Period
to 26 January 2021

The following table provides summary statistics for permanent job vacancies with a requirement for NIST skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited NIST over the 6 months to 26 January 2021 with a comparison to the same period in the previous 2 years.

National Institute of Standards and Technology (NIST)
UK
6 months to
26 Jan 2021
Same period 2020 Same period 2019
Rank 366 480 553
Rank change year-on-year +114 +73 +252
Permanent jobs citing NIST 503 679 699
As % of all permanent jobs advertised in the UK 0.77% 0.55% 0.46%
As % of the Quality Assurance & Compliance category 6.46% 4.36% 3.34%
Number of salaries quoted 481 541 546
Median annual salary £65,000 £65,000 £62,500
Median salary % change year-on-year - +4.00% -3.85%
10th Percentile £42,000 £42,500 £47,500
90th Percentile £92,500 £93,750 £92,500
UK excluding London median annual salary £57,500 £62,500 £60,000
% change year-on-year -8.00% +4.17% +9.09%

NIST is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 7,788 15,568 20,906
As % of all permanent IT jobs advertised in the UK 11.98% 12.56% 13.86%
Number of salaries quoted 5,767 12,122 15,553
Median annual salary £52,500 £52,000 £50,000
Median salary % change year-on-year +0.96% +4.00% -
10th Percentile £31,149 £28,500 £27,500
90th Percentile £83,750 £83,750 £80,000
UK excluding London median annual salary £47,500 £45,000 £45,000
% change year-on-year +5.56% - +5.26%

NIST
Job Vacancy Trend

Job postings citing NIST as a proportion of all IT jobs advertised.

Job vacancy trend for NIST in the UK

NIST
Salary Trend

3-month moving average salary quoted in jobs citing NIST.

Salary trend for NIST in the UK

NIST
Salary Histogram

Salary distribution for jobs citing NIST over the 6 months to 26 January 2021.

Salary histogram for NIST in the UK

NIST
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing NIST within the UK over the 6 months to 26 January 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +135 468 £65,000 - 70
London +200 266 £67,500 +3.85% 25
UK excluding London +46 217 £57,500 -8.00% 50
South East +79 95 £68,000 +0.74% 17
Work from Home -1 91 £72,500 - 13
Midlands +37 42 £55,000 -8.33% 10
West Midlands +29 31 £55,000 -8.33% 8
South West +70 25 £56,500 -8.13% 1
North of England +29 21 £42,500 -15.00% 7
North West +44 15 £42,500 -9.57% 7
East of England +107 14 £70,000 - 8
Scotland +28 13 £47,575 -31.05% 4
East Midlands +39 11 - - 2
Yorkshire +13 5 £40,000 -27.27%
Wales +41 4 £68,000 +8.80%
Northern Ireland +15 3 £55,000 - 3
North East - 1 £36,500 -

For the 6 months to 26 January 2021, IT jobs citing NIST also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for NIST.

1 307 (61.03%) Information Security
2 301 (59.84%) Cybersecurity
3 296 (58.85%) ISO/IEC 27001
4 216 (42.94%) CISSP
5 148 (29.42%) CISM
6 147 (29.22%) GDPR
7 136 (27.04%) Azure
7 136 (27.04%) SIEM
8 128 (25.45%) Firewall
9 127 (25.25%) Finance
10 106 (21.07%) AWS
11 103 (20.48%) Management Information System
12 98 (19.48%) Risk Management
13 95 (18.89%) ITIL
14 89 (17.69%) OWASP
15 88 (17.50%) Cyber Essentials
16 82 (16.30%) Identity Access Management
17 79 (15.71%) Intrusion Detection
18 78 (15.51%) PCI DSS
19 76 (15.11%) Security Architecture
20 72 (14.31%) COBIT
20 72 (14.31%) Microsoft
21 70 (13.92%) Security Management
21 70 (13.92%) DevOps
22 69 (13.72%) Vulnerability Management
22 69 (13.72%) Security Operations
23 68 (13.52%) Cyberthreat
23 68 (13.52%) Degree
24 65 (12.92%) Active Directory
25 63 (12.52%) CISA

NIST
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 6 (1.19%) Elasticsearch
2 2 (0.40%) Confluence
Applications
1 7 (1.39%) Microsoft Excel
2 6 (1.19%) Microsoft PowerPoint
3 1 (0.20%) Microsoft Office
3 1 (0.20%) MS Visio
Business Applications
1 1 (0.20%) Oracle Applications
1 1 (0.20%) SAP Oil and Gas
Cloud Services
1 136 (27.04%) Azure
2 106 (21.07%) AWS
3 53 (10.54%) SaaS
4 45 (8.95%) IaaS
5 34 (6.76%) Office 365
6 27 (5.37%) GCP
7 21 (4.17%) Azure Active Directory
8 20 (3.98%) PaaS
9 19 (3.78%) Apigee
9 19 (3.78%) iPaaS
10 6 (1.19%) Cloud Computing
11 3 (0.60%) Amazon EC2
11 3 (0.60%) AWS CloudFormation
11 3 (0.60%) Mimecast
12 2 (0.40%) Amazon CloudWatch
12 2 (0.40%) AWS Lambda
12 2 (0.40%) Azure Functions
12 2 (0.40%) Loggly
12 2 (0.40%) Power Platform
12 2 (0.40%) Serverless
Communications & Networking
1 128 (25.45%) Firewall
2 79 (15.71%) Intrusion Detection
3 44 (8.75%) Network Security
4 29 (5.77%) VPN
5 21 (4.17%) DNS
6 16 (3.18%) WAN
7 15 (2.98%) LAN
8 14 (2.78%) Wireless
9 13 (2.58%) DHCP
10 9 (1.79%) Internet
11 7 (1.39%) RTP
11 7 (1.39%) SSL
12 6 (1.19%) BGP
12 6 (1.19%) SAN
12 6 (1.19%) TCP/IP
12 6 (1.19%) Wi-Fi
12 6 (1.19%) Wireshark
13 5 (0.99%) Ethernet
13 5 (0.99%) MPLS
13 5 (0.99%) OSPF
Database & Business Intelligence
1 25 (4.97%) PostgreSQL
2 21 (4.17%) SQL Server
3 15 (2.98%) Big Data
4 13 (2.58%) Blockchain
5 6 (1.19%) Redis
6 2 (0.40%) Data Warehouse
6 2 (0.40%) RDBMS
6 2 (0.40%) Relational Database
7 1 (0.20%) Amazon RDS
7 1 (0.20%) GIS
Development Applications
1 19 (3.78%) IntelliJ
2 6 (1.19%) Travis CI
3 4 (0.80%) JIRA
4 2 (0.40%) Git (software)
4 2 (0.40%) Jenkins
5 1 (0.20%) Atlassian Bamboo
5 1 (0.20%) Burp Suite
5 1 (0.20%) IDA Disassembler
5 1 (0.20%) Visual Studio Team System
General
1 127 (25.25%) Finance
2 42 (8.35%) Banking
3 39 (7.75%) Legal
4 31 (6.16%) Retail
5 12 (2.39%) Public Sector
6 11 (2.19%) Aerospace
7 10 (1.99%) Military
7 10 (1.99%) Telecoms
8 8 (1.59%) Manufacturing
8 8 (1.59%) Marketing
9 7 (1.39%) Electronics
9 7 (1.39%) Law
10 5 (0.99%) Investment Banking
11 2 (0.40%) Retail Banking
12 1 (0.20%) Advertising
12 1 (0.20%) Automotive
Job Titles
1 115 (22.86%) Analyst
2 89 (17.69%) Security Analyst
3 71 (14.12%) Architect
4 62 (12.33%) Consultant
4 62 (12.33%) Security Engineer
5 57 (11.33%) Information Analyst
5 57 (11.33%) Information Security Analyst
6 43 (8.55%) Security Consultant
7 38 (7.55%) Cloud Architect
7 38 (7.55%) Security Manager
8 37 (7.36%) Security Architect
9 36 (7.16%) Risk Analyst
10 33 (6.56%) Security Specialist
11 24 (4.77%) Information Manager
11 24 (4.77%) Security Risk Analyst
12 23 (4.57%) IT Analyst
13 22 (4.37%) Developer
14 21 (4.17%) Information Risk Analyst
14 21 (4.17%) Information Security Manager
15 18 (3.58%) Cybersecurity Engineer
Libraries, Frameworks & Software Standards
1 29 (5.77%) Web Services
2 20 (3.98%) OAuth
3 19 (3.78%) Spring Boot
4 17 (3.38%) .NET
5 12 (2.39%) .NET Framework
6 5 (0.99%) YAML
7 3 (0.60%) AngularJS
7 3 (0.60%) React
7 3 (0.60%) SOAP
8 2 (0.40%) Apache Flex
8 2 (0.40%) ASP.NET
8 2 (0.40%) CSS
8 2 (0.40%) Elastic Stack
8 2 (0.40%) Middleware
8 2 (0.40%) Natural Language Processing
8 2 (0.40%) RESTful
8 2 (0.40%) Twitter Bootstrap
8 2 (0.40%) WCF
8 2 (0.40%) WinForms
8 2 (0.40%) WPF
Miscellaneous
1 103 (20.48%) Management Information System
2 68 (13.52%) Cyberthreat
3 57 (11.33%) Analytical Skills
4 29 (5.77%) Data Protection Act
4 29 (5.77%) Public Cloud
5 26 (5.17%) Cyber Kill Chain
6 23 (4.57%) Security Operations Centre
7 17 (3.38%) Cloud Native
8 10 (1.99%) Mobile App
9 8 (1.59%) Hybrid Cloud
10 7 (1.39%) Data Centre
10 7 (1.39%) Robotics
11 6 (1.19%) Distributed Denial-of-Service
11 6 (1.19%) PKI
11 6 (1.19%) Self-Motivation
11 6 (1.19%) Social Network
12 5 (0.99%) Cyber Defence
12 5 (0.99%) Data Structures
12 5 (0.99%) Social Media
13 4 (0.80%) Cyberattack
Operating Systems
1 46 (9.15%) Windows
2 40 (7.95%) Linux
3 32 (6.36%) Windows Server
4 12 (2.39%) Unix
5 5 (0.99%) Solaris
5 5 (0.99%) Windows XP
6 1 (0.20%) AIX
6 1 (0.20%) Android
6 1 (0.20%) Apple iOS
6 1 (0.20%) Kali Linux
6 1 (0.20%) MVS
Processes & Methodologies
1 307 (61.03%) Information Security
2 301 (59.84%) Cybersecurity
3 136 (27.04%) SIEM
4 98 (19.48%) Risk Management
5 95 (18.89%) ITIL
6 89 (17.69%) OWASP
7 82 (16.30%) Identity Access Management
8 76 (15.11%) Security Architecture
9 70 (13.92%) DevOps
9 70 (13.92%) Security Management
10 69 (13.72%) Security Operations
10 69 (13.72%) Vulnerability Management
11 63 (12.52%) Agile Software Development
12 57 (11.33%) Information Security Management
13 55 (10.93%) Vulnerability Assessment
14 48 (9.54%) Penetration Testing
15 46 (9.15%) Kalman Filter
15 46 (9.15%) Stakeholder Management
15 46 (9.15%) Web Filtering
16 44 (8.75%) Data Protection
Programming Languages
1 53 (10.54%) Java
2 35 (6.96%) Python
3 21 (4.17%) SQL
4 20 (3.98%) JavaScript
5 15 (2.98%) Bash Shell
6 14 (2.78%) PowerShell
7 12 (2.39%) Go
8 11 (2.19%) C
9 9 (1.79%) Perl
10 7 (1.39%) C#
11 5 (0.99%) Ruby
12 2 (0.40%) Kotlin
12 2 (0.40%) Lua
12 2 (0.40%) R
13 1 (0.20%) C++
Qualifications
1 216 (42.94%) CISSP
2 148 (29.42%) CISM
3 68 (13.52%) Degree
4 63 (12.52%) CISA
5 52 (10.34%) Security Cleared
6 28 (5.57%) (ISC)2 CCSP
6 28 (5.57%) Cisco Certification
7 27 (5.37%) CCSP
7 27 (5.37%) CRISC
8 26 (5.17%) CompTIA Security+
9 25 (4.97%) SC Cleared
10 21 (4.17%) ISO 27001 Lead Implementer
11 17 (3.38%) SANS
12 15 (2.98%) CEH
12 15 (2.98%) OSCP
13 14 (2.78%) DV Cleared
13 14 (2.78%) GIAC
14 13 (2.58%) CSSLP
15 12 (2.39%) GCIA
15 12 (2.39%) OSCE
Quality Assurance & Compliance
1 296 (58.85%) ISO/IEC 27001
2 147 (29.22%) GDPR
3 88 (17.50%) Cyber Essentials
4 78 (15.51%) PCI DSS
5 72 (14.31%) COBIT
6 38 (7.55%) NCSC
7 29 (5.77%) Sarbanes-Oxley
8 27 (5.37%) NIST 800
9 17 (3.38%) ISO 31000
10 14 (2.78%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
11 12 (2.39%) COSO
12 10 (1.99%) HIPAA
12 10 (1.99%) HMG Security Policy Framework
12 10 (1.99%) SLA
13 9 (1.79%) Cyber Essentials PLUS
13 9 (1.79%) GAMP
14 6 (1.19%) RMADS
15 5 (0.99%) ISO/IEC 27005
16 2 (0.40%) ISO/IEC 20000
16 2 (0.40%) PA-DSS
System Software
1 65 (12.92%) Active Directory
2 43 (8.55%) Docker
3 7 (1.39%) VMware Infrastructure
4 2 (0.40%) Hyper-V
Systems Management
1 44 (8.75%) Terraform
2 35 (6.96%) Kubernetes
3 25 (4.97%) Microsoft Intune
4 14 (2.78%) Host Intrusion Detection System
5 11 (2.19%) Ansible
6 9 (1.79%) CASB
7 8 (1.59%) Prometheus
8 7 (1.39%) Nessus
9 6 (1.19%) Consul
9 6 (1.19%) linkerd
9 6 (1.19%) Network Intrusion Detection System
10 5 (0.99%) CSIRT
11 3 (0.60%) QRadar
12 2 (0.40%) Computer Incident Response Team
12 2 (0.40%) Graylog
12 2 (0.40%) Puppet
13 1 (0.20%) Computer Emergency Response Teams
13 1 (0.20%) HP ALM
13 1 (0.20%) HP Fortify
13 1 (0.20%) WebInspect
Vendors
1 72 (14.31%) Microsoft
2 35 (6.96%) VMware
3 19 (3.78%) Google
4 15 (2.98%) Oracle
5 13 (2.58%) Cisco
6 10 (1.99%) Darktrace
6 10 (1.99%) OneTrust
7 9 (1.79%) ServiceNow
7 9 (1.79%) Splunk
8 8 (1.59%) LogRhythm
8 8 (1.59%) SAP
9 7 (1.39%) CyberArk
9 7 (1.39%) IBM
10 6 (1.19%) FireEye
10 6 (1.19%) Red Hat
10 6 (1.19%) Remedy
11 5 (0.99%) Barracuda Networks
11 5 (0.99%) IronPort
11 5 (0.99%) NetWitness
11 5 (0.99%) Qualys