OWASP Job Trends, Salaries & Related Skills

Open Web Application Security Project (OWASP)
UK

The table below provides summary statistics and salary benchmarking for jobs requiring OWASP skills. It covers permanent job vacancies from the 6 months leading up to 15 January 2026, with comparisons to the same periods in the previous two years.

	6 months to 15 Jan 2026	Same period 2025	Same period 2024
Rank	510	593	543
Rank change year-on-year	+83	-50	-53
Permanent jobs citing OWASP	139	118	171
As % of all permanent jobs in the UK	0.23%	0.22%	0.31%
As % of the Processes & Methodologies category	0.28%	0.24%	0.34%
Number of salaries quoted	87	59	134
10^th Percentile	£49,500	£45,200	£42,875
25^th Percentile	£63,750	£61,500	£55,000
Median annual salary (50^th Percentile)	£77,500	£72,500	£67,500
Median % change year-on-year	+6.90%	+7.41%	-12.05%
75^th Percentile	£90,000	£107,500	£80,000
90^th Percentile	£107,500	£110,000	£94,625
UK excluding London median annual salary	£70,079	£72,500	£61,206
% change year-on-year	-3.34%	+18.45%	-5.84%

All Process & Methodology Skills
UK

OWASP falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies requiring process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills	48,808	48,616	49,870
As % of all permanent jobs advertised in the UK	80.95%	90.71%	89.93%
Number of salaries quoted	28,796	23,669	37,967
10^th Percentile	£28,500	£35,000	£31,250
25^th Percentile	£37,500	£45,000	£42,500
Median annual salary (50^th Percentile)	£55,000	£60,000	£60,000
Median % change year-on-year	-8.33%	-	-4.00%
75^th Percentile	£75,000	£80,000	£77,715
90^th Percentile	£95,000	£100,000	£97,500
UK excluding London median annual salary	£50,000	£55,000	£51,971
% change year-on-year	-9.09%	+5.83%	-5.51%

OWASP
Job Vacancy Trend

Historical trend showing the proportion of permanent IT job postings citing OWASP relative to all permanent IT jobs advertised.

OWASP
Salary Trend

Salary distribution trend for jobs in the UK citing OWASP.

OWASP
Salary Histogram

Salary distribution for jobs citing OWASP over the 6 months to 15 January 2026.

OWASP
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing OWASP within the UK over the 6 months to 15 January 2026. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location	Rank Change on Same Period Last Year	Matching Permanent IT Job Ads	Median Salary Past 6 Months	Median Salary % Change on Same Period Last Year	Live Jobs
England	+90	132	£77,500	+10.71%	69
London	+92	75	£79,625	-5.21%	15
UK excluding London	+26	57	£70,079	-3.34%	67
Work from Home	+82	44	£79,750	+22.69%	51
South East	+26	19	£85,000	+25.93%	28
South West	-2	12	£66,250	-22.06%	9
North of England	+9	8	£67,539	+5.94%	10
East of England	+32	7	£60,000	-7.69%	8
Midlands	+22	5	£54,021	-22.83%	5
West Midlands	+20	4	£70,542	+0.77%	2
Scotland	-6	4	£90,000	-10.00%	5
Yorkshire	-8	4	£59,000	-41.00%	5
North West	+14	2	£72,539	+16.06%	3
North East	-	2	£70,079	-	2
East Midlands	-	1	£37,500	-	3
Wales	-	1	£70,079	-	3
Northern Ireland	-	1	-	-	1

OWASP
Top 30 Co-Occurring Skills & Capabilities

For the 6 months to 15 January 2026, job vacancies citing OWASP also mentioned the following skills and capabilities in order of popularity. The figures indicate the absolute number of co-occurrences and as a proportion of all permanent job ads with a requirement for OWASP.

1	87 (62.59%)	CI/CD
2	82 (58.99%)	Agile
3	75 (53.96%)	Azure
4	51 (36.69%)	DevOps
4	51 (36.69%)	ISO/IEC 27001
5	49 (35.25%)	Application Security
6	46 (33.09%)	AWS
7	44 (31.65%)	Security Testing
8	43 (30.94%)	DevSecOps
8	43 (30.94%)	SDLC
9	41 (29.50%)	Test Automation
10	38 (27.34%)	Mentoring
11	36 (25.90%)	NIST
12	35 (25.18%)	Threat Modelling
13	33 (23.74%)	Cybersecurity

14	32 (23.02%)	Python
15	31 (22.30%)	Continuous Improvement
15	31 (22.30%)	Java
15	31 (22.30%)	Scrum
16	30 (21.58%)	Azure DevOps
17	28 (20.14%)	Git
17	28 (20.14%)	Problem-Solving
17	28 (20.14%)	REST
18	27 (19.42%)	NCSC
18	27 (19.42%)	PaaS
18	27 (19.42%)	Terraform
18	27 (19.42%)	Vulnerability Management
19	26 (18.71%)	Degree
19	26 (18.71%)	Information Security
19	26 (18.71%)	Infrastructure as Code

OWASP
Co-Occurring Skills & Capabilities by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1	2 (1.44%)	Confluence
1	2 (1.44%)	SharePoint
2	1 (0.72%)	Adobe Experience Manager
2	1 (0.72%)	Apache
2	1 (0.72%)	IIS
2	1 (0.72%)	Microsoft Exchange

Applications
1	1 (0.72%)	Chatbot

Business Applications
1	19 (13.67%)	Dynamics CRM

Cloud Services
1	75 (53.96%)	Azure
2	46 (33.09%)	AWS
3	30 (21.58%)	Azure DevOps
4	27 (19.42%)	PaaS
5	22 (15.83%)	Azure Logic Apps
5	22 (15.83%)	Power Automate
5	22 (15.83%)	Power Platform
5	22 (15.83%)	PowerApps
6	21 (15.11%)	Dynamics 365
7	18 (12.95%)	GCP
8	16 (11.51%)	SaaS
9	15 (10.79%)	Serverless
10	10 (7.19%)	GitHub
11	8 (5.76%)	GitHub Actions
12	7 (5.04%)	AWS Lambda
12	7 (5.04%)	Datadog
12	7 (5.04%)	dbt
13	6 (4.32%)	Microsoft Purview
14	5 (3.60%)	Entra ID
14	5 (3.60%)	Microsoft Copilot

Communications & Networking
1	9 (6.47%)	Firewall
2	8 (5.76%)	Network Security
3	5 (3.60%)	HTTP
3	5 (3.60%)	Intrusion Detection
3	5 (3.60%)	TCP/IP
3	5 (3.60%)	VPN
4	4 (2.88%)	Internet
5	3 (2.16%)	AMQP
6	1 (0.72%)	MPLS
6	1 (0.72%)	Wireless
6	1 (0.72%)	Wireshark

Database & Business Intelligence
1	21 (15.11%)	Power BI
2	9 (6.47%)	MongoDB
2	9 (6.47%)	PostgreSQL
3	5 (3.60%)	SQL Server
4	4 (2.88%)	NoSQL
5	3 (2.16%)	SQL Server Integration Services
6	2 (1.44%)	BigQuery
7	1 (0.72%)	Amazon RDS
7	1 (0.72%)	Elasticsearch
7	1 (0.72%)	MariaDB
7	1 (0.72%)	MySQL
7	1 (0.72%)	SQL Server Reporting Services

Development Applications
1	28 (20.14%)	Git
2	20 (14.39%)	Visual Studio
3	16 (11.51%)	Jenkins
4	15 (10.79%)	GitLab
5	8 (5.76%)	Cucumber
6	7 (5.04%)	JMeter
6	7 (5.04%)	Locust
7	6 (4.32%)	JIRA
7	6 (4.32%)	TeamCity
8	5 (3.60%)	Snyk
9	3 (2.16%)	Selenium
10	2 (1.44%)	Burp Suite
10	2 (1.44%)	Gatling
10	2 (1.44%)	Robot Framework
10	2 (1.44%)	Storybook
10	2 (1.44%)	TestRail
11	1 (0.72%)	Metasploit
11	1 (0.72%)	Postman

General
1	50 (35.97%)	Finance
2	37 (26.62%)	Social Skills
3	23 (16.55%)	Analytical Skills
4	13 (9.35%)	Law
5	11 (7.91%)	Retail
6	8 (5.76%)	Banking
7	7 (5.04%)	Back Office
7	7 (5.04%)	Financial Institution
7	7 (5.04%)	Legal
8	4 (2.88%)	Inclusion and Diversity
9	3 (2.16%)	Documentation Skills
9	3 (2.16%)	Influencing Skills
9	3 (2.16%)	Public Sector
10	2 (1.44%)	Aerospace
11	1 (0.72%)	Automotive
11	1 (0.72%)	Electronics
11	1 (0.72%)	Investment Banking
11	1 (0.72%)	Manufacturing
11	1 (0.72%)	Marketing
11	1 (0.72%)	Pharmaceutical

Job Titles
1	43 (30.94%)	Lead
2	34 (24.46%)	Security Engineer
3	32 (23.02%)	Developer
4	12 (8.63%)	Senior
5	10 (7.19%)	Applications Engineer
6	8 (5.76%)	Development Engineer
6	8 (5.76%)	Development Support Engineer
6	8 (5.76%)	Software Developer
6	8 (5.76%)	Support Engineer
7	7 (5.04%)	.NET Developer
7	7 (5.04%)	Backend Developer
7	7 (5.04%)	Test Leader
8	6 (4.32%)	Full-Stack Developer
9	5 (3.60%)	Analyst
9	5 (3.60%)	Business Information Analyst
9	5 (3.60%)	DevSecOps Engineer
9	5 (3.60%)	Dynamics 365 Developer
9	5 (3.60%)	Information Analyst
9	5 (3.60%)	Information Risk Analyst
9	5 (3.60%)	Risk Analyst

Libraries, Frameworks & Software Standards
1	28 (20.14%)	REST
2	22 (15.83%)	SOAP
3	20 (14.39%)	YAML
4	17 (12.23%)	.NET
5	16 (11.51%)	Web Services
6	15 (10.79%)	Spring Boot
7	13 (9.35%)	CSS
8	12 (8.63%)	.NET Core
8	12 (8.63%)	React
9	11 (7.91%)	Node.js
10	9 (6.47%)	HTML
10	9 (6.47%)	Spring
11	8 (5.76%)	FastAPI
11	8 (5.76%)	JSON
12	7 (5.04%)	Gherkin
13	6 (4.32%)	.NET Framework
13	6 (4.32%)	OAuth
14	5 (3.60%)	Blazor
15	4 (2.88%)	ASP.NET Core
15	4 (2.88%)	RESTful

Miscellaneous
1	29 (20.86%)	Cloud Native
2	25 (17.99%)	Security Posture
3	13 (9.35%)	Self-Motivation
4	11 (7.91%)	Data Protection Act
5	10 (7.19%)	Management Information System
6	5 (3.60%)	Cloud Security Posture
6	5 (3.60%)	Mobile App
6	5 (3.60%)	Product Ownership
7	4 (2.88%)	Blog
8	3 (2.16%)	Data Centre
8	3 (2.16%)	Legacy Systems
8	3 (2.16%)	W3C
9	2 (1.44%)	Data Structures
9	2 (1.44%)	SCADA
10	1 (0.72%)	Analytical Mindset
10	1 (0.72%)	Cyber Threat
10	1 (0.72%)	Distributed Systems
10	1 (0.72%)	Driving Licence
10	1 (0.72%)	e-Learning
10	1 (0.72%)	Hackathon

Operating Systems
1	7 (5.04%)	Windows
2	6 (4.32%)	Linux
3	4 (2.88%)	Windows Server
4	2 (1.44%)	Android
4	2 (1.44%)	Apple iOS
5	1 (0.72%)	Windows Server 2008

Processes & Methodologies
1	87 (62.59%)	CI/CD
2	82 (58.99%)	Agile
3	51 (36.69%)	DevOps
4	49 (35.25%)	Application Security
5	44 (31.65%)	Security Testing
6	43 (30.94%)	DevSecOps
6	43 (30.94%)	SDLC
7	41 (29.50%)	Test Automation
8	38 (27.34%)	Mentoring
9	35 (25.18%)	Threat Modelling
10	33 (23.74%)	Cybersecurity
11	31 (22.30%)	Continuous Improvement
11	31 (22.30%)	Scrum
12	28 (20.14%)	Problem-Solving
13	27 (19.42%)	Vulnerability Management
14	26 (18.71%)	Information Security
14	26 (18.71%)	Infrastructure as Code
15	24 (17.27%)	Cloud Security
15	24 (17.27%)	Coaching
15	24 (17.27%)	Creative Thinking

Programming Languages
1	32 (23.02%)	Python
2	31 (22.30%)	Java
3	24 (17.27%)	JavaScript
3	24 (17.27%)	PowerShell
4	13 (9.35%)	SQL
5	11 (7.91%)	C#
5	11 (7.91%)	TypeScript
6	10 (7.19%)	Bash
7	4 (2.88%)	Go
8	2 (1.44%)	Shell Script
8	2 (1.44%)	T-SQL
8	2 (1.44%)	XAML
9	1 (0.72%)	C
9	1 (0.72%)	C++
9	1 (0.72%)	PHP

Qualifications
1	26 (18.71%)	Degree
2	21 (15.11%)	Computer Science Degree
2	21 (15.11%)	Security Cleared
3	18 (12.95%)	CISSP
4	14 (10.07%)	Master's Degree
5	13 (9.35%)	CISM
6	11 (7.91%)	CRISC
7	10 (7.19%)	DV Cleared
7	10 (7.19%)	SC Cleared
8	8 (5.76%)	AWS Certification
9	4 (2.88%)	CompTIA Security+
10	3 (2.16%)	(ISC)2 CCSP
10	3 (2.16%)	Cisco Certification
11	2 (1.44%)	Azure Certification
11	2 (1.44%)	CCSP
11	2 (1.44%)	CompTIA CySA+
11	2 (1.44%)	ISTQB
11	2 (1.44%)	ISTQB Foundation Certification
12	1 (0.72%)	CISA
12	1 (0.72%)	ITIL Certification

Quality Assurance & Compliance
1	51 (36.69%)	ISO/IEC 27001
2	36 (25.90%)	NIST
3	27 (19.42%)	NCSC
4	17 (12.23%)	Accessibility
4	17 (12.23%)	QA
5	14 (10.07%)	Cyber Essentials
6	12 (8.63%)	Cyber Essentials PLUS
6	12 (8.63%)	GDPR
6	12 (8.63%)	ISO/IEC 27002 (supersedes ISO/IEC 17799)
6	12 (8.63%)	PCI DSS
6	12 (8.63%)	SOC 2
7	10 (7.19%)	WCAG
8	7 (5.04%)	GRC
9	3 (2.16%)	SLA
10	2 (1.44%)	ISO/IEC 42001
11	1 (0.72%)	COBIT
11	1 (0.72%)	HIPAA
11	1 (0.72%)	ISO 31000
11	1 (0.72%)	ISO/IEC 27005
11	1 (0.72%)	NIST 800

System Software
1	17 (12.23%)	Docker
2	2 (1.44%)	Active Directory
3	1 (0.72%)	Squid
3	1 (0.72%)	vCloud
3	1 (0.72%)	VMware Infrastructure

Systems Management
1	27 (19.42%)	Terraform
2	24 (17.27%)	Kubernetes
3	13 (9.35%)	Grafana
4	5 (3.60%)	Prometheus
5	4 (2.88%)	Cilium
6	3 (2.16%)	Ansible
6	3 (2.16%)	Nessus
7	2 (1.44%)	Argo
7	2 (1.44%)	CASB
7	2 (1.44%)	Docker Swarm
8	1 (0.72%)	Kibana
8	1 (0.72%)	Nmap

Vendors
1	25 (17.99%)	Microsoft
2	13 (9.35%)	Oracle
3	8 (5.76%)	Atlassian
4	7 (5.04%)	Qualys
4	7 (5.04%)	Salesforce
5	5 (3.60%)	Checkmarx
6	2 (1.44%)	Dynatrace
6	2 (1.44%)	Google
6	2 (1.44%)	iManage
6	2 (1.44%)	SendGrid
7	1 (0.72%)	Adobe
7	1 (0.72%)	Fortinet
7	1 (0.72%)	Imperva
7	1 (0.72%)	OpenAI
7	1 (0.72%)	SAP
7	1 (0.72%)	Splunk
7	1 (0.72%)	Thales
7	1 (0.72%)	Trend Micro
7	1 (0.72%)	VMware
7	1 (0.72%)	Zscaler

Open Web Application Security Project (OWASP)UK

All Process & Methodology SkillsUK

OWASPJob Vacancy Trend

OWASPSalary Trend

OWASPSalary Histogram

OWASPTop 17 Job Locations

OWASPTop 30 Co-Occurring Skills & Capabilities

OWASPCo-Occurring Skills & Capabilities by Category