Period
to 20 October 2021

The following table provides summary statistics for permanent job vacancies with a requirement for NIST skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited NIST over the 6 months to 20 October 2021 with a comparison to the same period in the previous 2 years.

National Institute of Standards and Technology (NIST)
UK
6 months to
20 Oct 2021
Same period 2020 Same period 2019
Rank 445 349 519
Rank change year-on-year -96 +170 +129
Permanent jobs citing NIST 847 422 692
As % of all permanent jobs advertised in the UK 0.67% 0.86% 0.51%
As % of the Quality Assurance & Compliance category 4.39% 6.91% 3.67%
Number of salaries quoted 581 362 522
10th Percentile £43,750 £43,750 £42,500
25th Percentile £52,500 £50,000 £51,250
Median annual salary (50th Percentile) £65,000 £65,000 £67,500
Median % change year-on-year - -3.70% +8.00%
75th Percentile £80,000 £75,938 £85,000
90th Percentile £91,250 £90,000 £97,500
UK excluding London median annual salary £60,000 £57,500 £62,500
% change year-on-year +4.35% -8.00% +4.17%

NIST is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 19,272 6,110 18,859
As % of all permanent IT jobs advertised in the UK 15.31% 12.50% 13.85%
Number of salaries quoted 11,795 4,806 14,193
10th Percentile £31,250 £31,250 £28,500
25th Percentile £40,293 £41,250 £37,000
Median annual salary (50th Percentile) £55,000 £55,000 £50,000
Median % change year-on-year - +10.00% -
75th Percentile £71,250 £70,000 £67,500
90th Percentile £88,750 £86,250 £82,500
UK excluding London median annual salary £47,000 £49,000 £45,000
% change year-on-year -4.08% +8.89% -

NIST
Job Vacancy Trend

Job postings citing NIST as a proportion of all IT jobs advertised.

Job vacancy trend for NIST in the UK

NIST
Salary Trend

3-month moving average salary quoted in jobs citing NIST.

Salary trend for NIST in the UK

NIST
Salary Histogram

Salary distribution for jobs citing NIST over the 6 months to 20 October 2021.

Salary histogram for NIST in the UK

NIST
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing NIST within the UK over the 6 months to 20 October 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -99 743 £65,000 - 137
UK excluding London -57 402 £60,000 +4.35% 79
London -148 375 £73,000 +12.31% 65
Work from Home -153 168 £75,000 +29.31% 18
South East -70 143 £61,500 -8.89% 22
North of England -61 102 £57,500 +27.78% 17
North West -55 67 £50,000 +11.11% 14
Midlands -95 60 £57,500 +4.55% 13
West Midlands -82 52 £57,500 +4.55% 13
South West -73 50 £65,000 -23.53% 13
Scotland -66 37 £52,500 +10.35% 5
Yorkshire -86 28 £60,000 - 2
East of England -100 15 £57,500 -11.54% 7
North East -25 7 £40,000 +9.59% 1
Wales -46 7 £51,970 -23.57% 2
East Midlands - 6 £56,250 -

For the 6 months to 20 October 2021, IT jobs citing NIST also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for NIST.

1 584 (68.95%) ISO/IEC 27001
2 582 (68.71%) Cybersecurity
3 437 (51.59%) Information Security
4 299 (35.30%) CISSP
5 290 (34.24%) Risk Management
6 281 (33.18%) Social Skills
7 271 (32.00%) GDPR
8 260 (30.70%) Cyber Essentials
9 243 (28.69%) SIEM
10 233 (27.51%) Vulnerability Management
11 214 (25.27%) CISM
11 214 (25.27%) Finance
12 208 (24.56%) Azure
13 197 (23.26%) Management Information System
14 165 (19.48%) Security Management
15 161 (19.01%) Cyber Essentials PLUS
16 160 (18.89%) Security Testing
17 159 (18.77%) Data Protection
18 153 (18.06%) Microsoft
19 141 (16.65%) Firewall
20 140 (16.53%) AWS
21 136 (16.06%) PCI DSS
21 136 (16.06%) Security Cleared
22 132 (15.58%) Security Architecture
23 128 (15.11%) Smart Meter
23 128 (15.11%) Police
24 127 (14.99%) Degree
25 125 (14.76%) CISA
26 116 (13.70%) OWASP
27 111 (13.11%) Regulatory Compliance

NIST
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 18 (2.13%) IIS
2 5 (0.59%) SharePoint
3 3 (0.35%) Apache
3 3 (0.35%) OpenStack
4 2 (0.24%) nginx
5 1 (0.12%) Apache Pig
5 1 (0.12%) Apache Spark
5 1 (0.12%) Cloud Foundry
Applications
1 13 (1.53%) Microsoft PowerPoint
2 12 (1.42%) Microsoft Office
3 9 (1.06%) Microsoft Excel
Business Applications
1 6 (0.71%) Sentinel
2 2 (0.24%) NetSuite
3 1 (0.12%) Oracle ERP
Cloud Services
1 208 (24.56%) Azure
2 140 (16.53%) AWS
3 69 (8.15%) GCP
4 47 (5.55%) Microsoft 365
5 36 (4.25%) SaaS
6 33 (3.90%) PaaS
7 32 (3.78%) IaaS
8 15 (1.77%) Serverless
9 14 (1.65%) Cloud Computing
10 13 (1.53%) Azure Active Directory
10 13 (1.53%) GitHub
11 12 (1.42%) Azure Sentinel
12 10 (1.18%) Mimecast
13 5 (0.59%) Power Platform
14 3 (0.35%) Sumo Logic
15 2 (0.24%) Azure Key Vault
15 2 (0.24%) Azure Synapse Analytics
15 2 (0.24%) Dynamics 365
15 2 (0.24%) Slack
16 1 (0.12%) Azure Service Bus
Communications & Networking
1 141 (16.65%) Firewall
2 106 (12.51%) Network Security
3 30 (3.54%) TCP/IP
4 28 (3.31%) VPN
5 27 (3.19%) DNS
6 18 (2.13%) Intrusion Detection
6 18 (2.13%) WAN
7 16 (1.89%) Internet
8 14 (1.65%) LAN
9 13 (1.53%) Wireless
10 12 (1.42%) DHCP
10 12 (1.42%) HTTP
11 10 (1.18%) SSL
12 9 (1.06%) Broadband
13 8 (0.94%) BGP
13 8 (0.94%) VLAN
14 7 (0.83%) SD-WAN
14 7 (0.83%) Wi-Fi
15 6 (0.71%) OSPF
15 6 (0.71%) Wireshark
Database & Business Intelligence
1 21 (2.48%) SQL Server
2 9 (1.06%) Oracle Database
2 9 (1.06%) RDBMS
2 9 (1.06%) Relational Database
3 5 (0.59%) Blockchain
4 4 (0.47%) Amazon Redshift
4 4 (0.47%) Azure SQL Database
4 4 (0.47%) Big Data
4 4 (0.47%) MySQL
4 4 (0.47%) Power BI
5 2 (0.24%) Data Lake
5 2 (0.24%) Data Warehouse
5 2 (0.24%) DB2
5 2 (0.24%) GIS
6 1 (0.12%) Apache Hive
6 1 (0.12%) Data Mining
6 1 (0.12%) MongoDB
6 1 (0.12%) Oracle Reports
6 1 (0.12%) RavenDB
6 1 (0.12%) Tableau
Development Applications
1 28 (3.31%) JIRA
2 9 (1.06%) SoapUI
3 8 (0.94%) Rational DOORS
3 8 (0.94%) SonarQube
3 8 (0.94%) Visual Studio
4 7 (0.83%) Burp Suite
5 4 (0.47%) Jenkins
6 3 (0.35%) Metasploit
7 2 (0.24%) Emacs
7 2 (0.24%) Git (software)
7 2 (0.24%) GitLab
7 2 (0.24%) Snyk
7 2 (0.24%) TeamCity
8 1 (0.12%) Atlassian Bamboo
8 1 (0.12%) CircleCI
8 1 (0.12%) GoCD
8 1 (0.12%) Sonatype Nexus
General
1 281 (33.18%) Social Skills
2 214 (25.27%) Finance
3 128 (15.11%) Police
4 87 (10.27%) Analytical Skills
5 76 (8.97%) Banking
6 64 (7.56%) Telecoms
7 53 (6.26%) Legal
8 46 (5.43%) Public Sector
9 40 (4.72%) Marketing
10 38 (4.49%) Manufacturing
11 36 (4.25%) Influencing Skills
12 31 (3.66%) Electronics
12 31 (3.66%) Presentation Skills
13 27 (3.19%) Law
14 13 (1.53%) Inclusion and Diversity
15 11 (1.30%) Retail
16 7 (0.83%) Financial Institution
17 6 (0.71%) Back Office
17 6 (0.71%) Organisational Skills
17 6 (0.71%) Pharmaceutical
Job Titles
1 183 (21.61%) Consultant
2 170 (20.07%) Architect
3 154 (18.18%) Security Consultant
4 150 (17.71%) Security Architect
5 109 (12.87%) Analyst
6 100 (11.81%) Cybersecurity Consultant
6 100 (11.81%) Security Manager
7 91 (10.74%) Security Analyst
8 85 (10.04%) Security Engineer
9 37 (4.37%) Information Analyst
9 37 (4.37%) Information Manager
9 37 (4.37%) Information Security Analyst
10 36 (4.25%) Information Security Manager
11 35 (4.13%) Junior
12 34 (4.01%) Security Officer
13 32 (3.78%) Information Security Officer
14 31 (3.66%) IT Manager
15 30 (3.54%) Risk Analyst
15 30 (3.54%) Security Specialist
16 29 (3.42%) Junior Consultant
Libraries, Frameworks & Software Standards
1 23 (2.72%) OAuth
2 15 (1.77%) OAuth2
3 14 (1.65%) SAML
4 12 (1.42%) RESTful
5 10 (1.18%) SOAP
6 9 (1.06%) LDAP
6 9 (1.06%) Web Services
7 8 (0.94%) JSON
8 6 (0.71%) OpenID
9 5 (0.59%) Elastic Stack
10 4 (0.47%) ISPF
11 3 (0.35%) .NET
11 3 (0.35%) EDI
11 3 (0.35%) XML
12 2 (0.24%) .NET Framework
12 2 (0.24%) 802.1X
12 2 (0.24%) LAMP
12 2 (0.24%) Middleware
12 2 (0.24%) ModSecurity
12 2 (0.24%) SailPoint
Miscellaneous
1 197 (23.26%) Management Information System
2 128 (15.11%) Smart Meter
3 41 (4.84%) Public Cloud
4 37 (4.37%) Self-Motivation
5 34 (4.01%) Cyberthreat
6 30 (3.54%) Data Centre
7 22 (2.60%) Cloud Native
8 20 (2.36%) Cyber Kill Chain
9 19 (2.24%) Security Operations Centre
10 15 (1.77%) Data Protection Act
10 15 (1.77%) PKI
11 14 (1.65%) Driving Licence
12 13 (1.53%) Distributed Denial-of-Service
13 12 (1.42%) Cyberattack
13 12 (1.42%) Reinsurance
14 10 (1.18%) Hybrid Cloud
14 10 (1.18%) SCADA
15 8 (0.94%) Mobile Payment
15 8 (0.94%) Private Cloud
15 8 (0.94%) Smartcard
Operating Systems
1 62 (7.32%) Windows
2 58 (6.85%) Linux
3 17 (2.01%) Solaris
4 16 (1.89%) Windows Server
5 15 (1.77%) Unix
6 8 (0.94%) Windows 10
7 6 (0.71%) Kali Linux
8 3 (0.35%) CentOS
8 3 (0.35%) Windows Server 2016
9 2 (0.24%) AIX
9 2 (0.24%) Android
9 2 (0.24%) Apple iOS
9 2 (0.24%) Ubuntu
9 2 (0.24%) Windows Server 2012
9 2 (0.24%) Windows Server 2019
9 2 (0.24%) zOS
10 1 (0.12%) VMS
Processes & Methodologies
1 582 (68.71%) Cybersecurity
2 437 (51.59%) Information Security
3 290 (34.24%) Risk Management
4 243 (28.69%) SIEM
5 233 (27.51%) Vulnerability Management
6 165 (19.48%) Security Management
7 160 (18.89%) Security Testing
8 159 (18.77%) Data Protection
9 132 (15.58%) Security Architecture
10 116 (13.70%) OWASP
11 111 (13.11%) Regulatory Compliance
12 104 (12.28%) Agile Software Development
13 103 (12.16%) ITIL
14 99 (11.69%) ISMS
15 92 (10.86%) Penetration Testing
16 87 (10.27%) Stakeholder Management
17 86 (10.15%) Identity Management
17 86 (10.15%) Security Operations
18 84 (9.92%) Threat Analysis
19 83 (9.80%) Risk Assessment
Programming Languages
1 42 (4.96%) Python
2 24 (2.83%) Java
3 17 (2.01%) SQL
4 16 (1.89%) PowerShell
5 14 (1.65%) C
6 12 (1.42%) C#
7 11 (1.30%) Go
8 7 (0.83%) JavaScript
9 6 (0.71%) Bash Shell
10 2 (0.24%) C++
10 2 (0.24%) Perl
10 2 (0.24%) PHP
10 2 (0.24%) Ruby
11 1 (0.12%) Shell Script
Qualifications
1 299 (35.30%) CISSP
2 214 (25.27%) CISM
3 136 (16.06%) Security Cleared
4 127 (14.99%) Degree
5 125 (14.76%) CISA
6 85 (10.04%) Cisco Certification
7 65 (7.67%) (ISC)2 CCSP
8 44 (5.19%) CRISC
9 40 (4.72%) CEH
10 38 (4.49%) GIAC
11 35 (4.13%) CESG Certified Professional
11 35 (4.13%) SSCP
12 34 (4.01%) SANS
13 33 (3.90%) SC Cleared
14 28 (3.31%) CREST Certified
15 25 (2.95%) CompTIA Security+
16 24 (2.83%) CCSP
16 24 (2.83%) OSCP
17 20 (2.36%) CCNA
18 16 (1.89%) IISP
Quality Assurance & Compliance
1 584 (68.95%) ISO/IEC 27001
2 271 (32.00%) GDPR
3 260 (30.70%) Cyber Essentials
4 161 (19.01%) Cyber Essentials PLUS
5 136 (16.06%) PCI DSS
6 98 (11.57%) COBIT
7 74 (8.74%) NCSC
8 68 (8.03%) GRC
9 54 (6.38%) NIST 800
10 50 (5.90%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
11 34 (4.01%) Sarbanes-Oxley
11 34 (4.01%) SOC 2
12 19 (2.24%) HIPAA
13 17 (2.01%) QA
14 15 (1.77%) IASME
15 14 (1.65%) ISO 9001
16 13 (1.53%) ISAE 3402
17 12 (1.42%) ISO 31000
17 12 (1.42%) SLA
18 11 (1.30%) ISO/IEC 27005
System Software
1 49 (5.79%) Active Directory
2 14 (1.65%) Docker
3 10 (1.18%) VMware Infrastructure
4 8 (0.94%) ISA Server
5 5 (0.59%) Hyper-V
5 5 (0.59%) Virtual Machines
5 5 (0.59%) VMware ESXi
6 4 (0.47%) Firmware
7 3 (0.35%) BitLocker
7 3 (0.35%) KVM
8 2 (0.24%) iptables
8 2 (0.24%) OpenAM
8 2 (0.24%) OpenIDM
8 2 (0.24%) RACF
9 1 (0.12%) LXC
9 1 (0.12%) Virtual Desktop
9 1 (0.12%) vSphere
9 1 (0.12%) Xen
Systems Management
1 25 (2.95%) Ansible
2 24 (2.83%) Terraform
3 22 (2.60%) CASB
4 19 (2.24%) Kubernetes
4 19 (2.24%) Nessus
5 18 (2.13%) Puppet
6 17 (2.01%) Single Sign-On
7 14 (1.65%) Opscode Chef
8 9 (1.06%) HP Fortify
8 9 (1.06%) QRadar
9 8 (0.94%) HP ALM
9 8 (0.94%) Trend Micro Deep Security
10 7 (0.83%) McAfee ePO
10 7 (0.83%) Nmap
10 7 (0.83%) WebInspect
11 6 (0.71%) RSA Archer
12 5 (0.59%) Microsoft Intune
13 4 (0.47%) Nexpose
14 3 (0.35%) FortiGate
14 3 (0.35%) SCCM
Vendors
1 153 (18.06%) Microsoft
2 47 (5.55%) Google
3 35 (4.13%) Cisco
3 35 (4.13%) Oracle
4 32 (3.78%) SAP
5 25 (2.95%) Qualys
6 23 (2.72%) Splunk
7 17 (2.01%) CyberArk
7 17 (2.01%) Tripwire
8 16 (1.89%) CheckPoint
8 16 (1.89%) ForgeRock
9 13 (1.53%) Palo Alto
9 13 (1.53%) VMware
10 11 (1.30%) Okta
11 9 (1.06%) ArcSight
11 9 (1.06%) CrowdStrike
12 8 (0.94%) F5
12 8 (0.94%) HP
12 8 (0.94%) Imperva
12 8 (0.94%) Trend Micro