Period
to 25 November 2020

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 25 November 2020 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK
6 months to
25 Nov 2020
Same period 2019 Same period 2018
Rank 176 181 193
Rank change year-on-year +5 +12 +46
Permanent jobs citing ISO/IEC 27001 1,070 2,548 2,908
As % of all permanent jobs advertised in the UK 1.95% 1.89% 1.82%
As % of the Quality Assurance & Compliance category 16.58% 14.62% 13.54%
Number of salaries quoted 953 2,058 2,409
Median annual salary £60,000 £55,000 £57,500
Median salary % change year-on-year +9.09% -4.35% +4.55%
10th Percentile £36,250 £33,675 £34,000
90th Percentile £103,750 £85,000 £82,500
UK excluding London median annual salary £52,500 £50,000 £52,500
% change year-on-year +5.00% -4.76% +6.06%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 6,452 17,427 21,473
As % of all permanent IT jobs advertised in the UK 11.77% 12.92% 13.43%
Number of salaries quoted 5,040 13,232 16,145
Median annual salary £54,000 £50,000 £50,000
Median salary % change year-on-year +8.00% - -
10th Percentile £31,000 £28,500 £27,500
90th Percentile £85,000 £82,500 £80,000
UK excluding London median annual salary £50,000 £45,000 £45,000
% change year-on-year +11.11% - +5.88%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a proportion of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Trend

3-month moving average salary quoted in jobs citing ISO/IEC 27001.

Salary trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Histogram

Salary distribution for jobs citing ISO/IEC 27001 over the 6 months to 25 November 2020.

Salary histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 25 November 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +18 998 £60,000 +9.09% 172
UK excluding London -9 598 £52,500 +5.00% 145
London +58 419 £68,750 +5.77% 37
South East +41 215 £55,000 -8.33% 43
North of England -26 158 £50,000 +5.26% 47
Work from Home -13 113 £55,000 +15.79% 22
Midlands -9 105 £52,500 +10.53% 15
Yorkshire -42 77 £47,500 - 12
North West +28 73 £50,000 - 28
West Midlands -18 72 £57,000 +20.00% 5
South West +48 67 £60,000 +14.29% 12
East Midlands +56 33 £41,250 -13.16% 10
Scotland +39 22 £45,000 -32.82% 8
East of England +42 19 £45,000 -10.00% 17
Northern Ireland +7 10 £55,000 +57.14% 3
North East +18 8 £52,850 +24.35% 7
Wales +1 5 £40,750 -10.44%

For the 6 months to 25 November 2020, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for ISO/IEC 27001.

1 662 (61.87%) Information Security
2 396 (37.01%) CISSP
3 380 (35.51%) Cybersecurity
4 293 (27.38%) NIST
5 284 (26.54%) Azure
6 279 (26.07%) GDPR
7 252 (23.55%) CISM
8 251 (23.46%) Firewall
9 224 (20.93%) Microsoft
10 207 (19.35%) Risk Management
10 207 (19.35%) Finance
11 200 (18.69%) PCI DSS
12 185 (17.29%) Security Architecture
13 182 (17.01%) Management Information System
14 176 (16.45%) ITIL
15 173 (16.17%) AWS
16 170 (15.89%) Identity Access Management
17 163 (15.23%) Office 365
18 155 (14.49%) Windows
19 143 (13.36%) Security Management
20 137 (12.80%) Cyber Essentials
21 134 (12.52%) Agile Software Development
22 125 (11.68%) ISMS
23 123 (11.50%) Cisco Certification
24 121 (11.31%) Active Directory
24 121 (11.31%) SIEM
25 118 (11.03%) Data Protection
26 108 (10.09%) Penetration Testing
27 107 (10.00%) DevOps
28 105 (9.81%) Linux

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 41 (3.83%) SharePoint
2 12 (1.12%) IIS
3 7 (0.65%) Elasticsearch
4 6 (0.56%) MS Exchange
5 4 (0.37%) Confluence
5 4 (0.37%) Exchange Server 2013
6 3 (0.28%) Apache
7 2 (0.19%) Apache Spark
7 2 (0.19%) Skype for Business
8 1 (0.093%) Exchange Server 2010
8 1 (0.093%) OpenStack
8 1 (0.093%) SAS
Applications
1 19 (1.78%) Microsoft Office
2 7 (0.65%) Microsoft Excel
2 7 (0.65%) Microsoft PowerPoint
3 1 (0.093%) InfoPath
3 1 (0.093%) MS Visio
Business Applications
1 2 (0.19%) Oracle Applications
2 1 (0.093%) Dynamics CRM
2 1 (0.093%) Infor M3
2 1 (0.093%) Maximo
2 1 (0.093%) Oracle Financials
2 1 (0.093%) Salesforce.com CRM
2 1 (0.093%) SAP BPC
2 1 (0.093%) SAP MM
2 1 (0.093%) SAP Oil and Gas
2 1 (0.093%) SAP R/3
2 1 (0.093%) SAP Retail
2 1 (0.093%) Sentinel
Cloud Services
1 284 (26.54%) Azure
2 173 (16.17%) AWS
3 163 (15.23%) Office 365
4 104 (9.72%) SaaS
5 71 (6.64%) IaaS
6 55 (5.14%) PaaS
7 35 (3.27%) Azure Active Directory
8 27 (2.52%) OneDrive
9 22 (2.06%) Cloud Computing
9 22 (2.06%) Serverless
10 19 (1.78%) GCP
11 16 (1.50%) Azure Functions
12 15 (1.40%) AWS Lambda
13 13 (1.21%) Amazon EC2
14 11 (1.03%) Amazon S3
14 11 (1.03%) Mimecast
15 10 (0.93%) GitHub
15 10 (0.93%) Route 53
16 9 (0.84%) Power Platform
16 9 (0.84%) PowerApps
Communications & Networking
1 251 (23.46%) Firewall
2 80 (7.48%) VPN
3 79 (7.38%) Intrusion Detection
4 77 (7.20%) Network Security
5 70 (6.54%) DNS
6 53 (4.95%) LAN
7 50 (4.67%) WAN
8 45 (4.21%) TCP/IP
9 27 (2.52%) SAN
10 24 (2.24%) DHCP
11 23 (2.15%) Wi-Fi
12 22 (2.06%) Internet
13 15 (1.40%) MPLS
14 14 (1.31%) Wireless
15 13 (1.21%) Cisco ASA
16 10 (0.93%) VoIP
17 9 (0.84%) Cisco IPT
17 9 (0.84%) VLAN
18 8 (0.75%) RTP
18 8 (0.75%) WAAS
Database & Business Intelligence
1 35 (3.27%) SQL Server
2 19 (1.78%) MySQL
2 19 (1.78%) PostgreSQL
3 14 (1.31%) Big Data
3 14 (1.31%) Redis
4 8 (0.75%) Azure SQL Database
5 7 (0.65%) Amazon RDS
6 6 (0.56%) MongoDB
7 5 (0.47%) Relational Database
7 5 (0.47%) SQL Server 2008
8 4 (0.37%) Blockchain
8 4 (0.37%) GIS
9 3 (0.28%) NoSQL
10 2 (0.19%) Apache Ignite
10 2 (0.19%) Data Warehouse
10 2 (0.19%) Hadoop
10 2 (0.19%) SQL Server 2019
10 2 (0.19%) Tableau
11 1 (0.093%) Geospatial Data
11 1 (0.093%) SQL Server 2017
Development Applications
1 24 (2.24%) Git (software)
1 24 (2.24%) JIRA
2 12 (1.12%) Jenkins
3 7 (0.65%) GitLab
3 7 (0.65%) Visual Studio
4 6 (0.56%) Selenium
4 6 (0.56%) Travis CI
5 4 (0.37%) Atlassian Bamboo
5 4 (0.37%) SonarQube
5 4 (0.37%) Subversion
6 3 (0.28%) Chocolatey
7 2 (0.19%) Ant
7 2 (0.19%) VSS/SourceSafe
8 1 (0.093%) Gradle
8 1 (0.093%) IntelliJ
8 1 (0.093%) JUnit
8 1 (0.093%) Maven
8 1 (0.093%) Robot Framework
8 1 (0.093%) SpecFlow
8 1 (0.093%) Xcode
General
1 207 (19.35%) Finance
2 71 (6.64%) Legal
3 54 (5.05%) Public Sector
4 51 (4.77%) Telecoms
5 41 (3.83%) Manufacturing
6 27 (2.52%) Marketing
7 25 (2.34%) Banking
7 25 (2.34%) Law
8 16 (1.50%) Retail
9 14 (1.31%) Electronics
10 8 (0.75%) Pharmaceutical
11 5 (0.47%) Digital Economy
12 2 (0.19%) Advertising
12 2 (0.19%) Aerospace
12 2 (0.19%) Automotive
12 2 (0.19%) Back Office
12 2 (0.19%) French Language
12 2 (0.19%) Games
12 2 (0.19%) Military
12 2 (0.19%) Spanish Language
Job Titles
1 196 (18.32%) Consultant
2 162 (15.14%) Analyst
3 120 (11.21%) Security Analyst
4 116 (10.84%) Security Manager
5 92 (8.60%) Security Engineer
6 88 (8.22%) Security Consultant
7 74 (6.92%) Architect
8 69 (6.45%) Information Manager
9 63 (5.89%) Information Security Manager
10 60 (5.61%) Information Analyst
11 59 (5.51%) Information Security Analyst
12 55 (5.14%) IT Manager
12 55 (5.14%) Security Architect
13 52 (4.86%) Security Officer
14 47 (4.39%) Security Specialist
15 44 (4.11%) Cybersecurity Consultant
16 43 (4.02%) Information Security Officer
17 42 (3.93%) IT Engineer
18 41 (3.83%) IT Analyst
19 40 (3.74%) Information Officer
Libraries, Frameworks & Software Standards
1 84 (7.85%) SAML
2 78 (7.29%) OAuth
3 77 (7.20%) OpenID
4 26 (2.43%) SailPoint
5 23 (2.15%) Web Services
6 21 (1.96%) .NET
7 13 (1.21%) CSS
8 12 (1.12%) Node.js
9 11 (1.03%) ASP.NET
10 10 (0.93%) HTML
10 10 (0.93%) jQuery
10 10 (0.93%) REST
11 9 (0.84%) .NET Core
11 9 (0.84%) HTML5
12 6 (0.56%) AngularJS
12 6 (0.56%) ASP.NET Core
12 6 (0.56%) ASP.NET MVC
12 6 (0.56%) RESTful
12 6 (0.56%) WebRTC
12 6 (0.56%) YAML
Miscellaneous
1 182 (17.01%) Management Information System
2 94 (8.79%) Cyberthreat
3 68 (6.36%) Analytical Skills
4 37 (3.46%) Data Protection Act
5 35 (3.27%) Data Centre
6 33 (3.08%) Cyberattack
7 32 (2.99%) Self-Motivation
8 27 (2.52%) Public Cloud
9 23 (2.15%) Cloud Native
10 17 (1.59%) Enterprise Software
11 16 (1.50%) PKI
12 12 (1.12%) Security Operations Centre
12 12 (1.12%) User Experience
13 11 (1.03%) Blog
14 9 (0.84%) NHS
14 9 (0.84%) Private Cloud
15 8 (0.75%) CESG
15 8 (0.75%) SCADA
16 7 (0.65%) Driving Licence
16 7 (0.65%) PMI
Operating Systems
1 155 (14.49%) Windows
2 105 (9.81%) Linux
3 86 (8.04%) Windows Server
4 20 (1.87%) Unix
5 18 (1.68%) Mac OS
6 17 (1.59%) Windows Server 2012
7 15 (1.40%) Windows 10
8 12 (1.12%) Windows Server 2016
9 11 (1.03%) CentOS
10 6 (0.56%) Windows Server 2008
10 6 (0.56%) Windows Server 2019
11 5 (0.47%) Amazon Linux
12 4 (0.37%) Android
12 4 (0.37%) Apple iOS
13 3 (0.28%) Red Hat Enterprise Linux
13 3 (0.28%) SUSE
13 3 (0.28%) Ubuntu
14 2 (0.19%) MVS
14 2 (0.19%) VMS
14 2 (0.19%) Windows 7
Processes & Methodologies
1 662 (61.87%) Information Security
2 380 (35.51%) Cybersecurity
3 207 (19.35%) Risk Management
4 185 (17.29%) Security Architecture
5 176 (16.45%) ITIL
6 170 (15.89%) Identity Access Management
7 143 (13.36%) Security Management
8 134 (12.52%) Agile Software Development
9 125 (11.68%) ISMS
10 121 (11.31%) SIEM
11 118 (11.03%) Data Protection
12 108 (10.09%) Penetration Testing
13 107 (10.00%) DevOps
14 102 (9.53%) Information Security Management
15 98 (9.16%) Security Operations
16 86 (8.04%) Kalman Filter
17 79 (7.38%) Data Privacy
18 75 (7.01%) Problem-Solving
19 72 (6.73%) Stakeholder Management
20 70 (6.54%) Data Security
Programming Languages
1 71 (6.64%) PowerShell
2 68 (6.36%) Python
3 55 (5.14%) SQL
4 29 (2.71%) Java
5 24 (2.24%) Bash Shell
6 22 (2.06%) C#
7 19 (1.78%) C
8 18 (1.68%) JavaScript
9 13 (1.21%) PHP
10 12 (1.12%) Ruby
11 11 (1.03%) Go
11 11 (1.03%) Perl
12 8 (0.75%) T-SQL
13 7 (0.65%) C++
13 7 (0.65%) TypeScript
14 5 (0.47%) Elixir
15 4 (0.37%) VBScript
16 3 (0.28%) VBA
17 2 (0.19%) ABAP
17 2 (0.19%) Apple Swift
Qualifications
1 396 (37.01%) CISSP
2 252 (23.55%) CISM
3 123 (11.50%) Cisco Certification
4 104 (9.72%) CISA
5 90 (8.41%) CCNA
6 87 (8.13%) CCNP
6 87 (8.13%) Degree
7 84 (7.85%) Security Cleared
8 63 (5.89%) CRISC
9 62 (5.79%) SC Cleared
10 50 (4.67%) CompTIA Security+
11 44 (4.11%) ISO 27001 Lead Auditor
12 43 (4.02%) ISO 27001 Lead Implementer
13 35 (3.27%) CEH
14 25 (2.34%) (ISC)2 CCSP
15 23 (2.15%) CESG Certified Professional
16 20 (1.87%) Microsoft Certification
17 18 (1.68%) DBS Check
17 18 (1.68%) ITIL Certification
17 18 (1.68%) OSCP
Quality Assurance & Compliance
1 293 (27.38%) NIST
2 279 (26.07%) GDPR
3 200 (18.69%) PCI DSS
4 137 (12.80%) Cyber Essentials
5 94 (8.79%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 65 (6.07%) ISO 9001
7 60 (5.61%) SLA
8 55 (5.14%) COBIT
8 55 (5.14%) NCSC
9 39 (3.64%) HMG Security Policy Framework
10 37 (3.46%) NIST 800
11 32 (2.99%) ISO 31000
11 32 (2.99%) Sarbanes-Oxley
12 29 (2.71%) ISO 22301
13 28 (2.62%) ISO/IEC 20000
14 24 (2.24%) Cyber Essentials PLUS
14 24 (2.24%) ISO/IEC 27005
15 20 (1.87%) QA
16 19 (1.78%) HIPAA
17 12 (1.12%) GAMP
System Software
1 121 (11.31%) Active Directory
2 42 (3.93%) VMware Infrastructure
3 37 (3.46%) Docker
4 29 (2.71%) Hyper-V
5 9 (0.84%) Virtual Servers
5 9 (0.84%) VMware ESXi
6 5 (0.47%) Firmware
6 5 (0.47%) Virtual Machines
7 4 (0.37%) BitLocker
7 4 (0.37%) XenApp
7 4 (0.37%) XenDesktop
8 3 (0.28%) NFS
8 3 (0.28%) vSphere
9 2 (0.19%) DFS Replication
9 2 (0.19%) Microsoft Virtual Server
10 1 (0.093%) ProxySG
Systems Management
1 62 (5.79%) Terraform
2 43 (4.02%) Microsoft Intune
3 34 (3.18%) Ansible
3 34 (3.18%) Kubernetes
4 17 (1.59%) Host Intrusion Detection System
5 16 (1.50%) SCCM
6 12 (1.12%) Nessus
7 11 (1.03%) CASB
7 11 (1.03%) Computer Emergency Response Teams
8 9 (0.84%) FortiGate
9 8 (0.75%) Opscode Chef
10 7 (0.65%) Consul
10 7 (0.65%) Prometheus
10 7 (0.65%) Puppet
11 6 (0.56%) linkerd
11 6 (0.56%) Network Intrusion Detection System
12 5 (0.47%) Computer Incident Response Team
12 5 (0.47%) Failover Clustering
12 5 (0.47%) Nagios
13 4 (0.37%) Single Sign-On
Vendors
1 224 (20.93%) Microsoft
2 81 (7.57%) VMware
3 61 (5.70%) Cisco
4 50 (4.67%) ForgeRock
5 29 (2.71%) CyberArk
6 26 (2.43%) Google
7 25 (2.34%) SAP
8 22 (2.06%) CheckPoint
9 20 (1.87%) Palo Alto
10 15 (1.40%) Forcepoint
10 15 (1.40%) Fortinet
10 15 (1.40%) HP
10 15 (1.40%) Oracle
11 14 (1.31%) Meraki
12 12 (1.12%) Aruba
12 12 (1.12%) Salesforce.com
13 11 (1.03%) Qualys
13 11 (1.03%) Splunk
14 10 (0.93%) Citrix
14 10 (0.93%) LogRhythm