Period
to 21 August 2018

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 21 August 2018 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK
6 months to
21 Aug 2018
Same period 2017 Same period 2016
Rank 205 243 195
Rank change year-on-year +38 -48 +87
Permanent jobs citing ISO/IEC 27001 2,902 2,660 3,418
As % of all permanent IT jobs advertised in the UK 1.72% 1.51% 1.73%
As % of the Quality Assurance & Compliance category 12.74% 12.35% 13.14%
Number of salaries quoted 2,343 2,230 2,779
UK median annual salary £55,000 £55,000 £55,000
10th Percentile £33,500 £35,000 £36,250
90th Percentile £82,500 £80,000 £80,000
UK excluding London median annual salary £50,000 £47,500 £50,000
% change year-on-year +5.26% -5.00% +11.11%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 22,772 21,538 26,019
As % of all permanent IT jobs advertised in the UK 13.48% 12.22% 13.20%
Number of salaries quoted 17,199 16,075 20,657
UK median annual salary £50,000 £49,000 £48,500
Median salary % change year-on-year +2.04% +1.03% +7.78%
10th Percentile £28,750 £27,000 £26,750
90th Percentile £80,000 £77,500 £77,500
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +6.25%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing ISO/IEC 27001.

Salary trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Histogram

The salary distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 21 August 2018.

Salary histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 21 August 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +38 2,713 £55,500 +0.91% 279
UK excluding London +42 1,800 £50,000 +5.26% 207
London 0 998 £65,000 +4.00% 85
North of England +71 544 £50,000 +9.29% 60
South East +10 522 £55,000 +4.27% 49
Midlands +78 337 £45,000 -10.00% 45
West Midlands +96 293 £46,250 -11.90% 38
North West +43 260 £50,000 - 38
Yorkshire +85 247 £47,500 +5.56% 19
South West +22 164 £47,500 -5.00% 23
East of England +38 148 £54,000 -6.09% 17
Scotland +8 53 £46,500 +3.33% 7
East Midlands +3 46 £43,500 -8.42% 7
North East -20 37 £62,500 +38.89% 3
Wales -63 27 £37,500 -17.16% 4
Northern Ireland +5 8 £45,000 +50.00% 2
Isle of Man - 5 £55,000 -

For the 6 months to 21 August 2018, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for ISO/IEC 27001.

1 1,853 (63.85%) Information Security
2 1,149 (39.59%) CISSP
3 866 (29.84%) PCI DSS
4 806 (27.77%) CISM
5 795 (27.39%) Cybersecurity
6 735 (25.33%) GDPR
7 662 (22.81%) ITIL
8 635 (21.88%) Finance
9 601 (20.71%) Risk Management
10 589 (20.30%) Firewall
11 560 (19.30%) Data Protection
12 555 (19.12%) Management Information System
13 540 (18.61%) SIEM
14 520 (17.92%) Windows
15 511 (17.61%) Degree
16 443 (15.27%) CISA
17 425 (14.65%) Microsoft
18 341 (11.75%) Linux
19 326 (11.23%) Security Management
20 317 (10.92%) Network Security
21 316 (10.89%) Cyber Essentials
22 309 (10.65%) Vulnerability Management
23 307 (10.58%) Microsoft Azure
24 303 (10.44%) Security Operations
25 300 (10.34%) Agile Software Development
26 276 (9.51%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
27 275 (9.48%) Active Directory
28 269 (9.27%) Legal
29 266 (9.17%) Project Management
30 263 (9.06%) Security Cleared

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 79 (2.72%) MS Exchange
2 68 (2.34%) SharePoint
3 59 (2.03%) IIS
4 45 (1.55%) Skype for Business
5 29 (1.00%) CMS
6 23 (0.79%) Apache
7 20 (0.69%) Exchange Server 2010
8 18 (0.62%) Exchange Server 2013
9 14 (0.48%) Exchange Server 2007
10 11 (0.38%) Apache Spark
10 11 (0.38%) Oracle Service Bus
11 9 (0.31%) Elasticsearch
12 7 (0.24%) Exchange Server 2003
13 6 (0.21%) Apache Solr
13 6 (0.21%) Confluence
13 6 (0.21%) WebLogic
13 6 (0.21%) WebSphere
14 5 (0.17%) nginx
15 3 (0.10%) JBoss
16 2 (0.069%) IBM Notes
Applications
1 119 (4.10%) Microsoft Office
2 33 (1.14%) Microsoft Excel
3 22 (0.76%) MS Visio
4 20 (0.69%) Microsoft PowerPoint
5 9 (0.31%) Microsoft Project
6 4 (0.14%) Spreadsheet
7 1 (0.034%) Maya
7 1 (0.034%) Stata
Business Applications
1 10 (0.34%) Dynamics CRM
2 9 (0.31%) assyst
3 7 (0.24%) Distributed Ledger
3 7 (0.24%) Sentinel
4 6 (0.21%) Dynamics NAV
4 6 (0.21%) Elite 3E
5 3 (0.10%) Infor M3
5 3 (0.10%) Oracle EBS R12
5 3 (0.10%) Oracle ERP
6 2 (0.069%) Dynamics AX
6 2 (0.069%) Magento
7 1 (0.034%) Cerner Millennium
7 1 (0.034%) Concordance
7 1 (0.034%) Dynamics GP
7 1 (0.034%) Oracle Applications
7 1 (0.034%) Payment Gateway
7 1 (0.034%) Relativity
7 1 (0.034%) Sage 200
7 1 (0.034%) SAP S/4HANA
7 1 (0.034%) Veritas eDiscovery
Cloud Services
1 307 (10.58%) Microsoft Azure
2 214 (7.37%) Amazon AWS
3 164 (5.65%) Office 365
4 144 (4.96%) SaaS
5 97 (3.34%) PaaS
6 87 (3.00%) IaaS
7 20 (0.69%) Cloud Computing
8 19 (0.65%) Google Cloud Platform
9 12 (0.41%) Serverless
10 11 (0.38%) IBM Cloud
11 9 (0.31%) AWS CloudFormation
12 8 (0.28%) GitHub
13 7 (0.24%) G Suite
13 7 (0.24%) Mimecast
13 7 (0.24%) OneDrive
14 6 (0.21%) Amazon S3
15 5 (0.17%) Amazon EC2
15 5 (0.17%) Azure Active Directory
15 5 (0.17%) Route 53
15 5 (0.17%) Virtual Private Cloud
Communications & Networking
1 589 (20.30%) Firewall
2 317 (10.92%) Network Security
3 146 (5.03%) LAN
4 141 (4.86%) WAN
5 128 (4.41%) Intrusion Detection
6 127 (4.38%) VPN
7 126 (4.34%) TCP/IP
8 112 (3.86%) DNS
9 95 (3.27%) SAN
10 82 (2.83%) SSL
11 78 (2.69%) Internet
12 73 (2.52%) VoIP
13 61 (2.10%) Wireless
14 53 (1.83%) DHCP
15 50 (1.72%) IPsec
16 44 (1.52%) VLAN
17 38 (1.31%) Unified Communications
18 35 (1.21%) Skype
19 34 (1.17%) Cisco ASA
20 33 (1.14%) MPLS
Database & Business Intelligence
1 150 (5.17%) SQL Server
2 39 (1.34%) Big Data
2 39 (1.34%) MySQL
3 26 (0.90%) Relational Database
4 25 (0.86%) SQL Server Reporting Services
5 24 (0.83%) SQL Server 2008
6 23 (0.79%) Oracle Database
7 22 (0.76%) PostgreSQL
8 21 (0.72%) NoSQL
9 19 (0.65%) SQL Server Integration Services
10 14 (0.48%) MongoDB
10 14 (0.48%) RDBMS
11 13 (0.45%) Oracle Database 12c
12 12 (0.41%) Hadoop
12 12 (0.41%) Oracle Database 11g
13 11 (0.38%) Power BI
14 8 (0.28%) Blockchain
14 8 (0.28%) Data Warehouse
15 7 (0.24%) Amazon RDS
15 7 (0.24%) GIS
Development Applications
1 27 (0.93%) Git (software)
2 24 (0.83%) JIRA
3 20 (0.69%) Team Foundation Server
4 17 (0.59%) Jenkins
5 15 (0.52%) Octopus Deploy
6 11 (0.38%) Subversion
6 11 (0.38%) TeamCity
7 10 (0.34%) Selenium
8 9 (0.31%) Cucumber
9 6 (0.21%) Metasploit
9 6 (0.21%) Visual Studio Team System
10 5 (0.17%) Atlassian Bamboo
10 5 (0.17%) Burp Suite
10 5 (0.17%) SonarQube
10 5 (0.17%) Visual Studio
10 5 (0.17%) VSS/SourceSafe
11 4 (0.14%) webpack
12 2 (0.069%) git-flow
12 2 (0.069%) Grunt
12 2 (0.069%) gulp
General
1 635 (21.88%) Finance
2 269 (9.27%) Legal
3 171 (5.89%) Banking
4 107 (3.69%) Retail
5 97 (3.34%) Law
6 93 (3.20%) Telecoms
7 86 (2.96%) Investment Banking
8 58 (2.00%) Publishing
9 57 (1.96%) Marketing
10 36 (1.24%) Manufacturing
11 24 (0.83%) Games
12 20 (0.69%) Local Government
13 17 (0.59%) Financial Institution
14 15 (0.52%) Advertising
14 15 (0.52%) Pharmaceutical
15 11 (0.38%) Electronics
16 8 (0.28%) Back Office
17 7 (0.24%) Billing
18 6 (0.21%) Automotive
18 6 (0.21%) French Language
Job Titles
1 630 (21.71%) Analyst
2 451 (15.54%) Security Analyst
3 439 (15.13%) Security Manager
4 333 (11.47%) Consultant
5 288 (9.92%) Information Manager
6 275 (9.48%) Information Security Manager
7 231 (7.96%) Information Analyst
8 229 (7.89%) Architect
8 229 (7.89%) Security Consultant
9 222 (7.65%) Information Security Analyst
10 199 (6.86%) IT Manager
11 162 (5.58%) Security Officer
12 141 (4.86%) Security Architect
13 130 (4.48%) Security Engineer
14 123 (4.24%) Senior Analyst
15 120 (4.14%) Information Security Officer
16 116 (4.00%) Information Officer
17 112 (3.86%) IT Analyst
18 108 (3.72%) Security Specialist
19 101 (3.48%) IT Security Manager
Libraries, Frameworks & Software Standards
1 75 (2.58%) .NET
2 34 (1.17%) Web Services
3 33 (1.14%) Middleware
4 32 (1.10%) JSON
5 31 (1.07%) HTML
6 30 (1.03%) CSS
7 28 (0.96%) .NET Framework
8 26 (0.90%) SailPoint
9 19 (0.65%) Elastic Stack
9 19 (0.65%) Entity Framework
10 17 (0.59%) jQuery
11 15 (0.52%) ASP.NET
11 15 (0.52%) WCF
12 12 (0.41%) 802.1X
12 12 (0.41%) LAMP
13 11 (0.38%) LDAP
13 11 (0.38%) Node.js
13 11 (0.38%) SAML
14 10 (0.34%) LINQ
14 10 (0.34%) Twitter Bootstrap
Miscellaneous
1 555 (19.12%) Management Information System
2 224 (7.72%) Analytical Skills
3 211 (7.27%) Data Protection Act
4 193 (6.65%) Computer Science
5 191 (6.58%) Self-Motivation
6 182 (6.27%) Data Centre
7 94 (3.24%) Security Operations Centre
8 77 (2.65%) CESG
9 76 (2.62%) Fintech
10 51 (1.76%) PKI
11 45 (1.55%) Distributed Denial-of-Service
12 42 (1.45%) Cyberthreat
13 41 (1.41%) Cyberattack
14 38 (1.31%) Driving Licence
15 36 (1.24%) Enterprise Software
16 35 (1.21%) Public Cloud
17 32 (1.10%) CMDB
18 31 (1.07%) NHS
19 30 (1.03%) Cyber Kill Chain
20 23 (0.79%) Private Cloud
Operating Systems
1 520 (17.92%) Windows
2 341 (11.75%) Linux
3 232 (7.99%) Windows Server
4 75 (2.58%) Unix
5 52 (1.79%) Windows Server 2008
6 51 (1.76%) Windows Server 2012
7 47 (1.62%) Apple iOS
8 40 (1.38%) Mac OS X
9 34 (1.17%) Windows 10
10 28 (0.96%) Windows Server 2003
11 27 (0.93%) CentOS
11 27 (0.93%) Windows 7
12 19 (0.65%) Windows 8
13 17 (0.59%) Android
14 12 (0.41%) Debian
15 11 (0.38%) Mac OS
16 10 (0.34%) Ubuntu
17 8 (0.28%) Kali Linux
17 8 (0.28%) Red Hat Enterprise Linux
18 6 (0.21%) AIX
Processes & Methodologies
1 1,853 (63.85%) Information Security
2 795 (27.39%) Cybersecurity
3 662 (22.81%) ITIL
4 601 (20.71%) Risk Management
5 560 (19.30%) Data Protection
6 540 (18.61%) SIEM
7 326 (11.23%) Security Management
8 309 (10.65%) Vulnerability Management
9 303 (10.44%) Security Operations
10 300 (10.34%) Agile Software Development
11 266 (9.17%) Project Management
12 262 (9.03%) Security Architecture
13 253 (8.72%) ISMS
14 249 (8.58%) Penetration Testing
15 241 (8.30%) Business Continuity
16 223 (7.68%) Information Security Management
17 217 (7.48%) Problem-Solving
18 210 (7.24%) Incident Management
19 189 (6.51%) Service Delivery
20 182 (6.27%) Stakeholder Management
Programming Languages
1 134 (4.62%) SQL
2 82 (2.83%) Python
3 78 (2.69%) PowerShell
4 48 (1.65%) JavaScript
5 47 (1.62%) C#
6 38 (1.31%) C
7 33 (1.14%) PHP
8 25 (0.86%) Shell Script
9 24 (0.83%) Perl
10 23 (0.79%) Java
10 23 (0.79%) Ruby
11 22 (0.76%) Bash Shell
12 18 (0.62%) T-SQL
13 16 (0.55%) VB.NET
14 12 (0.41%) VB
15 7 (0.24%) C++
16 5 (0.17%) Go
16 5 (0.17%) VBA
17 4 (0.14%) Data Analysis Expressions (DAX)
17 4 (0.14%) ES6
Qualifications
1 1,149 (39.59%) CISSP
2 806 (27.77%) CISM
3 511 (17.61%) Degree
4 443 (15.27%) CISA
5 263 (9.06%) Security Cleared
6 207 (7.13%) CEH
7 179 (6.17%) Cisco Certification
8 148 (5.10%) SANS
9 132 (4.55%) SC Cleared
10 115 (3.96%) Computer Science Degree
11 106 (3.65%) CompTIA Security+
12 103 (3.55%) CISMP
13 102 (3.51%) CRISC
14 93 (3.20%) GIAC
15 90 (3.10%) Microsoft Certification
16 89 (3.07%) ISO 27001 Lead Auditor
17 88 (3.03%) CESG Certified Professional
18 80 (2.76%) SSCP
19 73 (2.52%) CCNP
20 69 (2.38%) MCSE
Quality Assurance & Compliance
1 866 (29.84%) PCI DSS
2 735 (25.33%) GDPR
3 316 (10.89%) Cyber Essentials
4 276 (9.51%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 234 (8.06%) COBIT
6 208 (7.17%) ISO 9001
7 87 (3.00%) Sarbanes-Oxley
8 80 (2.76%) Cyber Essentials PLUS
9 77 (2.65%) ISO/IEC 20000
10 74 (2.55%) SLA
11 72 (2.48%) HMG Security Policy Framework
11 72 (2.48%) QA
12 61 (2.10%) ISO 22301
13 44 (1.52%) GPG13
14 38 (1.31%) NIST 800
15 35 (1.21%) ISO 14001
16 26 (0.90%) JSP 440
17 23 (0.79%) ISO/IEC 27005
18 21 (0.72%) ISAE 3402
19 18 (0.62%) RMADS
System Software
1 275 (9.48%) Active Directory
2 206 (7.10%) VMware Infrastructure
3 55 (1.90%) Hyper-V
4 36 (1.24%) vSphere
5 33 (1.14%) VMware ESXi
6 32 (1.10%) Virtual Machines
7 30 (1.03%) Docker
8 15 (0.52%) Snort
9 12 (0.41%) XenApp
9 12 (0.41%) XenDesktop
10 9 (0.31%) HDFS
10 9 (0.31%) Terminal Services
11 8 (0.28%) Forefront TMG
12 6 (0.21%) Firmware
12 6 (0.21%) iptables
13 5 (0.17%) KVM
14 4 (0.14%) Squid
14 4 (0.14%) Virtual Desktop
14 4 (0.14%) VMware Workstation
15 3 (0.10%) Virtual Servers
Systems Management
1 72 (2.48%) SCCM
2 59 (2.03%) Nessus
3 55 (1.90%) QRadar
4 48 (1.65%) Ansible
5 37 (1.27%) Single Sign-On
6 30 (1.03%) OpenVAS
7 25 (0.86%) Nexpose
7 25 (0.86%) WSUS
8 23 (0.79%) Core Impact
8 23 (0.79%) Puppet
9 20 (0.69%) Cisco CUCM
10 19 (0.65%) Opscode Chef
11 18 (0.62%) Nagios
12 17 (0.59%) IBM BigFix
12 17 (0.59%) WhatsUp Gold
13 16 (0.55%) SCOM
14 15 (0.52%) Suricata
15 14 (0.48%) Microsoft Intune
16 11 (0.38%) Terraform
17 10 (0.34%) Kubernetes
Vendors
1 425 (14.65%) Microsoft
2 260 (8.96%) VMware
3 222 (7.65%) Cisco
4 96 (3.31%) Citrix
5 92 (3.17%) Oracle
6 80 (2.76%) CheckPoint
7 69 (2.38%) Qualys
8 63 (2.17%) Juniper
8 63 (2.17%) SolarWinds
8 63 (2.17%) Splunk
9 55 (1.90%) LogRhythm
10 52 (1.79%) Capita
11 46 (1.59%) ArcSight
11 46 (1.59%) HP
12 44 (1.52%) AlienVault
13 42 (1.45%) Apple
14 38 (1.31%) Sophos
15 35 (1.21%) CyberArk
16 34 (1.17%) F5
17 32 (1.10%) Palo Alto