Period
to 23 November 2017

The following table provides summary statistics for permanent job vacancies with a requirement for NIST 800 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited NIST 800 over the 6 months to 23 November 2017 with a comparison to the same period in the previous 2 years.

NIST Special Publication (SP) 800 Series
UK
6 months to
23 Nov 2017
Same period 2016 Same period 2015
Rank 1103 1161 1266
Rank change year-on-year +58 +105 +43
Permanent jobs citing NIST 800 86 76 30
As % of all permanent IT jobs advertised in the UK 0.048% 0.040% 0.014%
As % of the Quality Assurance & Compliance category 0.38% 0.31% 0.11%
Number of salaries quoted 56 62 22
UK median annual salary £70,000 £62,500 £53,750
Median salary % change year-on-year +12.00% +16.28% -2.27%
10th Percentile £51,250 £57,500 £46,500
90th Percentile £92,500 £80,000 £64,875
UK excluding London median annual salary £75,000 £60,000 £52,500
% change year-on-year +25.00% +14.29% -0.94%

NIST 800 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 22784 24589 27973
As % of all permanent IT jobs advertised in the UK 12.65% 12.95% 12.86%
Number of salaries quoted 17099 19449 22114
UK median annual salary £50,000 £49,000 £46,367
Median salary % change year-on-year +2.04% +5.68% +3.04%
10th Percentile £27,500 £27,500 £26,250
90th Percentile £77,500 £77,500 £75,000
UK excluding London median annual salary £42,500 £42,500 £41,674
% change year-on-year - +1.98% +4.19%

NIST 800
Job Vacancy Trend

Job postings citing NIST 800 as a percentage of all IT jobs advertised.

Job vacancy trend for NIST 800 in the UK

NIST 800
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing NIST 800.

Salary trend for NIST 800 in the UK

NIST 800
Salary Histogram

The salary distribution of IT jobs citing NIST 800 over the 6 months to 23 November 2017.

Salary histogram for NIST 800 in the UK

NIST 800
Top 13 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing NIST 800 within the UK over the 6 months to 23 November 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +46 83 £70,000 +9.80% 1
London +36 45 £65,000 -13.33% 1
UK excluding London +30 33 £75,000 +25.00%
South East +41 14 £70,000 +16.67%
Midlands +35 14 £77,500 +29.17%
West Midlands +25 13 £77,500 +29.17%
North of England +4 3 - -
Yorkshire +22 1 - -
South West -11 1 £57,500 -4.17%
Channel Islands - 1 £67,500 -
East Midlands - 1 - -
North East - 1 - -
North West - 1 - -

For the 6 months to 23 November 2017, IT jobs citing NIST 800 also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for NIST 800.

1 80 (93.02%) ISO/IEC 27001
2 74 (86.05%) Cybersecurity
3 44 (51.16%) SIEM
4 43 (50.00%) Windows
5 41 (47.67%) Information Security
6 39 (45.35%) FireEye
7 33 (38.37%) CISSP
8 30 (34.88%) Cyberthreat
9 28 (32.56%) PCI DSS
10 27 (31.40%) Finance
11 26 (30.23%) Firewall
12 25 (29.07%) Risk Management
12 25 (29.07%) Cyber Essentials
13 24 (27.91%) Cyber Essentials PLUS
14 22 (25.58%) GIAC
15 21 (24.42%) CISM
15 21 (24.42%) Information Assurance
16 20 (23.26%) Security Architecture
16 20 (23.26%) Network Monitoring
16 20 (23.26%) Cyber Kill Chain
16 20 (23.26%) Linux
17 18 (20.93%) GCIA
17 18 (20.93%) GCIH
17 18 (20.93%) SANS
17 18 (20.93%) Vulnerability Scanning
18 17 (19.77%) Network Security
19 16 (18.60%) Malware Analysis
20 15 (17.44%) McAfee ePO
20 15 (17.44%) Host Intrusion Detection System
20 15 (17.44%) Cyber Threat Intelligence

NIST 800
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Applications
1 2 (2.33%) Microsoft Excel
1 2 (2.33%) Microsoft Office
1 2 (2.33%) Microsoft PowerPoint
1 2 (2.33%) Microsoft Project
1 2 (2.33%) MS Visio
Cloud Services
1 2 (2.33%) Amazon AWS
2 1 (1.16%) IaaS
2 1 (1.16%) Microsoft Azure
2 1 (1.16%) Office 365
2 1 (1.16%) PaaS
2 1 (1.16%) SaaS
Communications & Networking
1 26 (30.23%) Firewall
2 17 (19.77%) Network Security
3 8 (9.30%) WAN
4 7 (8.14%) LAN
5 5 (5.81%) NAS
5 5 (5.81%) SAN
6 4 (4.65%) Intranet
7 3 (3.49%) Ethernet
7 3 (3.49%) Intrusion Detection
8 1 (1.16%) DHCP
8 1 (1.16%) DNS
8 1 (1.16%) Kerberos
8 1 (1.16%) LDAP
8 1 (1.16%) MPLS
8 1 (1.16%) SNMP
8 1 (1.16%) SSH
8 1 (1.16%) SSL
8 1 (1.16%) TCP/IP
8 1 (1.16%) tcpdump
8 1 (1.16%) Wireshark
Database & Business Intelligence
1 5 (5.81%) Hadoop
1 5 (5.81%) Looker
Development Applications
1 5 (5.81%) Fiddler
2 1 (1.16%) Burp Suite
2 1 (1.16%) GDB
2 1 (1.16%) Metasploit
2 1 (1.16%) sqlmap
2 1 (1.16%) Team Foundation Server
2 1 (1.16%) Visual Studio
General
1 27 (31.40%) Finance
2 5 (5.81%) Retail
3 4 (4.65%) Aerospace
4 3 (3.49%) Legal
4 3 (3.49%) Pharmaceutical
4 3 (3.49%) Telecoms
5 2 (2.33%) Marketing
6 1 (1.16%) Advertising
6 1 (1.16%) Electronics
6 1 (1.16%) Manufacturing
Job Titles
1 24 (27.91%) Analyst
1 24 (27.91%) Security Analyst
2 17 (19.77%) Team Leader
3 15 (17.44%) Architect
3 15 (17.44%) Security Architect
4 14 (16.28%) Consultant
5 13 (15.12%) Security Consultant
6 12 (13.95%) Check Point Analyst
6 12 (13.95%) Cisco Analyst
6 12 (13.95%) Cisco Security Analyst
6 12 (13.95%) Information Analyst
6 12 (13.95%) Information Security Analyst
6 12 (13.95%) Security Manager
7 8 (9.30%) Cybersecurity Manager
7 8 (9.30%) Senior Manager
8 7 (8.14%) Cybersecurity Analyst
8 7 (8.14%) Cybersecurity Consultant
8 7 (8.14%) Information Security Architect
9 5 (5.81%) Head of Architecture
9 5 (5.81%) Security Solutions Architect
Libraries, Frameworks & Software Standards
1 5 (5.81%) SailPoint
2 1 (1.16%) ModSecurity
2 1 (1.16%) OAuth
2 1 (1.16%) OpenID
2 1 (1.16%) Web Services
Miscellaneous
1 30 (34.88%) Cyberthreat
2 20 (23.26%) Cyber Kill Chain
3 14 (16.28%) Management Information System
4 12 (13.95%) Reinsurance
5 5 (5.81%) Computer Science
6 3 (3.49%) Analytical Skills
6 3 (3.49%) CESG
6 3 (3.49%) Cybercrime
7 2 (2.33%) Life Science
8 1 (1.16%) Clustering
Operating Systems
1 43 (50.00%) Windows
2 20 (23.26%) Linux
3 4 (4.65%) Kali Linux
4 2 (2.33%) Unix
5 1 (1.16%) Windows Server
5 1 (1.16%) Windows Server 2012
Processes & Methodologies
1 74 (86.05%) Cybersecurity
2 44 (51.16%) SIEM
3 41 (47.67%) Information Security
4 25 (29.07%) Risk Management
5 21 (24.42%) Information Assurance
6 20 (23.26%) Network Monitoring
6 20 (23.26%) Security Architecture
7 18 (20.93%) Vulnerability Scanning
8 16 (18.60%) Malware Analysis
9 15 (17.44%) Cyber Threat Intelligence
9 15 (17.44%) Threat Intelligence
10 14 (16.28%) Business Development
10 14 (16.28%) Computer Security
10 14 (16.28%) Use Case
11 13 (15.12%) TOGAF
12 11 (12.79%) Penetration Testing
13 8 (9.30%) SABSA
14 7 (8.14%) Incident Management
14 7 (8.14%) OWASP
14 7 (8.14%) Vulnerability Assessment
Programming Languages
1 5 (5.81%) Perl
1 5 (5.81%) Python
2 2 (2.33%) C
2 2 (2.33%) PowerShell
2 2 (2.33%) SQL
Qualifications
1 33 (38.37%) CISSP
2 22 (25.58%) GIAC
3 21 (24.42%) CISM
4 18 (20.93%) GCIA
4 18 (20.93%) GCIH
4 18 (20.93%) SANS
5 14 (16.28%) Security Cleared
6 9 (10.47%) CEH
6 9 (10.47%) CREST Certified
6 9 (10.47%) PCI QSA
7 8 (9.30%) SC Cleared
8 5 (5.81%) DV Cleared
8 5 (5.81%) ISSEP
9 4 (4.65%) CESG Certified Professional
9 4 (4.65%) Degree
10 3 (3.49%) CompTIA Security+
10 3 (3.49%) GCFE
10 3 (3.49%) Security+ Certification
11 1 (1.16%) CCENT
11 1 (1.16%) GSEC
Quality Assurance & Compliance
1 80 (93.02%) ISO/IEC 27001
2 28 (32.56%) PCI DSS
3 25 (29.07%) Cyber Essentials
4 24 (27.91%) Cyber Essentials PLUS
5 9 (10.47%) GDPR
6 5 (5.81%) COBIT
7 3 (3.49%) ISO/IEC 27005
7 3 (3.49%) PA-DSS
8 2 (2.33%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 2 (2.33%) QA
9 1 (1.16%) HIPAA
System Software
1 15 (17.44%) Virtual Machines
2 5 (5.81%) VMware ESXi
3 2 (2.33%) Active Directory
4 1 (1.16%) Docker
4 1 (1.16%) Hyper-V
Systems Management
1 15 (17.44%) Host Intrusion Detection System
1 15 (17.44%) McAfee ePO
2 6 (6.98%) Nessus
3 5 (5.81%) HP Fortify
4 4 (4.65%) Computer Emergency Response Teams
5 2 (2.33%) QRadar
6 1 (1.16%) CSIRT
6 1 (1.16%) Kubernetes
6 1 (1.16%) Nmap
6 1 (1.16%) Opscode Chef
6 1 (1.16%) SCCM
6 1 (1.16%) SCOM
Vendors
1 39 (45.35%) FireEye
2 15 (17.44%) Blue Coat
2 15 (17.44%) CheckPoint
2 15 (17.44%) Cisco
2 15 (17.44%) Dell
2 15 (17.44%) McAfee
3 5 (5.81%) CyberArk
3 5 (5.81%) HP
3 5 (5.81%) NetApp
3 5 (5.81%) NetIQ
3 5 (5.81%) Veracode
4 3 (3.49%) Microsoft
5 1 (1.16%) BeyondTrust
5 1 (1.16%) Oracle
5 1 (1.16%) Palo Alto
5 1 (1.16%) Salesforce.com
5 1 (1.16%) SAP
5 1 (1.16%) Splunk
5 1 (1.16%) VMware