Period
to 21 October 2019

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 21 October 2019 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK
6 months to
21 Oct 2019
Same period 2018 Same period 2017
Rank 185 205 232
Rank change year-on-year +20 +27 -24
Permanent jobs citing ISO/IEC 27001 2,678 2,891 2,731
As % of all permanent IT jobs advertised in the UK 1.96% 1.77% 1.57%
As % of the Quality Assurance & Compliance category 14.80% 13.41% 12.53%
Number of salaries quoted 1,955 2,340 2,253
UK median annual salary £55,000 £57,500 £55,000
Median salary % change year-on-year -4.35% +4.55% -
10th Percentile £29,250 £33,750 £35,000
90th Percentile £85,000 £82,500 £80,000
UK excluding London median annual salary £50,000 £50,000 £48,000
% change year-on-year - +4.17% -4.00%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 18,092 21,564 21,791
As % of all permanent IT jobs advertised in the UK 13.21% 13.18% 12.51%
Number of salaries quoted 13,521 16,361 16,152
UK median annual salary £50,000 £50,000 £50,000
10th Percentile £28,250 £28,000 £27,500
90th Percentile £82,500 £80,000 £77,500
UK excluding London median annual salary £45,000 £45,000 £42,500
% change year-on-year - +5.88% -

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing ISO/IEC 27001.

Salary trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Histogram

The salary distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 21 October 2019.

Salary histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 21 October 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +16 2,487 £55,000 -4.35% 340
UK excluding London +20 1,823 £50,000 - 273
London +25 784 £65,000 - 88
North of England +34 677 £47,500 - 58
Yorkshire +76 503 £45,000 -5.26% 18
South East +4 469 £60,000 +4.35% 65
Midlands -4 266 £47,500 +5.56% 47
West Midlands -13 216 £47,500 +4.40% 35
North West -65 161 £51,000 +7.37% 33
East of England +62 149 £50,000 -7.41% 36
South West -28 128 £50,000 +11.11% 46
Scotland +18 51 £66,986 +41.02% 11
Wales +32 50 £45,000 +18.42% 8
East Midlands +41 49 £47,500 +5.56% 11
Northern Ireland +15 35 £36,250 -19.44% 2
North East -1 11 £42,500 -26.09% 7

For the 6 months to 21 October 2019, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for ISO/IEC 27001.

1 1,281 (47.83%) Information Security
2 869 (32.45%) CISSP
3 820 (30.62%) Cybersecurity
4 707 (26.40%) Firewall
5 698 (26.06%) Management Information System
6 678 (25.32%) CISM
7 612 (22.85%) ITIL
8 594 (22.18%) PCI DSS
9 546 (20.39%) GDPR
10 534 (19.94%) ISO 9001
11 522 (19.49%) Cisco
12 512 (19.12%) Cisco Certification
13 501 (18.71%) Network Security
14 488 (18.22%) Linux
15 475 (17.74%) NIST
16 454 (16.95%) Service Delivery
17 433 (16.17%) Risk Management
18 410 (15.31%) Microsoft
19 387 (14.45%) WAN
19 387 (14.45%) Finance
20 375 (14.00%) Windows
21 374 (13.97%) Degree
22 364 (13.59%) CCNA
23 349 (13.03%) SIEM
24 331 (12.36%) CISA
25 329 (12.29%) Security Management
26 326 (12.17%) CCNP
27 318 (11.87%) VPN
28 317 (11.84%) DNS
29 305 (11.39%) Fortinet

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 67 (2.50%) SharePoint
2 45 (1.68%) MS Exchange
3 31 (1.16%) IIS
4 24 (0.90%) Apache
4 24 (0.90%) Skype for Business
5 20 (0.75%) Exchange Server 2010
6 18 (0.67%) Exchange Server 2013
7 14 (0.52%) nginx
8 11 (0.41%) Elasticsearch
9 10 (0.37%) IBM Domino
9 10 (0.37%) IBM Notes
10 9 (0.34%) Apache Spark
10 9 (0.34%) BizTalk Server
11 8 (0.30%) Tomcat
12 6 (0.22%) CMS
12 6 (0.22%) SharePoint 2013
13 4 (0.15%) Confluence
13 4 (0.15%) MediaWiki
14 3 (0.11%) Apache Solr
14 3 (0.11%) OpenStack
Applications
1 79 (2.95%) Microsoft Office
2 59 (2.20%) MS Visio
3 58 (2.17%) Microsoft Excel
4 14 (0.52%) Microsoft PowerPoint
5 11 (0.41%) Spreadsheet
6 1 (0.037%) Adobe Creative Suite
Business Applications
1 11 (0.41%) Dynamics CRM
2 8 (0.30%) Sparx Enterprise Architect
3 5 (0.19%) Salesforce.com CRM
4 1 (0.037%) Distributed Ledger
4 1 (0.037%) Pegasus Opera
4 1 (0.037%) SAP GRC
4 1 (0.037%) SAP S/4HANA
Cloud Services
1 303 (11.31%) Azure
2 199 (7.43%) AWS
3 188 (7.02%) Office 365
4 130 (4.85%) SaaS
5 64 (2.39%) IaaS
6 59 (2.20%) GCP
7 49 (1.83%) Cloud Computing
8 42 (1.57%) PaaS
9 34 (1.27%) Power Platform
10 17 (0.63%) Azure Active Directory
11 12 (0.45%) Mimecast
12 11 (0.41%) Amazon S3
12 11 (0.41%) PowerApps
13 10 (0.37%) AWS CloudFormation
13 10 (0.37%) OneDrive
14 6 (0.22%) Amazon EC2
14 6 (0.22%) Amazon EMR
14 6 (0.22%) Microsoft Flow
14 6 (0.22%) Virtual Private Cloud
15 5 (0.19%) Dynamics 365
Communications & Networking
1 707 (26.40%) Firewall
2 501 (18.71%) Network Security
3 387 (14.45%) WAN
4 318 (11.87%) VPN
5 317 (11.84%) DNS
6 288 (10.75%) Broadband
7 278 (10.38%) ADSL
8 274 (10.23%) MPLS
9 273 (10.19%) Cisco ASA
10 259 (9.67%) BGP
11 254 (9.48%) IPsec
12 241 (9.00%) OSPF
13 240 (8.96%) SMTP
14 230 (8.59%) NetScaler
15 222 (8.29%) Cisco Nexus
15 222 (8.29%) RIP
16 176 (6.57%) TCP/IP
17 168 (6.27%) LAN
18 108 (4.03%) VoIP
19 98 (3.66%) Wireless
Database & Business Intelligence
1 118 (4.41%) SQL Server
2 37 (1.38%) Relational Database
3 36 (1.34%) Big Data
4 22 (0.82%) SQL Server Integration Services
5 20 (0.75%) MySQL
5 20 (0.75%) Power BI
6 19 (0.71%) MongoDB
7 18 (0.67%) Data Warehouse
8 17 (0.63%) Hazelcast
8 17 (0.63%) SQL Server 2012
9 16 (0.60%) Hadoop
10 15 (0.56%) SQL Server 2008
11 14 (0.52%) PostgreSQL
12 13 (0.49%) Redis
13 12 (0.45%) RDBMS
13 12 (0.45%) SQL Server Reporting Services
14 11 (0.41%) Azure SQL Database
15 9 (0.34%) Apache Hive
15 9 (0.34%) BigQuery
15 9 (0.34%) Maltego
Development Applications
1 30 (1.12%) JIRA
2 23 (0.86%) Git (software)
3 21 (0.78%) Jenkins
4 12 (0.45%) Burp Suite
4 12 (0.45%) Visual Studio
5 10 (0.37%) Metasploit
6 9 (0.34%) Mercurial
6 9 (0.34%) Team Foundation Server
7 7 (0.26%) Octopus Deploy
7 7 (0.26%) SonarQube
8 5 (0.19%) WinDbg
9 3 (0.11%) IDA Disassembler
9 3 (0.11%) SQL Server Management Studio (SSMS)
9 3 (0.11%) Subversion
9 3 (0.11%) TeamCity
10 2 (0.075%) Bitbucket
10 2 (0.075%) Maven
10 2 (0.075%) SoapUI
11 1 (0.037%) CMake
11 1 (0.037%) WebDriver
General
1 387 (14.45%) Finance
2 264 (9.86%) Public Sector
3 198 (7.39%) Legal
4 170 (6.35%) Telecoms
5 115 (4.29%) Retail
6 56 (2.09%) Law
7 52 (1.94%) Banking
8 46 (1.72%) Manufacturing
9 38 (1.42%) Marketing
10 23 (0.86%) Automotive
10 23 (0.86%) Games
11 16 (0.60%) Advertising
12 15 (0.56%) Local Government
13 14 (0.52%) Investment Banking
14 13 (0.49%) Aerospace
15 11 (0.41%) Electronics
15 11 (0.41%) Financial Institution
16 9 (0.34%) Billing
16 9 (0.34%) Multimedia
17 8 (0.30%) Military
Job Titles
1 426 (15.91%) Analyst
2 354 (13.22%) Security Engineer
3 346 (12.92%) Consultant
4 299 (11.17%) Security Analyst
5 292 (10.90%) Security Manager
6 275 (10.27%) Security Consultant
7 261 (9.75%) Network Engineer
8 207 (7.73%) Network Security Engineer
9 204 (7.62%) Information Analyst
10 200 (7.47%) Information Security Analyst
11 163 (6.09%) Architect
12 162 (6.05%) Information Manager
13 154 (5.75%) Information Security Manager
14 149 (5.56%) Cisco Engineer
15 146 (5.45%) Cisco Security Engineer
16 145 (5.41%) Cisco Network Engineer
17 129 (4.82%) Security Architect
18 114 (4.26%) Security Officer
19 105 (3.92%) Cybersecurity Consultant
20 96 (3.58%) IT Manager
Libraries, Frameworks & Software Standards
1 38 (1.42%) .NET
2 33 (1.23%) REST
3 32 (1.19%) SOAP
3 32 (1.19%) Web Services
4 31 (1.16%) Elastic Stack
4 31 (1.16%) Spring
5 22 (0.82%) OAuth
5 22 (0.82%) SailPoint
6 21 (0.78%) CSS
7 18 (0.67%) OpenID
8 17 (0.63%) Vert.x
9 16 (0.60%) LDAP
10 14 (0.52%) HTML
10 14 (0.52%) OAuth2
10 14 (0.52%) XACML
11 12 (0.45%) Hibernate
12 11 (0.41%) Apache Camel
13 10 (0.37%) .NET Framework
13 10 (0.37%) HTML5
13 10 (0.37%) SAML
Miscellaneous
1 698 (26.06%) Management Information System
2 196 (7.32%) Analytical Skills
3 143 (5.34%) Data Centre
4 105 (3.92%) Self-Motivation
5 80 (2.99%) PKI
6 79 (2.95%) Data Protection Act
7 70 (2.61%) Cyberthreat
8 58 (2.17%) Security Operations Centre
9 51 (1.90%) CESG
10 40 (1.49%) Cyberattack
11 34 (1.27%) Distributed Denial-of-Service
12 33 (1.23%) Driving Licence
12 33 (1.23%) Internet of Things
13 29 (1.08%) Private Cloud
14 28 (1.05%) User Experience
15 26 (0.97%) Public Cloud
16 25 (0.93%) BYOD
16 25 (0.93%) Smartphone
17 20 (0.75%) Greenfield Project
18 18 (0.67%) Cyber Kill Chain
Operating Systems
1 488 (18.22%) Linux
2 375 (14.00%) Windows
3 279 (10.42%) Unix
4 156 (5.83%) Windows Server
5 68 (2.54%) Windows Server 2012
6 63 (2.35%) Windows 10
7 55 (2.05%) Windows Server 2008
8 33 (1.23%) CentOS
8 33 (1.23%) Mac OS
9 26 (0.97%) Windows 7
10 21 (0.78%) Windows Server 2003
11 18 (0.67%) Red Hat Enterprise Linux
12 16 (0.60%) Apple iOS
12 16 (0.60%) HPUX
12 16 (0.60%) Solaris
13 10 (0.37%) Ubuntu
14 9 (0.34%) Android
15 8 (0.30%) Windows 8
16 6 (0.22%) Debian
17 5 (0.19%) Windows XP
Processes & Methodologies
1 1,281 (47.83%) Information Security
2 820 (30.62%) Cybersecurity
3 612 (22.85%) ITIL
4 454 (16.95%) Service Delivery
5 433 (16.17%) Risk Management
6 349 (13.03%) SIEM
7 329 (12.29%) Security Management
8 278 (10.38%) Product Management
9 265 (9.90%) Agile Software Development
10 263 (9.82%) Security Architecture
11 262 (9.78%) Change Control
11 262 (9.78%) Continuous Improvement
12 251 (9.37%) Data Protection
12 251 (9.37%) Problem-Solving
13 244 (9.11%) Penetration Testing
14 240 (8.96%) Network Design
15 227 (8.48%) Network Management
16 222 (8.29%) ISMS
17 215 (8.03%) Security Operations
17 215 (8.03%) Stakeholder Management
Programming Languages
1 298 (11.13%) Python
2 252 (9.41%) Bash Shell
3 245 (9.15%) Perl
4 104 (3.88%) PowerShell
5 102 (3.81%) SQL
6 67 (2.50%) Java
7 46 (1.72%) C
8 27 (1.01%) JavaScript
9 25 (0.93%) Ruby
10 23 (0.86%) C#
11 21 (0.78%) VB.NET
12 19 (0.71%) PHP
13 17 (0.63%) Shell Script
14 15 (0.56%) Go
15 13 (0.49%) C++
16 10 (0.37%) PHP 5
16 10 (0.37%) PHP 7
17 8 (0.30%) VB
18 7 (0.26%) VB6
18 7 (0.26%) VBScript
Qualifications
1 869 (32.45%) CISSP
2 678 (25.32%) CISM
3 512 (19.12%) Cisco Certification
4 374 (13.97%) Degree
5 364 (13.59%) CCNA
6 331 (12.36%) CISA
7 326 (12.17%) CCNP
8 249 (9.30%) Security Cleared
9 170 (6.35%) SC Cleared
10 151 (5.64%) Microsoft Certification
11 123 (4.59%) CRISC
12 113 (4.22%) MCSE
13 101 (3.77%) CEH
14 88 (3.29%) CESG Certified Professional
15 82 (3.06%) ISO 27001 Lead Auditor
16 66 (2.46%) MCITP
16 66 (2.46%) VMware Certified Professional (VCP)
17 64 (2.39%) (ISC)2 CCSP
18 63 (2.35%) GIAC
19 61 (2.28%) CISMP
Quality Assurance & Compliance
1 594 (22.18%) PCI DSS
2 546 (20.39%) GDPR
3 534 (19.94%) ISO 9001
4 475 (17.74%) NIST
5 238 (8.89%) Cyber Essentials
6 205 (7.65%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 199 (7.43%) COBIT
8 162 (6.05%) SLA
9 130 (4.85%) Sarbanes-Oxley
10 128 (4.78%) ISO 22301
11 105 (3.92%) HMG Security Policy Framework
12 70 (2.61%) NCSC
13 68 (2.54%) Cyber Essentials PLUS
14 44 (1.64%) QA
15 43 (1.61%) ISO/IEC 20000
15 43 (1.61%) NIST 800
16 34 (1.27%) ISO/IEC 27005
17 32 (1.19%) PMO
18 29 (1.08%) HIPAA
19 25 (0.93%) RMADS
System Software
1 291 (10.87%) Active Directory
2 204 (7.62%) VMware Infrastructure
3 84 (3.14%) Hyper-V
4 43 (1.61%) Virtual Machines
5 23 (0.86%) vSphere
6 22 (0.82%) VMware ESXi
7 18 (0.67%) Docker
8 15 (0.56%) Virtual Desktop
9 13 (0.49%) XenApp
10 9 (0.34%) HDFS
11 8 (0.30%) Virtual Servers
12 7 (0.26%) ISA Server
13 4 (0.15%) Firmware
13 4 (0.15%) KVM
13 4 (0.15%) Sendmail
13 4 (0.15%) VMware NSX
14 3 (0.11%) BitLocker
14 3 (0.11%) Citrix Hypervisor
14 3 (0.11%) Microsoft Virtual Server
14 3 (0.11%) pfSense
Systems Management
1 260 (9.71%) FortiGate
2 244 (9.11%) Nagios
3 61 (2.28%) SCCM
4 45 (1.68%) Kubernetes
5 38 (1.42%) Ansible
6 34 (1.27%) Nessus
7 30 (1.12%) CASB
8 27 (1.01%) Prometheus
9 23 (0.86%) Terraform
10 20 (0.75%) Puppet
11 17 (0.63%) Microsoft Intune
11 17 (0.63%) Symantec Endpoint Protection
12 16 (0.60%) Stealthwatch
13 15 (0.56%) QRadar
14 13 (0.49%) Forefront Identity Manager
15 10 (0.37%) HAProxy
15 10 (0.37%) Nmap
15 10 (0.37%) Norton AntiVirus
15 10 (0.37%) OpenVAS
15 10 (0.37%) yum
Vendors
1 522 (19.49%) Cisco
2 410 (15.31%) Microsoft
3 305 (11.39%) Fortinet
4 250 (9.34%) VMware
5 234 (8.74%) Palo Alto
6 114 (4.26%) Citrix
7 113 (4.22%) Meraki
8 88 (3.29%) CheckPoint
9 62 (2.32%) Aruba
10 58 (2.17%) Polycom
11 53 (1.98%) Google
12 49 (1.83%) Oracle
13 48 (1.79%) Symantec
14 46 (1.72%) Juniper
14 46 (1.72%) McAfee
15 41 (1.53%) Splunk
16 35 (1.31%) Huawei
17 34 (1.27%) Qualys
18 33 (1.23%) Brocade
18 33 (1.23%) Ruckus Wireless