Period
to 15 December 2018

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 15 December 2018 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK
6 months to
15 Dec 2018
Same period 2017 Same period 2016
Rank 189 230 217
Rank change year-on-year +41 -13 +58
Permanent jobs citing ISO/IEC 27001 2,918 2,806 2,935
As % of all permanent IT jobs advertised in the UK 1.85% 1.56% 1.58%
As % of the Quality Assurance & Compliance category 13.63% 12.45% 12.40%
Number of salaries quoted 2,290 2,322 2,327
UK median annual salary £57,500 £55,000 £55,000
Median salary % change year-on-year +4.55% - +4.76%
10th Percentile £33,750 £35,525 £33,750
90th Percentile £82,500 £80,450 £80,000
UK excluding London median annual salary £50,000 £50,000 £50,000

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 21,407 22,534 23,677
As % of all permanent IT jobs advertised in the UK 13.54% 12.56% 12.78%
Number of salaries quoted 15,948 17,042 18,751
UK median annual salary £50,000 £50,000 £47,500
Median salary % change year-on-year - +5.26% -
10th Percentile £27,500 £27,500 £27,000
90th Percentile £80,000 £77,500 £77,500
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - -

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing ISO/IEC 27001.

Salary trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Histogram

The salary distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 15 December 2018.

Salary histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 15 December 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +40 2,770 £57,500 +4.55% 321
UK excluding London +66 1,881 £50,000 - 232
London -24 952 £65,000 +4.00% 104
North of England +76 659 £47,500 -3.06% 73
South East +26 530 £55,000 +10.00% 57
North West +109 440 £50,000 - 49
Midlands +103 291 £45,500 +1.11% 42
West Midlands +115 260 £47,500 +5.56% 30
Yorkshire +29 195 £45,000 - 19
South West +30 185 £45,000 -9.09% 25
East of England +14 141 £54,000 -1.82% 20
Scotland +8 45 £47,500 +18.75% 9
East Midlands +8 32 £45,000 -5.26% 10
North East -21 24 £44,345 -15.53% 5
Wales +7 20 £44,750 +11.88% 5
Northern Ireland +6 14 £45,000 -33.33% 1
Isle of Man +11 2 £37,500 +50.00%

For the 6 months to 15 December 2018, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for ISO/IEC 27001.

1 1,914 (65.59%) Information Security
2 1,255 (43.01%) CISSP
3 856 (29.34%) Cybersecurity
4 855 (29.30%) PCI DSS
5 778 (26.66%) GDPR
6 740 (25.36%) Windows
7 722 (24.74%) CISM
8 684 (23.44%) Management Information System
9 672 (23.03%) Finance
10 670 (22.96%) ITIL
11 666 (22.82%) Data Protection
12 657 (22.52%) Risk Management
13 630 (21.59%) SIEM
14 593 (20.32%) Linux
15 583 (19.98%) Microsoft
16 500 (17.14%) Firewall
17 491 (16.83%) Degree
18 468 (16.04%) Penetration Testing
19 436 (14.94%) Security Management
20 393 (13.47%) CISA
21 392 (13.43%) Vulnerability Management
22 378 (12.95%) Microsoft Azure
23 371 (12.71%) Network Security
24 352 (12.06%) Active Directory
25 347 (11.89%) Legal
26 344 (11.79%) Cyber Essentials
27 334 (11.45%) Amazon AWS
28 319 (10.93%) Security Operations
29 307 (10.52%) Incident Management
30 301 (10.32%) Cisco

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 71 (2.43%) IIS
2 62 (2.12%) SharePoint
3 60 (2.06%) Apache
4 47 (1.61%) MS Exchange
5 38 (1.30%) Skype for Business
6 33 (1.13%) Tomcat
7 27 (0.93%) CMS
8 22 (0.75%) Apache Solr
9 14 (0.48%) Elasticsearch
10 7 (0.24%) nginx
10 7 (0.24%) WebLogic
11 6 (0.21%) Exchange Server 2013
11 6 (0.21%) SharePoint Server
12 5 (0.17%) Apache Spark
12 5 (0.17%) Exchange Server 2007
12 5 (0.17%) SAS
12 5 (0.17%) SharePoint 2013
13 4 (0.14%) Confluence
13 4 (0.14%) Exchange Server 2010
13 4 (0.14%) WebSphere
Applications
1 113 (3.87%) Microsoft Office
2 110 (3.77%) Microsoft PowerPoint
3 38 (1.30%) Microsoft Excel
4 19 (0.65%) MS Visio
5 3 (0.10%) Microsoft Project
5 3 (0.10%) Spreadsheet
Business Applications
1 7 (0.24%) Visualfiles
2 6 (0.21%) Dynamics CRM
3 5 (0.17%) assyst
4 4 (0.14%) Infor M3
5 3 (0.10%) Dynamics AX
5 3 (0.10%) Sentinel
6 2 (0.069%) Dynamics NAV
6 2 (0.069%) SAP ERP
7 1 (0.034%) Dynamics GP
7 1 (0.034%) Oracle Applications
7 1 (0.034%) SAP S/4HANA
Cloud Services
1 378 (12.95%) Microsoft Azure
2 334 (11.45%) Amazon AWS
3 171 (5.86%) SaaS
4 140 (4.80%) Office 365
5 68 (2.33%) IaaS
6 63 (2.16%) PaaS
7 38 (1.30%) Google Cloud Platform
8 24 (0.82%) Cloud Computing
9 15 (0.51%) Amazon EC2
10 14 (0.48%) Mimecast
11 11 (0.38%) Virtual Private Cloud
12 10 (0.34%) Azure Active Directory
13 8 (0.27%) Amazon S3
14 7 (0.24%) AWS CloudFormation
15 6 (0.21%) G Suite
15 6 (0.21%) Serverless
16 5 (0.17%) Amazon ELB
16 5 (0.17%) Route 53
17 4 (0.14%) Amazon SQS
17 4 (0.14%) Dynamics 365
Communications & Networking
1 500 (17.14%) Firewall
2 371 (12.71%) Network Security
3 146 (5.00%) TCP/IP
4 131 (4.49%) Wi-Fi
5 123 (4.22%) DNS
6 122 (4.18%) WAN
7 117 (4.01%) LAN
8 108 (3.70%) Intrusion Detection
9 84 (2.88%) VPN
10 83 (2.84%) Internet
11 76 (2.60%) VoIP
12 66 (2.26%) SAN
13 62 (2.12%) Wireless
14 53 (1.82%) DHCP
15 52 (1.78%) HTTP
15 52 (1.78%) SSL
16 40 (1.37%) Cisco ASA
17 38 (1.30%) Broadband
18 33 (1.13%) VLAN
19 30 (1.03%) MPLS
Database & Business Intelligence
1 169 (5.79%) SQL Server
2 59 (2.02%) Big Data
3 52 (1.78%) MySQL
4 48 (1.64%) SQL Server Integration Services
5 34 (1.17%) Relational Database
6 26 (0.89%) Data Warehouse
7 25 (0.86%) SQL Server 2016
8 24 (0.82%) NoSQL
8 24 (0.82%) SQL Server 2012
9 23 (0.79%) Hadoop
9 23 (0.79%) SQL Server Reporting Services
10 21 (0.72%) SQL Server 2008
11 19 (0.65%) RDBMS
12 17 (0.58%) PostgreSQL
12 17 (0.58%) SQL Server Analysis Services
13 16 (0.55%) MongoDB
14 13 (0.45%) Data Lake
14 13 (0.45%) Oracle Database
15 12 (0.41%) Amazon DynamoDB
15 12 (0.41%) Geospatial Data
Development Applications
1 41 (1.41%) JIRA
2 23 (0.79%) Git (software)
3 16 (0.55%) Visual Studio
4 13 (0.45%) Hudson
4 13 (0.45%) Octopus Deploy
4 13 (0.45%) Team Foundation Server
5 11 (0.38%) Cucumber
6 10 (0.34%) Selenium
6 10 (0.34%) TeamCity
7 9 (0.31%) Jenkins
8 6 (0.21%) Atlassian Bamboo
8 6 (0.21%) Metasploit
9 5 (0.17%) SonarQube
9 5 (0.17%) VSS/SourceSafe
9 5 (0.17%) webpack
10 4 (0.14%) Sonatype Nexus
10 4 (0.14%) Subversion
11 3 (0.10%) Grunt
11 3 (0.10%) gulp
12 2 (0.069%) Bitbucket
General
1 672 (23.03%) Finance
2 347 (11.89%) Legal
3 149 (5.11%) Banking
4 129 (4.42%) Telecoms
5 127 (4.35%) Law
6 117 (4.01%) Retail
7 71 (2.43%) Investment Banking
8 60 (2.06%) Marketing
9 42 (1.44%) Manufacturing
10 30 (1.03%) Local Government
11 26 (0.89%) Electronics
12 25 (0.86%) Publishing
13 19 (0.65%) Games
14 16 (0.55%) Back Office
14 16 (0.55%) Financial Institution
15 11 (0.38%) Advertising
15 11 (0.38%) Billing
16 9 (0.31%) Pharmaceutical
17 8 (0.27%) Automotive
18 5 (0.17%) Military
Job Titles
1 729 (24.98%) Analyst
2 560 (19.19%) Security Analyst
3 477 (16.35%) Security Manager
4 351 (12.03%) Information Manager
4 351 (12.03%) Information Security Manager
5 275 (9.42%) Consultant
6 258 (8.84%) IT Analyst
7 233 (7.98%) Information Analyst
8 225 (7.71%) Information Security Analyst
9 222 (7.61%) Architect
10 212 (7.27%) Security Consultant
11 197 (6.75%) IT Security Analyst
12 189 (6.48%) Senior Analyst
13 166 (5.69%) Senior Security Analyst
14 161 (5.52%) IT Manager
15 160 (5.48%) Security Engineer
16 137 (4.69%) Security Architect
17 129 (4.42%) Security Officer
18 105 (3.60%) Senior IT Security Analyst
19 98 (3.36%) Security Specialist
Libraries, Frameworks & Software Standards
1 82 (2.81%) Web Services
2 77 (2.64%) .NET
3 54 (1.85%) CSS
4 35 (1.20%) HTML
5 31 (1.06%) OAuth
6 27 (0.93%) WinForms
7 26 (0.89%) REST
8 25 (0.86%) Ajax
9 24 (0.82%) LAMP
10 23 (0.79%) SOAP
11 20 (0.69%) OpenID
11 20 (0.69%) XML
12 19 (0.65%) OAuth2
13 18 (0.62%) AngularJS
13 18 (0.62%) SailPoint
13 18 (0.62%) SAML
14 15 (0.51%) Symfony
15 14 (0.48%) Middleware
16 13 (0.45%) Elastic Stack
16 13 (0.45%) jQuery
Miscellaneous
1 684 (23.44%) Management Information System
2 208 (7.13%) Data Protection Act
3 188 (6.44%) Analytical Skills
4 175 (6.00%) Self-Motivation
5 168 (5.76%) Data Centre
6 120 (4.11%) Cyber Kill Chain
7 108 (3.70%) Security Operations Centre
8 75 (2.57%) PKI
9 65 (2.23%) CESG
10 49 (1.68%) Fintech
11 47 (1.61%) NHS
12 46 (1.58%) Driving Licence
13 40 (1.37%) Cyberthreat
14 38 (1.30%) Distributed Denial-of-Service
15 37 (1.27%) Cyberattack
15 37 (1.27%) Hybrid Cloud
16 36 (1.23%) Public Cloud
17 34 (1.17%) Enterprise Software
18 28 (0.96%) CMDB
19 24 (0.82%) Replication
Operating Systems
1 740 (25.36%) Windows
2 593 (20.32%) Linux
3 226 (7.75%) Windows Server
4 86 (2.95%) Unix
5 57 (1.95%) Apple iOS
6 48 (1.64%) Mac OS X
7 45 (1.54%) Red Hat Enterprise Linux
8 44 (1.51%) Windows Server 2012
9 36 (1.23%) CentOS
9 36 (1.23%) Windows 10
10 34 (1.17%) Windows Server 2008
11 23 (0.79%) Windows 7
12 20 (0.69%) Debian
13 19 (0.65%) Ubuntu
14 17 (0.58%) Android
15 12 (0.41%) Windows 8
16 11 (0.38%) Kali Linux
17 10 (0.34%) Mac OS
18 8 (0.27%) Windows Server 2003
19 3 (0.10%) VMS
Processes & Methodologies
1 1,914 (65.59%) Information Security
2 856 (29.34%) Cybersecurity
3 670 (22.96%) ITIL
4 666 (22.82%) Data Protection
5 657 (22.52%) Risk Management
6 630 (21.59%) SIEM
7 468 (16.04%) Penetration Testing
8 436 (14.94%) Security Management
9 392 (13.43%) Vulnerability Management
10 319 (10.93%) Security Operations
11 307 (10.52%) Incident Management
12 285 (9.77%) Disaster Recovery
13 280 (9.60%) Business Continuity
14 278 (9.53%) Agile Software Development
15 270 (9.25%) Information Security Management
16 268 (9.18%) ISMS
17 259 (8.88%) OWASP
18 249 (8.53%) Security Architecture
19 229 (7.85%) Problem-Solving
20 225 (7.71%) Due Diligence
Programming Languages
1 278 (9.53%) SQL
2 102 (3.50%) PowerShell
3 79 (2.71%) Java
4 71 (2.43%) JavaScript
5 55 (1.88%) C
6 52 (1.78%) Python
7 44 (1.51%) C#
8 43 (1.47%) PHP
9 34 (1.17%) Bash Shell
10 29 (0.99%) VB.NET
11 21 (0.72%) C++
12 20 (0.69%) Perl
13 16 (0.55%) Shell Script
13 16 (0.55%) VB
14 12 (0.41%) T-SQL
15 7 (0.24%) Ruby
16 6 (0.21%) MUMPS
16 6 (0.21%) VB6
16 6 (0.21%) VC++
17 4 (0.14%) Data Analysis Expressions (DAX)
Qualifications
1 1,255 (43.01%) CISSP
2 722 (24.74%) CISM
3 491 (16.83%) Degree
4 393 (13.47%) CISA
5 278 (9.53%) Cisco Certification
6 258 (8.84%) SANS
7 246 (8.43%) Security Cleared
8 218 (7.47%) CEH
9 172 (5.89%) CRISC
10 165 (5.65%) CREST Certified
11 137 (4.69%) (ISC)2 CCSP
12 135 (4.63%) SC Cleared
13 107 (3.67%) GIAC
14 103 (3.53%) CISMP
15 100 (3.43%) Computer Science Degree
16 97 (3.32%) SSCP
17 95 (3.26%) CompTIA Security+
18 90 (3.08%) Microsoft Certification
19 89 (3.05%) CCNA
20 70 (2.40%) CCNP
Quality Assurance & Compliance
1 855 (29.30%) PCI DSS
2 778 (26.66%) GDPR
3 344 (11.79%) Cyber Essentials
4 266 (9.12%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 196 (6.72%) COBIT
6 181 (6.20%) ISO 9001
7 107 (3.67%) SLA
8 80 (2.74%) Sarbanes-Oxley
9 62 (2.12%) Cyber Essentials PLUS
10 60 (2.06%) ISO/IEC 20000
11 54 (1.85%) ISO 22301
11 54 (1.85%) QA
12 50 (1.71%) HMG Security Policy Framework
13 39 (1.34%) HIPAA
13 39 (1.34%) NIST 800
14 35 (1.20%) ISO/IEC 27005
15 32 (1.10%) ISO 14001
16 26 (0.89%) GPG13
17 23 (0.79%) PMO
18 21 (0.72%) RMADS
System Software
1 352 (12.06%) Active Directory
2 251 (8.60%) VMware Infrastructure
3 51 (1.75%) Hyper-V
4 36 (1.23%) Virtual Machines
5 20 (0.69%) Docker
6 19 (0.65%) Snort
6 19 (0.65%) VMware ESXi
7 14 (0.48%) vSphere
8 10 (0.34%) DFS Replication
9 9 (0.31%) Firmware
9 9 (0.31%) VMware NSX
10 6 (0.21%) Virtual Desktop
10 6 (0.21%) Virtual Servers
11 5 (0.17%) Terminal Services
11 5 (0.17%) XenApp
12 4 (0.14%) KVM
12 4 (0.14%) Xen
13 3 (0.10%) BitLocker
13 3 (0.10%) HDFS
13 3 (0.10%) Microsoft Virtual Server
Systems Management
1 68 (2.33%) Nessus
2 50 (1.71%) Ansible
2 50 (1.71%) SCCM
3 46 (1.58%) Puppet
4 45 (1.54%) Opscode Chef
5 34 (1.17%) Nagios
5 34 (1.17%) WSUS
6 25 (0.86%) SCOM
7 24 (0.82%) IBM BigFix
7 24 (0.82%) QRadar
8 22 (0.75%) Single Sign-On
9 14 (0.48%) Nmap
10 13 (0.45%) OpenVAS
11 12 (0.41%) Nexpose
12 11 (0.38%) vCenter Server
13 10 (0.34%) Microsoft Intune
14 9 (0.31%) Jamf Pro
15 8 (0.27%) Computer Emergency Response Teams
16 7 (0.24%) Cisco CUCM
16 7 (0.24%) Computer Incident Response Team
Vendors
1 583 (19.98%) Microsoft
2 301 (10.32%) Cisco
3 299 (10.25%) VMware
4 93 (3.19%) Oracle
5 86 (2.95%) Splunk
6 81 (2.78%) Citrix
7 59 (2.02%) CheckPoint
8 49 (1.68%) Apple
9 47 (1.61%) Qualys
10 44 (1.51%) Juniper
11 41 (1.41%) Google
11 41 (1.41%) SAP
12 35 (1.20%) SolarWinds
13 34 (1.17%) LogRhythm
14 33 (1.13%) HP
14 33 (1.13%) Palo Alto
15 32 (1.10%) Dell
16 30 (1.03%) NetApp
16 30 (1.03%) Red Hat
17 24 (0.82%) Sophos