Period
to 6 April 2020

The following table provides summary statistics for permanent job vacancies with a requirement for NIST 800 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited NIST 800 over the 6 months to 6 April 2020 with a comparison to the same period in the previous 2 years.

NIST Special Publication (SP) 800 Series
UK
6 months to
6 Apr 2020
Same period 2019 Same period 2018
Rank 900 1083 1153
Rank change year-on-year +183 +70 -16
Permanent jobs citing NIST 800 79 43 49
As % of all permanent jobs advertised in the UK 0.068% 0.029% 0.028%
As % of the Quality Assurance & Compliance category 0.55% 0.21% 0.22%
Number of salaries quoted 69 34 34
Median annual salary £74,000 £62,500 £75,000
Median salary % change year-on-year +18.40% -16.67% +25.00%
10th Percentile £52,500 £41,250 £53,750
90th Percentile £90,000 £95,000 £114,000
UK excluding London median annual salary £77,500 £75,000 £78,750
% change year-on-year +3.33% -4.76% +31.25%

NIST 800 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 14,362 20,897 22,660
As % of all permanent IT jobs advertised in the UK 12.28% 14.00% 12.77%
Number of salaries quoted 11,019 15,179 17,621
Median annual salary £52,500 £50,000 £50,000
Median salary % change year-on-year +5.00% - +5.26%
10th Percentile £28,750 £27,625 £27,500
90th Percentile £85,000 £81,250 £80,000
UK excluding London median annual salary £45,000 £45,000 £44,000
% change year-on-year - +2.27% +7.32%

NIST 800
Job Vacancy Trend

Job postings citing NIST 800 as a proportion of all IT jobs advertised.

Job vacancy trend for NIST 800 in the UK

NIST 800
Salary Trend

3-month moving average salary quoted in jobs citing NIST 800.

Salary trend for NIST 800 in the UK

NIST 800
Salary Histogram

Salary distribution for jobs citing NIST 800 over the 6 months to 6 April 2020.

Salary histogram for NIST 800 in the UK

NIST 800
Top 11 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing NIST 800 within the UK over the 6 months to 6 April 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +173 72 £70,000 +12.00% 8
UK excluding London +148 52 £77,500 +3.33% 6
South East +84 28 £77,500 -3.13% 1
London +93 21 £65,000 +13.04% 2
Midlands +66 17 £65,000 +71.05%
West Midlands +63 17 £65,000 +71.05%
Work from Home - 8 £90,000 -
South West +46 6 £90,000 +20.00% 2
North West - 2 - -
North of England - 2 - -
Scotland - 1 - -

For the 6 months to 6 April 2020, IT jobs citing NIST 800 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for NIST 800.

1 79 (100.00%) NIST
2 62 (78.48%) ISO/IEC 27001
3 49 (62.03%) Cybersecurity
4 48 (60.76%) Information Security
5 39 (49.37%) Risk Management
6 34 (43.04%) Management Information System
7 28 (35.44%) CISM
8 26 (32.91%) GDPR
9 25 (31.65%) CISSP
10 22 (27.85%) Security Architecture
11 20 (25.32%) Azure
12 19 (24.05%) COBIT
13 17 (21.52%) SaaS
14 16 (20.25%) IaaS
14 16 (20.25%) PaaS
15 15 (18.99%) COSO
15 15 (18.99%) AWS
15 15 (18.99%) Cloud Native
15 15 (18.99%) Cyber Essentials
16 14 (17.72%) Firewall
16 14 (17.72%) Information Assurance
17 13 (16.46%) Security Cleared
17 13 (16.46%) GAP Analysis
17 13 (16.46%) NCSC
17 13 (16.46%) ISAE 3402
17 13 (16.46%) DevOps
18 12 (15.19%) Security Operations
18 12 (15.19%) Security Management
18 12 (15.19%) Agile Software Development
18 12 (15.19%) Penetration Testing

NIST 800
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 4 (5.06%) SharePoint
2 1 (1.27%) Elasticsearch
Applications
1 4 (5.06%) Microsoft Excel
Cloud Services
1 20 (25.32%) Azure
2 17 (21.52%) SaaS
3 16 (20.25%) IaaS
3 16 (20.25%) PaaS
4 15 (18.99%) AWS
5 8 (10.13%) AWS Lambda
5 8 (10.13%) Azure Functions
5 8 (10.13%) Power Platform
5 8 (10.13%) PowerApps
5 8 (10.13%) Serverless
6 5 (6.33%) Office 365
7 4 (5.06%) GCP
Communications & Networking
1 14 (17.72%) Firewall
2 10 (12.66%) Network Security
3 9 (11.39%) DNS
3 9 (11.39%) Internet
4 8 (10.13%) WAN
5 6 (7.59%) LAN
5 6 (7.59%) VPN
6 2 (2.53%) Intrusion Detection
7 1 (1.27%) HTTP
7 1 (1.27%) HTTPS
7 1 (1.27%) IPsec
7 1 (1.27%) TCP/IP
Database & Business Intelligence
1 3 (3.80%) Big Data
General
1 11 (13.92%) Finance
2 9 (11.39%) Law
3 6 (7.59%) Legal
4 4 (5.06%) Retail
5 2 (2.53%) Public Sector
6 1 (1.27%) Games
6 1 (1.27%) Publishing
Job Titles
1 25 (31.65%) Architect
2 22 (27.85%) Security Architect
3 17 (21.52%) Cloud Architect
4 15 (18.99%) Consultant
5 14 (17.72%) Analyst
6 13 (16.46%) Risk Consultant
7 12 (15.19%) Security Analyst
8 8 (10.13%) Security Consultant
9 7 (8.86%) Cloud Specialist
9 7 (8.86%) Information Analyst
9 7 (8.86%) Information Security Analyst
9 7 (8.86%) Security Engineer
9 7 (8.86%) Security Specialist
10 6 (7.59%) Azure Architect
10 6 (7.59%) IT Architect
10 6 (7.59%) IT Security Architect
11 5 (6.33%) Cloud Engineer
11 5 (6.33%) Information Assurance Consultant
12 4 (5.06%) AWS Architect
12 4 (5.06%) Chief Information Security Officer
Libraries, Frameworks & Software Standards
1 7 (8.86%) Middleware
2 4 (5.06%) ModSecurity
2 4 (5.06%) OAuth
2 4 (5.06%) OpenID
3 1 (1.27%) D3.js
3 1 (1.27%) Web Services
Miscellaneous
1 34 (43.04%) Management Information System
2 15 (18.99%) Cloud Native
3 7 (8.86%) Cyber Kill Chain
3 7 (8.86%) Hybrid Cloud
4 5 (6.33%) Cyber Defence
4 5 (6.33%) Cyberattack
4 5 (6.33%) Public Cloud
4 5 (6.33%) Self-Motivation
5 4 (5.06%) Private Cloud
6 3 (3.80%) PKI
7 1 (1.27%) Cyberthreat
7 1 (1.27%) Greenfield Project
7 1 (1.27%) Security Operations Centre
Operating Systems
1 5 (6.33%) Linux
2 1 (1.27%) Unix
2 1 (1.27%) Windows
Processes & Methodologies
1 49 (62.03%) Cybersecurity
2 48 (60.76%) Information Security
3 39 (49.37%) Risk Management
4 22 (27.85%) Security Architecture
5 14 (17.72%) Information Assurance
6 13 (16.46%) DevOps
6 13 (16.46%) GAP Analysis
7 12 (15.19%) Agile Software Development
7 12 (15.19%) Penetration Testing
7 12 (15.19%) Security Management
7 12 (15.19%) Security Operations
8 11 (13.92%) Information Security Management
8 11 (13.92%) Open Source
8 11 (13.92%) OWASP
8 11 (13.92%) TOGAF
9 10 (12.66%) Coaching
9 10 (12.66%) Cyber Threat Intelligence
9 10 (12.66%) SOA
9 10 (12.66%) Threat Intelligence
10 9 (11.39%) Task Automation
Programming Languages
1 9 (11.39%) PowerShell
1 9 (11.39%) Python
Qualifications
1 28 (35.44%) CISM
2 25 (31.65%) CISSP
3 13 (16.46%) Security Cleared
4 10 (12.66%) CRISC
5 9 (11.39%) CEH
5 9 (11.39%) CISA
6 7 (8.86%) (ISC)2 CCSP
6 7 (8.86%) CCSP
6 7 (8.86%) CESG Certified Professional
6 7 (8.86%) Cisco Certification
6 7 (8.86%) CompTIA Security+
6 7 (8.86%) GIAC
6 7 (8.86%) SC Cleared
6 7 (8.86%) SSCP
7 6 (7.59%) CREST Certified
7 6 (7.59%) Degree
8 4 (5.06%) CSSLP
8 4 (5.06%) DV Cleared
8 4 (5.06%) SANS
9 1 (1.27%) ISO 27001 Lead Implementer
Quality Assurance & Compliance
1 79 (100.00%) NIST
2 62 (78.48%) ISO/IEC 27001
3 26 (32.91%) GDPR
4 19 (24.05%) COBIT
5 15 (18.99%) COSO
5 15 (18.99%) Cyber Essentials
6 13 (16.46%) ISAE 3402
6 13 (16.46%) NCSC
7 9 (11.39%) JSP 440
7 9 (11.39%) RMADS
8 7 (8.86%) Cyber Essentials PLUS
9 6 (7.59%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
9 6 (7.59%) PCI DSS
10 4 (5.06%) HIPAA
10 4 (5.06%) HMG Security Policy Framework
10 4 (5.06%) Sarbanes-Oxley
11 3 (3.80%) SSAE 16
12 2 (2.53%) QA
System Software
1 4 (5.06%) Active Directory
2 3 (3.80%) Docker
Systems Management
1 11 (13.92%) Terraform
2 3 (3.80%) RSA Archer
3 1 (1.27%) Computer Emergency Response Teams
3 1 (1.27%) Computer Incident Response Team
3 1 (1.27%) Host Intrusion Detection System
3 1 (1.27%) Network Intrusion Detection System
Vendors
1 8 (10.13%) Microsoft
1 8 (10.13%) Salesforce.com
2 7 (8.86%) Google
3 2 (2.53%) Cisco
3 2 (2.53%) F5
3 2 (2.53%) Palo Alto
4 1 (1.27%) Tableau