Period
to 29 July 2021

The following table provides summary statistics for permanent job vacancies with a requirement for NIST skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited NIST over the 6 months to 29 July 2021 with a comparison to the same period in the previous 2 years.

National Institute of Standards and Technology (NIST)
UK
6 months to
29 Jul 2021
Same period 2020 Same period 2019
Rank 460 430 584
Rank change year-on-year -30 +154 +106
Permanent jobs citing NIST 697 414 648
As % of all permanent jobs advertised in the UK 0.62% 0.60% 0.45%
As % of the Quality Assurance & Compliance category 4.30% 4.66% 3.20%
Number of salaries quoted 541 329 478
10th Percentile £42,500 £42,500 £41,250
25th Percentile £51,250 £48,750 £51,250
Median annual salary (50th Percentile) £65,000 £60,000 £67,500
Median % change year-on-year +8.33% -11.11% +8.00%
75th Percentile £80,000 £78,750 £87,500
90th Percentile £92,500 £90,000 £98,750
UK excluding London median annual salary £60,000 £60,000 £62,500
% change year-on-year - -4.00% +8.70%

NIST is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 16,227 8,883 20,263
As % of all permanent IT jobs advertised in the UK 14.37% 12.87% 14.07%
Number of salaries quoted 10,068 6,848 15,052
10th Percentile £31,250 £30,000 £28,500
25th Percentile £40,500 £40,000 £37,500
Median annual salary (50th Percentile) £53,590 £52,500 £50,000
Median % change year-on-year +2.08% +5.00% -
75th Percentile £71,250 £70,000 £67,500
90th Percentile £87,500 £85,000 £83,750
UK excluding London median annual salary £47,500 £47,500 £45,000
% change year-on-year - +5.56% -

NIST
Job Vacancy Trend

Job postings citing NIST as a proportion of all IT jobs advertised.

Job vacancy trend for NIST in the UK

NIST
Salary Trend

3-month moving average salary quoted in jobs citing NIST.

Salary trend for NIST in the UK

NIST
Salary Histogram

Salary distribution for jobs citing NIST over the 6 months to 29 July 2021.

Salary histogram for NIST in the UK

NIST
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing NIST within the UK over the 6 months to 29 July 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -34 612 £66,045 +6.10% 134
UK excluding London -33 351 £60,000 - 98
London -27 286 £75,000 +15.38% 49
Work from Home -135 155 £73,000 +21.67% 17
South East -19 136 £60,000 -11.11% 29
Midlands -57 73 £60,000 +9.09% 13
North of England -46 67 £55,000 +10.00% 20
West Midlands -47 64 £60,000 +9.09% 12
North West -41 49 £52,500 +2.94% 15
Scotland -49 38 £53,000 +11.40% 10
East of England -25 27 £70,000 +7.69% 7
South West -104 14 £62,500 -30.56% 16
Yorkshire -67 13 £60,000 +20.00% 5
East Midlands - 8 £52,500 - 1
North East -18 5 £60,000 +64.38%
Wales -24 2 £63,220 - 3

For the 6 months to 29 July 2021, IT jobs citing NIST also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for NIST.

1 442 (63.41%) ISO/IEC 27001
2 439 (62.98%) Cybersecurity
3 392 (56.24%) Information Security
4 282 (40.46%) CISSP
5 220 (31.56%) Social Skills
6 200 (28.69%) Azure
7 191 (27.40%) Risk Management
8 188 (26.97%) CISM
9 186 (26.69%) Finance
10 185 (26.54%) SIEM
11 172 (24.68%) GDPR
12 166 (23.82%) Cyber Essentials
13 146 (20.95%) Vulnerability Management
14 134 (19.23%) Management Information System
15 124 (17.79%) Microsoft
16 118 (16.93%) Security Architecture
17 115 (16.50%) OWASP
18 113 (16.21%) Security Management
19 109 (15.64%) CISA
20 107 (15.35%) Firewall
21 104 (14.92%) Degree
21 104 (14.92%) AWS
22 102 (14.63%) Agile Software Development
22 102 (14.63%) ITIL
23 96 (13.77%) PCI DSS
24 91 (13.06%) Security Cleared
25 89 (12.77%) COBIT
26 87 (12.48%) Security Operations
27 82 (11.76%) Data Protection
28 81 (11.62%) Penetration Testing

NIST
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 10 (1.43%) SharePoint
2 3 (0.43%) Confluence
2 3 (0.43%) Elasticsearch
3 2 (0.29%) Apache
3 2 (0.29%) Apache Pig
3 2 (0.29%) Apache Spark
4 1 (0.14%) IIS
4 1 (0.14%) MS Exchange
Applications
1 17 (2.44%) Microsoft Excel
2 13 (1.87%) Microsoft Office
3 10 (1.43%) Microsoft PowerPoint
4 7 (1.00%) MS Visio
Business Applications
1 8 (1.15%) Sentinel
2 5 (0.72%) NetSuite
Cloud Services
1 200 (28.69%) Azure
2 104 (14.92%) AWS
3 64 (9.18%) Microsoft 365
4 43 (6.17%) GCP
5 41 (5.88%) SaaS
6 34 (4.88%) PaaS
7 27 (3.87%) Cloud Computing
8 21 (3.01%) IaaS
9 13 (1.87%) Azure Active Directory
9 13 (1.87%) Azure Sentinel
10 11 (1.58%) Serverless
11 8 (1.15%) Power Platform
12 6 (0.86%) Azure Service Bus
12 6 (0.86%) Google Workspace
13 5 (0.72%) Amazon GuardDuty
13 5 (0.72%) AWS CloudFormation
13 5 (0.72%) Datadog
13 5 (0.72%) Dynamics 365
13 5 (0.72%) PowerApps
13 5 (0.72%) Slack
Communications & Networking
1 107 (15.35%) Firewall
2 75 (10.76%) Network Security
3 31 (4.45%) TCP/IP
3 31 (4.45%) VPN
4 20 (2.87%) WAN
5 18 (2.58%) DNS
6 14 (2.01%) Intrusion Detection
7 13 (1.87%) DHCP
7 13 (1.87%) LAN
8 12 (1.72%) HTTP
9 10 (1.43%) Wireless
10 9 (1.29%) SD-WAN
10 9 (1.29%) SSL
11 8 (1.15%) BGP
12 6 (0.86%) 5G
12 6 (0.86%) Internet
12 6 (0.86%) OSPF
12 6 (0.86%) Wireshark
13 5 (0.72%) RTP
13 5 (0.72%) Wi-Fi
Database & Business Intelligence
1 14 (2.01%) SQL Server
2 9 (1.29%) Oracle Database
3 8 (1.15%) Azure SQL Database
4 7 (1.00%) Data Warehouse
4 7 (1.00%) RDBMS
4 7 (1.00%) Relational Database
5 5 (0.72%) Blockchain
6 4 (0.57%) Big Data
7 3 (0.43%) Oracle Database 11g
7 3 (0.43%) PostgreSQL
7 3 (0.43%) Power BI
7 3 (0.43%) Redis
8 2 (0.29%) Apache Hive
8 2 (0.29%) Data Lake
8 2 (0.29%) Hadoop
9 1 (0.14%) Amazon DynamoDB
9 1 (0.14%) GIS
9 1 (0.14%) MongoDB
9 1 (0.14%) NoSQL
9 1 (0.14%) RavenDB
Development Applications
1 14 (2.01%) JIRA
2 6 (0.86%) SoapUI
3 3 (0.43%) Burp Suite
3 3 (0.43%) Jenkins
3 3 (0.43%) Travis CI
4 2 (0.29%) Metasploit
4 2 (0.29%) Snyk
4 2 (0.29%) TeamCity
5 1 (0.14%) Atlassian Bamboo
5 1 (0.14%) CircleCI
5 1 (0.14%) Emacs
5 1 (0.14%) IDA Disassembler
General
1 220 (31.56%) Social Skills
2 186 (26.69%) Finance
3 66 (9.47%) Analytical Skills
4 57 (8.18%) Banking
5 55 (7.89%) Telecoms
6 52 (7.46%) Manufacturing
7 51 (7.32%) Public Sector
8 50 (7.17%) Police
9 46 (6.60%) Legal
9 46 (6.60%) Marketing
10 44 (6.31%) Electronics
11 28 (4.02%) Presentation Skills
12 27 (3.87%) Influencing Skills
13 26 (3.73%) Law
14 23 (3.30%) Inclusion and Diversity
14 23 (3.30%) Retail
15 18 (2.58%) Organisational Skills
16 8 (1.15%) Financial Institution
16 8 (1.15%) Military
17 6 (0.86%) Aerospace
Job Titles
1 130 (18.65%) Architect
2 115 (16.50%) Consultant
3 109 (15.64%) Security Architect
4 98 (14.06%) Analyst
5 86 (12.34%) Security Engineer
6 85 (12.20%) Security Consultant
7 75 (10.76%) Security Manager
8 74 (10.62%) Security Analyst
9 46 (6.60%) Security Specialist
10 45 (6.46%) Cybersecurity Consultant
11 40 (5.74%) Information Analyst
11 40 (5.74%) Information Manager
11 40 (5.74%) Information Security Analyst
12 38 (5.45%) Security Officer
13 36 (5.16%) Information Security Manager
14 34 (4.88%) Information Security Officer
15 31 (4.45%) Risk Analyst
16 30 (4.30%) Information Officer
17 26 (3.73%) Information Security Consultant
18 23 (3.30%) IT Manager
Libraries, Frameworks & Software Standards
1 20 (2.87%) OAuth
2 18 (2.58%) OAuth2
3 12 (1.72%) SOAP
4 9 (1.29%) Web Services
5 8 (1.15%) .NET
5 8 (1.15%) JSON
5 8 (1.15%) XML
6 7 (1.00%) .NET Framework
7 6 (0.86%) .NET Core
7 6 (0.86%) RESTful
8 5 (0.72%) LDAP
8 5 (0.72%) Middleware
8 5 (0.72%) SAML
9 4 (0.57%) ISPF
9 4 (0.57%) YAML
10 3 (0.43%) EDI
10 3 (0.43%) Elastic Stack
10 3 (0.43%) REST
11 2 (0.29%) 802.1X
Miscellaneous
1 134 (19.23%) Management Information System
2 50 (7.17%) Smart Meter
3 45 (6.46%) Public Cloud
4 29 (4.16%) Cloud Native
5 28 (4.02%) Self-Motivation
6 24 (3.44%) Cyberthreat
7 23 (3.30%) Cyber Kill Chain
8 22 (3.16%) Data Centre
9 18 (2.58%) Security Operations Centre
10 16 (2.30%) Data Protection Act
11 13 (1.87%) Enterprise Cloud
11 13 (1.87%) SCADA
12 12 (1.72%) Distributed Denial-of-Service
13 11 (1.58%) Hybrid Cloud
14 10 (1.43%) Cyber Defence
15 6 (0.86%) Digital Media
15 6 (0.86%) Driving Licence
16 5 (0.72%) Cyberattack
16 5 (0.72%) PKI
17 4 (0.57%) Virtual Team
Operating Systems
1 52 (7.46%) Windows
2 47 (6.74%) Linux
3 15 (2.15%) Unix
4 10 (1.43%) Windows 10
5 9 (1.29%) Red Hat Enterprise Linux
5 9 (1.29%) Windows Server
6 6 (0.86%) Solaris
7 5 (0.72%) SUSE
8 4 (0.57%) Kali Linux
8 4 (0.57%) Ubuntu
9 3 (0.43%) Windows Server 2008
9 3 (0.43%) Windows Server 2012
9 3 (0.43%) Windows Server 2016
10 2 (0.29%) Apple iOS
10 2 (0.29%) Mac OS
10 2 (0.29%) Mac OS X
11 1 (0.14%) AIX
11 1 (0.14%) CentOS
11 1 (0.14%) VMS
Processes & Methodologies
1 439 (62.98%) Cybersecurity
2 392 (56.24%) Information Security
3 191 (27.40%) Risk Management
4 185 (26.54%) SIEM
5 146 (20.95%) Vulnerability Management
6 118 (16.93%) Security Architecture
7 115 (16.50%) OWASP
8 113 (16.21%) Security Management
9 102 (14.63%) Agile Software Development
9 102 (14.63%) ITIL
10 87 (12.48%) Security Operations
11 82 (11.76%) Data Protection
12 81 (11.62%) Penetration Testing
13 74 (10.62%) Stakeholder Management
14 72 (10.33%) Information Security Management
15 70 (10.04%) Security Testing
16 69 (9.90%) ISMS
17 61 (8.75%) Business Intelligence
18 60 (8.61%) Project Management
19 58 (8.32%) TOGAF
Programming Languages
1 33 (4.73%) Python
2 23 (3.30%) PowerShell
3 17 (2.44%) Bash Shell
3 17 (2.44%) Java
4 15 (2.15%) SQL
5 11 (1.58%) C
6 6 (0.86%) Go
6 6 (0.86%) Perl
7 5 (0.72%) VBA
8 3 (0.43%) C#
9 2 (0.29%) C++
9 2 (0.29%) JavaScript
9 2 (0.29%) PHP
9 2 (0.29%) Ruby
10 1 (0.14%) Shell Script
Qualifications
1 282 (40.46%) CISSP
2 188 (26.97%) CISM
3 109 (15.64%) CISA
4 104 (14.92%) Degree
5 91 (13.06%) Security Cleared
6 56 (8.03%) CRISC
7 46 (6.60%) Cisco Certification
8 40 (5.74%) SC Cleared
9 34 (4.88%) SANS
10 32 (4.59%) GIAC
11 31 (4.45%) (ISC)2 CCSP
12 26 (3.73%) CEH
13 24 (3.44%) SSCP
14 21 (3.01%) CompTIA Security+
15 18 (2.58%) DV Cleared
16 15 (2.15%) CCNA
16 15 (2.15%) OSCP
17 14 (2.01%) ISSAP
18 12 (1.72%) CESG Certified Professional
18 12 (1.72%) CSSLP
Quality Assurance & Compliance
1 442 (63.41%) ISO/IEC 27001
2 172 (24.68%) GDPR
3 166 (23.82%) Cyber Essentials
4 96 (13.77%) PCI DSS
5 89 (12.77%) COBIT
6 73 (10.47%) NCSC
7 67 (9.61%) Cyber Essentials PLUS
8 56 (8.03%) GRC
9 54 (7.75%) NIST 800
10 24 (3.44%) Sarbanes-Oxley
11 21 (3.01%) SOC 2
12 14 (2.01%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
13 11 (1.58%) HMG Security Policy Framework
13 11 (1.58%) JSP 440
13 11 (1.58%) RMADS
14 8 (1.15%) ISO 9001
14 8 (1.15%) ISO/IEC 27005
14 8 (1.15%) QA
15 6 (0.86%) ISO 22301
15 6 (0.86%) SLA
System Software
1 49 (7.03%) Active Directory
2 19 (2.73%) VMware Infrastructure
3 10 (1.43%) Docker
4 7 (1.00%) Virtual Machines
4 7 (1.00%) VMware ESXi
5 5 (0.72%) Citrix Hypervisor
5 5 (0.72%) Virtual Desktop
6 3 (0.43%) vSphere
7 1 (0.14%) Hyper-V
Systems Management
1 23 (3.30%) Terraform
2 14 (2.01%) Ansible
3 13 (1.87%) Kubernetes
4 12 (1.72%) CASB
5 11 (1.58%) Puppet
5 11 (1.58%) RSA Archer
6 9 (1.29%) EMC NetWorker
6 9 (1.29%) QRadar
7 8 (1.15%) HP Fortify
8 7 (1.00%) Nessus
9 6 (0.86%) HP ALM
9 6 (0.86%) WebInspect
10 5 (0.72%) Microsoft Intune
11 4 (0.57%) Host Intrusion Detection System
11 4 (0.57%) Red Hat Satellite
12 3 (0.43%) Consul
12 3 (0.43%) Network Intrusion Detection System
12 3 (0.43%) Nexpose
12 3 (0.43%) Prometheus
12 3 (0.43%) Single Sign-On
Vendors
1 124 (17.79%) Microsoft
2 46 (6.60%) SAP
3 27 (3.87%) Cisco
3 27 (3.87%) CyberArk
4 24 (3.44%) Splunk
4 24 (3.44%) VMware
5 22 (3.16%) Google
6 18 (2.58%) Qualys
7 17 (2.44%) ForgeRock
8 16 (2.30%) Oracle
9 12 (1.72%) Palo Alto
10 11 (1.58%) Rapid7
11 10 (1.43%) CheckPoint
11 10 (1.43%) Citrix
12 6 (0.86%) Atlassian
12 6 (0.86%) HP
12 6 (0.86%) McAfee
12 6 (0.86%) Micro Focus
12 6 (0.86%) Symantec
12 6 (0.86%) Tripwire