Period
to 14 April 2021

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27005 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27005 over the 6 months to 14 April 2021 with a comparison to the same period in the previous 2 years.

ISO/IEC 27005
UK
6 months to
14 Apr 2021
Same period 2020 Same period 2019
Rank 812 963 1069
Rank change year-on-year +151 +106 +97
Permanent jobs citing ISO/IEC 27005 37 17 54
As % of all permanent jobs advertised in the UK 0.044% 0.015% 0.036%
As % of the Quality Assurance & Compliance category 0.36% 0.12% 0.26%
Number of salaries quoted 30 11 39
10th Percentile £52,250 £52,500 £47,500
25th Percentile £57,500 £54,375 £55,625
Median annual salary (50th Percentile) £66,250 £57,500 £85,000
Median % change year-on-year +15.22% -32.35% +54.55%
75th Percentile £72,500 £61,875 £95,000
90th Percentile £73,500 £65,000 £98,750
UK excluding London median annual salary £63,750 £65,000 £80,000
% change year-on-year -1.92% -18.75% +52.38%

ISO/IEC 27005 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 10,224 13,974 20,992
As % of all permanent IT jobs advertised in the UK 12.28% 12.35% 14.09%
Number of salaries quoted 7,148 10,868 15,439
10th Percentile £31,250 £28,750 £27,625
25th Percentile £40,994 £37,500 £37,000
Median annual salary (50th Percentile) £52,500 £52,500 £50,000
Median % change year-on-year - +5.00% -
75th Percentile £70,000 £70,000 £67,500
90th Percentile £85,000 £85,000 £82,500
UK excluding London median annual salary £47,500 £45,000 £45,000
% change year-on-year +5.56% - -

ISO/IEC 27005
Job Vacancy Trend

Job postings citing ISO/IEC 27005 as a proportion of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27005 in the UK

ISO/IEC 27005
Salary Trend

3-month moving average salary quoted in jobs citing ISO/IEC 27005.

Salary trend for ISO/IEC 27005 in the UK

ISO/IEC 27005
Salary Histogram

Salary distribution for jobs citing ISO/IEC 27005 over the 6 months to 14 April 2021.

Salary histogram for ISO/IEC 27005 in the UK

ISO/IEC 27005
Top 14 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27005 within the UK over the 6 months to 14 April 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +166 34 £65,000 +13.04% 5
UK excluding London +123 25 £63,750 -1.92% 4
Work from Home -114 13 £70,000 +84.21%
Midlands - 11 £70,000 -
London +122 10 £70,000 +21.74% 1
North of England +46 9 £61,250 +61.18%
West Midlands - 8 £70,000 -
Yorkshire - 7 £62,500 -
South West +18 4 £65,000 -
East Midlands - 3 £55,000 -
North East - 3 £62,500 -
North West +42 2 £42,500 +11.84%
South East +93 1 £80,000 - 4
East of England - 1 £60,000 -

For the 6 months to 14 April 2021, IT jobs citing ISO/IEC 27005 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for ISO/IEC 27005.

1 36 (97.30%) ISO/IEC 27001
2 34 (91.89%) Information Security
3 32 (86.49%) Risk Management
4 29 (78.38%) NCSC
5 21 (56.76%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 20 (54.05%) Security Architecture
6 20 (54.05%) Cybersecurity
7 17 (45.95%) CISSP
7 17 (45.95%) Security Cleared
8 16 (43.24%) CISM
9 15 (40.54%) Security Management
9 15 (40.54%) Risk Assessment
9 15 (40.54%) CESG Certified Professional
10 14 (37.84%) Ansible
10 14 (37.84%) Information Security Management
10 14 (37.84%) ISMS
11 13 (35.14%) Java
11 13 (35.14%) Python
11 13 (35.14%) SDLC
11 13 (35.14%) Terraform
12 9 (24.32%) HMG Security Policy Framework
12 9 (24.32%) SC Cleared
12 9 (24.32%) DV Cleared
12 9 (24.32%) NIST
12 9 (24.32%) PCI DSS
13 7 (18.92%) NIST 800
13 7 (18.92%) SABSA
14 6 (16.22%) Software Delivery
14 6 (16.22%) BYOD
14 6 (16.22%) SANS

ISO/IEC 27005
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Cloud Services
1 2 (5.41%) AWS
1 2 (5.41%) Azure
Communications & Networking
1 6 (16.22%) Intrusion Detection
2 4 (10.81%) Firewall
3 2 (5.41%) Network Security
4 1 (2.70%) BGP
4 1 (2.70%) OSPF
4 1 (2.70%) WAN
General
1 4 (10.81%) Public Sector
2 2 (5.41%) Finance
3 1 (2.70%) Manufacturing
Job Titles
1 27 (72.97%) Consultant
2 21 (56.76%) Security Consultant
3 13 (35.14%) Information Security Consultant
4 6 (16.22%) Managing Consultant
4 6 (16.22%) Risk Consultant
5 4 (10.81%) Architect
5 4 (10.81%) Security Architect
6 3 (8.11%) Team Leader
7 2 (5.41%) Information Officer
7 2 (5.41%) Information Security Officer
7 2 (5.41%) Security Officer
8 1 (2.70%) Auditor
8 1 (2.70%) Cisco Architect
8 1 (2.70%) Cisco Network Architect
8 1 (2.70%) Cybersecurity Consultant
8 1 (2.70%) IAM Consultant
8 1 (2.70%) IT Security Manager
8 1 (2.70%) Network Architect
8 1 (2.70%) Network Security Manager
8 1 (2.70%) Security Manager
Miscellaneous
1 6 (16.22%) BYOD
2 5 (13.51%) Management Information System
3 1 (2.70%) CESG
3 1 (2.70%) CESG CLAS
3 1 (2.70%) Distributed Denial-of-Service
3 1 (2.70%) SCADA
3 1 (2.70%) Smart Energy
Operating Systems
1 1 (2.70%) Debian
1 1 (2.70%) Linux
1 1 (2.70%) Windows
Processes & Methodologies
1 34 (91.89%) Information Security
2 32 (86.49%) Risk Management
3 20 (54.05%) Cybersecurity
3 20 (54.05%) Security Architecture
4 15 (40.54%) Risk Assessment
4 15 (40.54%) Security Management
5 14 (37.84%) Information Security Management
5 14 (37.84%) ISMS
6 13 (35.14%) SDLC
7 7 (18.92%) SABSA
8 6 (16.22%) Agile Software Development
8 6 (16.22%) SOA
8 6 (16.22%) Software Delivery
9 4 (10.81%) Continuous Improvement
10 3 (8.11%) Identity Management
10 3 (8.11%) Incident Management
10 3 (8.11%) IT Strategy
10 3 (8.11%) Kalman Filter
10 3 (8.11%) Project Delivery
10 3 (8.11%) Web Filtering
Programming Languages
1 13 (35.14%) Java
1 13 (35.14%) Python
Qualifications
1 17 (45.95%) CISSP
1 17 (45.95%) Security Cleared
2 16 (43.24%) CISM
3 15 (40.54%) CESG Certified Professional
4 9 (24.32%) DV Cleared
4 9 (24.32%) SC Cleared
5 6 (16.22%) PCI QSA
5 6 (16.22%) SANS
6 4 (10.81%) CISA
6 4 (10.81%) CRISC
7 1 (2.70%) CCIE
7 1 (2.70%) CCNP
7 1 (2.70%) Cisco Certification
7 1 (2.70%) CLAS
7 1 (2.70%) CREST Certified
Quality Assurance & Compliance
1 36 (97.30%) ISO/IEC 27001
2 29 (78.38%) NCSC
3 21 (56.76%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 9 (24.32%) HMG Security Policy Framework
4 9 (24.32%) NIST
4 9 (24.32%) PCI DSS
5 7 (18.92%) NIST 800
6 6 (16.22%) GDPR
6 6 (16.22%) Government Security Classifications
6 6 (16.22%) JSP 440
6 6 (16.22%) PA-DSS
6 6 (16.22%) RMADS
7 3 (8.11%) COBIT
7 3 (8.11%) ISO 22301
8 1 (2.70%) ISO 31000
8 1 (2.70%) SLA
System Software
1 1 (2.70%) Active Directory
Systems Management
1 14 (37.84%) Ansible
2 13 (35.14%) Terraform
3 1 (2.70%) QRadar
Vendors
1 2 (5.41%) Splunk
2 1 (2.70%) AlienVault
2 1 (2.70%) Cisco
2 1 (2.70%) LogRhythm
2 1 (2.70%) Sophos