Period
to 17 October 2017

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27005 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27005 over the 6 months to 17 October 2017 with a comparison to the same period in the previous 2 years.

ISO/IEC 27005
UK
6 months to
17 Oct 2017
Same period 2016 Same period 2015
Rank 1090 1189 1274
Rank change year-on-year +99 +85 +4
Permanent jobs citing ISO/IEC 27005 87 52 23
As % of all permanent IT jobs advertised in the UK 0.050% 0.027% 0.011%
As % of the Quality Assurance & Compliance category 0.40% 0.21% 0.083%
Number of salaries quoted 77 49 16
UK median annual salary £55,000 £65,000 £60,000
Median salary % change year-on-year -15.38% +8.33% +4.35%
10th Percentile £50,000 £60,000 £43,375
90th Percentile £83,400 £75,000 £72,500
UK excluding London median annual salary £53,500 £65,000 £50,000
% change year-on-year -17.69% +30.00% -9.09%

ISO/IEC 27005 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 21849 25080 27828
As % of all permanent IT jobs advertised in the UK 12.49% 13.07% 12.78%
Number of salaries quoted 16225 19848 21997
UK median annual salary £50,000 £50,000 £45,000
Median salary % change year-on-year - +11.11% -
10th Percentile £27,500 £27,500 £26,250
90th Percentile £77,500 £77,500 £75,000
UK excluding London median annual salary £42,500 £42,500 £40,000
% change year-on-year - +6.25% -

ISO/IEC 27005
Job Vacancy Trend

Job postings citing ISO/IEC 27005 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27005 in the UK

ISO/IEC 27005
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing ISO/IEC 27005.

Salary trend for ISO/IEC 27005 in the UK

ISO/IEC 27005
Salary Histogram

The salary distribution of IT jobs citing ISO/IEC 27005 over the 6 months to 17 October 2017.

Salary histogram for ISO/IEC 27005 in the UK

ISO/IEC 27005
Top 11 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27005 within the UK over the 6 months to 17 October 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +96 86 £55,000 -15.38% 7
UK excluding London +83 65 £53,500 -17.69% 6
South East +109 36 £57,500 -11.88% 4
London +24 19 £84,000 +24.44% 1
North of England +12 19 £52,500 -19.23% 1
Yorkshire +34 15 £52,500 -19.23%
Midlands +36 6 £69,000 +6.15%
West Midlands +28 6 £69,000 +6.15%
North West - 4 £50,000 - 1
East of England - 3 £49,000 - 1
Wales - 1 £65,000 -

For the 6 months to 17 October 2017, IT jobs citing ISO/IEC 27005 also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for ISO/IEC 27005.

1 79 (90.80%) ISO/IEC 27001
2 74 (85.06%) CISSP
3 73 (83.91%) Information Security
4 68 (78.16%) Risk Assessment
5 64 (73.56%) Risk Management
6 52 (59.77%) Finance
7 46 (52.87%) CISM
8 45 (51.72%) CRAMM
9 35 (40.23%) ITIL
10 30 (34.48%) Agile Software Development
11 24 (27.59%) Waterfall
12 21 (24.14%) OWASP
12 21 (24.14%) Penetration Testing
13 20 (22.99%) Remediation Plan
14 19 (21.84%) PRINCE2
14 19 (21.84%) Management Information System
15 18 (20.69%) ISO 22301
16 17 (19.54%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
17 16 (18.39%) Cybersecurity
18 14 (16.09%) PCI DSS
19 13 (14.94%) ISMS
20 12 (13.79%) Information Assurance
20 12 (13.79%) Degree
20 12 (13.79%) ISO 27001 Lead Auditor
21 11 (12.64%) ISO 31000
22 10 (11.49%) Security Management
22 10 (11.49%) Information Security Management
22 10 (11.49%) CISA
23 9 (10.34%) SIEM
23 9 (10.34%) Vulnerability Management

ISO/IEC 27005
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Applications
1 1 (1.15%) Microsoft Excel
1 1 (1.15%) Microsoft Office
1 1 (1.15%) Microsoft PowerPoint
Cloud Services
1 4 (4.60%) SaaS
Communications & Networking
1 8 (9.20%) Network Security
2 3 (3.45%) Firewall
3 2 (2.30%) Cisco ASA
General
1 52 (59.77%) Finance
2 6 (6.90%) Telecoms
3 5 (5.75%) Law
4 1 (1.15%) Banking
Job Titles
1 48 (55.17%) Consultant
2 46 (52.87%) Security Consultant
3 34 (39.08%) Information Security Consultant
4 20 (22.99%) Security Manager
5 15 (17.24%) Information Assurance Consultant
6 11 (12.64%) IT Manager
6 11 (12.64%) IT Security Manager
7 10 (11.49%) Information Manager
8 9 (10.34%) Information Assurance Manager
8 9 (10.34%) Information Security Manager
8 9 (10.34%) Security Assurance Manager
9 5 (5.75%) Analyst
9 5 (5.75%) Risk Manager
10 4 (4.60%) Head of Information
10 4 (4.60%) Head of Information Security
10 4 (4.60%) Head of Security
10 4 (4.60%) Information Analyst
10 4 (4.60%) Information Security Analyst
10 4 (4.60%) Security Analyst
10 4 (4.60%) Senior Manager
Miscellaneous
1 19 (21.84%) Management Information System
2 7 (8.05%) Blackberry
3 6 (6.90%) Smart Meter
4 4 (4.60%) Analytical Skills
4 4 (4.60%) Smart Energy
5 3 (3.45%) Computer Science
6 1 (1.15%) CESG
6 1 (1.15%) NHS
6 1 (1.15%) Virtual Team
Operating Systems
1 7 (8.05%) Android
1 7 (8.05%) Apple iOS
1 7 (8.05%) Windows
1 7 (8.05%) Windows Server
Processes & Methodologies
1 73 (83.91%) Information Security
2 68 (78.16%) Risk Assessment
3 64 (73.56%) Risk Management
4 45 (51.72%) CRAMM
5 35 (40.23%) ITIL
6 30 (34.48%) Agile Software Development
7 24 (27.59%) Waterfall
8 21 (24.14%) OWASP
8 21 (24.14%) Penetration Testing
9 20 (22.99%) Remediation Plan
10 19 (21.84%) PRINCE2
11 16 (18.39%) Cybersecurity
12 13 (14.94%) ISMS
13 12 (13.79%) Information Assurance
14 10 (11.49%) Information Security Management
14 10 (11.49%) Security Management
15 9 (10.34%) Security Operations
15 9 (10.34%) SIEM
15 9 (10.34%) Vulnerability Management
16 8 (9.20%) Stakeholder Management
Qualifications
1 74 (85.06%) CISSP
2 46 (52.87%) CISM
3 12 (13.79%) Degree
3 12 (13.79%) ISO 27001 Lead Auditor
4 10 (11.49%) CISA
5 9 (10.34%) CESG Certified Professional
6 3 (3.45%) PCI QSA
6 3 (3.45%) SANS
7 2 (2.30%) ISO 27001 Lead Implementer
7 2 (2.30%) ITIL Foundation Certificate
8 1 (1.15%) SC Cleared
8 1 (1.15%) Security Cleared
Quality Assurance & Compliance
1 79 (90.80%) ISO/IEC 27001
2 18 (20.69%) ISO 22301
3 17 (19.54%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 14 (16.09%) PCI DSS
5 11 (12.64%) ISO 31000
6 7 (8.05%) Cyber Essentials
7 6 (6.90%) COBIT
7 6 (6.90%) COSO
7 6 (6.90%) HMG Security Policy Framework
8 4 (4.60%) QA
9 3 (3.45%) BS25999
9 3 (3.45%) GDPR
9 3 (3.45%) NIST 800
9 3 (3.45%) PA-DSS
10 2 (2.30%) SLA
11 1 (1.15%) ISO 9001
11 1 (1.15%) JSP 440
System Software
1 7 (8.05%) Active Directory
Vendors
1 2 (2.30%) Cisco
2 1 (1.15%) Microsoft