Period
to 18 March 2019

The following table provides summary statistics for permanent job vacancies with a requirement for Metasploit skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Metasploit over the 6 months to 18 March 2019 with a comparison to the same period in the previous 2 years.

Rapid7 Metasploit
UK
6 months to
18 Mar 2019
Same period 2018 Same period 2017
Rank 1047 1130 1146
Rank change year-on-year +83 +16 +1
Permanent jobs citing Metasploit 69 69 51
As % of all permanent IT jobs advertised in the UK 0.046% 0.039% 0.029%
As % of the Development Applications category 0.23% 0.19% 0.15%
Number of salaries quoted 41 51 39
UK median annual salary £50,000 £47,500 £65,000
Median salary % change year-on-year +5.26% -26.92% +8.33%
10th Percentile £35,750 £38,750 £36,000
90th Percentile £72,500 £75,000 £92,000
UK excluding London median annual salary £57,500 £60,000 £62,500
% change year-on-year -4.17% -4.00% +47.06%

Metasploit is in the Development Applications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for development application skills.

All Development Application Skills
UK
Permanent vacancies with a requirement for development application skills 29,439 36,269 33,217
As % of all permanent IT jobs advertised in the UK 19.83% 20.66% 19.16%
Number of salaries quoted 23,472 29,857 28,132
UK median annual salary £50,000 £50,000 £47,500
Median salary % change year-on-year - +5.26% +1.06%
10th Percentile £32,000 £31,250 £30,000
90th Percentile £80,000 £76,250 £72,500
UK excluding London median annual salary £45,000 £45,000 £42,500
% change year-on-year - +5.88% +1.19%

Metasploit
Job Vacancy Trend

Job postings citing Metasploit as a percentage of all IT jobs advertised.

Job vacancy trend for Metasploit in the UK

Metasploit
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Metasploit.

Salary trend for Metasploit in the UK

Metasploit
Salary Histogram

The salary distribution of IT jobs citing Metasploit over the 6 months to 18 March 2019.

Salary histogram for Metasploit in the UK

Metasploit
Top 13 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Metasploit within the UK over the 6 months to 18 March 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +84 66 £47,500 - 10
UK excluding London +105 32 £57,500 -4.17% 6
London +62 29 £45,000 +5.88% 4
North of England +53 15 £65,000 - 3
Yorkshire - 13 £72,500 -
East of England - 8 £60,000 - 1
Midlands +46 5 - - 1
East Midlands - 5 - -
North West +38 2 £50,000 - 3
South East +51 1 £50,000 - 1
Wales +15 1 £47,500 -20.83%
South West +7 1 £55,000 -
Scotland - 1 £60,000 -

For the 6 months to 18 March 2019, IT jobs citing Metasploit also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for Metasploit.

1 56 (81.16%) Penetration Testing
2 52 (75.36%) Nessus
3 37 (53.62%) Nmap
4 36 (52.17%) Burp Suite
5 34 (49.28%) Linux
5 34 (49.28%) Python
6 33 (47.83%) Kali Linux
7 30 (43.48%) Cybersecurity
8 29 (42.03%) SIEM
9 25 (36.23%) SANS
9 25 (36.23%) Information Security
10 24 (34.78%) Windows
11 22 (31.88%) Open Source
11 22 (31.88%) Vulnerability Assessment
12 20 (28.99%) Qualys
12 20 (28.99%) Nexpose
12 20 (28.99%) CISSP
13 19 (27.54%) Firewall
13 19 (27.54%) Security Operations
13 19 (27.54%) PowerShell
13 19 (27.54%) OWASP
14 18 (26.09%) Security Testing
14 18 (26.09%) C++
14 18 (26.09%) Unix
15 17 (24.64%) OSCP
15 17 (24.64%) CREST Certified
16 16 (23.19%) Amazon AWS
16 16 (23.19%) Management Information System
16 16 (23.19%) VB
17 15 (21.74%) Ruby

Metasploit
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 2 (2.90%) Confluence
Cloud Services
1 16 (23.19%) Amazon AWS
2 10 (14.49%) Google Cloud Platform
3 3 (4.35%) Mimecast
3 3 (4.35%) SaaS
4 2 (2.90%) Microsoft Azure
4 2 (2.90%) Office 365
4 2 (2.90%) OpenDNS
5 1 (1.45%) IaaS
Communications & Networking
1 19 (27.54%) Firewall
2 14 (20.29%) Intrusion Detection
3 11 (15.94%) Wireshark
4 9 (13.04%) TCP/IP
5 8 (11.59%) Wireless
6 6 (8.70%) Network Security
7 3 (4.35%) DHCP
7 3 (4.35%) DNS
7 3 (4.35%) FTP
7 3 (4.35%) HTTP
7 3 (4.35%) LAN
7 3 (4.35%) SSL
7 3 (4.35%) WAN
8 2 (2.90%) Internet
8 2 (2.90%) NetScaler
8 2 (2.90%) VPN
9 1 (1.45%) Cisco IOS
9 1 (1.45%) DKIM
9 1 (1.45%) DMARC
9 1 (1.45%) Wireless Security
Database & Business Intelligence
1 2 (2.90%) Big Data
Development Applications
1 36 (52.17%) Burp Suite
2 2 (2.90%) AppScan
2 2 (2.90%) JIRA
3 1 (1.45%) GDB
3 1 (1.45%) IDA Disassembler
3 1 (1.45%) OllyDbg
3 1 (1.45%) Paros
3 1 (1.45%) sqlmap
3 1 (1.45%) WebScarab
3 1 (1.45%) WinDbg
General
1 4 (5.80%) Finance
2 3 (4.35%) Telecoms
3 2 (2.90%) Electronics
3 2 (2.90%) Manufacturing
3 2 (2.90%) Marketing
3 2 (2.90%) Retail
Job Titles
1 22 (31.88%) Security Engineer
2 19 (27.54%) Analyst
3 17 (24.64%) Penetration Tester
3 17 (24.64%) Tester
4 10 (14.49%) Cybersecurity Analyst
4 10 (14.49%) Senior Analyst
5 8 (11.59%) Security Analyst
5 8 (11.59%) Senior Cybersecurity Analyst
6 7 (10.14%) Malware Engineer
6 7 (10.14%) Operations Engineer
6 7 (10.14%) SIEM Engineer
7 6 (8.70%) Junior
7 6 (8.70%) Junior Penetration Tester
7 6 (8.70%) Junior Tester
8 4 (5.80%) Vulnerability Management Engineer
9 3 (4.35%) Applications Tester
9 3 (4.35%) Consultant
9 3 (4.35%) Information Security Engineer
9 3 (4.35%) Senior Penetration Tester
9 3 (4.35%) Senior Tester
Libraries, Frameworks & Software Standards
1 13 (18.84%) Web Services
2 2 (2.90%) .NET
3 1 (1.45%) ASP.NET
3 1 (1.45%) CSS
3 1 (1.45%) Elastic Stack
3 1 (1.45%) HTML
3 1 (1.45%) JSON
3 1 (1.45%) OAuth
3 1 (1.45%) OAuth2
3 1 (1.45%) OpenID
3 1 (1.45%) Regular Expression
3 1 (1.45%) RESTful
3 1 (1.45%) SAML
3 1 (1.45%) Sass
Miscellaneous
1 16 (23.19%) Management Information System
2 8 (11.59%) Mobile App
3 7 (10.14%) Analytical Skills
4 4 (5.80%) Security Operations Centre
4 4 (5.80%) Self-Motivation
5 3 (4.35%) Enterprise Software
5 3 (4.35%) PKI
6 1 (1.45%) Blog
6 1 (1.45%) BYOD
6 1 (1.45%) Cloud Native
6 1 (1.45%) Cyber Defence
6 1 (1.45%) Cyberthreat
6 1 (1.45%) Fintech
6 1 (1.45%) Hybrid Cloud
6 1 (1.45%) Linux Command Line
Operating Systems
1 34 (49.28%) Linux
2 33 (47.83%) Kali Linux
3 24 (34.78%) Windows
4 18 (26.09%) Unix
5 2 (2.90%) Android
5 2 (2.90%) Apple iOS
Processes & Methodologies
1 56 (81.16%) Penetration Testing
2 30 (43.48%) Cybersecurity
3 29 (42.03%) SIEM
4 25 (36.23%) Information Security
5 22 (31.88%) Open Source
5 22 (31.88%) Vulnerability Assessment
6 19 (27.54%) OWASP
6 19 (27.54%) Security Operations
7 18 (26.09%) Security Testing
8 15 (21.74%) Malware Analysis
9 14 (20.29%) Social Engineering
10 11 (15.94%) Ethical Hacking
11 10 (14.49%) Data Loss Prevention
11 10 (14.49%) Internal Audit
11 10 (14.49%) Patch Management
11 10 (14.49%) Vulnerability Management
12 9 (13.04%) Case Management
12 9 (13.04%) Digital Forensics
12 9 (13.04%) Identity Management
12 9 (13.04%) Vulnerability Scanning
Programming Languages
1 34 (49.28%) Python
2 19 (27.54%) PowerShell
3 18 (26.09%) C++
4 16 (23.19%) VB
5 15 (21.74%) Ruby
6 12 (17.39%) C
7 11 (15.94%) SQL
8 9 (13.04%) C#
8 9 (13.04%) Perl
9 8 (11.59%) Bash Shell
10 4 (5.80%) Go
10 4 (5.80%) PHP
11 3 (4.35%) Java
11 3 (4.35%) Shell Script
12 1 (1.45%) JavaScript
Qualifications
1 25 (36.23%) SANS
2 20 (28.99%) CISSP
3 17 (24.64%) CREST Certified
3 17 (24.64%) OSCP
4 15 (21.74%) GPEN
5 14 (20.29%) CEH
6 12 (17.39%) GIAC
7 11 (15.94%) CISA
7 11 (15.94%) Degree
8 10 (14.49%) CISM
9 9 (13.04%) GWAPT
9 9 (13.04%) OSCE
10 8 (11.59%) GXPN
11 6 (8.70%) GCIH
12 5 (7.25%) SSCP
13 4 (5.80%) CompTIA Security+
13 4 (5.80%) CSSLP
13 4 (5.80%) Security Cleared
14 3 (4.35%) GCIA
15 2 (2.90%) GSNA
Quality Assurance & Compliance
1 9 (13.04%) PCI DSS
2 7 (10.14%) ISO/IEC 27001
3 5 (7.25%) GDPR
4 4 (5.80%) Cyber Essentials
5 3 (4.35%) HIPAA
5 3 (4.35%) Sarbanes-Oxley
6 1 (1.45%) QA
System Software
1 10 (14.49%) Snort
2 2 (2.90%) Active Directory
2 2 (2.90%) Squid
3 1 (1.45%) Hyper-V
3 1 (1.45%) KVM
3 1 (1.45%) VMware Infrastructure
Systems Management
1 52 (75.36%) Nessus
2 37 (53.62%) Nmap
3 20 (28.99%) Nexpose
4 12 (17.39%) QRadar
5 9 (13.04%) EnCase
5 9 (13.04%) FTK
5 9 (13.04%) Suricata
6 1 (1.45%) AirWatch
6 1 (1.45%) Core Impact
6 1 (1.45%) HP Fortify
6 1 (1.45%) Nagios
6 1 (1.45%) Network Intrusion Detection System
6 1 (1.45%) OpenVAS
6 1 (1.45%) SCCM
6 1 (1.45%) SCOM
6 1 (1.45%) WebInspect
Vendors
1 20 (28.99%) Qualys
2 15 (21.74%) Splunk
3 12 (17.39%) ArcSight
3 12 (17.39%) LogRhythm
4 11 (15.94%) Cisco
4 11 (15.94%) Palo Alto
5 10 (14.49%) CheckPoint
5 10 (14.49%) Forcepoint
5 10 (14.49%) Google
5 10 (14.49%) IBM
6 9 (13.04%) Bomgar
6 9 (13.04%) CyberArk
6 9 (13.04%) FireEye
6 9 (13.04%) McAfee
6 9 (13.04%) NetWitness
6 9 (13.04%) ServiceNow
6 9 (13.04%) Symantec
6 9 (13.04%) Thycotic
6 9 (13.04%) Trend Micro
7 7 (10.14%) Microsoft