Period
to 27 February 2021

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 27 February 2021 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK
6 months to
27 Feb 2021
Same period 2020 Same period 2019
Rank 207 191 200
Rank change year-on-year -16 +9 +23
Permanent jobs citing ISO/IEC 27001 1,223 2,267 2,656
As % of all permanent jobs advertised in the UK 1.65% 1.84% 1.76%
As % of the Quality Assurance & Compliance category 13.79% 14.70% 12.62%
Number of salaries quoted 1,099 1,987 2,185
Median annual salary £60,000 £57,000 £55,000
Median salary % change year-on-year +5.26% +3.64% -4.35%
10th Percentile £37,500 £35,357 £33,756
90th Percentile £95,000 £85,000 £85,000
UK excluding London median annual salary £52,500 £52,500 £50,000
% change year-on-year - +5.00% -2.91%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 8,870 15,418 21,048
As % of all permanent IT jobs advertised in the UK 11.95% 12.54% 13.92%
Number of salaries quoted 6,396 12,049 15,617
Median annual salary £52,500 £52,500 £50,000
Median salary % change year-on-year - +5.00% -
10th Percentile £31,000 £28,500 £27,500
90th Percentile £85,000 £83,750 £80,000
UK excluding London median annual salary £47,500 £45,000 £45,000
% change year-on-year +5.56% - +4.65%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a proportion of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Trend

3-month moving average salary quoted in jobs citing ISO/IEC 27001.

Salary trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Histogram

Salary distribution for jobs citing ISO/IEC 27001 over the 6 months to 27 February 2021.

Salary histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 27 February 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -13 1,087 £60,000 +6.19% 233
UK excluding London -19 752 £52,500 - 171
London +13 386 £70,000 +12.00% 75
South East -6 243 £52,500 -12.50% 47
North of England +10 195 £55,000 +6.80% 45
Work from Home -48 178 £65,000 - 43
Midlands -51 123 £62,500 +30.89% 35
North West +29 120 £55,000 +10.00% 28
South West -7 78 £45,000 -10.00% 18
West Midlands -70 74 £65,000 +36.13% 21
Scotland +42 65 £37,500 -38.42% 6
Yorkshire -20 56 £60,000 +9.09% 10
East Midlands +20 48 £39,000 -17.89% 14
East of England +4 33 £62,500 +21.36% 13
North East +28 22 £60,000 +37.14% 7
Wales +4 12 £43,750 -6.91% 5
Northern Ireland +12 7 £42,500 +6.25% 2

For the 6 months to 27 February 2021, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for ISO/IEC 27001.

1 743 (60.75%) Information Security
2 434 (35.49%) Cybersecurity
3 378 (30.91%) CISSP
4 344 (28.13%) GDPR
5 319 (26.08%) NIST
6 317 (25.92%) Azure
7 260 (21.26%) CISM
8 248 (20.28%) Risk Management
9 232 (18.97%) Management Information System
10 229 (18.72%) Firewall
11 228 (18.64%) Finance
12 218 (17.83%) Microsoft
13 213 (17.42%) PCI DSS
14 205 (16.76%) ITIL
15 204 (16.68%) Security Architecture
16 194 (15.86%) AWS
17 191 (15.62%) Security Management
18 190 (15.54%) Microsoft 365
19 183 (14.96%) Agile Software Development
20 179 (14.64%) Cyber Essentials
21 148 (12.10%) Windows
22 144 (11.77%) ISMS
23 138 (11.28%) Information Security Management
24 135 (11.04%) Active Directory
25 134 (10.96%) SIEM
26 131 (10.71%) SaaS
26 131 (10.71%) Data Protection
27 125 (10.22%) DevOps
28 121 (9.89%) CISA
29 119 (9.73%) Security Operations

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 39 (3.19%) SharePoint
2 27 (2.21%) IIS
3 15 (1.23%) Confluence
4 13 (1.06%) Elasticsearch
5 7 (0.57%) Adobe Experience Manager
5 7 (0.57%) Apache
6 6 (0.49%) MS Exchange
7 1 (0.082%) Apache Airflow
7 1 (0.082%) Apache Spark
7 1 (0.082%) Exchange Server 2010
7 1 (0.082%) Exchange Server 2013
Applications
1 16 (1.31%) MS Visio
2 15 (1.23%) Microsoft Excel
3 14 (1.14%) Microsoft Office
4 11 (0.90%) Microsoft PowerPoint
5 4 (0.33%) Gliffy
6 3 (0.25%) Microsoft Project
7 1 (0.082%) Revit
Business Applications
1 10 (0.82%) Infor M3
2 3 (0.25%) Sentinel
3 2 (0.16%) Oracle Applications
3 2 (0.16%) Oracle EBS
3 2 (0.16%) Relativity
4 1 (0.082%) Distributed Ledger
4 1 (0.082%) Dynamics CRM
4 1 (0.082%) NetSuite
4 1 (0.082%) SAP BPC
4 1 (0.082%) SAP GRC
4 1 (0.082%) SAP Oil and Gas
Cloud Services
1 317 (25.92%) Azure
2 194 (15.86%) AWS
3 190 (15.54%) Microsoft 365
4 131 (10.71%) SaaS
5 79 (6.46%) IaaS
6 72 (5.89%) PaaS
7 44 (3.60%) Azure Active Directory
8 40 (3.27%) GCP
9 37 (3.03%) Cloud Computing
10 21 (1.72%) BPaaS
10 21 (1.72%) OneDrive
11 16 (1.31%) Mimecast
11 16 (1.31%) Serverless
12 13 (1.06%) Amazon EKS
13 10 (0.82%) Amazon EC2
13 10 (0.82%) AWS CloudFormation
13 10 (0.82%) GitHub
13 10 (0.82%) Virtual Private Cloud
14 9 (0.74%) Amazon S3
14 9 (0.74%) Dynamics 365
Communications & Networking
1 229 (18.72%) Firewall
2 105 (8.59%) Network Security
3 83 (6.79%) VPN
4 68 (5.56%) Intrusion Detection
5 60 (4.91%) DNS
6 59 (4.82%) TCP/IP
7 40 (3.27%) WAN
8 38 (3.11%) LAN
9 35 (2.86%) DHCP
10 24 (1.96%) Internet
10 24 (1.96%) Wireless
11 20 (1.64%) WAAS
12 18 (1.47%) SAN
13 16 (1.31%) Cisco ASA
14 13 (1.06%) MPLS
14 13 (1.06%) VLAN
15 12 (0.98%) VoIP
15 12 (0.98%) Wi-Fi
16 11 (0.90%) BGP
16 11 (0.90%) RTP
Database & Business Intelligence
1 55 (4.50%) SQL Server
2 34 (2.78%) PostgreSQL
3 21 (1.72%) MySQL
4 19 (1.55%) SQL Server 2008
5 18 (1.47%) Big Data
6 15 (1.23%) Azure SQL Database
7 11 (0.90%) Blockchain
7 11 (0.90%) Redis
8 9 (0.74%) Amazon Redshift
9 8 (0.65%) Amazon RDS
9 8 (0.65%) MongoDB
10 5 (0.41%) GIS
10 5 (0.41%) SQL Server 2012
10 5 (0.41%) SQL Server 2014
11 3 (0.25%) Cosmos DB
11 3 (0.25%) Electronic Patient Records
11 3 (0.25%) Hadoop
11 3 (0.25%) SQL Server 2017
12 2 (0.16%) Data Warehouse
12 2 (0.16%) Relational Database
Development Applications
1 34 (2.78%) JIRA
2 33 (2.70%) Git (software)
3 20 (1.64%) Visual Studio
4 12 (0.98%) Jenkins
5 10 (0.82%) Travis CI
6 8 (0.65%) JUnit
6 8 (0.65%) Postman
7 6 (0.49%) GitLab
7 6 (0.49%) Subversion
8 3 (0.25%) Atlassian Bamboo
8 3 (0.25%) Robot Framework
8 3 (0.25%) TestComplete
9 2 (0.16%) Team Foundation Server
10 1 (0.082%) Chocolatey
10 1 (0.082%) Cucumber
10 1 (0.082%) Cypress.io
10 1 (0.082%) Gerrit
10 1 (0.082%) Maven
10 1 (0.082%) Selenium
10 1 (0.082%) SpecFlow
General
1 228 (18.64%) Finance
2 96 (7.85%) Legal
3 73 (5.97%) Public Sector
4 53 (4.33%) Telecoms
5 49 (4.01%) Manufacturing
6 44 (3.60%) Retail
7 34 (2.78%) Marketing
8 27 (2.21%) Banking
9 25 (2.04%) Electronics
9 25 (2.04%) Law
10 15 (1.23%) Pharmaceutical
11 14 (1.14%) Digital Economy
12 10 (0.82%) Games
13 7 (0.57%) Aerospace
13 7 (0.57%) Local Government
14 5 (0.41%) Police
15 3 (0.25%) Advertising
15 3 (0.25%) German Language
16 2 (0.16%) Billing
16 2 (0.16%) Military
Job Titles
1 208 (17.01%) Analyst
2 186 (15.21%) Consultant
3 147 (12.02%) Security Analyst
4 112 (9.16%) Architect
5 110 (8.99%) Security Consultant
6 107 (8.75%) Security Manager
7 93 (7.60%) Security Engineer
8 91 (7.44%) Security Architect
9 71 (5.81%) IT Analyst
10 65 (5.31%) Information Analyst
11 62 (5.07%) Information Security Analyst
12 60 (4.91%) Security Officer
13 58 (4.74%) Security Specialist
14 57 (4.66%) Information Manager
15 52 (4.25%) Information Security Manager
16 51 (4.17%) Information Security Officer
17 48 (3.92%) Information Officer
17 48 (3.92%) IT Engineer
17 48 (3.92%) IT Security Analyst
18 46 (3.76%) Information Security Consultant
Libraries, Frameworks & Software Standards
1 44 (3.60%) SAML
2 35 (2.86%) .NET
3 34 (2.78%) CSS
4 33 (2.70%) jQuery
4 33 (2.70%) OAuth
4 33 (2.70%) OpenID
5 31 (2.53%) HTML
6 29 (2.37%) HTML5
7 28 (2.29%) XML
8 22 (1.80%) ASP.NET
8 22 (1.80%) Web Services
9 19 (1.55%) EDI
10 15 (1.23%) Node.js
11 13 (1.06%) Middleware
12 11 (0.90%) RESTful
12 11 (0.90%) SailPoint
13 10 (0.82%) REST
13 10 (0.82%) Twitter Bootstrap
14 9 (0.74%) .NET Core
14 9 (0.74%) JSON
Miscellaneous
1 232 (18.97%) Management Information System
2 99 (8.09%) Analytical Skills
3 79 (6.46%) Cyberthreat
4 45 (3.68%) Data Protection Act
5 34 (2.78%) Public Cloud
6 33 (2.70%) User Experience
7 31 (2.53%) CESG
8 28 (2.29%) Data Centre
9 27 (2.21%) Self-Motivation
10 26 (2.13%) Cloud Native
11 23 (1.88%) Enterprise Software
12 17 (1.39%) Cyberattack
13 16 (1.31%) Security Operations Centre
14 15 (1.23%) Private Cloud
15 13 (1.06%) NHS
16 11 (0.90%) Distributed Denial-of-Service
16 11 (0.90%) SCADA
17 10 (0.82%) Mobile App
18 9 (0.74%) Driving Licence
18 9 (0.74%) PKI
Operating Systems
1 148 (12.10%) Windows
2 95 (7.77%) Windows Server
3 88 (7.20%) Linux
4 31 (2.53%) Unix
5 26 (2.13%) Windows 10
6 25 (2.04%) Windows Server 2012
7 18 (1.47%) Windows Server 2016
8 16 (1.31%) Android
9 15 (1.23%) Apple iOS
10 13 (1.06%) Mac OS
11 10 (0.82%) Windows Server 2008
11 10 (0.82%) Windows Server 2019
12 5 (0.41%) Ubuntu
13 4 (0.33%) Red Hat Enterprise Linux
14 3 (0.25%) CentOS
15 2 (0.16%) MVS
15 2 (0.16%) Solaris
15 2 (0.16%) VMS
15 2 (0.16%) Windows 7
16 1 (0.082%) Windows Server 2003
Processes & Methodologies
1 743 (60.75%) Information Security
2 434 (35.49%) Cybersecurity
3 248 (20.28%) Risk Management
4 205 (16.76%) ITIL
5 204 (16.68%) Security Architecture
6 191 (15.62%) Security Management
7 183 (14.96%) Agile Software Development
8 144 (11.77%) ISMS
9 138 (11.28%) Information Security Management
10 134 (10.96%) SIEM
11 131 (10.71%) Data Protection
12 125 (10.22%) DevOps
13 119 (9.73%) Security Operations
14 117 (9.57%) Penetration Testing
15 112 (9.16%) Identity Access Management
16 92 (7.52%) Incident Management
17 87 (7.11%) Risk Analysis
18 75 (6.13%) TOGAF
19 72 (5.89%) Data Privacy
19 72 (5.89%) OWASP
Programming Languages
1 76 (6.21%) PowerShell
2 68 (5.56%) Python
3 64 (5.23%) SQL
4 50 (4.09%) Java
5 40 (3.27%) JavaScript
6 36 (2.94%) C#
7 34 (2.78%) Bash Shell
8 11 (0.90%) C
8 11 (0.90%) Go
8 11 (0.90%) PHP
8 11 (0.90%) T-SQL
9 9 (0.74%) C++
10 6 (0.49%) Perl
10 6 (0.49%) VBA
11 5 (0.41%) Ruby
12 4 (0.33%) Apple Swift
13 3 (0.25%) Groovy
14 2 (0.16%) Shell Script
14 2 (0.16%) TypeScript
14 2 (0.16%) VB
Qualifications
1 378 (30.91%) CISSP
2 260 (21.26%) CISM
3 121 (9.89%) CISA
4 103 (8.42%) Security Cleared
5 91 (7.44%) Cisco Certification
6 90 (7.36%) Degree
7 82 (6.70%) CRISC
8 59 (4.82%) SC Cleared
9 58 (4.74%) CCNP
9 58 (4.74%) ISO 27001 Lead Auditor
10 53 (4.33%) CESG Certified Professional
11 50 (4.09%) CCNA
12 43 (3.52%) CEH
13 37 (3.03%) ISO 27001 Lead Implementer
14 30 (2.45%) CompTIA Security+
15 24 (1.96%) DV Cleared
16 23 (1.88%) SANS
17 22 (1.80%) PCI QSA
18 20 (1.64%) OSCP
19 19 (1.55%) ITIL Certification
Quality Assurance & Compliance
1 344 (28.13%) GDPR
2 319 (26.08%) NIST
3 213 (17.42%) PCI DSS
4 179 (14.64%) Cyber Essentials
5 106 (8.67%) NCSC
6 90 (7.36%) ISO 9001
7 85 (6.95%) HMG Security Policy Framework
8 82 (6.70%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
9 72 (5.89%) SLA
10 54 (4.42%) COBIT
11 51 (4.17%) Sarbanes-Oxley
12 40 (3.27%) Cyber Essentials PLUS
13 38 (3.11%) ISO/IEC 27005
14 37 (3.03%) ISO/IEC 20000
14 37 (3.03%) JSP 440
15 33 (2.70%) ISO 22301
16 32 (2.62%) NIST 800
17 31 (2.53%) HIPAA
17 31 (2.53%) QA
18 26 (2.13%) BS25999
System Software
1 135 (11.04%) Active Directory
2 47 (3.84%) VMware Infrastructure
3 41 (3.35%) Docker
4 31 (2.53%) Hyper-V
5 8 (0.65%) VMware ESXi
6 7 (0.57%) Virtual Machines
7 5 (0.41%) vSphere
8 4 (0.33%) Virtual Desktop
9 3 (0.25%) Firmware
10 2 (0.16%) Sendmail
11 1 (0.082%) BitLocker
11 1 (0.082%) XenApp
11 1 (0.082%) XenDesktop
Systems Management
1 91 (7.44%) Terraform
2 48 (3.92%) Ansible
3 44 (3.60%) Kubernetes
4 36 (2.94%) Microsoft Intune
5 17 (1.39%) Nessus
6 16 (1.31%) FortiGate
6 16 (1.31%) SCCM
7 15 (1.23%) CASB
8 14 (1.14%) Host Intrusion Detection System
9 13 (1.06%) Consul
9 13 (1.06%) Prometheus
10 12 (0.98%) Puppet
11 10 (0.82%) linkerd
12 8 (0.65%) Opscode Chef
13 7 (0.57%) Nagios
14 4 (0.33%) EMC NetWorker
14 4 (0.33%) Jamf Pro
14 4 (0.33%) Microsoft Data Protection Manager
14 4 (0.33%) OpenVAS
14 4 (0.33%) SCDPM
Vendors
1 218 (17.83%) Microsoft
2 88 (7.20%) VMware
3 83 (6.79%) Cisco
4 41 (3.35%) Google
5 40 (3.27%) SAP
6 35 (2.86%) CheckPoint
7 25 (2.04%) Oracle
8 22 (1.80%) ForgeRock
9 18 (1.47%) Palo Alto
10 17 (1.39%) HP
11 16 (1.31%) Apple
12 15 (1.23%) Fortinet
13 14 (1.14%) CyberArk
14 13 (1.06%) Aruba
14 13 (1.06%) Forcepoint
14 13 (1.06%) Meraki
14 13 (1.06%) OneTrust
15 12 (0.98%) Qualys
15 12 (0.98%) Splunk
16 11 (0.90%) Juniper