Period
to 23 September 2019

The following table provides summary statistics for permanent job vacancies with a requirement for ISO/IEC 27005 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited ISO/IEC 27005 over the 6 months to 23 September 2019 with a comparison to the same period in the previous 2 years.

ISO/IEC 27005
UK
6 months to
23 Sep 2019
Same period 2018 Same period 2017
Rank 1029 1139 1127
Rank change year-on-year +110 -12 +54
Permanent jobs citing ISO/IEC 27005 48 32 89
As % of all permanent IT jobs advertised in the UK 0.034% 0.019% 0.051%
As % of the Quality Assurance & Compliance category 0.26% 0.15% 0.41%
Number of salaries quoted 41 18 77
UK median annual salary £75,000 £63,750 £57,500
Median salary % change year-on-year +17.65% +10.87% -11.54%
10th Percentile £47,651 £45,500 £50,000
90th Percentile £96,250 £75,000 £84,000
UK excluding London median annual salary £57,500 £58,750 £53,500
% change year-on-year -2.13% +9.81% -17.69%

ISO/IEC 27005 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 18,623 21,718 21,679
As % of all permanent IT jobs advertised in the UK 13.30% 13.14% 12.34%
Number of salaries quoted 13,771 16,494 16,060
UK median annual salary £50,000 £50,000 £50,000
10th Percentile £28,000 £28,500 £27,500
90th Percentile £82,500 £80,000 £77,500
UK excluding London median annual salary £45,000 £45,000 £42,500
% change year-on-year - +5.88% -

ISO/IEC 27005
Job Vacancy Trend

Job postings citing ISO/IEC 27005 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27005 in the UK

ISO/IEC 27005
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing ISO/IEC 27005.

Salary trend for ISO/IEC 27005 in the UK

ISO/IEC 27005
Salary Histogram

The salary distribution of IT jobs citing ISO/IEC 27005 over the 6 months to 23 September 2019.

Salary histogram for ISO/IEC 27005 in the UK

ISO/IEC 27005
Top 8 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing ISO/IEC 27005 within the UK over the 6 months to 23 September 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +94 48 £75,000 +17.65% 2
UK excluding London +53 28 £57,500 -2.13% 3
London +93 20 £80,000 +25.49%
Midlands +36 12 £52,945 +11.46%
West Midlands +36 12 £52,945 -
South East +42 8 £85,000 +21.43% 1
North West +28 8 £55,000 -10.20%
North of England +18 8 £55,000 -10.20%

For the 6 months to 23 September 2019, IT jobs citing ISO/IEC 27005 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for ISO/IEC 27005.

1 41 (85.42%) ISO/IEC 27001
2 30 (62.50%) Security Architecture
3 29 (60.42%) CISSP
4 27 (56.25%) Information Security
5 25 (52.08%) Security Management
6 23 (47.92%) Risk Management
6 23 (47.92%) CISM
6 23 (47.92%) TOGAF
6 23 (47.92%) Cybersecurity
6 23 (47.92%) NIST
7 17 (35.42%) ISO 31000
7 17 (35.42%) SABSA
7 17 (35.42%) ITIL
8 15 (31.25%) Legal
8 15 (31.25%) Risk Assessment
9 14 (29.17%) Degree
9 14 (29.17%) Public Cloud
9 14 (29.17%) Azure
9 14 (29.17%) AWS
9 14 (29.17%) Cisco Certification
10 13 (27.08%) PRINCE2
10 13 (27.08%) CISA
10 13 (27.08%) Information Security Management
10 13 (27.08%) DevOps
11 11 (22.92%) Finance
12 10 (20.83%) Linux
12 10 (20.83%) PCI DSS
13 9 (18.75%) ISMS
13 9 (18.75%) Security Testing
13 9 (18.75%) Oracle

ISO/IEC 27005
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 6 (12.50%) IIS
Applications
1 3 (6.25%) Microsoft Excel
Cloud Services
1 14 (29.17%) AWS
1 14 (29.17%) Azure
2 7 (14.58%) GCP
3 3 (6.25%) IaaS
3 3 (6.25%) PaaS
Communications & Networking
1 7 (14.58%) Firewall
2 3 (6.25%) Internet
3 1 (2.08%) DNS
3 1 (2.08%) FTP
3 1 (2.08%) HTTP
3 1 (2.08%) Intrusion Detection
3 1 (2.08%) Network Security
3 1 (2.08%) SMTP
3 1 (2.08%) TCP/IP
3 1 (2.08%) VPN
3 1 (2.08%) WAN
Development Applications
1 6 (12.50%) JIRA
1 6 (12.50%) SonarQube
1 6 (12.50%) Visual Studio
General
1 15 (31.25%) Legal
2 11 (22.92%) Finance
3 6 (12.50%) Back Office
4 2 (4.17%) Public Sector
5 1 (2.08%) Retail
Job Titles
1 17 (35.42%) Architect
1 17 (35.42%) Security Architect
2 9 (18.75%) Consultant
2 9 (18.75%) IT Architect
2 9 (18.75%) IT Security Architect
2 9 (18.75%) Security Consultant
3 7 (14.58%) Analyst
3 7 (14.58%) Cloud Consultant
3 7 (14.58%) Information Analyst
3 7 (14.58%) Information Security Analyst
3 7 (14.58%) Security Analyst
3 7 (14.58%) Senior Consultant
3 7 (14.58%) Senior Security Consultant
4 6 (12.50%) CISSP Architect
4 6 (12.50%) Payments Architect
5 5 (10.42%) Risk Manager
5 5 (10.42%) Security Manager
6 4 (8.33%) Senior Manager
7 3 (6.25%) Information Manager
7 3 (6.25%) Lead Architect
Libraries, Frameworks & Software Standards
1 6 (12.50%) Web Services
2 1 (2.08%) OAuth
2 1 (2.08%) OpenID
2 1 (2.08%) REST
2 1 (2.08%) SAML
2 1 (2.08%) SOAP
Miscellaneous
1 14 (29.17%) Public Cloud
2 9 (18.75%) Management Information System
3 8 (16.67%) Analytical Skills
3 8 (16.67%) CESG
3 8 (16.67%) Data Centre
4 6 (12.50%) Driving Licence
5 5 (10.42%) PKI
6 2 (4.17%) Cloud Native
6 2 (4.17%) Private Cloud
7 1 (2.08%) Distributed Denial-of-Service
7 1 (2.08%) Smart Energy
7 1 (2.08%) Smart Meter
Operating Systems
1 10 (20.83%) Linux
2 7 (14.58%) Windows
3 6 (12.50%) Solaris
3 6 (12.50%) Windows Server
4 1 (2.08%) Unix
Processes & Methodologies
1 30 (62.50%) Security Architecture
2 27 (56.25%) Information Security
3 25 (52.08%) Security Management
4 23 (47.92%) Cybersecurity
4 23 (47.92%) Risk Management
4 23 (47.92%) TOGAF
5 17 (35.42%) ITIL
5 17 (35.42%) SABSA
6 15 (31.25%) Risk Assessment
7 13 (27.08%) DevOps
7 13 (27.08%) Information Security Management
7 13 (27.08%) PRINCE2
8 9 (18.75%) Decision-Making
8 9 (18.75%) ISMS
8 9 (18.75%) IT Strategy
8 9 (18.75%) Security Testing
9 8 (16.67%) Business Continuity
9 8 (16.67%) Cryptography
9 8 (16.67%) Internal Audit
10 7 (14.58%) Disaster Recovery
Programming Languages
1 6 (12.50%) C#
1 6 (12.50%) Java
Qualifications
1 29 (60.42%) CISSP
2 23 (47.92%) CISM
3 14 (29.17%) Cisco Certification
3 14 (29.17%) Degree
4 13 (27.08%) CISA
5 7 (14.58%) (ISC)2 CCSP
5 7 (14.58%) CCSP
6 6 (12.50%) CLAS
6 6 (12.50%) CREST Certified
6 6 (12.50%) IISP
7 4 (8.33%) Security Cleared
8 2 (4.17%) CRISC
9 1 (2.08%) CEH
9 1 (2.08%) CESG Certified Professional
9 1 (2.08%) ISSAP
9 1 (2.08%) SSCP
Quality Assurance & Compliance
1 41 (85.42%) ISO/IEC 27001
2 23 (47.92%) NIST
3 17 (35.42%) ISO 31000
4 10 (20.83%) PCI DSS
5 9 (18.75%) Sarbanes-Oxley
6 8 (16.67%) GDPR
7 7 (14.58%) COBIT
7 7 (14.58%) ISO 22301
8 6 (12.50%) ISAE 3402
8 6 (12.50%) ISO 9001
9 3 (6.25%) GPG13
9 3 (6.25%) HMG Infosec
10 1 (2.08%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 1 (2.08%) NCSC
System Software
1 6 (12.50%) ISA Server
Systems Management
1 6 (12.50%) IBM Guardium
1 6 (12.50%) Nessus
1 6 (12.50%) Trend Micro Deep Security
Vendors
1 9 (18.75%) Cisco
1 9 (18.75%) Microsoft
1 9 (18.75%) Oracle
2 8 (16.67%) IBM
3 7 (14.58%) Google
4 6 (12.50%) ArcSight
4 6 (12.50%) Barracuda Networks
4 6 (12.50%) Centrify
4 6 (12.50%) Imperva
4 6 (12.50%) McAfee
4 6 (12.50%) Okta
4 6 (12.50%) Qualys
4 6 (12.50%) Splunk
4 6 (12.50%) Trend Micro
4 6 (12.50%) Tripwire