MITRE ATT&CK
UK

The following table provides summary statistics for permanent job vacancies with a requirement for MITRE ATT&CK skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited MITRE ATT&CK over the 6 months to 16 April 2024 with a comparison to the same period in the previous 2 years.

6 months to
16 Apr 2024
Same period 2023 Same period 2022
Rank 762 725 930
Rank change year-on-year -37 +205 -121
Permanent jobs citing MITRE ATT&CK 129 287 270
As % of all permanent jobs advertised in the UK 0.13% 0.27% 0.18%
As % of the Processes & Methodologies category 0.15% 0.28% 0.19%
Number of salaries quoted 102 163 213
10th Percentile - £42,500 £50,250
25th Percentile £47,000 £55,000 £55,000
Median annual salary (50th Percentile) £65,000 £65,000 £60,000
Median % change year-on-year - +8.33% -11.11%
75th Percentile £71,188 £83,750 £81,250
90th Percentile £91,166 £98,000 £100,000
UK excluding London median annual salary £47,000 £60,000 £60,000
% change year-on-year -21.67% - -4.00%

All Process and Methodology Skills
UK

MITRE ATT&CK is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills 83,920 103,131 145,233
As % of all permanent jobs advertised in the UK 86.36% 95.65% 95.47%
Number of salaries quoted 59,805 60,258 83,543
10th Percentile £29,000 £34,000 £33,250
25th Percentile £40,000 £45,000 £43,750
Median annual salary (50th Percentile) £55,000 £61,456 £60,000
Median % change year-on-year -10.51% +2.43% +9.09%
75th Percentile £72,500 £82,500 £80,000
90th Percentile £92,500 £100,000 £96,250
UK excluding London median annual salary £50,000 £54,500 £52,500
% change year-on-year -8.26% +3.81% +9.38%

MITRE ATT&CK
Job Vacancy Trend

Job postings citing MITRE ATT&CK as a proportion of all IT jobs advertised.

Job vacancy trend for MITRE ATT&CK in the UK

MITRE ATT&CK
Salary Trend

3-month moving average salary quoted in jobs citing MITRE ATT&CK.

Salary trend for MITRE ATT&CK in the UK

MITRE ATT&CK
Salary Histogram

Salary distribution for jobs citing MITRE ATT&CK over the 6 months to 16 April 2024.

Salary histogram for MITRE ATT&CK in the UK

MITRE ATT&CK
Top 13 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing MITRE ATT&CK within the UK over the 6 months to 16 April 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
England -13 103 £65,000 - 33
Work from Home +74 73 £57,500 -14.81% 15
UK excluding London +13 68 £47,000 -21.67% 27
London +19 50 £68,000 - 9
South East +27 21 £58,750 +23.68% 7
North of England +45 19 £47,000 -21.67% 8
North West +10 18 £47,000 -21.67% 4
Scotland -43 18 £47,000 +4.03% 4
South West +1 8 £57,500 +42.48% 4
Yorkshire +87 1 £62,500 +4.17% 4
West Midlands +40 1 - -
East of England +27 1 £60,000 -14.29% 2
Midlands +14 1 - -

MITRE ATT&CK
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 6 (4.65%) Microsoft Exchange
Applications
1 6 (4.65%) Microsoft Office
Cloud Services
1 68 (52.71%) Azure
2 40 (31.01%) Microsoft 365
3 14 (10.85%) IaaS
3 14 (10.85%) SaaS
4 12 (9.30%) AWS
4 12 (9.30%) PaaS
5 10 (7.75%) Entra ID
6 6 (4.65%) Azure Service Fabric
7 5 (3.88%) Azure Sentinel
8 4 (3.10%) GCP
9 3 (2.33%) Amazon S3
10 1 (0.78%) Cloud Computing
Communications & Networking
1 33 (25.58%) Firewall
2 29 (22.48%) DNS
3 26 (20.16%) DKIM
3 26 (20.16%) DMARC
3 26 (20.16%) Internet
4 10 (7.75%) Wireshark
5 9 (6.98%) Intrusion Detection
5 9 (6.98%) Network Security
6 8 (6.20%) TCP/IP
7 3 (2.33%) HTTP
7 3 (2.33%) SMTP
7 3 (2.33%) SSL
8 2 (1.55%) 802.11
8 2 (1.55%) Bluetooth
8 2 (1.55%) ZigBee
9 1 (0.78%) Cisco IPT
9 1 (0.78%) tcpdump
Database & Business Intelligence
1 6 (4.65%) Azure SQL Database
2 3 (2.33%) SQL Server
3 1 (0.78%) Hadoop
Development Applications
1 7 (5.43%) Metasploit
2 4 (3.10%) Burp Suite
General
1 36 (27.91%) Social Skills
2 35 (27.13%) Finance
3 10 (7.75%) Analytical Skills
3 10 (7.75%) Law
4 8 (6.20%) Legal
5 6 (4.65%) Games
5 6 (4.65%) Inclusion and Diversity
5 6 (4.65%) Marketing
6 4 (3.10%) Banking
6 4 (3.10%) Presentation Skills
7 3 (2.33%) Manufacturing
7 3 (2.33%) Public Sector
8 2 (1.55%) Cyber-Physical System
8 2 (1.55%) Organisational Skills
8 2 (1.55%) Retail
9 1 (0.78%) Automotive
9 1 (0.78%) Financial Institution
9 1 (0.78%) Telecoms
Job Titles
1 69 (53.49%) Analyst
2 60 (46.51%) Security Analyst
3 27 (20.93%) Information Analyst
3 27 (20.93%) Information Security Analyst
4 21 (16.28%) Senior
5 20 (15.50%) Cybersecurity Analyst
6 15 (11.63%) Lead
7 12 (9.30%) Architect
8 10 (7.75%) Security Engineer
8 10 (7.75%) Senior Analyst
9 9 (6.98%) IT Analyst
9 9 (6.98%) IT Security Analyst
9 9 (6.98%) Senior Security Analyst
10 8 (6.20%) Security Manager
10 8 (6.20%) SOC Manager
11 6 (4.65%) Email Analyst
11 6 (4.65%) Lead Architect
11 6 (4.65%) Security Architect
11 6 (4.65%) Vulnerability Analyst
11 6 (4.65%) Vulnerability Management Analyst
Libraries, Frameworks & Software Standards
1 11 (8.53%) REST
2 10 (7.75%) OAuth
2 10 (7.75%) SAML
3 6 (4.65%) SOAP
3 6 (4.65%) Web Services
4 3 (2.33%) Kafka
5 2 (1.55%) 802.1X
Miscellaneous
1 46 (35.66%) Cyberattack
2 27 (20.93%) Cyber Threat
3 25 (19.38%) Cyber Kill Chain
4 24 (18.60%) Security Operations Centre
5 20 (15.50%) Management Information System
6 19 (14.73%) Cyber Defence
7 10 (7.75%) Security Posture
8 9 (6.98%) Public Cloud
9 6 (4.65%) Distributed Systems
10 3 (2.33%) Insider Threat
10 3 (2.33%) Operational Technology
10 3 (2.33%) SCADA
10 3 (2.33%) Self-Motivation
11 2 (1.55%) CAN bus
11 2 (1.55%) IoT
12 1 (0.78%) Blog
12 1 (0.78%) Mobile App
12 1 (0.78%) NHS
12 1 (0.78%) PKI
12 1 (0.78%) Tandem
Operating Systems
1 12 (9.30%) Windows
2 10 (7.75%) Linux
3 4 (3.10%) Unix
4 3 (2.33%) CentOS
4 3 (2.33%) Solaris
4 3 (2.33%) Ubuntu
4 3 (2.33%) zOS
5 1 (0.78%) Mac OS X
Processes & Methodologies
1 83 (64.34%) SIEM
2 77 (59.69%) Cybersecurity
3 64 (49.61%) Security Operations
4 62 (48.06%) Information Security
5 61 (47.29%) Incident Response
6 47 (36.43%) SOAR
7 43 (33.33%) Cloud Security
8 42 (32.56%) Cyber Threat Intelligence
8 42 (32.56%) Threat Intelligence
9 40 (31.01%) Vulnerability Management
10 32 (24.81%) Vulnerability Remediation
11 26 (20.16%) Application Security
12 20 (15.50%) OWASP
12 20 (15.50%) Threat Modelling
13 17 (13.18%) Continuous Improvement
13 17 (13.18%) Identity Access Management
13 17 (13.18%) Problem Management
14 16 (12.40%) Cyber Intelligence
15 15 (11.63%) Actionable Insight
15 15 (11.63%) Vulnerability Scanning
Programming Languages
1 6 (4.65%) SQL
2 2 (1.55%) Kusto Query Language
3 1 (0.78%) Bash
3 1 (0.78%) PowerShell
3 1 (0.78%) Python
Qualifications
1 34 (26.36%) CISSP
2 26 (20.16%) CISM
3 23 (17.83%) GIAC
4 18 (13.95%) Degree
5 12 (9.30%) Security Cleared
6 11 (8.53%) SC Cleared
7 8 (6.20%) Computer Science Degree
7 8 (6.20%) SANS
8 7 (5.43%) CEH
9 6 (4.65%) AWS Certified Cloud Practitioner
9 6 (4.65%) DV Cleared
9 6 (4.65%) Master's Degree
10 5 (3.88%) (ISC)2 CCSP
10 5 (3.88%) CCSP
10 5 (3.88%) Cisco Certification
10 5 (3.88%) CRISC
10 5 (3.88%) GCIH
10 5 (3.88%) GPEN
11 4 (3.10%) GCIA
11 4 (3.10%) OSCP
Quality Assurance & Compliance
1 56 (43.41%) NIST
2 30 (23.26%) ISO/IEC 27001
3 19 (14.73%) NCSC
4 16 (12.40%) PCI DSS
5 13 (10.08%) GDPR
6 9 (6.98%) GRC
7 8 (6.20%) Cyber Essentials
8 7 (5.43%) COBIT
9 6 (4.65%) Web Application Security Consortium
10 5 (3.88%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
11 4 (3.10%) Cyber Essentials PLUS
11 4 (3.10%) ISO 9001
12 3 (2.33%) SOC 2
13 2 (1.55%) ISO 31000
14 1 (0.78%) Actionable Recommendations
14 1 (0.78%) AIFMD
14 1 (0.78%) California Consumer Privacy Act
14 1 (0.78%) COSO
14 1 (0.78%) HIPAA
14 1 (0.78%) PSD2
System Software
1 8 (6.20%) Active Directory
2 2 (1.55%) Virtual Machines
3 1 (0.78%) Hyper-V
Systems Management
1 30 (23.26%) CASB
2 8 (6.20%) CSIRT
3 6 (4.65%) Computer Emergency Response Teams
3 6 (4.65%) Kubernetes
4 4 (3.10%) Nessus
4 4 (3.10%) Nmap
4 4 (3.10%) QRadar
Vendors
1 29 (22.48%) Microsoft
2 13 (10.08%) Qualys
3 10 (7.75%) Splunk
4 3 (2.33%) IBM
5 1 (0.78%) CrowdStrike
5 1 (0.78%) Darktrace
5 1 (0.78%) Intel
5 1 (0.78%) Netskope
5 1 (0.78%) Palo Alto
5 1 (0.78%) VMware
5 1 (0.78%) Zscaler