoss
12 6 (0.21%) WebSphere
13 5 (0.18%) Exchange Server 2003
14 4 (0.14%) nginx
15 3 (0.11%) Confluence
15 3 (0.11%) WordPress
16 2 (0.071%) WebLogic
Applications
1 81 (2.89%) Microsoft Office
2 23 (0.82%) Microsoft Excel
3 14 (0.50%) MS Visio
4 9 (0.32%) Microsoft Project
5 8 (0.29%) Microsoft PowerPoint
6 5 (0.18%) Stata
7 4 (0.14%) Spreadsheet
8 1 (0.036%) Maya
Business Applications
1 13 (0.46%) Dynamics CRM
2 7 (0.25%) Distributed Ledger
2 7 (0.25%) Elite 3E
3 6 (0.21%) Dynamics NAV
4 5 (0.18%) assyst
4 5 (0.18%) Sentinel
5 3 (0.11%) Magento
5 3 (0.11%) Oracle EBS R12
5 3 (0.11%) Oracle ERP
6 2 (0.071%) Dynamics AX
7 1 (0.036%) Cerner Millennium
7 1 (0.036%) Concordance
7 1 (0.036%) FLEXCUBE
7 1 (0.036%) Payment Gateway
7 1 (0.036%) Relativity
7 1 (0.036%) Sage 200
7 1 (0.036%) SAP ERP
7 1 (0.036%) Veritas eDiscovery
Cloud Services
1 276 (9.84%) Microsoft Azure
2 230 (8.20%) Amazon AWS
3 170 (6.06%) Office 365
4 169 (6.03%) SaaS
5 95 (3.39%) PaaS
6 88 (3.14%) IaaS
7 28 (1.00%) Cloud Computing
8 16 (0.57%) Amazon EC2
9 15 (0.53%) IBM Cloud
10 9 (0.32%) Google Cloud Platform
10 9 (0.32%) Serverless
11 8 (0.29%) GitHub
11 8 (0.29%) Mimecast
12 7 (0.25%) Azure Active Directory
12 7 (0.25%) Dynamics 365
12 7 (0.25%) OneDrive
13 6 (0.21%) AWS CloudFormation
14 5 (0.18%) Amazon S3
15 3 (0.11%) Sage Pay
15 3 (0.11%) Virtual Private Cloud
Communications & Networking
1 628 (22.40%) Firewall
2 287 (10.24%) Network Security
3 149 (5.31%) VPN
4 148 (5.28%) LAN
5 147 (5.24%) WAN
6 127 (4.53%) TCP/IP
7 125 (4.46%) DNS
8 121 (4.32%) Intrusion Detection
9 115 (4.10%) SAN
10 108 (3.85%) SSL
11 88 (3.14%) Internet
12 76 (2.71%) VoIP
13 73 (2.60%) IPsec
14 72 (2.57%) DHCP
15 63 (2.25%) Wireless
16 49 (1.75%) VLAN
17 44 (1.57%) HTTP
17 44 (1.57%) MPLS
18 35 (1.25%) Skype
19 34 (1.21%) Unified Communications
Database & Business Intelligence
1 155 (5.53%) SQL Server
2 43 (1.53%) Big Data
3 36 (1.28%) MySQL
4 26 (0.93%) SQL Server 2008
5 25 (0.89%) Relational Database
6 22 (0.78%) SQL Server Reporting Services
7 21 (0.75%) Oracle Database
7 21 (0.75%) PostgreSQL
8 15 (0.53%) Oracle Database 11g
8 15 (0.53%) Oracle Database 12c
8 15 (0.53%) RDBMS
9 14 (0.50%) MongoDB
10 13 (0.46%) Apache Cassandra
10 13 (0.46%) Hadoop
10 13 (0.46%) NoSQL
10 13 (0.46%) SQL Server Integration Services
11 10 (0.36%) Blockchain
12 9 (0.32%) BusinessObjects
13 8 (0.29%) GIS
13 8 (0.29%) Power BI
Development Applications
1 21 (0.75%) Git (software)
2 14 (0.50%) Jenkins
2 14 (0.50%) JIRA
2 14 (0.50%) Octopus Deploy
3 13 (0.46%) Subversion
3 13 (0.46%) Team Foundation Server
4 11 (0.39%) Burp Suite
4 11 (0.39%) Metasploit
5 10 (0.36%) TeamCity
6 9 (0.32%) Visual Studio Team System
7 4 (0.14%) SonarQube
8 3 (0.11%) Selenium
9 2 (0.071%) Atlassian Bamboo
9 2 (0.071%) git-flow
9 2 (0.071%) gulp
9 2 (0.071%) HP UFT
9 2 (0.071%) JMeter
9 2 (0.071%) Sonatype Nexus
9 2 (0.071%) Visual Studio
9 2 (0.071%) webpack
General
1 630 (22.47%) Finance
2 255 (9.09%) Legal
3 130 (4.64%) Banking
4 89 (3.17%) Retail
5 75 (2.67%) Marketing
5 75 (2.67%) Telecoms
6 72 (2.57%) Law
7 61 (2.18%) Publishing
8 36 (1.28%) Manufacturing
9 35 (1.25%) Investment Banking
10 33 (1.18%) Games
11 15 (0.53%) Advertising
12 14 (0.50%) Financial Institution
12 14 (0.50%) Pharmaceutical
13 13 (0.46%) Back Office
13 13 (0.46%) Electronics
13 13 (0.46%) Local Government
14 9 (0.32%) Automotive
15 8 (0.29%) Retail Banking
16 7 (0.25%) Aerospace
Job Titles
1 605 (21.58%) Analyst
2 427 (15.23%) Security Manager
3 422 (15.05%) Security Analyst
4 351 (12.52%) Consultant
5 254 (9.06%) Information Manager
6 246 (8.77%) Security Consultant
7 240 (8.56%) Information Security Manager
8 223 (7.95%) Architect
9 217 (7.74%) Information Analyst
10 211 (7.52%) Information Security Analyst
11 174 (6.21%) IT Manager
12 142 (5.06%) Security Officer
13 139 (4.96%) Security Engineer
14 138 (4.92%) Security Architect
15 105 (3.74%) IT Analyst
16 100 (3.57%) Senior Analyst
17 99 (3.53%) Information Security Officer
18 98 (3.50%) Security Specialist
19 97 (3.46%) Information Officer
20 96 (3.42%) IT Security Manager
Libraries, Frameworks & Software Standards
1 61 (2.18%) .NET
2 38 (1.36%) JSON
3 37 (1.32%) Middleware
4 33 (1.18%) Web Services
5 26 (0.93%) HTML
5 26 (0.93%) SailPoint
6 24 (0.86%) .NET Framework
7 22 (0.78%) CSS
8 18 (0.64%) Entity Framework
9 15 (0.53%) ASP.NET
10 14 (0.50%) Elastic Stack
10 14 (0.50%) SAML
11 13 (0.46%) jQuery
11 13 (0.46%) WCF
12 12 (0.43%) LDAP
12 12 (0.43%) Node.js
13 11 (0.39%) OAuth
14 10 (0.36%) 802.1X
14 10 (0.36%) LINQ
14 10 (0.36%) Twitter Bootstrap
Miscellaneous
1 543 (19.37%) Management Information System
2 270 (9.63%) Analytical Skills
3 203 (7.24%) Data Centre
4 172 (6.13%) Self-Motivation
5 169 (6.03%) Data Protection Act
6 163 (5.81%) Computer Science
7 90 (3.21%) Fintech
8 74 (2.64%) Security Operations Centre
9 67 (2.39%) CESG
10 56 (2.00%) Cyberthreat
11 46 (1.64%) PKI
12 44 (1.57%) Public Cloud
13 40 (1.43%) Driving Licence
14 35 (1.25%) NHS
15 33 (1.18%) Cyberattack
15 33 (1.18%) Distributed Denial-of-Service
16 29 (1.03%) Cyber Defence
17 23 (0.82%) Enterprise Software
18 22 (0.78%) Hybrid Cloud
18 22 (0.78%) Private Cloud
Operating Systems
1 491 (17.51%) Windows
2 272 (9.70%) Linux
3 256 (9.13%) Windows Server
4 74 (2.64%) Unix
5 66 (2.35%) Windows Server 2012
6 57 (2.03%) Windows Server 2008
7 37 (1.32%) Windows 10
8 34 (1.21%) Windows Server 2003
9 33 (1.18%) Windows 7
10 32 (1.14%) Mac OS X
11 31 (1.11%) Apple iOS
12 27 (0.96%) CentOS
13 22 (0.78%) Debian
13 22 (0.78%) Windows 8
14 20 (0.71%) Kali Linux
15 19 (0.68%) Red Hat Enterprise Linux
16 12 (0.43%) Android
17 11 (0.39%) Ubuntu
18 10 (0.36%) Solaris
19 8 (0.29%) AIX
Processes & Methodologies
1 1,720 (61.34%) Information Security
2 742 (26.46%) Cybersecurity
3 687 (24.50%) ITIL
4 561 (20.01%) Risk Management
5 498 (17.76%) Data Protection
6 457 (16.30%) SIEM
7 317 (11.31%) Security Management
8 313 (11.16%) Agile Software Development
9 270 (9.63%) Security Architecture
10 255 (9.09%) Penetration Testing
11 253 (9.02%) Security Operations
12 251 (8.95%) Project Management
13 248 (8.84%) Vulnerability Management
14 237 (8.45%) Problem-Solving
15 235 (8.38%) Information Security Management
15 235 (8.38%) ISMS
16 218 (7.77%) Business Continuity
17 205 (7.31%) Stakeholder Management
18 192 (6.85%) Incident Management
19 186 (6.63%) Service Delivery
Programming Languages
1 115 (4.10%) PowerShell
2 103 (3.67%) SQL
3 96 (3.42%) Python
4 48 (1.71%) C
5 42 (1.50%) JavaScript
6 38 (1.36%) C#
7 33 (1.18%) Perl
8 31 (1.11%) Java
9 27 (0.96%) PHP
10 26 (0.93%) Shell Script
11 25 (0.89%) Bash Shell
12 21 (0.75%) Ruby
13 15 (0.53%) T-SQL
14 13 (0.46%) Go
15 12 (0.43%) VB
15 12 (0.43%) VB.NET
16 9 (0.32%) C++
17 5 (0.18%) VBA
18 4 (0.14%) TypeScript
19 3 (0.11%) Java 8
Qualifications
1 1,073 (38.27%) CISSP
2 843 (30.06%) CISM
3 447 (15.94%) Degree
4 432 (15.41%) CISA
5 242 (8.63%) Security Cleared
6 164 (5.85%) CEH
6 164 (5.85%) Cisco Certification
7 132 (4.71%) SC Cleared
8 131 (4.67%) SANS
9 124 (4.42%) Microsoft Certification
10 103 (3.67%) MCSE
11 100 (3.57%) CRISC
12 93 (3.32%) CESG Certified Professional
13 85 (3.03%) ISO 27001 Lead Auditor
14 81 (2.89%) Computer Science Degree
15 77 (2.75%) CCNA
16 68 (2.43%) GIAC
17 64 (2.28%) CCNP
18 61 (2.18%) MCSA
19 52 (1.85%) SSCP
Quality Assurance & Compliance
1 825 (29.42%) PCI DSS
2 727 (25.93%) GDPR
3 281 (10.02%) Cyber Essentials
4 252 (8.99%) COBIT
5 245 (8.74%) ISO 9001
6 210 (7.49%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 119 (4.24%) Sarbanes-Oxley
8 91 (3.25%) Cyber Essentials PLUS
9 90 (3.21%) HMG Security Policy Framework
10 72 (2.57%) ISO 22301
10 72 (2.57%) QA
11 71 (2.53%) SLA
12 65 (2.32%) ISO/IEC 20000
13 42 (1.50%) ISO 14001
14 40 (1.43%) GPG13
15 34 (1.21%) NIST 800
16 32 (1.14%) JSP 440
17 30 (1.07%) ISAE 3402
18 24 (0.86%) RMADS
19 22 (0.78%) HIPAA
System Software
1 259 (9.24%) Active Directory
2 236 (8.42%) VMware Infrastructure
3 63 (2.25%) Hyper-V
4 49 (1.75%) VMware ESXi
5 42 (1.50%) vSphere
6 22 (0.78%) Docker
7 18 (0.64%) Xen
8 16 (0.57%) Snort
9 13 (0.46%) XenApp
9 13 (0.46%) XenDesktop
10 12 (0.43%) KVM
11 11 (0.39%) Firmware
11 11 (0.39%) Terminal Services
11 11 (0.39%) Virtual Machines
12 9 (0.32%) Forefront TMG
13 8 (0.29%) HDFS
14 7 (0.25%) Ceph
14 7 (0.25%) iptables
15 4 (0.14%) pfSense
15 4 (0.14%) VMware Workstation
Systems Management
1 64 (2.28%) Nessus
2 63 (2.25%) Ansible
3 61 (2.18%) SCCM
4 51 (1.82%) Single Sign-On
5 50 (1.78%) QRadar
6 35 (1.25%) Opscode Chef
6 35 (1.25%) Puppet
7 30 (1.07%) Core Impact
8 25 (0.89%) OpenVAS
9 20 (0.71%) Cisco CUCM
9 20 (0.71%) Nagios
9 20 (0.71%) WhatsUp Gold
10 19 (0.68%) Nexpose
11 14 (0.50%) Host Intrusion Detection System
12 13 (0.46%) SCOM
12 13 (0.46%) Suricata
12 13 (0.46%) vCenter Server
12 13 (0.46%) WSUS
13 12 (0.43%) Kubernetes
13 12 (0.43%) Terraform
Vendors
1 423 (15.09%) Microsoft
2 274 (9.77%) VMware
3 215 (7.67%) Cisco
4 110 (3.92%) Citrix
5 87 (3.10%) CheckPoint
6 80 (2.85%) Oracle
7 72 (2.57%) Juniper
8 68 (2.43%) Qualys
9 61 (2.18%) SolarWinds
10 60 (2.14%) HP
11 51 (1.82%) F5
12 44 (1.57%) Capita
12 44 (1.57%) LogRhythm
13 43 (1.53%) Splunk
14 41 (1.46%) Palo Alto
15 40 (1.43%) AlienVault
15 40 (1.43%) NetApp
16 39 (1.39%) Symantec
17 38 (1.36%) ArcSight
18 36 (1.28%) Sophos