Period
to 19 September 2017

The following table provides summary statistics for permanent job vacancies with a requirement for NIST 800 skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited NIST 800 over the 6 months to 19 September 2017 with a comparison to the same period in the previous 2 years.

NIST Special Publication (SP) 800 Series
UK
6 months to
19 Sep 2017
Same period 2016 Same period 2015
Rank 1108 1175 1282
Rank change year-on-year +67 +107 +44
Permanent jobs citing NIST 800 73 74 29
As % of all permanent IT jobs advertised in the UK 0.041% 0.038% 0.013%
As % of the Quality Assurance & Compliance category 0.34% 0.29% 0.10%
Number of salaries quoted 63 53 21
UK median annual salary £62,500 £62,500 £52,500
Median salary % change year-on-year - +19.05% +16.67%
10th Percentile £50,000 £57,500 £45,000
90th Percentile £75,000 £80,750 £90,000
UK excluding London median annual salary £60,000 £60,000 £52,500
% change year-on-year - +14.29% -

NIST 800 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 21790 25429 27995
As % of all permanent IT jobs advertised in the UK 12.30% 13.11% 12.76%
Number of salaries quoted 16201 20174 22187
UK median annual salary £50,000 £50,000 £45,000
Median salary % change year-on-year - +11.11% -
10th Percentile £27,261 £27,000 £26,250
90th Percentile £77,500 £77,500 £75,000
UK excluding London median annual salary £42,500 £42,500 £40,000
% change year-on-year - +6.25% -

NIST 800
Job Vacancy Trend

Job postings citing NIST 800 as a percentage of all IT jobs advertised.

Job vacancy trend for NIST 800 in the UK

NIST 800
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing NIST 800.

Salary trend for NIST 800 in the UK

NIST 800
Salary Histogram

The salary distribution of IT jobs citing NIST 800 over the 6 months to 19 September 2017.

Salary histogram for NIST 800 in the UK

NIST 800
Top 9 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing NIST 800 within the UK over the 6 months to 19 September 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +59 72 £61,250 -5.77% 3
London +56 50 £70,000 -5.08% 2
UK excluding London +26 19 £60,000 -
Midlands +31 11 £60,000 -12.73%
West Midlands +18 11 £60,000 -12.73%
South East +72 8 £60,000 -
South West -15 3 £60,000 -
East of England +13 2 £60,000 -
Channel Islands - 1 £67,500 -

For the 6 months to 19 September 2017, IT jobs citing NIST 800 also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for NIST 800.

1 70 (95.89%) ISO/IEC 27001
2 58 (79.45%) Cybersecurity
3 39 (53.42%) Windows
4 38 (52.05%) SIEM
5 37 (50.68%) Information Security
6 32 (43.84%) FireEye
7 29 (39.73%) CISSP
8 26 (35.62%) Risk Management
9 24 (32.88%) Cyberthreat
10 22 (30.14%) Cyber Essentials
10 22 (30.14%) Firewall
11 21 (28.77%) Management Information System
11 21 (28.77%) Finance
11 21 (28.77%) Cyber Essentials PLUS
12 20 (27.40%) Linux
13 19 (26.03%) Cyber Kill Chain
13 19 (26.03%) Network Monitoring
14 18 (24.66%) Information Assurance
15 16 (21.92%) PCI DSS
16 15 (20.55%) Network Security
17 14 (19.18%) GIAC
17 14 (19.18%) Vulnerability Scanning
17 14 (19.18%) Virtual Machines
17 14 (19.18%) SANS
17 14 (19.18%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
18 13 (17.81%) GCIA
18 13 (17.81%) GCIH
19 12 (16.44%) Malware Analysis
19 12 (16.44%) Security Architecture
20 11 (15.07%) McAfee ePO

NIST 800
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Applications
1 2 (2.74%) Microsoft Excel
1 2 (2.74%) Microsoft Office
1 2 (2.74%) Microsoft PowerPoint
1 2 (2.74%) Microsoft Project
1 2 (2.74%) MS Visio
Cloud Services
1 2 (2.74%) Amazon AWS
2 1 (1.37%) Microsoft Azure
2 1 (1.37%) Office 365
2 1 (1.37%) SaaS
Communications & Networking
1 22 (30.14%) Firewall
2 15 (20.55%) Network Security
3 5 (6.85%) NAS
3 5 (6.85%) SAN
4 4 (5.48%) Intranet
5 3 (4.11%) Ethernet
5 3 (4.11%) LAN
5 3 (4.11%) WAN
6 2 (2.74%) HTTP
6 2 (2.74%) HTTPS
6 2 (2.74%) IPsec
6 2 (2.74%) TCP/IP
Database & Business Intelligence
1 5 (6.85%) Hadoop
1 5 (6.85%) Looker
2 1 (1.37%) SQL Server
Development Applications
1 5 (6.85%) Fiddler
General
1 21 (28.77%) Finance
2 4 (5.48%) Marketing
2 4 (5.48%) Telecoms
3 3 (4.11%) Aerospace
4 1 (1.37%) Advertising
4 1 (1.37%) Banking
4 1 (1.37%) Electronics
4 1 (1.37%) Manufacturing
Job Titles
1 22 (30.14%) Analyst
1 22 (30.14%) Security Analyst
2 16 (21.92%) Team Leader
3 11 (15.07%) Security Manager
4 9 (12.33%) Consultant
4 9 (12.33%) Information Analyst
4 9 (12.33%) Information Security Analyst
5 8 (10.96%) Architect
5 8 (10.96%) Check Point Analyst
5 8 (10.96%) Cisco Analyst
5 8 (10.96%) Cisco Security Analyst
5 8 (10.96%) Security Architect
6 6 (8.22%) Cybersecurity Manager
6 6 (8.22%) Security Consultant
7 5 (6.85%) Cybersecurity Analyst
7 5 (6.85%) Head of Architecture
7 5 (6.85%) Head of Security
8 4 (5.48%) Audit Consultant
8 4 (5.48%) Compliance Consultant
8 4 (5.48%) Risk Consultant
Libraries, Frameworks & Software Standards
1 3 (4.11%) Web Services
Miscellaneous
1 24 (32.88%) Cyberthreat
2 21 (28.77%) Management Information System
3 19 (26.03%) Cyber Kill Chain
4 8 (10.96%) Computer Science
4 8 (10.96%) Reinsurance
5 6 (8.22%) Analytical Skills
6 3 (4.11%) CESG
7 2 (2.74%) Cybercrime
8 1 (1.37%) BYOD
8 1 (1.37%) Data Centre
8 1 (1.37%) Security Operations Centre
8 1 (1.37%) Virtual Team
Operating Systems
1 39 (53.42%) Windows
2 20 (27.40%) Linux
3 3 (4.11%) Kali Linux
4 2 (2.74%) Unix
5 1 (1.37%) Windows Server
5 1 (1.37%) Windows Server 2012
Processes & Methodologies
1 58 (79.45%) Cybersecurity
2 38 (52.05%) SIEM
3 37 (50.68%) Information Security
4 26 (35.62%) Risk Management
5 19 (26.03%) Network Monitoring
6 18 (24.66%) Information Assurance
7 14 (19.18%) Vulnerability Scanning
8 12 (16.44%) Malware Analysis
8 12 (16.44%) Security Architecture
9 11 (15.07%) Cyber Threat Intelligence
9 11 (15.07%) Risk Assessment
9 11 (15.07%) Threat Intelligence
9 11 (15.07%) Use Case
10 10 (13.70%) Computer Security
10 10 (13.70%) Penetration Testing
10 10 (13.70%) Stakeholder Management
10 10 (13.70%) Vulnerability Assessment
11 9 (12.33%) Business Development
12 8 (10.96%) Security Operations
12 8 (10.96%) TOGAF
Programming Languages
1 5 (6.85%) Perl
1 5 (6.85%) Python
2 2 (2.74%) PowerShell
2 2 (2.74%) SQL
Qualifications
1 29 (39.73%) CISSP
2 14 (19.18%) GIAC
2 14 (19.18%) SANS
3 13 (17.81%) GCIA
3 13 (17.81%) GCIH
4 11 (15.07%) Degree
5 10 (13.70%) CISM
6 6 (8.22%) CESG Certified Professional
6 6 (8.22%) CRISC
6 6 (8.22%) PCI QSA
6 6 (8.22%) Security Cleared
7 5 (6.85%) CGEIT
7 5 (6.85%) CISA
7 5 (6.85%) CREST Certified
7 5 (6.85%) ISSEP
8 4 (5.48%) CEH
9 3 (4.11%) CISMP
9 3 (4.11%) DV Cleared
9 3 (4.11%) ISO 27001 Lead Auditor
10 2 (2.74%) CompTIA Security+
Quality Assurance & Compliance
1 70 (95.89%) ISO/IEC 27001
2 22 (30.14%) Cyber Essentials
3 21 (28.77%) Cyber Essentials PLUS
4 16 (21.92%) PCI DSS
5 14 (19.18%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 7 (9.59%) COBIT
7 3 (4.11%) GDPR
7 3 (4.11%) ISO/IEC 27005
7 3 (4.11%) PA-DSS
8 1 (1.37%) HIPAA
System Software
1 14 (19.18%) Virtual Machines
2 5 (6.85%) VMware ESXi
3 3 (4.11%) Active Directory
4 1 (1.37%) Hyper-V
4 1 (1.37%) VMware Infrastructure
Systems Management
1 11 (15.07%) Host Intrusion Detection System
1 11 (15.07%) McAfee ePO
2 9 (12.33%) Nessus
3 5 (6.85%) HP Fortify
3 5 (6.85%) QRadar
4 4 (5.48%) Computer Emergency Response Teams
5 1 (1.37%) CSIRT
5 1 (1.37%) SCCM
5 1 (1.37%) SCOM
Vendors
1 32 (43.84%) FireEye
2 11 (15.07%) Blue Coat
2 11 (15.07%) CheckPoint
2 11 (15.07%) Cisco
2 11 (15.07%) Dell
2 11 (15.07%) McAfee
3 5 (6.85%) HP
3 5 (6.85%) NetApp
3 5 (6.85%) Veracode
4 4 (5.48%) BeyondTrust
4 4 (5.48%) Oracle
5 3 (4.11%) Microsoft
6 2 (2.74%) VMware
7 1 (1.37%) F5
7 1 (1.37%) Palo Alto
7 1 (1.37%) SAP
7 1 (1.37%) Splunk