Period
to

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 18 May 2022 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK
6 months to
18 May 2022
Same period 2021 Same period 2020
Rank 234 222 188
Rank change year-on-year -12 -34 +11
Permanent jobs citing ISO/IEC 27001 2,656 1,414 1,776
As % of all permanent jobs advertised in the UK 1.65% 1.57% 1.86%
As % of the Quality Assurance & Compliance category 9.73% 11.93% 14.30%
Number of salaries quoted 1,695 1,100 1,434
10th Percentile £37,500 £36,250 £35,303
25th Percentile £48,000 £42,000 £42,500
Median annual salary (50th Percentile) £60,000 £55,000 £55,069
Median % change year-on-year +9.09% -0.13% +1.98%
75th Percentile £77,500 £71,250 £72,500
90th Percentile £90,000 £87,500 £88,375
UK excluding London median annual salary £57,500 £50,000 £52,500
% change year-on-year +15.00% -4.76% +5.53%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 27,294 11,851 12,417
As % of all permanent IT jobs advertised in the UK 16.98% 13.18% 13.00%
Number of salaries quoted 13,219 8,090 9,571
10th Percentile £31,250 £31,250 £29,500
25th Percentile £41,250 £41,250 £38,475
Median annual salary (50th Percentile) £55,000 £53,000 £52,500
Median % change year-on-year +3.77% +0.95% +5.00%
75th Percentile £73,750 £70,000 £70,000
90th Percentile £90,000 £85,000 £85,000
UK excluding London median annual salary £47,626 £47,500 £47,500
% change year-on-year +0.27% - +5.56%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a proportion of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Trend

3-month moving average salary quoted in jobs citing ISO/IEC 27001.

Salary trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Histogram

Salary distribution for jobs citing ISO/IEC 27001 over the 6 months to 18 May 2022.

Salary histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 18 May 2022. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
England +1 2,339 £60,000 +4.35% 233
UK excluding London +7 1,466 £57,500 +15.00% 178
Work from Home -40 1,030 £60,000 +9.09% 77
London -15 986 £66,123 -2.04% 72
South East -12 354 £60,000 +20.00% 43
North of England -10 336 £52,500 -4.55% 55
East of England +60 230 £62,500 - 17
North West -20 206 £50,000 -9.09% 25
Midlands -23 204 £55,000 - 24
South West +28 174 £61,250 +39.94% 20
West Midlands -25 134 £59,500 -4.80% 12
Scotland -24 123 £50,500 +34.67% 11
Yorkshire +13 116 £55,000 -6.38% 24
East Midlands -18 69 £51,000 +17.24% 11
Wales +10 58 £66,250 +55.88% 8
North East -35 13 £37,500 -25.00% 6
Northern Ireland -7 11 £60,000 +20.00%

For the 6 months to 18 May 2022, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for ISO/IEC 27001.

1 1,424 (53.61%) Information Security
2 1,167 (43.94%) Cybersecurity
3 880 (33.13%) Social Skills
4 853 (32.12%) NIST
5 845 (31.81%) Finance
6 819 (30.84%) Cyber Essentials
7 740 (27.86%) GDPR
8 738 (27.79%) CISSP
9 703 (26.47%) Azure
10 563 (21.20%) Risk Management
11 525 (19.77%) Microsoft
12 505 (19.01%) Cyber Essentials PLUS
13 502 (18.90%) CISM
14 490 (18.45%) SIEM
15 489 (18.41%) AWS
16 488 (18.37%) Management Information System
17 438 (16.49%) PCI DSS
18 422 (15.89%) Data Protection
19 418 (15.74%) Security Operations
20 406 (15.29%) ITIL
21 390 (14.68%) Microsoft 365
22 387 (14.57%) ISMS
23 377 (14.19%) Degree
24 364 (13.70%) Firewall
25 363 (13.67%) Vulnerability Management
26 348 (13.10%) Windows
27 331 (12.46%) Security Management
28 323 (12.16%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
29 297 (11.18%) Active Directory
30 290 (10.92%) Security Testing

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 107 (4.03%) SharePoint
2 44 (1.66%) Elasticsearch
3 32 (1.20%) MS Exchange
4 24 (0.90%) IIS
5 13 (0.49%) Confluence
6 10 (0.38%) Apache Airflow
6 10 (0.38%) Apache Spark
6 10 (0.38%) CMS
6 10 (0.38%) Umbraco
6 10 (0.38%) WordPress
7 7 (0.26%) Apache
8 5 (0.19%) MTS
9 4 (0.15%) Exchange Server 2010
10 3 (0.11%) nginx
11 2 (0.075%) OpenEdge
11 2 (0.075%) Oracle SOA Suite
11 2 (0.075%) SAS
11 2 (0.075%) Tomcat
12 1 (0.038%) BizTalk Server
12 1 (0.038%) WebLogic
Applications
1 70 (2.64%) Microsoft Office
2 29 (1.09%) Microsoft Excel
3 20 (0.75%) MS Visio
4 18 (0.68%) Microsoft PowerPoint
5 15 (0.56%) Microsoft Project
6 2 (0.075%) Campfire
7 1 (0.038%) Adobe Illustrator
Business Applications
1 34 (1.28%) Sentinel
2 5 (0.19%) assyst
2 5 (0.19%) Oracle Financials
3 4 (0.15%) Elite 3E
3 4 (0.15%) SAP PLM
4 2 (0.075%) Maximo
4 2 (0.075%) SystmOne
5 1 (0.038%) Dynamics CRM
5 1 (0.038%) Dynamics NAV
5 1 (0.038%) Magento
5 1 (0.038%) Payment Gateway
5 1 (0.038%) SAP CRM
5 1 (0.038%) SAP GRC
5 1 (0.038%) SAP S/4HANA
5 1 (0.038%) Shopify
5 1 (0.038%) Sparx Enterprise Architect
Cloud Services
1 703 (26.47%) Azure
2 489 (18.41%) AWS
3 390 (14.68%) Microsoft 365
4 233 (8.77%) SaaS
5 114 (4.29%) GCP
6 103 (3.88%) Azure Active Directory
7 84 (3.16%) Mimecast
8 68 (2.56%) IaaS
9 64 (2.41%) PaaS
10 60 (2.26%) Google Workspace
11 53 (2.00%) Azure Sentinel
12 40 (1.51%) Cloud Computing
13 30 (1.13%) Power Platform
14 29 (1.09%) Serverless
15 28 (1.05%) Amazon EC2
16 23 (0.87%) GitHub
17 22 (0.83%) Amazon SQS
18 16 (0.60%) OneDrive
18 16 (0.60%) Power Automate
19 15 (0.56%) Datadog
Communications & Networking
1 364 (13.70%) Firewall
2 131 (4.93%) Network Security
3 115 (4.33%) DNS
4 99 (3.73%) Intrusion Detection
5 90 (3.39%) VPN
6 82 (3.09%) WAN
7 78 (2.94%) TCP/IP
8 75 (2.82%) DHCP
9 47 (1.77%) Internet
10 41 (1.54%) LAN
11 40 (1.51%) SSL
12 33 (1.24%) SAN
13 26 (0.98%) SD-WAN
14 19 (0.72%) Wireless
15 18 (0.68%) HTTP
16 17 (0.64%) Wi-Fi
17 15 (0.56%) VLAN
18 14 (0.53%) SNMP
18 14 (0.53%) Wireshark
19 11 (0.41%) VoIP
Database & Business Intelligence
1 114 (4.29%) SQL Server
2 57 (2.15%) MySQL
3 30 (1.13%) Amazon RDS
4 28 (1.05%) Power BI
5 23 (0.87%) Big Data
6 22 (0.83%) PostgreSQL
6 22 (0.83%) Relational Database
7 19 (0.72%) Data Warehouse
8 18 (0.68%) SQL Server Reporting Services
9 16 (0.60%) NoSQL
9 16 (0.60%) SQL Server Analysis Services
10 15 (0.56%) SQL Server Integration Services
11 13 (0.49%) Amazon Redshift
12 12 (0.45%) Hadoop
12 12 (0.45%) Tableau
13 11 (0.41%) BigQuery
13 11 (0.41%) QlikView
14 10 (0.38%) Looker
14 10 (0.38%) Oracle Database
14 10 (0.38%) Oracle Reports
Development Applications
1 92 (3.46%) Git (software)
2 68 (2.56%) JIRA
3 33 (1.24%) Burp Suite
4 31 (1.17%) Jenkins
5 28 (1.05%) Bitbucket
6 16 (0.60%) Team Foundation Server
7 15 (0.56%) Log4j
8 14 (0.53%) CircleCI
8 14 (0.53%) Postman
9 11 (0.41%) Cypress.io
9 11 (0.41%) git-flow
10 10 (0.38%) Storybook
10 10 (0.38%) Subversion
10 10 (0.38%) webpack
11 8 (0.30%) GitLab
12 7 (0.26%) Chocolatey
12 7 (0.26%) ERwin
12 7 (0.26%) Snowpack
12 7 (0.26%) SonarQube
12 7 (0.26%) WebSpeed
General
1 880 (33.13%) Social Skills
2 845 (31.81%) Finance
3 273 (10.28%) Public Sector
4 231 (8.70%) Legal
5 224 (8.43%) Manufacturing
6 221 (8.32%) Inclusion and Diversity
7 215 (8.09%) Banking
8 181 (6.81%) Police
9 156 (5.87%) Analytical Skills
10 105 (3.95%) Telecoms
11 85 (3.20%) Organisational Skills
12 83 (3.13%) Law
13 66 (2.48%) Retail
14 57 (2.15%) Marketing
15 43 (1.62%) Influencing Skills
16 40 (1.51%) Presentation Skills
17 37 (1.39%) Documentation Skills
18 22 (0.83%) Games
19 21 (0.79%) Local Government
20 16 (0.60%) Automotive
Job Titles
1 580 (21.84%) Analyst
2 446 (16.79%) Security Analyst
3 382 (14.38%) Security Manager
4 311 (11.71%) Architect
5 281 (10.58%) Information Analyst
6 276 (10.39%) Information Security Analyst
7 263 (9.90%) Security Architect
8 166 (6.25%) Consultant
9 158 (5.95%) Information Manager
10 147 (5.53%) Security Engineer
11 146 (5.50%) Information Security Manager
12 144 (5.42%) IT Manager
13 121 (4.56%) Security Consultant
14 99 (3.73%) Security Officer
15 95 (3.58%) IT Analyst
16 92 (3.46%) IT Security Manager
17 79 (2.97%) IT Engineer
18 70 (2.64%) IT Security Analyst
19 64 (2.41%) Information Security Officer
19 64 (2.41%) Security Specialist
Libraries, Frameworks & Software Standards
1 66 (2.48%) React
2 55 (2.07%) SAML
3 43 (1.62%) Node.js
4 39 (1.47%) HTML
5 37 (1.39%) .NET
5 37 (1.39%) CSS
6 29 (1.09%) React Native
7 26 (0.98%) OAuth
7 26 (0.98%) OpenID
7 26 (0.98%) RESTful
8 25 (0.94%) LDAP
9 17 (0.64%) ARM Templates
9 17 (0.64%) REST
10 15 (0.56%) Spring
11 14 (0.53%) GraphQL
11 14 (0.53%) Swagger
11 14 (0.53%) WebAssembly
12 13 (0.49%) Kafka
13 12 (0.45%) CSS3
13 12 (0.45%) RabbitMQ
Miscellaneous
1 488 (18.37%) Management Information System
2 182 (6.85%) Smart Meter
3 169 (6.36%) Life Science
4 100 (3.77%) Data Protection Act
5 94 (3.54%) Data Centre
6 84 (3.16%) Public Cloud
7 71 (2.67%) Self-Motivation
8 58 (2.18%) NHS
9 53 (2.00%) Cloud Native
10 50 (1.88%) Cyberthreat
11 46 (1.73%) Mobile App
12 44 (1.66%) PKI
13 42 (1.58%) Cyberattack
14 40 (1.51%) Security Operations Centre
15 34 (1.28%) Driving Licence
16 28 (1.05%) User Experience
17 26 (0.98%) Blockchain
17 26 (0.98%) Distributed Denial-of-Service
18 24 (0.90%) Enterprise Cloud
19 19 (0.72%) IoT
Operating Systems
1 348 (13.10%) Windows
2 249 (9.38%) Linux
3 147 (5.53%) Windows Server
4 49 (1.84%) Unix
5 45 (1.69%) Windows 10
6 35 (1.32%) Mac OS
7 32 (1.20%) Windows Server 2019
8 21 (0.79%) Kali Linux
9 17 (0.64%) Windows Server 2012
10 16 (0.60%) Ubuntu
10 16 (0.60%) Windows Server 2008
11 15 (0.56%) Apple iOS
12 14 (0.53%) Windows Server 2016
13 11 (0.41%) Red Hat Enterprise Linux
14 9 (0.34%) CentOS
15 8 (0.30%) Android
16 7 (0.26%) Mac OS X
17 5 (0.19%) AIX
18 4 (0.15%) VMS
18 4 (0.15%) Windows Server 2003
Processes & Methodologies
1 1,424 (53.61%) Information Security
2 1,167 (43.94%) Cybersecurity
3 563 (21.20%) Risk Management
4 490 (18.45%) SIEM
5 422 (15.89%) Data Protection
6 418 (15.74%) Security Operations
7 406 (15.29%) ITIL
8 387 (14.57%) ISMS
9 363 (13.67%) Vulnerability Management
10 331 (12.46%) Security Management
11 290 (10.92%) Security Testing
12 277 (10.43%) Agile
13 274 (10.32%) Problem-Solving
14 273 (10.28%) DevOps
14 273 (10.28%) Penetration Testing
15 260 (9.79%) Information Security Management
16 226 (8.51%) Project Management
17 201 (7.57%) Computer Science
18 200 (7.53%) Incident Management
19 199 (7.49%) Continuous Improvement
Programming Languages
1 181 (6.81%) Python
2 165 (6.21%) SQL
3 110 (4.14%) PowerShell
4 87 (3.28%) JavaScript
5 85 (3.20%) Bash
6 66 (2.48%) TypeScript
7 42 (1.58%) Java
8 40 (1.51%) C#
9 21 (0.79%) Go
10 20 (0.75%) C++
11 14 (0.53%) Ruby
12 13 (0.49%) PHP
12 13 (0.49%) Shell Script
13 12 (0.45%) T-SQL
14 11 (0.41%) C
14 11 (0.41%) Kotlin
15 10 (0.38%) Groovy
16 8 (0.30%) Perl
17 6 (0.23%) ES6
18 5 (0.19%) VB
Qualifications
1 738 (27.79%) CISSP
2 502 (18.90%) CISM
3 377 (14.19%) Degree
4 249 (9.38%) Security Cleared
5 208 (7.83%) CISA
6 192 (7.23%) CRISC
7 169 (6.36%) SC Cleared
8 138 (5.20%) Computer Science Degree
9 105 (3.95%) Cisco Certification
10 104 (3.92%) ISO 27001 Lead Auditor
11 100 (3.77%) Master's Degree
12 93 (3.50%) Microsoft Certification
13 78 (2.94%) CEH
14 75 (2.82%) CISMP
15 67 (2.52%) (ISC)2 CCSP
16 63 (2.37%) CESG Certified Professional
17 62 (2.33%) CompTIA Security+
18 54 (2.03%) SSCP
19 47 (1.77%) PMI Certification
20 46 (1.73%) CCSP
Quality Assurance & Compliance
1 853 (32.12%) NIST
2 819 (30.84%) Cyber Essentials
3 740 (27.86%) GDPR
4 505 (19.01%) Cyber Essentials PLUS
5 438 (16.49%) PCI DSS
6 323 (12.16%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 282 (10.62%) GRC
8 156 (5.87%) NCSC
9 132 (4.97%) COBIT
10 117 (4.41%) ISO 9001
11 90 (3.39%) SOC 2
12 72 (2.71%) Sarbanes-Oxley
13 59 (2.22%) HIPAA
14 55 (2.07%) RMADS
15 51 (1.92%) HMG Security Policy Framework
16 47 (1.77%) ISO 22301
16 47 (1.77%) QA
17 42 (1.58%) JSP 440
18 37 (1.39%) ISO 13485
19 36 (1.36%) SLA
System Software
1 297 (11.18%) Active Directory
2 103 (3.88%) VMware Infrastructure
3 89 (3.35%) Docker
4 82 (3.09%) Hyper-V
5 21 (0.79%) vSphere
6 13 (0.49%) Snort
7 10 (0.38%) BitLocker
7 10 (0.38%) VMware ESXi
8 9 (0.34%) Virtual Machines
9 8 (0.30%) Virtual Servers
10 5 (0.19%) Citrix Hypervisor
10 5 (0.19%) Microsoft Virtual Server
10 5 (0.19%) zsh
11 3 (0.11%) Firmware
12 2 (0.075%) iptables
12 2 (0.075%) pfSense
12 2 (0.075%) Virtual Desktop
13 1 (0.038%) ACF2
13 1 (0.038%) OpenAM
13 1 (0.038%) OpenIDM
Systems Management
1 110 (4.14%) Kubernetes
2 98 (3.69%) Terraform
3 76 (2.86%) Microsoft Intune
4 68 (2.56%) SCCM
5 54 (2.03%) Ansible
6 52 (1.96%) Single Sign-On
7 51 (1.92%) Nessus
8 24 (0.90%) CASB
9 22 (0.83%) WSUS
10 20 (0.75%) Active Directory Federation Services
10 20 (0.75%) Puppet
11 19 (0.72%) CSIRT
11 19 (0.72%) FortiGate
12 17 (0.64%) Jamf Pro
12 17 (0.64%) Nexpose
13 15 (0.56%) Trend Micro Deep Security
14 14 (0.53%) QRadar
15 10 (0.38%) Nmap
16 9 (0.34%) Consul
16 9 (0.34%) Packer
Vendors
1 525 (19.77%) Microsoft
2 150 (5.65%) Google
3 138 (5.20%) VMware
4 99 (3.73%) Cisco
5 66 (2.48%) Oracle
6 52 (1.96%) Darktrace
7 46 (1.73%) Splunk
8 42 (1.58%) Zscaler
9 38 (1.43%) Sophos
10 37 (1.39%) IBM
11 36 (1.36%) Meraki
11 36 (1.36%) Qualys
12 34 (1.28%) NEC
12 34 (1.28%) Northgate
12 34 (1.28%) Palo Alto
13 33 (1.24%) CrowdStrike
14 31 (1.17%) Veeam
15 30 (1.13%) Twitter
16 27 (1.02%) Okta
17 25 (0.94%) ServiceNow