Period
to 12 December 2019

The following table provides summary statistics for permanent job vacancies with a requirement for PCI DSS skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited PCI DSS over the 6 months to 12 December 2019 with a comparison to the same period in the previous 2 years.

Payment Card Industry Data Security Standard (PCI DSS)
UK
6 months to
12 Dec 2019
Same period 2018 Same period 2017
Rank 391 361 352
Rank change year-on-year -30 -9 -68
Permanent jobs citing PCI DSS 1,013 1,376 1,619
As % of all permanent IT jobs advertised in the UK 0.76% 0.86% 0.90%
As % of the Quality Assurance & Compliance category 6.00% 6.34% 7.15%
Number of salaries quoted 740 1,109 1,322
UK median annual salary £57,500 £57,500 £55,000
Median salary % change year-on-year - +4.55% -
10th Percentile £35,000 £37,000 £35,000
90th Percentile £85,150 £85,000 £80,000
UK excluding London median annual salary £55,000 £50,000 £50,000
% change year-on-year +10.00% - -4.76%

PCI DSS is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 16,877 21,712 22,637
As % of all permanent IT jobs advertised in the UK 12.68% 13.61% 12.62%
Number of salaries quoted 12,890 16,185 17,086
UK median annual salary £50,000 £50,000 £50,000
10th Percentile £28,500 £27,500 £27,500
90th Percentile £82,500 £80,000 £77,500
UK excluding London median annual salary £45,000 £45,000 £42,500
% change year-on-year - +5.88% -

PCI DSS
Job Vacancy Trend

Job postings citing PCI DSS as a percentage of all IT jobs advertised.

Job vacancy trend for PCI DSS in the UK

PCI DSS
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing PCI DSS.

Salary trend for PCI DSS in the UK

PCI DSS
Salary Histogram

The salary distribution of IT jobs citing PCI DSS over the 6 months to 12 December 2019.

Salary histogram for PCI DSS in the UK

PCI DSS
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing PCI DSS within the UK over the 6 months to 12 December 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -40 933 £57,500 +2.68% 121
UK excluding London -19 641 £55,000 +10.00% 98
London +8 326 £68,500 -2.14% 27
South East +35 222 £55,000 -4.35% 28
North of England -63 137 £55,000 +22.22% 25
Midlands +10 127 £55,000 +15.79% 22
West Midlands -3 87 £56,000 +17.89% 16
North West -76 72 £55,000 +22.22% 18
Yorkshire -5 63 £55,000 +22.22% 7
East of England +31 60 £55,000 +1.85% 9
South West -3 60 £42,500 -22.73% 10
East Midlands +14 40 £46,250 -15.91% 6
Scotland +29 25 £60,000 +27.66% 4
Wales +4 8 £43,250 +1.76%
Northern Ireland +7 2 £35,000 -

For the 6 months to 12 December 2019, IT jobs citing PCI DSS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for PCI DSS.

1 580 (57.26%) Information Security
2 562 (55.48%) ISO/IEC 27001
3 310 (30.60%) GDPR
4 302 (29.81%) CISSP
5 280 (27.64%) Finance
6 278 (27.44%) Cybersecurity
7 273 (26.95%) Firewall
8 265 (26.16%) CISM
9 199 (19.64%) NIST
10 196 (19.35%) Azure
11 193 (19.05%) Windows
12 178 (17.57%) SIEM
13 160 (15.79%) ITIL
14 155 (15.30%) Risk Management
15 153 (15.10%) Penetration Testing
16 148 (14.61%) Microsoft
17 146 (14.41%) Agile Software Development
18 145 (14.31%) Degree
19 144 (14.22%) Vulnerability Management
20 138 (13.62%) CISA
21 134 (13.23%) Data Protection
22 132 (13.03%) Active Directory
23 125 (12.34%) AWS
24 123 (12.14%) Security Architecture
25 122 (12.04%) Retail
26 119 (11.75%) Stakeholder Management
27 114 (11.25%) Management Information System
28 108 (10.66%) Security Operations
29 102 (10.07%) Security Management
30 99 (9.77%) Linux

PCI DSS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 42 (4.15%) MS Exchange
2 26 (2.57%) IIS
3 19 (1.88%) Exchange Server 2013
4 18 (1.78%) Exchange Server 2010
5 11 (1.09%) SharePoint
6 9 (0.89%) Tomcat
7 7 (0.69%) Apache
8 6 (0.59%) WebSphere
9 4 (0.39%) MediaWiki
10 3 (0.30%) nginx
11 2 (0.20%) Confluence
11 2 (0.20%) SAS
11 2 (0.20%) Skype for Business
12 1 (0.099%) Elasticsearch
Applications
1 11 (1.09%) Microsoft Office
2 6 (0.59%) Microsoft Excel
3 1 (0.099%) Microsoft PowerPoint
3 1 (0.099%) Spreadsheet
Business Applications
1 6 (0.59%) SAP Hybris
2 3 (0.30%) NetSuite
3 1 (0.099%) Dynamics CRM
Cloud Services
1 196 (19.35%) Azure
2 125 (12.34%) AWS
3 93 (9.18%) Office 365
4 57 (5.63%) SaaS
5 50 (4.94%) Cloud Computing
6 36 (3.55%) GCP
7 26 (2.57%) PaaS
8 24 (2.37%) IaaS
9 19 (1.88%) Amazon EC2
10 18 (1.78%) AWS CloudFormation
11 12 (1.18%) Virtual Private Cloud
12 11 (1.09%) Amazon S3
13 10 (0.99%) Dynamics 365
14 9 (0.89%) Amazon SQS
14 9 (0.89%) G Suite
14 9 (0.89%) GitHub
15 8 (0.79%) Akamai
15 8 (0.79%) Amazon Kinesis
15 8 (0.79%) AWS CloudTrail
16 5 (0.49%) Serverless
Communications & Networking
1 273 (26.95%) Firewall
2 93 (9.18%) DNS
3 88 (8.69%) LAN
4 86 (8.49%) Network Security
5 83 (8.19%) TCP/IP
5 83 (8.19%) WAN
6 75 (7.40%) VPN
7 64 (6.32%) DHCP
8 48 (4.74%) Intrusion Detection
9 44 (4.34%) HTTP
10 31 (3.06%) Internet
11 30 (2.96%) SSL
12 26 (2.57%) Cisco ASA
13 24 (2.37%) IPsec
14 23 (2.27%) FTP
15 22 (2.17%) Wireless
16 20 (1.97%) BGP
17 17 (1.68%) VLAN
18 16 (1.58%) MPLS
19 14 (1.38%) VoIP
Database & Business Intelligence
1 40 (3.95%) SQL Server
2 33 (3.26%) MySQL
3 11 (1.09%) Amazon RDS
3 11 (1.09%) Big Data
3 11 (1.09%) PostgreSQL
4 10 (0.99%) Maltego
5 9 (0.89%) SQL Server Analysis Services
5 9 (0.89%) SQL Server Reporting Services
6 8 (0.79%) Relational Database
7 6 (0.59%) SQL Server Integration Services
8 3 (0.30%) ArangoDB
8 3 (0.30%) GIS
8 3 (0.30%) MongoDB
8 3 (0.30%) SQL Server 2005
8 3 (0.30%) SQL Server 2016
9 2 (0.20%) Azure SQL Database
9 2 (0.20%) Power BI
9 2 (0.20%) SQL Server 2012
9 2 (0.20%) SQL Server 2014
10 1 (0.099%) Redis
Development Applications
1 42 (4.15%) Git (software)
2 18 (1.78%) JIRA
3 16 (1.58%) Burp Suite
3 16 (1.58%) Metasploit
4 14 (1.38%) Rational DOORS
4 14 (1.38%) Rational Rhapsody
5 10 (0.99%) Atlassian Bamboo
6 8 (0.79%) Artifactory
6 8 (0.79%) Gatling
6 8 (0.79%) Gradle
6 8 (0.79%) Jenkins
6 8 (0.79%) JUnit
6 8 (0.79%) Maven
7 7 (0.69%) Octopus Deploy
8 6 (0.59%) Bitbucket
9 5 (0.49%) Subversion
10 4 (0.39%) CircleCI
11 2 (0.20%) Sonatype Nexus
11 2 (0.20%) Team Foundation Server
11 2 (0.20%) Visual Studio Team System
General
1 280 (27.64%) Finance
2 122 (12.04%) Retail
3 70 (6.91%) Legal
4 49 (4.84%) Public Sector
5 39 (3.85%) Law
6 36 (3.55%) Banking
7 31 (3.06%) Telecoms
8 17 (1.68%) Manufacturing
9 16 (1.58%) Marketing
10 7 (0.69%) Advertising
11 5 (0.49%) Billing
11 5 (0.49%) Front Office
12 3 (0.30%) Financial Institution
13 2 (0.20%) Back Office
13 2 (0.20%) Electronics
13 2 (0.20%) Games
14 1 (0.099%) Automotive
Job Titles
1 163 (16.09%) Analyst
2 126 (12.44%) Security Analyst
3 124 (12.24%) Consultant
4 115 (11.35%) Security Consultant
5 111 (10.96%) Security Manager
6 104 (10.27%) Architect
7 83 (8.19%) Security Engineer
8 82 (8.09%) Information Security Manager
9 79 (7.80%) Information Analyst
9 79 (7.80%) Information Manager
10 77 (7.60%) Information Security Analyst
11 74 (7.31%) Security Architect
12 62 (6.12%) Infrastructure Engineer
13 58 (5.73%) Security Officer
14 53 (5.23%) Information Officer
14 53 (5.23%) Information Security Officer
15 44 (4.34%) Cybersecurity Consultant
16 40 (3.95%) Developer
17 37 (3.65%) Network Engineer
18 34 (3.36%) Senior Analyst
Libraries, Frameworks & Software Standards
1 34 (3.36%) Web Services
2 30 (2.96%) HTML
3 24 (2.37%) .NET
4 23 (2.27%) HTML5
5 19 (1.88%) CSS
5 19 (1.88%) JSON
6 16 (1.58%) OAuth
7 15 (1.48%) REST
8 14 (1.38%) AngularJS
9 13 (1.28%) jQuery
10 12 (1.18%) SOAP
10 12 (1.18%) XML
11 11 (1.09%) OAuth2
11 11 (1.09%) OpenID
11 11 (1.09%) XACML
12 10 (0.99%) Spring
13 8 (0.79%) Dropwizard
13 8 (0.79%) Hibernate
13 8 (0.79%) iOS SDK
13 8 (0.79%) Laravel
Miscellaneous
1 114 (11.25%) Management Information System
2 53 (5.23%) Analytical Skills
3 50 (4.94%) Data Protection Act
4 41 (4.05%) Self-Motivation
5 28 (2.76%) Cyberthreat
6 24 (2.37%) CESG
7 23 (2.27%) Data Centre
8 22 (2.17%) PKI
9 16 (1.58%) Distributed Denial-of-Service
9 16 (1.58%) Security Operations Centre
10 15 (1.48%) BYOD
11 13 (1.28%) Cyberattack
11 13 (1.28%) Greenfield Project
12 11 (1.09%) Hybrid Cloud
13 10 (0.99%) Cyber Kill Chain
13 10 (0.99%) Mobile App
13 10 (0.99%) SWIFT
14 9 (0.89%) Mobile Computing
14 9 (0.89%) Public Cloud
14 9 (0.89%) User Experience
Operating Systems
1 193 (19.05%) Windows
2 99 (9.77%) Linux
3 89 (8.79%) Windows Server
4 38 (3.75%) Windows Server 2012
5 34 (3.36%) Unix
6 31 (3.06%) Windows 10
7 29 (2.86%) Windows Server 2008
8 26 (2.57%) Windows 7
9 21 (2.07%) CentOS
10 13 (1.28%) Android
10 13 (1.28%) Apple iOS
11 12 (1.18%) Red Hat Enterprise Linux
11 12 (1.18%) Ubuntu
12 8 (0.79%) Embedded Linux
13 7 (0.69%) Mac OS
13 7 (0.69%) Windows Server 2003
14 4 (0.39%) Debian
15 3 (0.30%) OS/400
16 2 (0.20%) Amazon Linux
16 2 (0.20%) SUSE
Processes & Methodologies
1 580 (57.26%) Information Security
2 278 (27.44%) Cybersecurity
3 178 (17.57%) SIEM
4 160 (15.79%) ITIL
5 155 (15.30%) Risk Management
6 153 (15.10%) Penetration Testing
7 146 (14.41%) Agile Software Development
8 144 (14.22%) Vulnerability Management
9 134 (13.23%) Data Protection
10 123 (12.14%) Security Architecture
11 119 (11.75%) Stakeholder Management
12 108 (10.66%) Security Operations
13 102 (10.07%) Security Management
14 95 (9.38%) Security Testing
15 85 (8.39%) Incident Management
16 83 (8.19%) ISMS
17 77 (7.60%) Problem-Solving
18 76 (7.50%) Infrastructure Engineering
19 74 (7.31%) Data Security
20 69 (6.81%) Information Security Management
Programming Languages
1 66 (6.52%) SQL
2 50 (4.94%) PowerShell
3 35 (3.46%) Python
4 30 (2.96%) JavaScript
5 24 (2.37%) Java
6 16 (1.58%) PHP
7 12 (1.18%) C#
8 11 (1.09%) Bash Shell
9 10 (0.99%) Java 8
10 8 (0.79%) Kotlin
10 8 (0.79%) Objective-C
10 8 (0.79%) TypeScript
11 6 (0.59%) Ruby
11 6 (0.59%) VB
12 5 (0.49%) C
13 4 (0.39%) Scala
13 4 (0.39%) T-SQL
14 3 (0.30%) Perl
14 3 (0.30%) R
15 2 (0.20%) Go
Qualifications
1 302 (29.81%) CISSP
2 265 (26.16%) CISM
3 145 (14.31%) Degree
4 138 (13.62%) CISA
5 86 (8.49%) Cisco Certification
6 57 (5.63%) Security Cleared
7 50 (4.94%) CRISC
8 48 (4.74%) CEH
9 41 (4.05%) SC Cleared
10 38 (3.75%) ISO 27001 Lead Auditor
11 34 (3.36%) CCNA
12 27 (2.67%) CREST Certified
13 25 (2.47%) GIAC
13 25 (2.47%) Microsoft Certification
14 24 (2.37%) CompTIA Security+
15 22 (2.17%) SANS
16 21 (2.07%) SSCP
17 20 (1.97%) CCNP
17 20 (1.97%) CESG Certified Professional
18 18 (1.78%) MCSE
Quality Assurance & Compliance
1 562 (55.48%) ISO/IEC 27001
2 310 (30.60%) GDPR
3 199 (19.64%) NIST
4 90 (8.88%) Cyber Essentials
5 72 (7.11%) COBIT
6 57 (5.63%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 55 (5.43%) Sarbanes-Oxley
8 42 (4.15%) SLA
9 26 (2.57%) NCSC
10 25 (2.47%) HMG Security Policy Framework
10 25 (2.47%) ISO 22301
11 17 (1.68%) NIST 800
12 15 (1.48%) Cyber Essentials PLUS
13 14 (1.38%) ISO/IEC 15288
14 12 (1.18%) PSD2
15 11 (1.09%) ISO 9001
15 11 (1.09%) PA-DSS
15 11 (1.09%) QA
16 10 (0.99%) ISO 31000
16 10 (0.99%) RMADS
System Software
1 132 (13.03%) Active Directory
2 38 (3.75%) VMware Infrastructure
3 33 (3.26%) Docker
4 23 (2.27%) Virtual Machines
5 20 (1.97%) Hyper-V
6 12 (1.18%) vSphere
7 7 (0.69%) VMware ESXi
8 6 (0.59%) Terminal Services
9 5 (0.49%) VMware NSX
10 4 (0.39%) Firmware
11 3 (0.30%) VMware Server
12 2 (0.20%) BitLocker
12 2 (0.20%) KVM
12 2 (0.20%) Virtual Desktop
13 1 (0.099%) MetaFrame
13 1 (0.099%) XenApp
Systems Management
1 54 (5.33%) SCCM
2 44 (4.34%) Nessus
3 28 (2.76%) Terraform
4 24 (2.37%) Puppet
5 21 (2.07%) CASB
6 20 (1.97%) SCOrch
7 19 (1.88%) Ansible
8 17 (1.68%) SCOM
9 16 (1.58%) Nmap
10 14 (1.38%) HP Quality Center
11 13 (1.28%) Kubernetes
12 12 (1.18%) FortiGate
13 10 (0.99%) OpenVAS
14 8 (0.79%) Opscode Chef
15 7 (0.69%) Stealthwatch
15 7 (0.69%) Symantec Endpoint Protection
16 6 (0.59%) Cisco CUCM
16 6 (0.59%) Microsoft Data Protection Manager
17 4 (0.39%) Docker Swarm
17 4 (0.39%) Salt
Vendors
1 148 (14.61%) Microsoft
2 74 (7.31%) Cisco
3 59 (5.82%) VMware
4 50 (4.94%) Palo Alto
5 41 (4.05%) Splunk
6 36 (3.55%) Google
7 34 (3.36%) Qualys
8 30 (2.96%) Symantec
9 29 (2.86%) CheckPoint
10 26 (2.57%) Fortinet
11 24 (2.37%) HP
11 24 (2.37%) Juniper
12 23 (2.27%) IBM
13 22 (2.17%) McAfee
14 20 (1.97%) Apple
14 20 (1.97%) CyberArk
15 19 (1.88%) SolarWinds
16 18 (1.78%) Meraki
17 15 (1.48%) SonicWALL
18 14 (1.38%) F5