Period
to 20 January 2018

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 20 January 2018 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK
6 months to
20 Jan 2018
Same period 2017 Same period 2016
Rank 223 226 264
Rank change year-on-year +3 +38 +41
Permanent jobs citing ISO/IEC 27001 2,667 2,631 2,673
As % of all permanent IT jobs advertised in the UK 1.54% 1.49% 1.28%
As % of the Quality Assurance & Compliance category 12.13% 11.77% 9.87%
Number of salaries quoted 2,199 2,112 2,220
UK median annual salary £55,000 £55,000 £52,500
Median salary % change year-on-year - +4.76% +5.00%
10th Percentile £36,250 £33,750 £35,450
90th Percentile £81,250 £80,000 £82,500
UK excluding London median annual salary £50,000 £50,000 £50,000

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 21,983 22,362 27,074
As % of all permanent IT jobs advertised in the UK 12.70% 12.63% 12.97%
Number of salaries quoted 16,974 17,719 21,475
UK median annual salary £50,000 £47,500 £47,500
Median salary % change year-on-year +5.26% - +5.56%
10th Percentile £27,500 £26,875 £26,746
90th Percentile £80,000 £77,500 £75,000
UK excluding London median annual salary £43,000 £42,500 £42,500
% change year-on-year +1.18% - +6.25%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing ISO/IEC 27001.

Salary trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Histogram

The salary distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 20 January 2018.

Salary histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 20 January 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +8 2,548 £55,500 +0.91% 346
UK excluding London -2 1,442 £50,000 - 227
London +14 1,152 £64,000 -1.54% 131
South East +35 483 £50,000 -7.41% 65
North of England -3 380 £50,000 +11.11% 67
East of England +36 185 £55,000 +22.22% 32
Yorkshire +8 185 £45,000 +5.26% 22
Midlands -35 177 £45,750 +2.23% 34
North West -29 169 £55,000 +10.00% 41
South West +10 158 £49,500 -10.00% 16
West Midlands -52 129 £45,000 +5.88% 23
East Midlands +31 47 £47,500 -5.00% 11
Scotland -47 43 £40,000 -23.81% 11
North East -1 26 £52,500 +37.48% 4
Wales -12 10 £41,250 -15.38% 2
Northern Ireland -19 3 £67,500 -
Isle of Man - 3 £25,000 -

For the 6 months to 20 January 2018, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for ISO/IEC 27001.

1 1,777 (66.63%) Information Security
2 1,072 (40.19%) CISSP
3 873 (32.73%) PCI DSS
4 812 (30.45%) CISM
5 727 (27.26%) Cybersecurity
6 669 (25.08%) Finance
7 637 (23.88%) GDPR
8 606 (22.72%) Data Protection
9 605 (22.68%) ITIL
10 597 (22.38%) Windows
11 590 (22.12%) Firewall
12 589 (22.08%) Risk Management
13 484 (18.15%) Management Information System
14 477 (17.89%) SIEM
15 448 (16.80%) Penetration Testing
16 392 (14.70%) CISA
17 359 (13.46%) Microsoft
18 349 (13.09%) Linux
19 343 (12.86%) Security Management
20 313 (11.74%) Degree
21 299 (11.21%) ISMS
22 283 (10.61%) Data Protection Act
23 280 (10.50%) Information Security Management
24 272 (10.20%) Active Directory
24 272 (10.20%) Network Security
25 267 (10.01%) Security Architecture
26 263 (9.86%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
27 261 (9.79%) Agile Software Development
28 258 (9.67%) Windows Server
29 255 (9.56%) Security Operations

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 62 (2.32%) IIS
2 51 (1.91%) SharePoint
3 43 (1.61%) MS Exchange
4 25 (0.94%) Apache
5 16 (0.60%) Skype for Business
6 15 (0.56%) Elasticsearch
7 14 (0.52%) Apache Spark
8 13 (0.49%) CMS
8 13 (0.49%) Exchange Server 2013
9 11 (0.41%) Exchange Server 2010
10 10 (0.37%) Tomcat
11 7 (0.26%) OpenStack
12 6 (0.22%) SAS
13 4 (0.15%) Oracle Service Bus
14 3 (0.11%) Confluence
14 3 (0.11%) SharePoint 2010
15 2 (0.075%) nginx
15 2 (0.075%) WebSphere
15 2 (0.075%) WordPress
16 1 (0.037%) Drupal
Applications
1 74 (2.77%) Microsoft Office
2 35 (1.31%) Microsoft Excel
3 20 (0.75%) Microsoft PowerPoint
4 10 (0.37%) MS Visio
5 8 (0.30%) Microsoft Project
6 2 (0.075%) Adobe Illustrator
6 2 (0.075%) Photoshop
6 2 (0.075%) Stata
7 1 (0.037%) Spreadsheet
Business Applications
1 6 (0.22%) Dynamics CRM
2 5 (0.19%) Dynamics NAV
3 4 (0.15%) Maximo
4 3 (0.11%) SAP ERP
5 2 (0.075%) Primavera
5 2 (0.075%) Workfront
6 1 (0.037%) Dynamics AX
6 1 (0.037%) Infor M3
6 1 (0.037%) Magento
6 1 (0.037%) NetSuite
6 1 (0.037%) Oracle EBS
6 1 (0.037%) Oracle Financials
6 1 (0.037%) Sage 200
Cloud Services
1 164 (6.15%) Amazon AWS
2 157 (5.89%) SaaS
3 126 (4.72%) Microsoft Azure
4 82 (3.07%) Office 365
5 57 (2.14%) IaaS
6 47 (1.76%) PaaS
7 18 (0.67%) Mimecast
8 11 (0.41%) Cloudflare
9 9 (0.34%) Amazon EC2
9 9 (0.34%) Amazon S3
10 6 (0.22%) Cloud Computing
10 6 (0.22%) OneDrive
11 5 (0.19%) AWS CloudFormation
11 5 (0.19%) IBM Cloud
11 5 (0.19%) Serverless
12 4 (0.15%) Bluemix
12 4 (0.15%) Dynamics 365
12 4 (0.15%) Google Cloud Platform
13 3 (0.11%) Azure Active Directory
13 3 (0.11%) GitHub
Communications & Networking
1 590 (22.12%) Firewall
2 272 (10.20%) Network Security
3 159 (5.96%) TCP/IP
4 136 (5.10%) VPN
5 111 (4.16%) WAN
6 109 (4.09%) DNS
7 107 (4.01%) LAN
8 98 (3.67%) Internet
9 92 (3.45%) DHCP
9 92 (3.45%) SAN
10 83 (3.11%) SSL
11 80 (3.00%) Intrusion Detection
12 62 (2.32%) IPsec
13 56 (2.10%) VoIP
14 47 (1.76%) MPLS
15 43 (1.61%) Wireless
16 37 (1.39%) HTTP
17 33 (1.24%) VLAN
18 31 (1.16%) Cisco ASA
19 29 (1.09%) OSPF
Database & Business Intelligence
1 166 (6.22%) SQL Server
2 38 (1.42%) Big Data
3 37 (1.39%) MySQL
4 27 (1.01%) SQL Server Integration Services
5 20 (0.75%) Hadoop
6 19 (0.71%) SQL Server 2008
7 16 (0.60%) SQL Server Reporting Services
8 12 (0.45%) Oracle Database
8 12 (0.45%) Relational Database
9 11 (0.41%) Data Warehouse
10 10 (0.37%) OLAP
11 9 (0.34%) GIS
11 9 (0.34%) SQL Server 2016
12 8 (0.30%) SQL Server 2012
12 8 (0.30%) SQL Server Analysis Services
13 7 (0.26%) Oracle Database 11g
13 7 (0.26%) Oracle Database 12c
13 7 (0.26%) PostgreSQL
14 6 (0.22%) BusinessObjects
15 5 (0.19%) Amazon QuickSight
Development Applications
1 30 (1.12%) Metasploit
2 15 (0.56%) Burp Suite
3 13 (0.49%) Team Foundation Server
4 12 (0.45%) Git (software)
5 11 (0.41%) JIRA
6 6 (0.22%) Jenkins
6 6 (0.22%) Vagrant
7 5 (0.19%) Octopus Deploy
7 5 (0.19%) PHPUnit
7 5 (0.19%) TeamCity
7 5 (0.19%) Visual Studio
8 4 (0.15%) Subversion
9 3 (0.11%) Phing
10 2 (0.075%) Atlassian Bamboo
10 2 (0.075%) Mocha
10 2 (0.075%) Selenium
10 2 (0.075%) SonarQube
10 2 (0.075%) Sonatype Nexus
11 1 (0.037%) gulp
11 1 (0.037%) Liquibase
General
1 669 (25.08%) Finance
2 228 (8.55%) Legal
3 124 (4.65%) Banking
4 118 (4.42%) Retail
5 117 (4.39%) Law
6 77 (2.89%) Telecoms
7 68 (2.55%) Marketing
8 32 (1.20%) Manufacturing
9 26 (0.97%) Publishing
10 18 (0.67%) Games
10 18 (0.67%) Investment Banking
11 16 (0.60%) Automotive
12 15 (0.56%) Electronics
13 14 (0.52%) Back Office
14 12 (0.45%) Advertising
14 12 (0.45%) Front Office
14 12 (0.45%) Military
15 11 (0.41%) French Language
15 11 (0.41%) German Language
16 10 (0.37%) Financial Institution
Job Titles
1 527 (19.76%) Analyst
2 478 (17.92%) Security Manager
3 441 (16.54%) Security Analyst
4 374 (14.02%) Consultant
5 306 (11.47%) Security Consultant
6 259 (9.71%) Information Manager
7 250 (9.37%) Information Security Manager
8 221 (8.29%) Information Analyst
9 216 (8.10%) Information Security Analyst
10 183 (6.86%) Security Officer
11 178 (6.67%) IT Manager
12 157 (5.89%) Architect
13 153 (5.74%) Information Security Officer
14 145 (5.44%) Information Officer
15 135 (5.06%) IT Security Manager
16 133 (4.99%) IT Analyst
17 122 (4.57%) Security Specialist
18 121 (4.54%) IT Security Analyst
19 107 (4.01%) Information Security Consultant
20 105 (3.94%) Security Architect
Libraries, Frameworks & Software Standards
1 46 (1.72%) .NET
2 39 (1.46%) Web Services
3 23 (0.86%) Middleware
4 22 (0.82%) LAMP
5 21 (0.79%) OAuth
6 18 (0.67%) Elastic Stack
6 18 (0.67%) JSON
7 17 (0.64%) SAML
8 16 (0.60%) CSS
9 15 (0.56%) Regular Expression
10 14 (0.52%) SailPoint
11 12 (0.45%) .NET Framework
11 12 (0.45%) PCRE
12 11 (0.41%) HTML
13 10 (0.37%) Ajax
13 10 (0.37%) jQuery
13 10 (0.37%) LDAP
13 10 (0.37%) REST
14 9 (0.34%) Entity Framework
14 9 (0.34%) OpenID
Miscellaneous
1 484 (18.15%) Management Information System
2 283 (10.61%) Data Protection Act
3 199 (7.46%) Analytical Skills
4 117 (4.39%) Data Centre
5 95 (3.56%) CESG
5 95 (3.56%) Computer Science
6 85 (3.19%) Cyberthreat
7 71 (2.66%) Security Operations Centre
8 57 (2.14%) Cyberattack
9 53 (1.99%) Fintech
10 50 (1.87%) PKI
11 48 (1.80%) Clustering
12 42 (1.57%) Distributed Denial-of-Service
13 39 (1.46%) Greenfield Project
14 34 (1.27%) NHS
15 33 (1.24%) Public Cloud
16 30 (1.12%) Driving Licence
17 25 (0.94%) Enterprise Software
18 23 (0.86%) CESG CLAS
19 20 (0.75%) Private Cloud
Operating Systems
1 597 (22.38%) Windows
2 349 (13.09%) Linux
3 258 (9.67%) Windows Server
4 134 (5.02%) Unix
5 50 (1.87%) Windows Server 2008
6 48 (1.80%) Windows Server 2012
7 35 (1.31%) Apple iOS
7 35 (1.31%) Mac OS X
8 31 (1.16%) Kali Linux
9 30 (1.12%) Windows 10
10 22 (0.82%) Windows 7
11 21 (0.79%) Red Hat Enterprise Linux
12 19 (0.71%) Ubuntu
12 19 (0.71%) Windows Server 2003
13 18 (0.67%) Debian
14 15 (0.56%) CentOS
15 10 (0.37%) Android
15 10 (0.37%) Windows 8
16 9 (0.34%) Solaris
17 6 (0.22%) Windows XP
Processes & Methodologies
1 1,777 (66.63%) Information Security
2 727 (27.26%) Cybersecurity
3 606 (22.72%) Data Protection
4 605 (22.68%) ITIL
5 589 (22.08%) Risk Management
6 477 (17.89%) SIEM
7 448 (16.80%) Penetration Testing
8 343 (12.86%) Security Management
9 299 (11.21%) ISMS
10 280 (10.50%) Information Security Management
11 267 (10.01%) Security Architecture
12 261 (9.79%) Agile Software Development
13 255 (9.56%) Security Operations
14 243 (9.11%) Risk Assessment
15 240 (9.00%) Vulnerability Management
16 233 (8.74%) Project Management
17 198 (7.42%) Incident Management
18 195 (7.31%) Vulnerability Scanning
19 190 (7.12%) Stakeholder Management
20 183 (6.86%) Business Continuity
Programming Languages
1 147 (5.51%) SQL
2 115 (4.31%) PowerShell
3 81 (3.04%) Python
4 64 (2.40%) Bash Shell
5 57 (2.14%) C
6 54 (2.02%) Java
7 37 (1.39%) JavaScript
8 34 (1.27%) C#
8 34 (1.27%) Perl
9 30 (1.12%) Ruby
10 25 (0.94%) PHP
11 17 (0.64%) T-SQL
12 9 (0.34%) C++
12 9 (0.34%) VBScript
13 8 (0.30%) VB.NET
14 7 (0.26%) Shell Script
15 4 (0.15%) Go
16 3 (0.11%) ABAP
17 2 (0.075%) ES6
17 2 (0.075%) Korn
Qualifications
1 1,072 (40.19%) CISSP
2 812 (30.45%) CISM
3 392 (14.70%) CISA
4 313 (11.74%) Degree
5 183 (6.86%) Security Cleared
6 181 (6.79%) CRISC
7 139 (5.21%) Cisco Certification
8 133 (4.99%) CEH
9 120 (4.50%) SC Cleared
10 111 (4.16%) Microsoft Certification
11 98 (3.67%) GIAC
12 97 (3.64%) MCSE
13 96 (3.60%) SANS
14 94 (3.52%) CCNA
15 75 (2.81%) CESG Certified Professional
16 69 (2.59%) ISO 27001 Lead Auditor
16 69 (2.59%) SSCP
17 65 (2.44%) CREST Certified
18 57 (2.14%) GCIH
19 51 (1.91%) Computer Science Degree
Quality Assurance & Compliance
1 873 (32.73%) PCI DSS
2 637 (23.88%) GDPR
3 263 (9.86%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 217 (8.14%) Cyber Essentials
5 193 (7.24%) COBIT
6 189 (7.09%) ISO 9001
7 146 (5.47%) Sarbanes-Oxley
8 90 (3.37%) HMG Security Policy Framework
9 80 (3.00%) ISO 22301
10 73 (2.74%) SLA
11 65 (2.44%) NIST 800
12 61 (2.29%) Cyber Essentials PLUS
13 60 (2.25%) ISO/IEC 27005
14 45 (1.69%) ISO/IEC 20000
15 41 (1.54%) HIPAA
16 40 (1.50%) QA
17 38 (1.42%) ISO 14001
18 36 (1.35%) JSP 440
18 36 (1.35%) RMADS
19 31 (1.16%) GPG13
System Software
1 272 (10.20%) Active Directory
2 167 (6.26%) VMware Infrastructure
3 86 (3.22%) Hyper-V
4 40 (1.50%) Virtual Machines
5 37 (1.39%) VMware ESXi
6 34 (1.27%) Xen
7 31 (1.16%) vSphere
8 24 (0.90%) Snort
9 15 (0.56%) XenDesktop
10 13 (0.49%) Docker
11 12 (0.45%) HDFS
12 10 (0.37%) XenApp
13 7 (0.26%) pfSense
14 6 (0.22%) KVM
15 4 (0.15%) Ceph
15 4 (0.15%) Microsoft App-V
16 3 (0.11%) BitLocker
16 3 (0.11%) Firmware
16 3 (0.11%) VMware Server
17 2 (0.075%) OpenSIPS
Systems Management
1 57 (2.14%) Opscode Chef
2 56 (2.10%) Ansible
3 54 (2.02%) Nessus
4 52 (1.95%) SCCM
5 51 (1.91%) Puppet
6 26 (0.97%) Host Intrusion Detection System
7 23 (0.86%) SCOM
8 20 (0.75%) Core Impact
8 20 (0.75%) Terraform
9 18 (0.67%) McAfee ePO
10 14 (0.52%) QRadar
11 13 (0.49%) Suricata
11 13 (0.49%) vCenter Server
11 13 (0.49%) WSUS
12 12 (0.45%) Nagios
12 12 (0.45%) Salt
13 11 (0.41%) FTK
13 11 (0.41%) Microsoft Clustering
13 11 (0.41%) ZABBIX
14 10 (0.37%) Computer Emergency Response Teams
Vendors
1 359 (13.46%) Microsoft
2 216 (8.10%) VMware
3 184 (6.90%) Cisco
4 89 (3.34%) CheckPoint
5 83 (3.11%) Oracle
6 63 (2.36%) Citrix
7 52 (1.95%) FireEye
7 52 (1.95%) McAfee
8 50 (1.87%) HP
9 46 (1.72%) Apple
10 44 (1.65%) Juniper
10 44 (1.65%) NetApp
10 44 (1.65%) Palo Alto
11 41 (1.54%) Splunk
12 34 (1.27%) F5
13 30 (1.12%) SAP
14 28 (1.05%) LogRhythm
14 28 (1.05%) Sophos
15 26 (0.97%) Capita
16 25 (0.94%) Symantec