Period
to 21 October 2018

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 21 October 2018 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK
6 months to
21 Oct 2018
Same period 2017 Same period 2016
Rank 204 231 205
Rank change year-on-year +27 -26 +82
Permanent jobs citing ISO/IEC 27001 2,891 2,731 3,204
As % of all permanent IT jobs advertised in the UK 1.77% 1.57% 1.68%
As % of the Quality Assurance & Compliance category 13.47% 12.60% 12.82%
Number of salaries quoted 2,340 2,253 2,548
UK median annual salary £57,500 £55,000 £55,000
Median salary % change year-on-year +4.55% - +4.76%
10th Percentile £33,750 £35,000 £36,250
90th Percentile £82,500 £80,000 £80,000
UK excluding London median annual salary £50,000 £48,000 £50,000
% change year-on-year +4.17% -4.00% +5.26%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 21,464 21,680 24,989
As % of all permanent IT jobs advertised in the UK 13.12% 12.44% 13.08%
Number of salaries quoted 16,287 16,082 19,745
UK median annual salary £50,000 £50,000 £50,000
10th Percentile £28,000 £27,500 £27,500
90th Percentile £80,000 £77,500 £77,500
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +6.25%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing ISO/IEC 27001.

Salary trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Histogram

The salary distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 21 October 2018.

Salary histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 21 October 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +33 2,712 £57,500 +4.55% 328
UK excluding London +48 1,851 £50,000 +4.17% 240
London -30 928 £65,000 +4.00% 105
North of England +72 592 £47,500 - 70
South East +13 535 £57,500 +9.52% 59
North West +75 351 £47,500 -5.00% 46
Midlands +109 332 £45,000 -5.26% 41
West Midlands +121 295 £45,500 +1.11% 31
Yorkshire +57 210 £47,500 +5.56% 18
South West +31 180 £45,000 - 35
East of England +17 136 £54,000 +0.47% 18
Scotland +14 47 £47,500 +18.75% 12
East Midlands -5 39 £45,000 -5.26% 10
North East -16 31 £57,500 +12.75% 6
Wales -37 24 £38,000 -5.00% 4
Northern Ireland - 8 £45,000 -
Isle of Man +7 5 £55,000 +120.00% 1

For the 6 months to 21 October 2018, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for ISO/IEC 27001.

1 1,871 (64.72%) Information Security
2 1,193 (41.27%) CISSP
3 865 (29.92%) PCI DSS
4 803 (27.78%) Cybersecurity
5 722 (24.97%) GDPR
6 716 (24.77%) CISM
7 672 (23.24%) ITIL
8 662 (22.90%) Windows
9 641 (22.17%) Finance
10 625 (21.62%) Management Information System
11 616 (21.31%) Data Protection
12 611 (21.13%) Risk Management
13 588 (20.34%) SIEM
14 551 (19.06%) Degree
15 547 (18.92%) Firewall
16 505 (17.47%) Linux
17 500 (17.30%) Microsoft
18 398 (13.77%) CISA
19 369 (12.76%) Security Management
20 363 (12.56%) Penetration Testing
21 359 (12.42%) Vulnerability Management
22 349 (12.07%) Cyber Essentials
22 349 (12.07%) Network Security
23 336 (11.62%) Microsoft Azure
24 312 (10.79%) Legal
25 311 (10.76%) Active Directory
26 301 (10.41%) Agile Software Development
27 300 (10.38%) Security Operations
28 283 (9.79%) VMware
29 278 (9.62%) Business Continuity

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 81 (2.80%) IIS
2 68 (2.35%) SharePoint
3 58 (2.01%) MS Exchange
4 46 (1.59%) Apache
5 44 (1.52%) Skype for Business
6 29 (1.00%) CMS
7 18 (0.62%) Tomcat
8 15 (0.52%) Apache Solr
9 13 (0.45%) Elasticsearch
10 9 (0.31%) Apache Spark
11 7 (0.24%) Exchange Server 2013
12 6 (0.21%) Confluence
12 6 (0.21%) Exchange Server 2010
12 6 (0.21%) WebLogic
13 5 (0.17%) Exchange Server 2007
13 5 (0.17%) nginx
13 5 (0.17%) SharePoint Server
14 4 (0.14%) WebSphere
15 3 (0.10%) Exchange Server 2003
15 3 (0.10%) Umbraco
Applications
1 122 (4.22%) Microsoft Office
2 71 (2.46%) Microsoft PowerPoint
3 35 (1.21%) Microsoft Excel
4 22 (0.76%) MS Visio
5 5 (0.17%) Microsoft Project
6 2 (0.069%) Spreadsheet
7 1 (0.035%) Stata
Business Applications
1 11 (0.38%) Dynamics CRM
2 9 (0.31%) assyst
3 7 (0.24%) Distributed Ledger
3 7 (0.24%) Sentinel
4 6 (0.21%) Dynamics NAV
5 4 (0.14%) Dynamics AX
6 3 (0.10%) Elite 3E
6 3 (0.10%) Infor M3
6 3 (0.10%) Oracle EBS R12
6 3 (0.10%) Oracle ERP
6 3 (0.10%) Visualfiles
7 2 (0.069%) SAP ERP
8 1 (0.035%) Concordance
8 1 (0.035%) Dynamics GP
8 1 (0.035%) Oracle Applications
8 1 (0.035%) Payment Gateway
8 1 (0.035%) Relativity
8 1 (0.035%) SAP S/4HANA
8 1 (0.035%) Veritas eDiscovery
Cloud Services
1 336 (11.62%) Microsoft Azure
2 266 (9.20%) Amazon AWS
3 165 (5.71%) SaaS
4 149 (5.15%) Office 365
5 85 (2.94%) IaaS
6 84 (2.91%) PaaS
7 29 (1.00%) Google Cloud Platform
8 23 (0.80%) Cloud Computing
9 13 (0.45%) Amazon EC2
9 13 (0.45%) Mimecast
10 10 (0.35%) Serverless
11 9 (0.31%) AWS CloudFormation
12 8 (0.28%) Azure Active Directory
13 7 (0.24%) Amazon S3
13 7 (0.24%) Virtual Private Cloud
14 6 (0.21%) Dynamics 365
14 6 (0.21%) G Suite
14 6 (0.21%) GitHub
15 4 (0.14%) Amazon SQS
15 4 (0.14%) Route 53
Communications & Networking
1 547 (18.92%) Firewall
2 349 (12.07%) Network Security
3 145 (5.02%) LAN
4 141 (4.88%) TCP/IP
4 141 (4.88%) WAN
5 140 (4.84%) Intrusion Detection
6 111 (3.84%) DNS
7 103 (3.56%) VPN
8 85 (2.94%) Wi-Fi
9 84 (2.91%) SAN
10 80 (2.77%) SSL
11 74 (2.56%) Internet
12 69 (2.39%) VoIP
13 65 (2.25%) Wireless
14 54 (1.87%) DHCP
15 48 (1.66%) HTTP
16 45 (1.56%) Cisco ASA
17 39 (1.35%) IPsec
18 38 (1.31%) MPLS
18 38 (1.31%) VLAN
Database & Business Intelligence
1 165 (5.71%) SQL Server
2 56 (1.94%) Big Data
3 45 (1.56%) MySQL
4 35 (1.21%) Relational Database
5 28 (0.97%) SQL Server Integration Services
6 26 (0.90%) NoSQL
7 24 (0.83%) PostgreSQL
8 21 (0.73%) SQL Server 2008
9 20 (0.69%) RDBMS
9 20 (0.69%) SQL Server Reporting Services
10 19 (0.66%) Data Warehouse
10 19 (0.66%) Hadoop
10 19 (0.66%) Oracle Database
11 17 (0.59%) MongoDB
12 13 (0.45%) Amazon DynamoDB
12 13 (0.45%) DB2
12 13 (0.45%) SQL Server 2016
13 12 (0.42%) Amazon RDS
13 12 (0.42%) SQL Server 2012
14 11 (0.38%) Geospatial Data
Development Applications
1 27 (0.93%) JIRA
2 22 (0.76%) Git (software)
3 18 (0.62%) Octopus Deploy
4 15 (0.52%) Team Foundation Server
5 13 (0.45%) TeamCity
6 10 (0.35%) Subversion
6 10 (0.35%) Visual Studio
7 9 (0.31%) Hudson
8 8 (0.28%) Atlassian Bamboo
8 8 (0.28%) Cucumber
8 8 (0.28%) Jenkins
9 7 (0.24%) Selenium
10 6 (0.21%) Metasploit
11 5 (0.17%) SonarQube
11 5 (0.17%) VSS/SourceSafe
11 5 (0.17%) webpack
12 4 (0.14%) Sonatype Nexus
13 3 (0.10%) Bitbucket
13 3 (0.10%) Grunt
13 3 (0.10%) gulp
General
1 641 (22.17%) Finance
2 312 (10.79%) Legal
3 163 (5.64%) Banking
4 118 (4.08%) Law
5 110 (3.80%) Retail
6 108 (3.74%) Telecoms
7 81 (2.80%) Investment Banking
8 51 (1.76%) Marketing
9 47 (1.63%) Publishing
10 38 (1.31%) Manufacturing
11 26 (0.90%) Local Government
12 22 (0.76%) Games
13 18 (0.62%) Electronics
14 17 (0.59%) Pharmaceutical
15 13 (0.45%) Back Office
16 12 (0.42%) Advertising
17 9 (0.31%) Financial Institution
18 7 (0.24%) Billing
18 7 (0.24%) Military
19 6 (0.21%) Aerospace
Job Titles
1 685 (23.69%) Analyst
2 517 (17.88%) Security Analyst
3 444 (15.36%) Security Manager
4 309 (10.69%) Information Manager
5 304 (10.52%) Consultant
6 303 (10.48%) Information Security Manager
7 239 (8.27%) Information Analyst
8 237 (8.20%) Architect
9 231 (7.99%) Information Security Analyst
10 212 (7.33%) Security Consultant
11 184 (6.36%) IT Analyst
12 183 (6.33%) IT Manager
13 170 (5.88%) Senior Analyst
14 145 (5.02%) Security Architect
14 145 (5.02%) Security Officer
15 142 (4.91%) Senior Security Analyst
16 135 (4.67%) IT Security Analyst
17 133 (4.60%) Security Engineer
18 114 (3.94%) Information Security Officer
19 108 (3.74%) Information Officer
Libraries, Frameworks & Software Standards
1 80 (2.77%) .NET
2 53 (1.83%) Web Services
3 37 (1.28%) CSS
4 24 (0.83%) .NET Framework
4 24 (0.83%) HTML
5 22 (0.76%) Middleware
6 21 (0.73%) OAuth
6 21 (0.73%) WinForms
7 20 (0.69%) SailPoint
8 19 (0.66%) JSON
9 17 (0.59%) Elastic Stack
10 16 (0.55%) Ajax
11 15 (0.52%) jQuery
11 15 (0.52%) SAML
12 14 (0.48%) LAMP
12 14 (0.48%) REST
12 14 (0.48%) WCF
13 13 (0.45%) OAuth2
13 13 (0.45%) SOAP
13 13 (0.45%) Symfony
Miscellaneous
1 625 (21.62%) Management Information System
2 217 (7.51%) Analytical Skills
3 216 (7.47%) Data Protection Act
4 200 (6.92%) Self-Motivation
5 179 (6.19%) Computer Science
5 179 (6.19%) Data Centre
6 101 (3.49%) Security Operations Centre
7 91 (3.15%) Cyber Kill Chain
8 75 (2.59%) CESG
9 60 (2.08%) Fintech
9 60 (2.08%) PKI
10 42 (1.45%) Driving Licence
11 40 (1.38%) Distributed Denial-of-Service
11 40 (1.38%) Public Cloud
12 38 (1.31%) Cyberattack
12 38 (1.31%) NHS
13 34 (1.18%) Enterprise Software
14 29 (1.00%) CMDB
14 29 (1.00%) Cyberthreat
15 25 (0.86%) Video Conferencing
Operating Systems
1 662 (22.90%) Windows
2 505 (17.47%) Linux
3 244 (8.44%) Windows Server
4 86 (2.97%) Unix
5 54 (1.87%) Apple iOS
6 50 (1.73%) Mac OS X
7 44 (1.52%) Windows Server 2008
8 42 (1.45%) Windows Server 2012
9 40 (1.38%) Windows 10
10 31 (1.07%) CentOS
10 31 (1.07%) Windows 7
11 26 (0.90%) Red Hat Enterprise Linux
12 17 (0.59%) Android
12 17 (0.59%) Debian
12 17 (0.59%) Ubuntu
12 17 (0.59%) Windows 8
13 15 (0.52%) Windows Server 2003
14 9 (0.31%) Kali Linux
15 8 (0.28%) Mac OS
16 3 (0.10%) FreeBSD
Processes & Methodologies
1 1,871 (64.72%) Information Security
2 803 (27.78%) Cybersecurity
3 672 (23.24%) ITIL
4 616 (21.31%) Data Protection
5 611 (21.13%) Risk Management
6 588 (20.34%) SIEM
7 369 (12.76%) Security Management
8 363 (12.56%) Penetration Testing
9 359 (12.42%) Vulnerability Management
10 301 (10.41%) Agile Software Development
11 300 (10.38%) Security Operations
12 278 (9.62%) Business Continuity
13 273 (9.44%) ISMS
14 260 (8.99%) Incident Management
14 260 (8.99%) Security Architecture
15 259 (8.96%) Project Management
16 251 (8.68%) Disaster Recovery
17 234 (8.09%) Information Security Management
18 222 (7.68%) Problem-Solving
19 206 (7.13%) Service Management
Programming Languages
1 221 (7.64%) SQL
2 88 (3.04%) PowerShell
3 69 (2.39%) Python
4 58 (2.01%) JavaScript
5 54 (1.87%) Java
6 43 (1.49%) C#
7 33 (1.14%) C
8 32 (1.11%) PHP
9 29 (1.00%) Bash Shell
10 23 (0.80%) Perl
10 23 (0.80%) VB.NET
11 20 (0.69%) Shell Script
12 17 (0.59%) Ruby
13 15 (0.52%) T-SQL
14 9 (0.31%) VB
15 7 (0.24%) C++
16 5 (0.17%) Go
17 4 (0.14%) Data Analysis Expressions (DAX)
17 4 (0.14%) ES6
18 3 (0.10%) RPG IV
Qualifications
1 1,193 (41.27%) CISSP
2 716 (24.77%) CISM
3 551 (19.06%) Degree
4 398 (13.77%) CISA
5 264 (9.13%) Security Cleared
6 227 (7.85%) Cisco Certification
7 212 (7.33%) CEH
8 186 (6.43%) SANS
9 137 (4.74%) SC Cleared
10 127 (4.39%) CREST Certified
11 120 (4.15%) Computer Science Degree
12 115 (3.98%) CRISC
13 109 (3.77%) CompTIA Security+
14 100 (3.46%) CISMP
14 100 (3.46%) GIAC
15 96 (3.32%) (ISC)2 CCSP
16 86 (2.97%) SSCP
17 85 (2.94%) CESG Certified Professional
18 83 (2.87%) Microsoft Certification
19 74 (2.56%) CCNP
Quality Assurance & Compliance
1 865 (29.92%) PCI DSS
2 722 (24.97%) GDPR
3 349 (12.07%) Cyber Essentials
4 277 (9.58%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 197 (6.81%) COBIT
6 181 (6.26%) ISO 9001
7 109 (3.77%) SLA
8 75 (2.59%) Cyber Essentials PLUS
9 73 (2.53%) ISO/IEC 20000
9 73 (2.53%) Sarbanes-Oxley
10 66 (2.28%) QA
11 60 (2.08%) HMG Security Policy Framework
12 57 (1.97%) ISO 22301
13 43 (1.49%) ISO 14001
14 39 (1.35%) NIST 800
15 37 (1.28%) GPG13
16 27 (0.93%) HIPAA
16 27 (0.93%) ISO/IEC 27005
17 19 (0.66%) RMADS
18 17 (0.59%) JSP 440
System Software
1 311 (10.76%) Active Directory
2 228 (7.89%) VMware Infrastructure
3 48 (1.66%) Hyper-V
4 37 (1.28%) Virtual Machines
5 25 (0.86%) VMware ESXi
6 23 (0.80%) Docker
7 21 (0.73%) vSphere
8 16 (0.55%) Snort
9 8 (0.28%) Firmware
10 7 (0.24%) HDFS
10 7 (0.24%) Terminal Services
11 6 (0.21%) KVM
12 5 (0.17%) Virtual Servers
12 5 (0.17%) VMware NSX
13 4 (0.14%) DFS Replication
13 4 (0.14%) Forefront TMG
13 4 (0.14%) Xen
14 3 (0.10%) Microsoft Virtual Server
14 3 (0.10%) Virtual Desktop
14 3 (0.10%) VirtualBox
Systems Management
1 64 (2.21%) Nessus
2 56 (1.94%) SCCM
3 51 (1.76%) Ansible
4 44 (1.52%) QRadar
5 39 (1.35%) Puppet
6 37 (1.28%) Opscode Chef
7 29 (1.00%) WSUS
8 26 (0.90%) OpenVAS
9 24 (0.83%) Single Sign-On
10 21 (0.73%) SCOM
11 20 (0.69%) Nagios
11 20 (0.69%) Nexpose
12 19 (0.66%) IBM BigFix
13 17 (0.59%) Core Impact
14 13 (0.45%) WhatsUp Gold
15 12 (0.42%) Suricata
15 12 (0.42%) vCenter Server
16 10 (0.35%) Cisco CUCM
16 10 (0.35%) Jamf Pro
16 10 (0.35%) Nmap
Vendors
1 500 (17.30%) Microsoft
2 283 (9.79%) VMware
3 254 (8.79%) Cisco
4 92 (3.18%) Oracle
5 78 (2.70%) Splunk
6 69 (2.39%) Citrix
7 67 (2.32%) CheckPoint
8 57 (1.97%) Qualys
9 53 (1.83%) SolarWinds
10 52 (1.80%) Juniper
11 51 (1.76%) LogRhythm
12 47 (1.63%) Apple
13 40 (1.38%) HP
14 38 (1.31%) AlienVault
15 35 (1.21%) Google
16 33 (1.14%) ArcSight
16 33 (1.14%) SAP
17 31 (1.07%) Dell
17 31 (1.07%) NetApp
17 31 (1.07%) Sophos