Period
to 25 October 2021

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27005 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27005 over the 6 months to 25 October 2021 with a comparison to the same period in the previous 2 years.

ISO/IEC 27005
UK
6 months to
25 Oct 2021
Same period 2020 Same period 2019
Rank 1003 667 1035
Rank change year-on-year -336 +368 +111
Permanent jobs citing ISO/IEC 27005 47 21 45
As % of all permanent jobs advertised in the UK 0.037% 0.043% 0.033%
As % of the Quality Assurance & Compliance category 0.24% 0.35% 0.24%
Number of salaries quoted 41 17 38
10th Percentile £52,500 £50,000 £47,651
25th Percentile £61,250 £55,000 £53,438
Median annual salary (50th Percentile) £70,000 £65,000 £75,000
Median % change year-on-year +7.69% -13.33% +30.43%
75th Percentile £82,500 £70,000 £85,000
90th Percentile £85,000 £72,500 £97,875
UK excluding London median annual salary £75,000 £65,000 £56,000
% change year-on-year +15.38% +16.07% +17.89%

ISO/IEC 27005 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 19,403 6,080 18,786
As % of all permanent IT jobs advertised in the UK 15.36% 12.44% 13.79%
Number of salaries quoted 11,910 4,784 14,207
10th Percentile £31,250 £31,250 £28,500
25th Percentile £40,500 £41,250 £37,000
Median annual salary (50th Percentile) £55,000 £53,750 £50,000
Median % change year-on-year +2.33% +7.50% -
75th Percentile £71,250 £70,000 £67,500
90th Percentile £89,250 £85,000 £82,500
UK excluding London median annual salary £47,000 £48,500 £45,000
% change year-on-year -3.09% +7.78% -

ISO/IEC 27005
Job Vacancy Trend

Job postings citing ISO/IEC 27005 as a proportion of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27005 in the UK

ISO/IEC 27005
Salary Trend

3-month moving average salary quoted in jobs citing ISO/IEC 27005.

Salary trend for ISO/IEC 27005 in the UK

ISO/IEC 27005
Salary Histogram

Salary distribution for jobs citing ISO/IEC 27005 over the 6 months to 25 October 2021.

Salary histogram for ISO/IEC 27005 in the UK

ISO/IEC 27005
Top 12 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27005 within the UK over the 6 months to 25 October 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -324 29 £70,000 +7.69% 11
Work from Home -243 26 £80,000 - 1
UK excluding London -227 24 £75,000 +15.38% 11
Midlands -105 11 £80,000 -
West Midlands -98 7 £80,000 -
North of England -125 7 £62,500 +47.06% 2
South East -155 6 £80,000 +45.45% 7
London -261 5 £70,000 +7.69%
Yorkshire - 5 £62,500 - 1
North East - 5 £62,500 -
East Midlands - 4 £59,625 -
North West -95 2 £39,250 -7.65% 1

For the 6 months to 25 October 2021, IT jobs citing ISO/IEC 27005 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for ISO/IEC 27005.

1 42 (89.36%) ISO/IEC 27001
2 41 (87.23%) Information Security
3 33 (70.21%) CISSP
4 27 (57.45%) Risk Management
5 25 (53.19%) Cybersecurity
5 25 (53.19%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 24 (51.06%) NCSC
7 23 (48.94%) TOGAF
8 22 (46.81%) Security Management
8 22 (46.81%) Security Architecture
9 21 (44.68%) SDLC
10 20 (42.55%) CESG Certified Professional
10 20 (42.55%) Risk Assessment
11 19 (40.43%) CISM
11 19 (40.43%) Agile Software Development
12 18 (38.30%) Nessus
13 16 (34.04%) Security Cleared
14 15 (31.91%) Azure
14 15 (31.91%) ISMS
14 15 (31.91%) Cisco
14 15 (31.91%) CREST Certified
15 14 (29.79%) CLAS
15 14 (29.79%) Information Security Management
15 14 (29.79%) PCI DSS
16 13 (27.66%) AWS
16 13 (27.66%) Splunk
16 13 (27.66%) Windows
16 13 (27.66%) Linux
16 13 (27.66%) Cisco Certification
16 13 (27.66%) DevOps

ISO/IEC 27005
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 8 (17.02%) IIS
Cloud Services
1 15 (31.91%) Azure
2 13 (27.66%) AWS
3 8 (17.02%) GCP
4 3 (6.38%) Microsoft 365
5 2 (4.26%) Azure Active Directory
6 1 (2.13%) Azure Sentinel
6 1 (2.13%) Cloud Computing
Communications & Networking
1 10 (21.28%) Firewall
2 7 (14.89%) Network Security
3 5 (10.64%) BGP
3 5 (10.64%) OSPF
3 5 (10.64%) WAN
4 4 (8.51%) Intrusion Detection
5 3 (6.38%) Internet
Development Applications
1 10 (21.28%) Burp Suite
2 8 (17.02%) JIRA
2 8 (17.02%) Rational DOORS
2 8 (17.02%) SonarQube
2 8 (17.02%) Visual Studio
General
1 11 (23.40%) Finance
2 7 (14.89%) Influencing Skills
3 5 (10.64%) Analytical Skills
3 5 (10.64%) Back Office
4 3 (6.38%) Public Sector
4 3 (6.38%) Social Skills
5 1 (2.13%) Legal
Job Titles
1 19 (40.43%) Architect
1 19 (40.43%) Security Architect
2 17 (36.17%) Consultant
3 9 (19.15%) Risk Consultant
4 8 (17.02%) Security Consultant
5 7 (14.89%) Information Security Consultant
6 6 (12.77%) Cybersecurity Architect
6 6 (12.77%) Lead Architect
6 6 (12.77%) Lead Security Architect
7 4 (8.51%) Network Architect
7 4 (8.51%) Network Security Architect
7 4 (8.51%) Security Officer
8 3 (6.38%) Senior Architect
8 3 (6.38%) Senior Security Architect
9 2 (4.26%) Information Analyst
9 2 (4.26%) Information Security Analyst
9 2 (4.26%) Information Security Officer
9 2 (4.26%) Security Analyst
9 2 (4.26%) Security Engineer
9 2 (4.26%) Senior Network Architect
Libraries, Frameworks & Software Standards
1 8 (17.02%) Web Services
Miscellaneous
1 12 (25.53%) Management Information System
2 9 (19.15%) BYOD
3 8 (17.02%) Driving Licence
3 8 (17.02%) Mobile Payment
3 8 (17.02%) Public Cloud
3 8 (17.02%) Smartcard
4 6 (12.77%) Self-Motivation
5 5 (10.64%) CESG
5 5 (10.64%) CESG CLAS
5 5 (10.64%) Data Centre
6 1 (2.13%) Cyberthreat
6 1 (2.13%) Data Protection Act
6 1 (2.13%) NHS
Operating Systems
1 13 (27.66%) Linux
1 13 (27.66%) Windows
2 8 (17.02%) Solaris
2 8 (17.02%) Windows Server
3 5 (10.64%) Debian
Processes & Methodologies
1 41 (87.23%) Information Security
2 27 (57.45%) Risk Management
3 25 (53.19%) Cybersecurity
4 23 (48.94%) TOGAF
5 22 (46.81%) Security Architecture
5 22 (46.81%) Security Management
6 21 (44.68%) SDLC
7 20 (42.55%) Risk Assessment
8 19 (40.43%) Agile Software Development
9 15 (31.91%) ISMS
10 14 (29.79%) Information Security Management
11 13 (27.66%) DevOps
12 11 (23.40%) Continuous Improvement
13 10 (21.28%) Data Privacy
13 10 (21.28%) Data Protection
13 10 (21.28%) DevSecOps
13 10 (21.28%) ITIL
13 10 (21.28%) Security Testing
14 9 (19.15%) ITIL V3
14 9 (19.15%) Software Delivery
Programming Languages
1 11 (23.40%) Java
2 8 (17.02%) C#
3 3 (6.38%) Python
4 1 (2.13%) C
Qualifications
1 33 (70.21%) CISSP
2 20 (42.55%) CESG Certified Professional
3 19 (40.43%) CISM
4 16 (34.04%) Security Cleared
5 15 (31.91%) CREST Certified
6 14 (29.79%) CLAS
7 13 (27.66%) Cisco Certification
8 9 (19.15%) CISA
8 9 (19.15%) Degree
8 9 (19.15%) SC Cleared
9 8 (17.02%) (ISC)2 CCSP
9 8 (17.02%) CCSP
9 8 (17.02%) IISP
10 5 (10.64%) CCIE
10 5 (10.64%) CCNP
11 1 (2.13%) CEH
11 1 (2.13%) CRISC
11 1 (2.13%) DV Cleared
11 1 (2.13%) ISO 27001 Lead Auditor
11 1 (2.13%) ISO 27001 Lead Implementer
Quality Assurance & Compliance
1 42 (89.36%) ISO/IEC 27001
2 25 (53.19%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
3 24 (51.06%) NCSC
4 14 (29.79%) PCI DSS
5 11 (23.40%) ISO 31000
5 11 (23.40%) NIST
6 10 (21.28%) GDPR
7 9 (19.15%) GRC
7 9 (19.15%) ISO 9001
7 9 (19.15%) Sarbanes-Oxley
8 8 (17.02%) ISAE 3402
9 3 (6.38%) ISO 22301
10 2 (4.26%) HMG Security Policy Framework
10 2 (4.26%) SOC 2
11 1 (2.13%) COBIT
11 1 (2.13%) SLA
System Software
1 8 (17.02%) ISA Server
2 7 (14.89%) Active Directory
Systems Management
1 18 (38.30%) Nessus
2 8 (17.02%) Ansible
2 8 (17.02%) Trend Micro Deep Security
3 5 (10.64%) QRadar
4 3 (6.38%) Terraform
Vendors
1 15 (31.91%) Cisco
2 13 (27.66%) Splunk
3 11 (23.40%) Microsoft
4 8 (17.02%) Centrify
4 8 (17.02%) CrowdStrike
4 8 (17.02%) F5
4 8 (17.02%) Google
4 8 (17.02%) Imperva
4 8 (17.02%) Okta
4 8 (17.02%) OneTrust
4 8 (17.02%) Oracle
4 8 (17.02%) Trend Micro
4 8 (17.02%) Tripwire
5 5 (10.64%) AlienVault
5 5 (10.64%) Cubic Transportation
5 5 (10.64%) LogRhythm
5 5 (10.64%) Sophos
6 2 (4.26%) CheckPoint
6 2 (4.26%) Fortinet
6 2 (4.26%) Qualys