Period
to 18 November 2017

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 18 November 2017 with a comparison to the same period in the previous 2 years.

ISO/IEC 27001
UK
6 months to
18 Nov 2017
Same period 2016 Same period 2015
Rank 226 210 281
Rank change year-on-year -16 +71 +28
Permanent jobs citing ISO/IEC 27001 2755 3110 2527
As % of all permanent IT jobs advertised in the UK 1.54% 1.64% 1.15%
As % of the Quality Assurance & Compliance category 12.18% 12.63% 8.98%
Number of salaries quoted 2277 2463 2101
UK median annual salary £55,000 £55,000 £52,500
Median salary % change year-on-year - +4.76% +5.00%
10th Percentile £35,000 £35,250 £32,500
90th Percentile £80,000 £80,000 £80,000
UK excluding London median annual salary £47,500 £50,000 £48,000
% change year-on-year -5.00% +4.17% +6.67%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 22612 24627 28139
As % of all permanent IT jobs advertised in the UK 12.64% 12.97% 12.85%
Number of salaries quoted 16929 19480 22253
UK median annual salary £50,000 £49,000 £46,000
Median salary % change year-on-year +2.04% +6.52% +2.22%
10th Percentile £27,500 £27,500 £26,250
90th Percentile £77,500 £77,500 £75,000
UK excluding London median annual salary £42,500 £42,500 £41,500
% change year-on-year - +2.41% +3.75%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing ISO/IEC 27001.

Salary trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Salary Histogram

The salary distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 18 November 2017.

Salary histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 18 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 18 November 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -19 2614 £55,000 - 112
UK excluding London -17 1511 £47,500 -5.00% 72
London +1 1169 £62,500 -3.85% 43
South East -1 512 £50,000 -4.76% 16
North of England -6 429 £47,500 -5.00% 31
North West -4 218 £50,000 - 7
Midlands -71 185 £45,000 -10.00% 7
Yorkshire -25 164 £45,000 -8.16% 21
East of England +7 158 £57,500 +27.78% 5
South West -26 146 £45,000 -18.18% 10
West Midlands -77 144 £45,000 -3.23% 5
North East +45 47 £51,000 +34.21% 3
Scotland -31 43 £40,000 -20.00% 2
East Midlands +14 41 £47,500 -13.64% 2
Wales +9 31 £40,000 -30.43% 1
Isle of Man - 3 £25,000 -
Northern Ireland -29 2 £67,500 +92.86%
Channel Islands -6 1 £67,500 +35.00%

For the 6 months to 18 November 2017, IT jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for ISO/IEC 27001.

1 1836 (66.64%) Information Security
2 1151 (41.78%) CISSP
3 919 (33.36%) PCI DSS
4 828 (30.05%) CISM
5 711 (25.81%) Cybersecurity
6 704 (25.55%) Finance
7 671 (24.36%) Windows
8 648 (23.52%) ITIL
9 626 (22.72%) Risk Management
10 619 (22.47%) Firewall
11 594 (21.56%) Data Protection
12 499 (18.11%) Penetration Testing
13 491 (17.82%) GDPR
14 470 (17.06%) SIEM
15 411 (14.92%) Management Information System
16 360 (13.07%) Linux
17 355 (12.89%) Degree
18 339 (12.30%) Microsoft
19 336 (12.20%) CISA
20 335 (12.16%) Active Directory
21 331 (12.01%) Windows Server
22 316 (11.47%) Security Management
22 316 (11.47%) Data Protection Act
23 315 (11.43%) Security Architecture
24 309 (11.22%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
25 301 (10.93%) Risk Assessment
26 293 (10.64%) Agile Software Development
27 285 (10.34%) ISMS
28 280 (10.16%) Project Management
29 270 (9.80%) Network Security

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 93 (3.38%) MS Exchange
2 73 (2.65%) IIS
3 51 (1.85%) SharePoint
4 31 (1.13%) Exchange Server 2010
5 25 (0.91%) Exchange Server 2013
6 23 (0.83%) CMS
6 23 (0.83%) Skype for Business
7 19 (0.69%) Apache
8 8 (0.29%) Apache Spark
9 7 (0.25%) Elasticsearch
9 7 (0.25%) Tomcat
10 5 (0.18%) SAS
11 4 (0.15%) BizTalk Server
11 4 (0.15%) OpenStack
11 4 (0.15%) WebSphere
12 3 (0.11%) nginx
13 2 (0.073%) Confluence
13 2 (0.073%) Exchange Server 2007
13 2 (0.073%) Oracle Service Bus
13 2 (0.073%) Sonic ESB
Applications
1 69 (2.50%) Microsoft Office
2 39 (1.42%) Microsoft Excel
3 21 (0.76%) Microsoft PowerPoint
4 18 (0.65%) MS Visio
5 13 (0.47%) Microsoft Project
6 2 (0.073%) Adobe Illustrator
6 2 (0.073%) Photoshop
6 2 (0.073%) Spreadsheet
7 1 (0.036%) Maya
Business Applications
1 6 (0.22%) Dynamics CRM
2 5 (0.18%) Dynamics NAV
3 4 (0.15%) Remedy ITSM
4 3 (0.11%) Maximo
4 3 (0.11%) NetSuite
4 3 (0.11%) Sentinel
5 2 (0.073%) Primavera
5 2 (0.073%) Workfront
6 1 (0.036%) Dynamics AX
6 1 (0.036%) Infor M3
6 1 (0.036%) Magento
6 1 (0.036%) Oracle Applications
6 1 (0.036%) Sage 200
6 1 (0.036%) Sage CRM
6 1 (0.036%) SAP ERP
6 1 (0.036%) SAP GRC
6 1 (0.036%) SystmOne
Cloud Services
1 154 (5.59%) SaaS
2 136 (4.94%) Amazon AWS
3 109 (3.96%) Microsoft Azure
4 81 (2.94%) Office 365
5 51 (1.85%) IaaS
6 34 (1.23%) PaaS
7 30 (1.09%) Mimecast
8 11 (0.40%) Cloudflare
9 9 (0.33%) Cloud Computing
10 5 (0.18%) IBM Cloud
10 5 (0.18%) OneDrive
11 4 (0.15%) Amazon S3
11 4 (0.15%) GitHub
11 4 (0.15%) Google Cloud Platform
12 3 (0.11%) Amazon EC2
12 3 (0.11%) AWS CloudFormation
12 3 (0.11%) Force.com
12 3 (0.11%) G Suite
13 2 (0.073%) Heroku
13 2 (0.073%) SoftLayer
Communications & Networking
1 619 (22.47%) Firewall
2 270 (9.80%) Network Security
3 214 (7.77%) TCP/IP
4 164 (5.95%) VPN
5 136 (4.94%) LAN
6 133 (4.83%) WAN
7 124 (4.50%) DNS
8 111 (4.03%) Internet
9 110 (3.99%) SAN
10 94 (3.41%) DHCP
11 77 (2.79%) VoIP
12 58 (2.11%) Cisco ASA
12 58 (2.11%) SSL
13 55 (2.00%) IPsec
14 53 (1.92%) VLAN
15 51 (1.85%) Wireless
16 48 (1.74%) Intrusion Detection
17 35 (1.27%) MPLS
18 33 (1.20%) Wi-Fi
19 31 (1.13%) BGP
Database & Business Intelligence
1 196 (7.11%) SQL Server
2 51 (1.85%) MySQL
3 32 (1.16%) Big Data
4 31 (1.13%) SQL Server 2008
4 31 (1.13%) SQL Server Integration Services
5 21 (0.76%) Relational Database
6 20 (0.73%) Hadoop
7 15 (0.54%) SQL Server Reporting Services
8 13 (0.47%) Data Warehouse
9 11 (0.40%) PostgreSQL
10 10 (0.36%) Oracle Database
11 9 (0.33%) OLAP
11 9 (0.33%) SQL Server 2012
12 8 (0.29%) Looker
12 8 (0.29%) RDBMS
12 8 (0.29%) SQL Server Analysis Services
13 6 (0.22%) Amazon Redshift
13 6 (0.22%) Apache Cassandra
13 6 (0.22%) SQL Server 2005
13 6 (0.22%) SQL Server 2016
Development Applications
1 31 (1.13%) Metasploit
2 11 (0.40%) Git (software)
2 11 (0.40%) Jenkins
3 10 (0.36%) Burp Suite
4 9 (0.33%) Team Foundation Server
5 8 (0.29%) JIRA
6 6 (0.22%) Fiddler
6 6 (0.22%) Vagrant
7 5 (0.18%) PHPUnit
7 5 (0.18%) Subversion
7 5 (0.18%) TeamCity
7 5 (0.18%) Visual Studio
8 4 (0.15%) MSI
8 4 (0.15%) Octopus Deploy
8 4 (0.15%) Sonatype Nexus
9 3 (0.11%) Phing
10 2 (0.073%) Atlassian Bamboo
10 2 (0.073%) Liquibase
10 2 (0.073%) Mocha
10 2 (0.073%) Visual Studio Team System
General
1 704 (25.55%) Finance
2 219 (7.95%) Legal
3 131 (4.75%) Banking
4 123 (4.46%) Telecoms
5 121 (4.39%) Retail
6 109 (3.96%) Law
7 85 (3.09%) Marketing
8 55 (2.00%) Manufacturing
9 40 (1.45%) Electronics
10 26 (0.94%) Back Office
11 20 (0.73%) Military
12 18 (0.65%) Automotive
13 17 (0.62%) Publishing
14 16 (0.58%) Games
15 14 (0.51%) Advertising
15 14 (0.51%) Financial Institution
16 13 (0.47%) Investment Banking
17 11 (0.40%) French Language
17 11 (0.40%) German Language
18 10 (0.36%) Front Office
Job Titles
1 585 (21.23%) Analyst
2 475 (17.24%) Security Analyst
3 455 (16.52%) Security Manager
4 405 (14.70%) Consultant
5 322 (11.69%) Security Consultant
6 260 (9.44%) Information Manager
7 255 (9.26%) Information Security Manager
8 248 (9.00%) Information Analyst
9 244 (8.86%) Information Security Analyst
10 172 (6.24%) IT Manager
11 165 (5.99%) Security Officer
12 159 (5.77%) IT Analyst
13 140 (5.08%) Architect
13 140 (5.08%) Information Security Officer
14 133 (4.83%) Security Engineer
15 132 (4.79%) Information Officer
16 131 (4.75%) Information Security Consultant
16 131 (4.75%) IT Security Analyst
17 129 (4.68%) Security Specialist
18 109 (3.96%) IT Security Manager
Libraries, Frameworks & Software Standards
1 69 (2.50%) .NET
2 53 (1.92%) Web Services
3 23 (0.83%) LAMP
4 16 (0.58%) CSS
5 14 (0.51%) Ajax
6 12 (0.44%) ASP.NET
6 12 (0.44%) jQuery
7 11 (0.40%) .NET Framework
7 11 (0.40%) Regular Expression
8 10 (0.36%) JSON
8 10 (0.36%) XML
9 9 (0.33%) 802.1X
9 9 (0.33%) Entity Framework
9 9 (0.33%) SailPoint
10 8 (0.29%) Elastic Stack
10 8 (0.29%) Middleware
10 8 (0.29%) OAuth
10 8 (0.29%) REST
10 8 (0.29%) WinForms
11 7 (0.25%) HTML
Miscellaneous
1 411 (14.92%) Management Information System
2 316 (11.47%) Data Protection Act
3 201 (7.30%) Analytical Skills
4 119 (4.32%) Data Centre
5 107 (3.88%) Computer Science
6 96 (3.48%) CESG
6 96 (3.48%) Cyberthreat
7 56 (2.03%) Security Operations Centre
8 50 (1.81%) Driving Licence
9 49 (1.78%) PKI
10 48 (1.74%) Distributed Denial-of-Service
11 46 (1.67%) Cyber Attack
12 42 (1.52%) Clustering
13 32 (1.16%) Mobile App
13 32 (1.16%) Public Cloud
13 32 (1.16%) Smart Meter
14 29 (1.05%) Greenfield Project
14 29 (1.05%) Replication
15 27 (0.98%) Enterprise Software
16 25 (0.91%) CESG CLAS
Operating Systems
1 671 (24.36%) Windows
2 360 (13.07%) Linux
3 331 (12.01%) Windows Server
4 143 (5.19%) Unix
5 69 (2.50%) Windows Server 2008
6 66 (2.40%) Windows Server 2012
7 50 (1.81%) Apple iOS
8 44 (1.60%) Windows 10
9 42 (1.52%) Mac OS X
10 36 (1.31%) Windows 7
11 26 (0.94%) Windows Server 2003
12 25 (0.91%) Kali Linux
13 24 (0.87%) Red Hat Enterprise Linux
14 20 (0.73%) Ubuntu
15 17 (0.62%) CentOS
16 15 (0.54%) Android
16 15 (0.54%) Debian
17 8 (0.29%) Mac OS
17 8 (0.29%) Windows 8
18 6 (0.22%) Windows XP
Processes & Methodologies
1 1836 (66.64%) Information Security
2 711 (25.81%) Cybersecurity
3 648 (23.52%) ITIL
4 626 (22.72%) Risk Management
5 594 (21.56%) Data Protection
6 499 (18.11%) Penetration Testing
7 470 (17.06%) SIEM
8 316 (11.47%) Security Management
9 315 (11.43%) Security Architecture
10 301 (10.93%) Risk Assessment
11 293 (10.64%) Agile Software Development
12 285 (10.34%) ISMS
13 280 (10.16%) Project Management
14 269 (9.76%) Information Security Management
15 263 (9.55%) Security Operations
16 224 (8.13%) Vulnerability Management
17 203 (7.37%) Vulnerability Scanning
18 201 (7.30%) Business Continuity
19 188 (6.82%) Continuous Improvement
20 185 (6.72%) Stakeholder Management
Programming Languages
1 182 (6.61%) SQL
2 89 (3.23%) PowerShell
3 77 (2.79%) Python
4 73 (2.65%) Java
5 64 (2.32%) Bash Shell
6 62 (2.25%) C
7 42 (1.52%) JavaScript
8 39 (1.42%) Perl
9 38 (1.38%) C#
10 37 (1.34%) Ruby
11 29 (1.05%) PHP
12 15 (0.54%) T-SQL
13 13 (0.47%) C++
13 13 (0.47%) VBScript
14 11 (0.40%) VB.NET
15 8 (0.29%) Shell Script
16 7 (0.25%) C-shell
16 7 (0.25%) Korn
17 3 (0.11%) ABAP
17 3 (0.11%) Data Analysis Expressions (DAX)
Qualifications
1 1151 (41.78%) CISSP
2 828 (30.05%) CISM
3 355 (12.89%) Degree
4 336 (12.20%) CISA
5 185 (6.72%) Security Cleared
6 175 (6.35%) Cisco Certification
7 161 (5.84%) CEH
8 159 (5.77%) CRISC
9 136 (4.94%) SC Cleared
10 117 (4.25%) CCNA
11 89 (3.23%) GIAC
12 88 (3.19%) SANS
13 87 (3.16%) Microsoft Certification
14 80 (2.90%) SSCP
15 79 (2.87%) CESG Certified Professional
16 75 (2.72%) CREST Certified
17 72 (2.61%) ISO 27001 Lead Auditor
18 67 (2.43%) MCSE
19 63 (2.29%) CCNP
20 57 (2.07%) CompTIA Security+
Quality Assurance & Compliance
1 919 (33.36%) PCI DSS
2 491 (17.82%) GDPR
3 309 (11.22%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 235 (8.53%) ISO 9001
5 218 (7.91%) Cyber Essentials
6 152 (5.52%) COBIT
7 130 (4.72%) Sarbanes-Oxley
8 97 (3.52%) ISO 22301
9 95 (3.45%) SLA
10 80 (2.90%) NIST 800
11 79 (2.87%) ISO/IEC 27005
12 77 (2.79%) HMG Security Policy Framework
12 77 (2.79%) ISO/IEC 20000
13 69 (2.50%) Cyber Essentials PLUS
14 48 (1.74%) ISO 14001
15 37 (1.34%) QA
16 34 (1.23%) HIPAA
17 33 (1.20%) Data Quality
18 25 (0.91%) JSP 440
18 25 (0.91%) PMO
System Software
1 335 (12.16%) Active Directory
2 189 (6.86%) VMware Infrastructure
3 97 (3.52%) Hyper-V
4 46 (1.67%) VMware ESXi
5 38 (1.38%) vSphere
6 36 (1.31%) Virtual Machines
7 23 (0.83%) Xen
8 17 (0.62%) Docker
9 16 (0.58%) XenApp
9 16 (0.58%) XenDesktop
10 15 (0.54%) Snort
11 7 (0.25%) HDFS
11 7 (0.25%) pfSense
12 6 (0.22%) Microsoft App-V
13 5 (0.18%) KVM
14 4 (0.15%) Citrix Presentation Server
14 4 (0.15%) MetaFrame
14 4 (0.15%) XenServer
15 3 (0.11%) iptables
15 3 (0.11%) VMware Server
Systems Management
1 64 (2.32%) SCCM
2 53 (1.92%) Nessus
3 45 (1.63%) Opscode Chef
4 43 (1.56%) Puppet
5 34 (1.23%) Ansible
6 24 (0.87%) Host Intrusion Detection System
7 23 (0.83%) SCOM
8 18 (0.65%) McAfee ePO
9 14 (0.51%) Computer Emergency Response Teams
9 14 (0.51%) WSUS
10 13 (0.47%) Kubernetes
10 13 (0.47%) Nmap
10 13 (0.47%) QRadar
10 13 (0.47%) Terraform
11 12 (0.44%) Suricata
12 11 (0.40%) FortiGate
12 11 (0.40%) FTK
13 10 (0.36%) Nagios
14 7 (0.25%) SCOrch
14 7 (0.25%) WMI
Vendors
1 339 (12.30%) Microsoft
2 262 (9.51%) VMware
3 261 (9.47%) Cisco
4 107 (3.88%) CheckPoint
5 86 (3.12%) Oracle
6 76 (2.76%) Citrix
7 72 (2.61%) HP
8 61 (2.21%) NetApp
9 55 (2.00%) FireEye
10 52 (1.89%) Apple
11 50 (1.81%) SAP
11 50 (1.81%) Splunk
12 48 (1.74%) Juniper
13 38 (1.38%) McAfee
14 35 (1.27%) IBM
15 34 (1.23%) Palo Alto
16 28 (1.02%) Dell
17 27 (0.98%) F5
18 25 (0.91%) Red Hat
19 23 (0.83%) Adobe