Period
to 25 May 2019

The following table provides summary statistics for permanent job vacancies with a requirement for PCI DSS skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited PCI DSS over the 6 months to 25 May 2019 with a comparison to the same period in the previous 2 years.

Payment Card Industry Data Security Standard (PCI DSS)
UK
6 months to
25 May 2019
Same period 2018 Same period 2017
Rank 397 357 361
Rank change year-on-year -40 +4 -61
Permanent jobs citing PCI DSS 1,086 1,524 1,489
As % of all permanent IT jobs advertised in the UK 0.75% 0.88% 0.88%
As % of the Quality Assurance & Compliance category 5.40% 6.85% 7.35%
Number of salaries quoted 784 1,197 1,245
UK median annual salary £60,000 £57,500 £55,000
Median salary % change year-on-year +4.35% +4.55% +1.85%
10th Percentile £35,900 £37,500 £36,250
90th Percentile £91,250 £85,000 £75,000
UK excluding London median annual salary £52,000 £51,500 £50,000
% change year-on-year +0.97% +3.00% -4.76%

PCI DSS is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 20,110 22,248 20,260
As % of all permanent IT jobs advertised in the UK 13.86% 12.79% 11.98%
Number of salaries quoted 14,589 17,111 15,849
UK median annual salary £50,000 £50,000 £47,500
Median salary % change year-on-year - +5.26% -
10th Percentile £27,500 £28,000 £26,250
90th Percentile £82,500 £80,000 £77,500
UK excluding London median annual salary £45,000 £45,000 £40,000
% change year-on-year - +12.50% -5.88%

PCI DSS
Job Vacancy Trend

Job postings citing PCI DSS as a percentage of all IT jobs advertised.

Job vacancy trend for PCI DSS in the UK

PCI DSS
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing PCI DSS.

Salary trend for PCI DSS in the UK

PCI DSS
Salary Histogram

The salary distribution of IT jobs citing PCI DSS over the 6 months to 25 May 2019.

Salary histogram for PCI DSS in the UK

PCI DSS
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing PCI DSS within the UK over the 6 months to 25 May 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -42 1,032 £60,000 +4.35% 35
UK excluding London +6 703 £52,000 +0.97% 26
London -88 334 £67,500 +3.85% 12
South East -7 199 £55,000 - 3
North of England -40 156 £45,000 - 6
East of England +86 125 £73,750 +31.11% 3
Midlands +11 120 £45,000 -10.00% 8
North West +49 110 £45,000 -18.18% 4
West Midlands 0 80 £45,000 -18.18% 5
South West +61 75 £48,500 +2.65% 3
Yorkshire -82 45 £46,500 +3.33% 2
East Midlands +34 30 £77,500 +63.16% 3
Scotland +22 23 £35,359 -41.07% 3
Wales +13 5 £72,500 +54.26%
North East +13 1 £70,000 +0.36%

For the 6 months to 25 May 2019, IT jobs citing PCI DSS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for PCI DSS.

1 570 (52.49%) ISO/IEC 27001
2 559 (51.47%) Information Security
3 358 (32.97%) CISSP
4 335 (30.85%) GDPR
5 287 (26.43%) Risk Management
6 271 (24.95%) Cybersecurity
7 263 (24.22%) CISM
8 253 (23.30%) Finance
9 220 (20.26%) Penetration Testing
10 206 (18.97%) ITIL
11 198 (18.23%) Windows
12 183 (16.85%) CISA
13 180 (16.57%) Management Information System
14 178 (16.39%) Microsoft
15 176 (16.21%) Agile Software Development
16 175 (16.11%) Data Protection
17 173 (15.93%) Firewall
18 161 (14.83%) Retail
19 157 (14.46%) Microsoft Azure
19 157 (14.46%) SIEM
20 156 (14.36%) Amazon AWS
21 144 (13.26%) Cisco
22 137 (12.62%) VMware
23 133 (12.25%) Security Testing
24 132 (12.15%) Linux
25 124 (11.42%) Active Directory
26 123 (11.33%) Degree
26 123 (11.33%) Security Operations
27 119 (10.96%) Security Architecture
28 109 (10.04%) Sarbanes-Oxley

PCI DSS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 40 (3.68%) IIS
2 24 (2.21%) MS Exchange
2 24 (2.21%) SharePoint
3 14 (1.29%) Apache
4 11 (1.01%) Blackberry Enterprise Server
5 7 (0.64%) Confluence
6 6 (0.55%) Exchange Server 2013
7 4 (0.37%) Apache Solr
7 4 (0.37%) Apache Spark
7 4 (0.37%) Exchange Server 2010
7 4 (0.37%) JBoss
7 4 (0.37%) SharePoint 2010
7 4 (0.37%) Tomcat
7 4 (0.37%) WebSphere
8 2 (0.18%) nginx
8 2 (0.18%) OpenStack
9 1 (0.092%) BizTalk Server
9 1 (0.092%) Camunda
9 1 (0.092%) Elasticsearch
9 1 (0.092%) Skype for Business
Applications
1 23 (2.12%) Microsoft PowerPoint
2 19 (1.75%) Microsoft Office
3 4 (0.37%) MS Visio
4 3 (0.28%) Microsoft Excel
5 1 (0.092%) Microsoft Project
Business Applications
1 7 (0.64%) Payment Gateway
2 5 (0.46%) Dynamics CRM
2 5 (0.46%) NetSuite
3 3 (0.28%) Unit4 Business World
4 2 (0.18%) CSG Singleview
4 2 (0.18%) Postilion
5 1 (0.092%) Magento
Cloud Services
1 157 (14.46%) Microsoft Azure
2 156 (14.36%) Amazon AWS
3 61 (5.62%) Office 365
4 35 (3.22%) Google Cloud Platform
5 30 (2.76%) SaaS
6 22 (2.03%) IaaS
7 21 (1.93%) Cloud Computing
8 15 (1.38%) PaaS
9 10 (0.92%) Mimecast
10 7 (0.64%) OpenShift
11 6 (0.55%) OneDrive
12 5 (0.46%) AWS CloudFormation
13 4 (0.37%) AWS Lambda
13 4 (0.37%) Power Platform
13 4 (0.37%) Serverless
14 3 (0.28%) Amazon EC2
14 3 (0.28%) Amazon S3
14 3 (0.28%) Azure Active Directory
14 3 (0.28%) G Suite
14 3 (0.28%) Slack
Communications & Networking
1 173 (15.93%) Firewall
2 104 (9.58%) Network Security
3 62 (5.71%) DNS
4 57 (5.25%) TCP/IP
5 48 (4.42%) HTTP
6 45 (4.14%) VPN
7 42 (3.87%) WAN
8 39 (3.59%) DHCP
9 38 (3.50%) VLAN
10 37 (3.41%) SAN
11 36 (3.31%) Intrusion Detection
12 35 (3.22%) LAN
12 35 (3.22%) VoIP
13 34 (3.13%) Wi-Fi
14 29 (2.67%) Cisco ASA
15 26 (2.39%) Wireless
16 19 (1.75%) Cisco Nexus
16 19 (1.75%) Internet
17 18 (1.66%) BGP
18 17 (1.57%) HTTPS
Database & Business Intelligence
1 65 (5.99%) SQL Server
2 18 (1.66%) MySQL
3 13 (1.20%) Big Data
4 11 (1.01%) SQL Server 2008
4 11 (1.01%) SQL Server 2012
5 7 (0.64%) Data Lake
5 7 (0.64%) Data Warehouse
5 7 (0.64%) Hadoop
5 7 (0.64%) NoSQL
6 5 (0.46%) Amazon RDS
6 5 (0.46%) PostgreSQL
7 4 (0.37%) Apache Hive
7 4 (0.37%) BigQuery
7 4 (0.37%) Data Mart
7 4 (0.37%) HBase
7 4 (0.37%) MongoDB
7 4 (0.37%) Oracle Database
7 4 (0.37%) Oracle Database 11g
7 4 (0.37%) Relational Database
7 4 (0.37%) SQL Server Integration Services
Development Applications
1 23 (2.12%) JIRA
2 21 (1.93%) Git (software)
3 15 (1.38%) Team Foundation Server
4 13 (1.20%) Jenkins
5 12 (1.10%) SonarQube
6 11 (1.01%) GitLab
6 11 (1.01%) Subversion
7 10 (0.92%) Visual Studio Team System
8 7 (0.64%) TeamCity
8 7 (0.64%) Visual Studio
9 6 (0.55%) Burp Suite
9 6 (0.55%) Metasploit
9 6 (0.55%) Octopus Deploy
9 6 (0.55%) Sonatype Nexus
10 5 (0.46%) Rational DOORS
10 5 (0.46%) Rational Rhapsody
11 3 (0.28%) AppScan
12 2 (0.18%) Hudson
12 2 (0.18%) JUnit
12 2 (0.18%) Maven
General
1 253 (23.30%) Finance
2 161 (14.83%) Retail
3 89 (8.20%) Legal
4 61 (5.62%) Telecoms
5 45 (4.14%) Marketing
6 31 (2.85%) Banking
7 13 (1.20%) Manufacturing
8 10 (0.92%) Local Government
9 9 (0.83%) French Language
9 9 (0.83%) German Language
9 9 (0.83%) Italian Language
9 9 (0.83%) Spanish Language
10 8 (0.74%) Back Office
10 8 (0.74%) Electronics
11 7 (0.64%) Law
12 5 (0.46%) Multimedia
13 4 (0.37%) Financial Institution
13 4 (0.37%) Games
14 3 (0.28%) Front Office
15 2 (0.18%) Billing
Job Titles
1 203 (18.69%) Analyst
2 165 (15.19%) Security Manager
3 164 (15.10%) Security Analyst
4 135 (12.43%) Consultant
5 126 (11.60%) Architect
6 120 (11.05%) Information Manager
7 119 (10.96%) Information Security Manager
8 114 (10.50%) Security Consultant
9 79 (7.27%) Information Analyst
9 79 (7.27%) Information Security Analyst
10 73 (6.72%) Security Architect
11 59 (5.43%) Senior Analyst
12 57 (5.25%) Security Engineer
13 56 (5.16%) Information Security Consultant
14 52 (4.79%) Senior Security Analyst
15 49 (4.51%) Tester
16 46 (4.24%) Penetration Tester
17 45 (4.14%) IT Analyst
18 39 (3.59%) Infrastructure Engineer
18 39 (3.59%) IT Security Analyst
Libraries, Frameworks & Software Standards
1 33 (3.04%) Web Services
2 24 (2.21%) .NET
3 18 (1.66%) JSON
4 17 (1.57%) OAuth
5 16 (1.47%) .NET Framework
5 16 (1.47%) XML
6 12 (1.10%) CSS
7 10 (0.92%) jQuery
7 10 (0.92%) OAuth2
7 10 (0.92%) OpenID
7 10 (0.92%) XACML
8 9 (0.83%) HTML
9 8 (0.74%) SAML
10 7 (0.64%) LDAP
10 7 (0.64%) Spring
11 6 (0.55%) Kafka
11 6 (0.55%) SOAP
12 5 (0.46%) HTML5
12 5 (0.46%) Middleware
12 5 (0.46%) RabbitMQ
Miscellaneous
1 180 (16.57%) Management Information System
2 63 (5.80%) Analytical Skills
3 55 (5.06%) Data Centre
4 46 (4.24%) Self-Motivation
5 38 (3.50%) Mobile App
6 36 (3.31%) PKI
7 33 (3.04%) Data Protection Act
7 33 (3.04%) Fintech
8 26 (2.39%) Cyber Kill Chain
8 26 (2.39%) Cyberthreat
9 23 (2.12%) Security Operations Centre
10 21 (1.93%) Cyberattack
11 19 (1.75%) BYOD
11 19 (1.75%) Driving Licence
11 19 (1.75%) Private Cloud
11 19 (1.75%) Public Cloud
12 17 (1.57%) Hybrid Cloud
13 14 (1.29%) User Experience
14 12 (1.10%) Distributed Denial-of-Service
15 10 (0.92%) CESG
Operating Systems
1 198 (18.23%) Windows
2 132 (12.15%) Linux
3 103 (9.48%) Windows Server
4 38 (3.50%) Windows Server 2012
5 37 (3.41%) Unix
6 36 (3.31%) CentOS
7 26 (2.39%) Red Hat Enterprise Linux
8 16 (1.47%) Ubuntu
9 13 (1.20%) Android
9 13 (1.20%) Windows Server 2008
10 12 (1.10%) Apple iOS
10 12 (1.10%) Windows 10
11 11 (1.01%) Mac OS X
11 11 (1.01%) Solaris
12 10 (0.92%) Mac OS
13 9 (0.83%) Debian
14 8 (0.74%) Windows 7
14 8 (0.74%) Windows 8
15 7 (0.64%) SUSE
16 5 (0.46%) Windows Server 2003
Processes & Methodologies
1 559 (51.47%) Information Security
2 287 (26.43%) Risk Management
3 271 (24.95%) Cybersecurity
4 220 (20.26%) Penetration Testing
5 206 (18.97%) ITIL
6 176 (16.21%) Agile Software Development
7 175 (16.11%) Data Protection
8 157 (14.46%) SIEM
9 133 (12.25%) Security Testing
10 123 (11.33%) Security Operations
11 119 (10.96%) Security Architecture
12 103 (9.48%) Security Management
13 102 (9.39%) Vulnerability Management
14 99 (9.12%) DevOps
15 93 (8.56%) OWASP
16 85 (7.83%) Mentoring
17 80 (7.37%) Stakeholder Management
18 74 (6.81%) Data Privacy
19 72 (6.63%) ISMS
20 70 (6.45%) Information Security Management
Programming Languages
1 66 (6.08%) SQL
2 61 (5.62%) PowerShell
3 48 (4.42%) Python
4 38 (3.50%) Java
5 24 (2.21%) Ruby
6 23 (2.12%) JavaScript
7 21 (1.93%) Perl
8 19 (1.75%) C#
8 19 (1.75%) PHP
9 16 (1.47%) Bash Shell
10 9 (0.83%) Shell Script
11 6 (0.55%) VB
12 4 (0.37%) C
13 2 (0.18%) PL/SQL
13 2 (0.18%) T-SQL
13 2 (0.18%) VB.NET
Qualifications
1 358 (32.97%) CISSP
2 263 (24.22%) CISM
3 183 (16.85%) CISA
4 123 (11.33%) Degree
5 97 (8.93%) Cisco Certification
6 93 (8.56%) Security Cleared
7 76 (7.00%) CREST Certified
8 60 (5.52%) CRISC
9 58 (5.34%) SC Cleared
10 53 (4.88%) Microsoft Certification
10 53 (4.88%) SANS
11 37 (3.41%) CCNA
12 36 (3.31%) Computer Science Degree
13 35 (3.22%) (ISC)2 CCSP
14 34 (3.13%) CEH
15 30 (2.76%) CCSP
16 29 (2.67%) MCSE
17 27 (2.49%) CCNP
17 27 (2.49%) MCSA
18 24 (2.21%) ISO 27001 Lead Auditor
Quality Assurance & Compliance
1 570 (52.49%) ISO/IEC 27001
2 335 (30.85%) GDPR
3 109 (10.04%) Sarbanes-Oxley
4 98 (9.02%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 77 (7.09%) Cyber Essentials
6 45 (4.14%) COBIT
7 44 (4.05%) SLA
8 29 (2.67%) ISO 22301
9 28 (2.58%) ISO 9001
10 18 (1.66%) HIPAA
10 18 (1.66%) HMG Security Policy Framework
11 16 (1.47%) PA-DSS
11 16 (1.47%) QA
12 15 (1.38%) RMADS
13 13 (1.20%) ISAE 3402
14 12 (1.10%) ISO 31000
15 10 (0.92%) PSD2
16 8 (0.74%) ISO/IEC 27005
16 8 (0.74%) SAS 70
17 5 (0.46%) ISO/IEC 15288
System Software
1 124 (11.42%) Active Directory
2 87 (8.01%) VMware Infrastructure
3 46 (4.24%) Hyper-V
4 24 (2.21%) Docker
5 20 (1.84%) vSphere
6 13 (1.20%) VMware NSX
7 12 (1.10%) Firmware
8 7 (0.64%) ISA Server
8 7 (0.64%) KVM
8 7 (0.64%) Snort
8 7 (0.64%) Terminal Services
9 4 (0.37%) HDFS
9 4 (0.37%) NFS
9 4 (0.37%) Virtual Machines
10 3 (0.28%) Microsoft App-V
10 3 (0.28%) Virtual Desktop
10 3 (0.28%) Virtual Servers
10 3 (0.28%) VMware ESXi
10 3 (0.28%) XenApp
11 2 (0.18%) Oracle RAC
Systems Management
1 29 (2.67%) Nessus
2 23 (2.12%) Kubernetes
3 22 (2.03%) SCCM
4 18 (1.66%) Puppet
5 17 (1.57%) Ansible
6 14 (1.29%) WSUS
7 13 (1.20%) Docker Swarm
7 13 (1.20%) IBM Guardium
7 13 (1.20%) Terraform
8 12 (1.10%) SCOM
9 11 (1.01%) Nmap
9 11 (1.01%) Perfmon
10 10 (0.92%) Opscode Chef
10 10 (0.92%) Symantec Endpoint Protection
10 10 (0.92%) vRealize
11 9 (0.83%) CASB
12 8 (0.74%) Stealthwatch
12 8 (0.74%) Trend Micro Deep Security
13 6 (0.55%) QRadar
13 6 (0.55%) RSA Archer
Vendors
1 178 (16.39%) Microsoft
2 144 (13.26%) Cisco
3 137 (12.62%) VMware
4 38 (3.50%) Qualys
4 38 (3.50%) Splunk
5 35 (3.22%) McAfee
6 33 (3.04%) Google
7 29 (2.67%) F5
8 26 (2.39%) HP
9 25 (2.30%) IBM
9 25 (2.30%) Juniper
9 25 (2.30%) Palo Alto
10 24 (2.21%) CheckPoint
11 23 (2.12%) Oracle
12 22 (2.03%) Red Hat
13 20 (1.84%) ArcSight
14 19 (1.75%) Citrix
14 19 (1.75%) Dell
15 16 (1.47%) Trend Micro
15 16 (1.47%) Tripwire