Period
to 26 September 2020

The following table provides summary statistics for permanent job vacancies with a requirement for NIST skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited NIST over the 6 months to 26 September 2020 with a comparison to the same period in the previous 2 years.

National Institute of Standards and Technology (NIST)
UK
6 months to
26 Sep 2020
Same period 2019 Same period 2018
Rank 345 543 646
Rank change year-on-year +198 +103 +255
Permanent jobs citing NIST 398 662 610
As % of all permanent jobs advertised in the UK 0.83% 0.47% 0.36%
As % of the Quality Assurance & Compliance category 6.92% 3.55% 2.77%
Number of salaries quoted 368 506 447
Median annual salary £60,000 £67,500 £62,500
Median salary % change year-on-year -11.11% +8.00% -
10th Percentile £43,514 £42,500 £42,500
90th Percentile £90,000 £96,250 £92,500
UK excluding London median annual salary £57,500 £62,500 £60,000
% change year-on-year -8.00% +4.17% -

NIST is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 5,750 18,666 21,986
As % of all permanent IT jobs advertised in the UK 11.94% 13.29% 13.13%
Number of salaries quoted 4,456 13,799 16,708
Median annual salary £55,000 £50,000 £50,000
Median salary % change year-on-year +10.00% - -
10th Percentile £31,250 £27,750 £28,500
90th Percentile £86,250 £83,150 £80,000
UK excluding London median annual salary £50,000 £45,000 £45,000
% change year-on-year +11.11% - +5.88%

NIST
Job Vacancy Trend

Job postings citing NIST as a proportion of all IT jobs advertised.

Job vacancy trend for NIST in the UK

NIST
Salary Trend

3-month moving average salary quoted in jobs citing NIST.

Salary trend for NIST in the UK

NIST
Salary Histogram

Salary distribution for jobs citing NIST over the 6 months to 26 September 2020.

Salary histogram for NIST in the UK

NIST
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing NIST within the UK over the 6 months to 26 September 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +200 375 £62,500 -7.41% 62
London +197 206 £65,000 -18.75% 22
UK excluding London +205 189 £57,500 -8.00% 43
South East +146 55 £65,000 -7.14% 16
South West +127 35 £90,000 +50.00% 5
Work from Home +78 35 £57,500 -20.69% 9
Midlands +131 32 £55,000 -8.33%
North of England +145 31 £50,000 +5.26% 9
West Midlands +105 30 £55,000 +1.90%
North West +108 25 £47,500 +5.56% 6
East of England +133 19 £65,000 +8.33% 10
Scotland +107 15 £47,575 -32.04% 1
Yorkshire +131 4 £60,000 +9.09% 3
Northern Ireland - 4 £55,000 -
North East +26 2 £36,500 -59.44%
Wales +43 1 £62,500 +27.55% 2

For the 6 months to 26 September 2020, IT jobs citing NIST also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for NIST.

1 292 (73.37%) Information Security
2 262 (65.83%) Cybersecurity
3 253 (63.57%) ISO/IEC 27001
4 207 (52.01%) CISSP
5 152 (38.19%) CISM
6 118 (29.65%) Risk Management
7 110 (27.64%) Firewall
8 107 (26.88%) Azure
9 103 (25.88%) AWS
10 97 (24.37%) ITIL
10 97 (24.37%) Finance
11 96 (24.12%) SIEM
12 92 (23.12%) Degree
13 88 (22.11%) Management Information System
14 86 (21.61%) GDPR
15 74 (18.59%) Security Operations
16 73 (18.34%) CISA
16 73 (18.34%) PCI DSS
17 66 (16.58%) COBIT
18 63 (15.83%) Intrusion Detection
18 63 (15.83%) Identity Access Management
19 61 (15.33%) Python
20 58 (14.57%) Microsoft
21 57 (14.32%) Security Management
21 57 (14.32%) OWASP
22 54 (13.57%) Vulnerability Management
22 54 (13.57%) IaaS
23 53 (13.32%) Active Directory
24 52 (13.07%) Linux
24 52 (13.07%) Analytical Skills

NIST
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 2 (0.50%) ColdFusion
1 2 (0.50%) SharePoint
2 1 (0.25%) Apache Spark
2 1 (0.25%) Confluence
Applications
1 16 (4.02%) Microsoft Excel
2 6 (1.51%) Microsoft Office
3 5 (1.26%) Microsoft PowerPoint
4 2 (0.50%) MS Visio
Business Applications
1 8 (2.01%) Distributed Ledger
1 8 (2.01%) R3 Corda
2 2 (0.50%) Oracle Applications
Cloud Services
1 107 (26.88%) Azure
2 103 (25.88%) AWS
3 54 (13.57%) IaaS
4 41 (10.30%) SaaS
5 32 (8.04%) PaaS
6 29 (7.29%) Office 365
7 12 (3.02%) Azure Active Directory
7 12 (3.02%) Power Platform
8 11 (2.76%) AWS Lambda
8 11 (2.76%) Azure Functions
8 11 (2.76%) GCP
8 11 (2.76%) PowerApps
8 11 (2.76%) Serverless
9 9 (2.26%) iPaaS
10 8 (2.01%) Cloud Computing
11 3 (0.75%) AWS CloudFormation
12 2 (0.50%) Apigee
13 1 (0.25%) Akamai
13 1 (0.25%) Dropbox
13 1 (0.25%) Power Automate
Communications & Networking
1 110 (27.64%) Firewall
2 63 (15.83%) Intrusion Detection
3 22 (5.53%) Internet
3 22 (5.53%) Network Security
4 21 (5.28%) DNS
4 21 (5.28%) VPN
5 16 (4.02%) Wireless
6 13 (3.27%) WAN
7 11 (2.76%) LAN
7 11 (2.76%) SSL
8 6 (1.51%) Wireshark
9 5 (1.26%) TCP/IP
10 4 (1.01%) BGP
10 4 (1.01%) DHCP
10 4 (1.01%) Ethernet
10 4 (1.01%) HTTP
10 4 (1.01%) MPLS
10 4 (1.01%) OSPF
11 3 (0.75%) Wi-Fi
12 2 (0.50%) SSH
Database & Business Intelligence
1 23 (5.78%) Big Data
2 14 (3.52%) Data Lake
3 13 (3.27%) SQL Server
4 4 (1.01%) RDBMS
4 4 (1.01%) Relational Database
5 2 (0.50%) Data Warehouse
5 2 (0.50%) MySQL
6 1 (0.25%) Azure SQL Database
6 1 (0.25%) Blockchain
6 1 (0.25%) PostgreSQL
6 1 (0.25%) Power BI
Development Applications
1 10 (2.51%) IntelliJ
2 3 (0.75%) JIRA
3 2 (0.50%) Git (software)
3 2 (0.50%) Jenkins
4 1 (0.25%) GitLab
4 1 (0.25%) Gradle
4 1 (0.25%) Snyk
4 1 (0.25%) Visual Studio Team System
General
1 97 (24.37%) Finance
2 42 (10.55%) Legal
3 28 (7.04%) Banking
4 14 (3.52%) Retail
5 8 (2.01%) Telecoms
6 6 (1.51%) Investment Banking
7 4 (1.01%) Law
8 3 (0.75%) Public Sector
9 2 (0.50%) Advertising
9 2 (0.50%) Marketing
10 1 (0.25%) Automotive
10 1 (0.25%) Digital Economy
10 1 (0.25%) Electronics
10 1 (0.25%) Financial Institution
10 1 (0.25%) Local Government
10 1 (0.25%) Manufacturing
10 1 (0.25%) Military
10 1 (0.25%) Pharmaceutical
10 1 (0.25%) Retail Banking
Job Titles
1 96 (24.12%) Analyst
2 79 (19.85%) Security Analyst
3 60 (15.08%) Security Engineer
4 52 (13.07%) Consultant
5 51 (12.81%) Information Analyst
6 47 (11.81%) Information Security Analyst
7 39 (9.80%) Risk Analyst
8 38 (9.55%) Architect
9 32 (8.04%) Security Risk Analyst
10 28 (7.04%) Security Consultant
11 26 (6.53%) Information Risk Analyst
11 26 (6.53%) Security Architect
12 25 (6.28%) Cloud Architect
13 23 (5.78%) Security Manager
14 22 (5.53%) Senior Manager
15 20 (5.03%) Senior Security Engineer
16 19 (4.77%) Security Specialist
16 19 (4.77%) Senior Consultant
17 17 (4.27%) Cloud Engineer
18 16 (4.02%) Governance Analyst
Libraries, Frameworks & Software Standards
1 27 (6.78%) .NET
2 19 (4.77%) .NET Framework
3 18 (4.52%) OAuth
4 14 (3.52%) Web Services
5 9 (2.26%) Spring Boot
6 6 (1.51%) YAML
7 4 (1.01%) OpenID
7 4 (1.01%) SAML
8 3 (0.75%) LDAP
8 3 (0.75%) Middleware
8 3 (0.75%) RESTful
9 2 (0.50%) AngularJS
9 2 (0.50%) HTML
9 2 (0.50%) J2EE
9 2 (0.50%) Natural Language Processing
9 2 (0.50%) OAuth2
9 2 (0.50%) React
9 2 (0.50%) Twitter Bootstrap
9 2 (0.50%) WCF
9 2 (0.50%) WPF
Miscellaneous
1 88 (22.11%) Management Information System
2 52 (13.07%) Analytical Skills
3 35 (8.79%) Cyberthreat
4 26 (6.53%) Security Operations Centre
5 25 (6.28%) Cloud Native
6 21 (5.28%) Public Cloud
7 20 (5.03%) Cyber Kill Chain
8 19 (4.77%) PKI
9 18 (4.52%) Cyberattack
10 17 (4.27%) Mobile App
11 10 (2.51%) Data Protection Act
12 6 (1.51%) Robotics
12 6 (1.51%) SWIFT
13 5 (1.26%) Cyber Defence
13 5 (1.26%) Data Centre
13 5 (1.26%) Private Cloud
14 4 (1.01%) Distributed Denial-of-Service
15 3 (0.75%) Driving Licence
15 3 (0.75%) Hybrid Cloud
15 3 (0.75%) Reinsurance
Operating Systems
1 52 (13.07%) Linux
2 49 (12.31%) Windows
3 30 (7.54%) Unix
4 26 (6.53%) Windows Server
5 6 (1.51%) Red Hat Enterprise Linux
5 6 (1.51%) Solaris
5 6 (1.51%) Windows XP
6 1 (0.25%) AIX
6 1 (0.25%) Windows 10
Processes & Methodologies
1 292 (73.37%) Information Security
2 262 (65.83%) Cybersecurity
3 118 (29.65%) Risk Management
4 97 (24.37%) ITIL
5 96 (24.12%) SIEM
6 74 (18.59%) Security Operations
7 63 (15.83%) Identity Access Management
8 57 (14.32%) OWASP
8 57 (14.32%) Security Management
9 54 (13.57%) Vulnerability Management
10 49 (12.31%) Open Source
11 46 (11.56%) Security Architecture
12 45 (11.31%) Stakeholder Management
13 44 (11.06%) Agile Software Development
13 44 (11.06%) DevOps
13 44 (11.06%) Information Security Management
13 44 (11.06%) Kalman Filter
14 42 (10.55%) Analytics
15 40 (10.05%) Penetration Testing
16 39 (9.80%) Web Filtering
Programming Languages
1 61 (15.33%) Python
2 51 (12.81%) Java
3 32 (8.04%) Perl
3 32 (8.04%) PowerShell
4 22 (5.53%) SQL
5 19 (4.77%) Bash Shell
6 17 (4.27%) R
7 15 (3.77%) C++
8 10 (2.51%) JavaScript
9 9 (2.26%) C
9 9 (2.26%) Kotlin
10 6 (1.51%) Ruby
11 3 (0.75%) Shell Script
12 2 (0.50%) C#
12 2 (0.50%) VB.NET
13 1 (0.25%) Apex Code
Qualifications
1 207 (52.01%) CISSP
2 152 (38.19%) CISM
3 92 (23.12%) Degree
4 73 (18.34%) CISA
5 39 (9.80%) CompTIA Security+
6 38 (9.55%) CRISC
7 34 (8.54%) Security Cleared
8 29 (7.29%) Cisco Certification
9 28 (7.04%) (ISC)2 CCSP
10 22 (5.53%) CSSLP
11 19 (4.77%) ISO 27001 Lead Implementer
12 18 (4.52%) DV Cleared
13 17 (4.27%) CCSP
13 17 (4.27%) SANS
14 15 (3.77%) SC Cleared
15 14 (3.52%) ISO 27001 Lead Auditor
16 12 (3.02%) CREST Certified
16 12 (3.02%) GIAC
17 11 (2.76%) GCFA
17 11 (2.76%) GCIA
Quality Assurance & Compliance
1 253 (63.57%) ISO/IEC 27001
2 86 (21.61%) GDPR
3 73 (18.34%) PCI DSS
4 66 (16.58%) COBIT
5 51 (12.81%) NIST 800
6 29 (7.29%) ISO 31000
6 29 (7.29%) NCSC
7 28 (7.04%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 27 (6.78%) Cyber Essentials
9 17 (4.27%) Sarbanes-Oxley
10 15 (3.77%) SLA
11 13 (3.27%) ISO/IEC 27005
12 9 (2.26%) ISO 22301
13 8 (2.01%) COSO
14 7 (1.76%) ISO/IEC 20000
15 6 (1.51%) Cyber Essentials PLUS
15 6 (1.51%) ISAE 3402
16 4 (1.01%) HIPAA
17 3 (0.75%) AICPA
17 3 (0.75%) GAMP
System Software
1 53 (13.32%) Active Directory
2 33 (8.29%) Docker
3 3 (0.75%) VMware Infrastructure
Systems Management
1 36 (9.05%) Terraform
2 22 (5.53%) Microsoft Intune
3 21 (5.28%) Kubernetes
4 11 (2.76%) Host Intrusion Detection System
5 9 (2.26%) QRadar
6 7 (1.76%) Network Intrusion Detection System
7 6 (1.51%) Ansible
7 6 (1.51%) CSIRT
8 5 (1.26%) Computer Emergency Response Teams
8 5 (1.26%) HP Fortify
9 3 (0.75%) Single Sign-On
10 2 (0.50%) CA Single Sign-On
10 2 (0.50%) HP ALM
10 2 (0.50%) WebInspect
11 1 (0.25%) CASB
11 1 (0.25%) Computer Incident Response Team
11 1 (0.25%) McAfee ePO
11 1 (0.25%) Nessus
11 1 (0.25%) Opscode Chef
11 1 (0.25%) SCCM
Vendors
1 58 (14.57%) Microsoft
2 30 (7.54%) VMware
3 26 (6.53%) Google
4 23 (5.78%) Splunk
5 13 (3.27%) Cisco
6 12 (3.02%) Salesforce.com
7 11 (2.76%) LogRhythm
8 9 (2.26%) Darktrace
8 9 (2.26%) IBM
9 8 (2.01%) ServiceNow
10 6 (1.51%) Red Hat
10 6 (1.51%) Remedy
11 4 (1.01%) Oracle
11 4 (1.01%) Qualys
12 3 (0.75%) ArcSight
12 3 (0.75%) Black Duck
12 3 (0.75%) CA
12 3 (0.75%) HP
12 3 (0.75%) Palo Alto
13 2 (0.50%) Apple