Period
to 22 January 2018

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27005 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27005 over the 6 months to 22 January 2018 with a comparison to the same period in the previous 2 years.

ISO/IEC 27005
UK
6 months to
22 Jan 2018
Same period 2017 Same period 2016
Rank 1105 1138 1262
Rank change year-on-year +33 +124 +5
Permanent jobs citing ISO/IEC 27005 62 41 20
As % of all permanent IT jobs advertised in the UK 0.036% 0.023% 0.010%
As % of the Quality Assurance & Compliance category 0.28% 0.19% 0.074%
Number of salaries quoted 54 40 20
UK median annual salary £57,500 £65,000 £52,500
Median salary % change year-on-year -11.54% +23.81% -12.50%
10th Percentile £43,825 £55,000 £38,125
90th Percentile £84,000 £72,500 £70,000
UK excluding London median annual salary £56,250 £62,500 £52,500
% change year-on-year -10.00% +19.05% -

ISO/IEC 27005 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 21,996 22,016 27,061
As % of all permanent IT jobs advertised in the UK 12.68% 12.61% 12.97%
Number of salaries quoted 17,019 17,424 21,487
UK median annual salary £50,000 £47,500 £47,500
Median salary % change year-on-year +5.26% - +5.56%
10th Percentile £27,500 £26,750 £26,500
90th Percentile £80,000 £77,500 £75,000
UK excluding London median annual salary £43,000 £42,500 £42,500
% change year-on-year +1.18% - +6.25%

ISO/IEC 27005
Job Vacancy Trend

Job postings citing ISO/IEC 27005 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27005 in the UK

ISO/IEC 27005
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing ISO/IEC 27005.

Salary trend for ISO/IEC 27005 in the UK

ISO/IEC 27005
Salary Histogram

The salary distribution of IT jobs citing ISO/IEC 27005 over the 6 months to 22 January 2018.

Salary histogram for ISO/IEC 27005 in the UK

ISO/IEC 27005
Top 9 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27005 within the UK over the 6 months to 22 January 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +39 60 £57,500 -11.54% 2
UK excluding London +17 44 £56,250 -10.00% 2
South East +38 29 £57,500 +1.77% 1
London -3 15 £84,000 +29.23% 1
North of England -8 8 £55,000 -12.00%
Yorkshire +21 7 £55,000 -12.00%
East of England - 5 £46,750 -
Wales - 2 £67,500 - 1
North West - 1 - -

For the 6 months to 22 January 2018, IT jobs citing ISO/IEC 27005 also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for ISO/IEC 27005.

1 60 (96.77%) ISO/IEC 27001
2 56 (90.32%) Information Security
3 54 (87.10%) CISSP
4 45 (72.58%) Risk Management
5 44 (70.97%) Risk Assessment
6 38 (61.29%) Finance
7 30 (48.39%) CRAMM
8 29 (46.77%) CISM
9 25 (40.32%) ITIL
10 15 (24.19%) PRINCE2
10 15 (24.19%) OWASP
11 13 (20.97%) Waterfall
11 13 (20.97%) Remediation Plan
11 13 (20.97%) Agile Software Development
12 12 (19.35%) CISA
13 11 (17.74%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
14 10 (16.13%) PCI DSS
14 10 (16.13%) Management Information System
15 9 (14.52%) Penetration Testing
15 9 (14.52%) ISO 31000
15 9 (14.52%) ISO 22301
16 8 (12.90%) Cybersecurity
16 8 (12.90%) Security Architecture
16 8 (12.90%) Stakeholder Management
16 8 (12.90%) Business Continuity
16 8 (12.90%) Disaster Recovery
17 7 (11.29%) Degree
17 7 (11.29%) ISMS
18 6 (9.68%) Data Protection
18 6 (9.68%) COSO

ISO/IEC 27005
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Applications
1 1 (1.61%) Microsoft Excel
1 1 (1.61%) Microsoft PowerPoint
Cloud Services
1 2 (3.23%) IaaS
1 2 (3.23%) PaaS
1 2 (3.23%) SaaS
Communications & Networking
1 6 (9.68%) Network Security
2 2 (3.23%) Firewall
2 2 (3.23%) SAN
General
1 38 (61.29%) Finance
2 3 (4.84%) Law
2 3 (4.84%) Telecoms
3 2 (3.23%) Legal
3 2 (3.23%) Retail
4 1 (1.61%) Banking
Job Titles
1 39 (62.90%) Consultant
2 37 (59.68%) Security Consultant
3 28 (45.16%) Information Security Consultant
4 11 (17.74%) Security Manager
5 7 (11.29%) Information Manager
5 7 (11.29%) Information Security Manager
5 7 (11.29%) Risk Manager
6 5 (8.06%) Head of Information
6 5 (8.06%) Head of Information Security
6 5 (8.06%) Head of Security
6 5 (8.06%) Information Officer
6 5 (8.06%) Information Security Officer
6 5 (8.06%) Security Officer
7 4 (6.45%) Information Assurance Consultant
7 4 (6.45%) Information Risk Manager
7 4 (6.45%) Information Security Risk Manager
7 4 (6.45%) IT Manager
7 4 (6.45%) IT Security Manager
8 3 (4.84%) Administrator
8 3 (4.84%) Security Administrator
Miscellaneous
1 10 (16.13%) Management Information System
2 5 (8.06%) Analytical Skills
2 5 (8.06%) Smart Meter
3 4 (6.45%) Blackberry
4 3 (4.84%) Analytical Mindset
5 1 (1.61%) PKI
5 1 (1.61%) Smart Energy
5 1 (1.61%) Virtual Team
Operating Systems
1 4 (6.45%) Android
1 4 (6.45%) Apple iOS
1 4 (6.45%) Windows
1 4 (6.45%) Windows Server
Processes & Methodologies
1 56 (90.32%) Information Security
2 45 (72.58%) Risk Management
3 44 (70.97%) Risk Assessment
4 30 (48.39%) CRAMM
5 25 (40.32%) ITIL
6 15 (24.19%) OWASP
6 15 (24.19%) PRINCE2
7 13 (20.97%) Agile Software Development
7 13 (20.97%) Remediation Plan
7 13 (20.97%) Waterfall
8 9 (14.52%) Penetration Testing
9 8 (12.90%) Business Continuity
9 8 (12.90%) Cybersecurity
9 8 (12.90%) Disaster Recovery
9 8 (12.90%) Security Architecture
9 8 (12.90%) Stakeholder Management
10 7 (11.29%) ISMS
11 6 (9.68%) Data Protection
11 6 (9.68%) Information Security Management
11 6 (9.68%) Security Management
Qualifications
1 54 (87.10%) CISSP
2 29 (46.77%) CISM
3 12 (19.35%) CISA
4 7 (11.29%) Degree
5 5 (8.06%) ISO 27001 Lead Auditor
5 5 (8.06%) SANS
6 4 (6.45%) CRISC
7 3 (4.84%) CESG Certified Professional
7 3 (4.84%) PCI QSA
8 2 (3.23%) ISACA
8 2 (3.23%) ISO 27001 Lead Implementer
9 1 (1.61%) ISSAP
Quality Assurance & Compliance
1 60 (96.77%) ISO/IEC 27001
2 11 (17.74%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
3 10 (16.13%) PCI DSS
4 9 (14.52%) ISO 22301
4 9 (14.52%) ISO 31000
5 6 (9.68%) COBIT
5 6 (9.68%) COSO
5 6 (9.68%) Cyber Essentials
5 6 (9.68%) GDPR
6 3 (4.84%) BS25999
6 3 (4.84%) HMG Security Policy Framework
6 3 (4.84%) NIST 800
6 3 (4.84%) PA-DSS
7 2 (3.23%) ISO 9001
8 1 (1.61%) Cyber Essentials PLUS
System Software
1 4 (6.45%) Active Directory
Vendors
1 1 (1.61%) Microsoft