Period
to

The following table provides summary statistics for permanent job vacancies with a requirement for PCI DSS skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited PCI DSS over the 6 months to 23 May 2022 with a comparison to the same period in the previous 2 years.

Payment Card Industry Data Security Standard (PCI DSS)
UK
6 months to
23 May 2022
Same period 2021 Same period 2020
Rank 587 457 380
Rank change year-on-year -130 -77 +38
Permanent jobs citing PCI DSS 820 534 730
As % of all permanent jobs advertised in the UK 0.50% 0.58% 0.79%
As % of the Quality Assurance & Compliance category 2.95% 4.39% 6.06%
Number of salaries quoted 535 390 548
10th Percentile £37,500 £36,250 £41,250
25th Percentile £47,500 £45,000 £46,250
Median annual salary (50th Percentile) £60,000 £57,999 £60,000
Median % change year-on-year +3.45% -3.34% -
75th Percentile £80,000 £68,750 £75,000
90th Percentile £90,000 £89,200 £85,375
UK excluding London median annual salary £60,000 £50,000 £55,000
% change year-on-year +20.00% -9.09% +6.41%

PCI DSS is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 27,750 12,155 12,041
As % of all permanent IT jobs advertised in the UK 17.03% 13.23% 12.96%
Number of salaries quoted 13,170 8,239 9,279
10th Percentile £31,250 £31,250 £30,000
25th Percentile £41,250 £41,000 £38,750
Median annual salary (50th Percentile) £55,000 £52,500 £52,500
Median % change year-on-year +4.76% - +5.00%
75th Percentile £73,750 £70,000 £70,000
90th Percentile £90,000 £85,000 £85,000
UK excluding London median annual salary £47,665 £47,500 £47,500
% change year-on-year +0.35% - +5.56%

PCI DSS
Job Vacancy Trend

Job postings citing PCI DSS as a proportion of all IT jobs advertised.

Job vacancy trend for PCI DSS in the UK

PCI DSS
Salary Trend

3-month moving average salary quoted in jobs citing PCI DSS.

Salary trend for PCI DSS in the UK

PCI DSS
Salary Histogram

Salary distribution for jobs citing PCI DSS over the 6 months to 23 May 2022.

Salary histogram for PCI DSS in the UK

PCI DSS
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing PCI DSS within the UK over the 6 months to 23 May 2022. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
England -101 729 £60,000 +4.35% 54
UK excluding London -39 455 £60,000 +20.00% 40
Work from Home -164 323 £60,000 - 23
London -177 287 £70,000 +7.69% 20
North of England -9 158 £52,500 +16.67% 17
South East -16 132 £60,000 +2.57% 6
North West -32 89 £52,500 +16.67% 12
Yorkshire -8 68 £55,000 +4.76% 5
Midlands -76 68 £55,000 - 7
West Midlands -30 52 £51,250 -6.82% 4
South West -39 45 £70,000 +40.00% 2
East of England -67 34 £75,000 +42.86% 2
Wales -17 24 £80,000 +36.75% 3
East Midlands -50 16 £57,500 +30.68% 3
Scotland -67 9 £65,000 - 3
North East -19 1 £40,000 +4.58%

For the 6 months to 23 May 2022, IT jobs citing PCI DSS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for PCI DSS.

1 435 (53.05%) ISO/IEC 27001
2 374 (45.61%) Information Security
3 320 (39.02%) Cybersecurity
4 304 (37.07%) GDPR
5 270 (32.93%) Azure
6 251 (30.61%) NIST
7 240 (29.27%) Finance
8 233 (28.41%) AWS
9 210 (25.61%) CISSP
10 168 (20.49%) Risk Management
11 166 (20.24%) Firewall
12 164 (20.00%) Penetration Testing
12 164 (20.00%) Data Protection
13 159 (19.39%) Agile
14 156 (19.02%) Microsoft
15 154 (18.78%) SIEM
16 150 (18.29%) Social Skills
17 143 (17.44%) Linux
18 138 (16.83%) DevOps
19 137 (16.71%) Windows
20 136 (16.59%) Cyber Essentials
21 125 (15.24%) Management Information System
22 123 (15.00%) CI/CD
23 114 (13.90%) OWASP
24 109 (13.29%) CISM
25 108 (13.17%) Mentoring
26 107 (13.05%) Security Operations
27 102 (12.44%) Terraform
28 101 (12.32%) Microsoft 365
29 97 (11.83%) Threat Modelling

PCI DSS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 19 (2.32%) CMS
2 15 (1.83%) Apache Airflow
3 14 (1.71%) Apache Spark
3 14 (1.71%) OpenStack
4 13 (1.59%) ColdFusion
4 13 (1.59%) MS Exchange
4 13 (1.59%) Sitecore CMS
5 11 (1.34%) IIS
6 7 (0.85%) SharePoint
6 7 (0.85%) Tomcat
7 6 (0.73%) JBoss
7 6 (0.73%) WebSphere
8 5 (0.61%) MTS
9 4 (0.49%) Elasticsearch
10 3 (0.37%) Apache
10 3 (0.37%) Apache Pulsar
11 2 (0.24%) OpenEdge
12 1 (0.12%) nginx
12 1 (0.12%) Oracle Coherence
12 1 (0.12%) WebLogic
Applications
1 21 (2.56%) Microsoft Excel
2 11 (1.34%) Microsoft Office
3 1 (0.12%) Microsoft PowerPoint
3 1 (0.12%) MS Visio
3 1 (0.12%) Spreadsheet
Business Applications
1 18 (2.20%) Sentinel
2 7 (0.85%) Magento
3 6 (0.73%) Odoo
3 6 (0.73%) Payment Gateway
4 2 (0.24%) Dynamics CRM
5 1 (0.12%) Dynamics NAV
5 1 (0.12%) SAP CRM
Cloud Services
1 270 (32.93%) Azure
2 233 (28.41%) AWS
3 101 (12.32%) Microsoft 365
4 78 (9.51%) Serverless
5 61 (7.44%) SaaS
6 53 (6.46%) GCP
7 41 (5.00%) Azure Active Directory
7 41 (5.00%) GitHub
8 34 (4.15%) Azure Sentinel
9 31 (3.78%) PaaS
10 29 (3.54%) AWS CloudFormation
11 23 (2.80%) Amazon S3
12 21 (2.56%) IaaS
13 17 (2.07%) Mimecast
14 15 (1.83%) Cloud Computing
14 15 (1.83%) OpenShift
14 15 (1.83%) Snowflake
15 14 (1.71%) Amazon Kinesis
15 14 (1.71%) AWS Lambda
15 14 (1.71%) dbt
Communications & Networking
1 166 (20.24%) Firewall
2 45 (5.49%) Network Security
3 44 (5.37%) Internet
4 41 (5.00%) Intrusion Detection
5 35 (4.27%) WAN
6 27 (3.29%) SSL
7 25 (3.05%) VPN
8 24 (2.93%) SAN
9 21 (2.56%) LAN
10 20 (2.44%) DHCP
10 20 (2.44%) DNS
11 18 (2.20%) VoIP
11 18 (2.20%) Wireless
12 16 (1.95%) TCP/IP
13 15 (1.83%) NAS
14 14 (1.71%) Wi-Fi
15 9 (1.10%) Software-Defined Networking
16 8 (0.98%) MPLS
16 8 (0.98%) SD-WAN
17 6 (0.73%) NFC
Database & Business Intelligence
1 35 (4.27%) SQL Server
2 30 (3.66%) Relational Database
3 24 (2.93%) RDBMS
4 23 (2.80%) NoSQL
5 22 (2.68%) Amazon RDS
6 16 (1.95%) Oracle Reports
7 15 (1.83%) Big Data
7 15 (1.83%) MySQL
8 13 (1.59%) Data Lake
8 13 (1.59%) Data Warehouse
9 10 (1.22%) Looker
10 8 (0.98%) Dremio
11 7 (0.85%) MariaDB
11 7 (0.85%) SQL Server Reporting Services
12 6 (0.73%) Amazon DynamoDB
12 6 (0.73%) Oracle Database
13 5 (0.61%) Hadoop
13 5 (0.61%) SQL Server Analysis Services
14 4 (0.49%) Amazon Redshift
14 4 (0.49%) SQL Server Integration Services
Development Applications
1 50 (6.10%) Git (software)
2 49 (5.98%) GitLab
3 23 (2.80%) Bitbucket
4 21 (2.56%) Burp Suite
5 19 (2.32%) Jenkins
6 18 (2.20%) JUnit
7 15 (1.83%) Atlassian Bamboo
7 15 (1.83%) Gradle
8 14 (1.71%) TeamCity
9 13 (1.59%) Subversion
10 11 (1.34%) JIRA
11 9 (1.10%) Artifactory
12 8 (0.98%) WebSpeed
13 7 (0.85%) ERwin
14 6 (0.73%) CMake
14 6 (0.73%) PHPUnit
15 4 (0.49%) Gatling
15 4 (0.49%) Metasploit
16 3 (0.37%) AutoIt
16 3 (0.37%) Maven
General
1 240 (29.27%) Finance
2 150 (18.29%) Social Skills
3 68 (8.29%) Legal
4 62 (7.56%) Analytical Skills
5 52 (6.34%) Manufacturing
6 43 (5.24%) Law
6 43 (5.24%) Telecoms
7 42 (5.12%) Retail
8 37 (4.51%) Banking
9 33 (4.02%) Inclusion and Diversity
10 28 (3.41%) Organisational Skills
11 26 (3.17%) Public Sector
12 17 (2.07%) Marketing
13 15 (1.83%) Games
14 14 (1.71%) Back Office
14 14 (1.71%) Influencing Skills
15 13 (1.59%) Presentation Skills
16 10 (1.22%) Financial Institution
17 8 (0.98%) Pharmaceutical
18 7 (0.85%) Electronics
Job Titles
1 124 (15.12%) Analyst
2 114 (13.90%) Security Manager
3 91 (11.10%) Security Analyst
4 82 (10.00%) Consultant
5 79 (9.63%) Architect
6 66 (8.05%) Security Engineer
7 57 (6.95%) Security Consultant
8 56 (6.83%) Security Architect
9 54 (6.59%) Cloud Engineer
10 41 (5.00%) IT Manager
11 40 (4.88%) Information Manager
11 40 (4.88%) Information Security Manager
12 38 (4.63%) Information Analyst
12 38 (4.63%) Information Security Analyst
12 38 (4.63%) Security Officer
13 37 (4.51%) Information Security Officer
14 35 (4.27%) Information Officer
15 32 (3.90%) IT Security Manager
16 31 (3.78%) Security Specialist
17 27 (3.29%) Service Security Manager
Libraries, Frameworks & Software Standards
1 41 (5.00%) .NET
2 27 (3.29%) Spring
3 25 (3.05%) OAuth
4 24 (2.93%) Kafka
4 24 (2.93%) OpenID
5 19 (2.32%) RabbitMQ
6 18 (2.20%) HTML
7 17 (2.07%) Hibernate
7 17 (2.07%) Spring Boot
8 15 (1.83%) Node.js
8 15 (1.83%) Spring MVC
9 14 (1.71%) J2EE
10 13 (1.59%) ARM Templates
10 13 (1.59%) Elastic Stack
10 13 (1.59%) GraphQL
10 13 (1.59%) Web Services
11 12 (1.46%) Mason
11 12 (1.46%) React
11 12 (1.46%) SAML
11 12 (1.46%) Yocto
Miscellaneous
1 125 (15.24%) Management Information System
2 53 (6.46%) Data Protection Act
3 47 (5.73%) Cloud Native
4 40 (4.88%) Data Centre
5 33 (4.02%) Self-Motivation
6 32 (3.90%) Hybrid Cloud
7 31 (3.78%) Mobile App
8 25 (3.05%) Public Cloud
9 19 (2.32%) Driving Licence
9 19 (2.32%) IoT
10 17 (2.07%) Virtual Team
11 15 (1.83%) Clustering
11 15 (1.83%) Greenfield Project
11 15 (1.83%) Private Cloud
12 14 (1.71%) User Experience
13 13 (1.59%) Cyberattack
14 11 (1.34%) Cyberthreat
14 11 (1.34%) Security Operations Centre
15 9 (1.10%) Distributed Denial-of-Service
15 9 (1.10%) Enterprise Cloud
Operating Systems
1 143 (17.44%) Linux
2 137 (16.71%) Windows
3 47 (5.73%) Windows Server
4 37 (4.51%) Unix
5 25 (3.05%) Kali Linux
6 21 (2.56%) CentOS
6 21 (2.56%) Red Hat Enterprise Linux
7 15 (1.83%) Oracle Linux
7 15 (1.83%) Windows Server 2019
8 10 (1.22%) Apple iOS
9 9 (1.10%) Android
9 9 (1.10%) Mac OS
10 6 (0.73%) Embedded Linux
10 6 (0.73%) OpenWrt
11 5 (0.61%) AIX
11 5 (0.61%) Ubuntu
11 5 (0.61%) Windows Server 2012
12 4 (0.49%) Windows Server 2016
13 3 (0.37%) Solaris
13 3 (0.37%) Windows Server 2003
Processes & Methodologies
1 374 (45.61%) Information Security
2 320 (39.02%) Cybersecurity
3 168 (20.49%) Risk Management
4 164 (20.00%) Data Protection
4 164 (20.00%) Penetration Testing
5 159 (19.39%) Agile
6 154 (18.78%) SIEM
7 138 (16.83%) DevOps
8 123 (15.00%) CI/CD
9 114 (13.90%) OWASP
10 108 (13.17%) Mentoring
11 107 (13.05%) Security Operations
12 97 (11.83%) Threat Modelling
13 89 (10.85%) Security Architecture
14 87 (10.61%) Data Security
15 86 (10.49%) Vulnerability Assessment
16 84 (10.24%) ITIL
17 83 (10.12%) Fintech
17 83 (10.12%) Problem-Solving
18 80 (9.76%) Infrastructure as Code
Programming Languages
1 91 (11.10%) Python
2 79 (9.63%) Java
3 68 (8.29%) SQL
4 54 (6.59%) C#
5 50 (6.10%) PowerShell
6 45 (5.49%) Bash
7 33 (4.02%) Shell Script
8 32 (3.90%) JavaScript
9 25 (3.05%) TypeScript
10 22 (2.68%) Scala
11 18 (2.20%) Go
12 16 (1.95%) C
13 15 (1.83%) Kotlin
13 15 (1.83%) Perl
14 14 (1.71%) PHP
15 9 (1.10%) Groovy
16 6 (0.73%) C++
17 3 (0.37%) AWK
17 3 (0.37%) Objective-C
17 3 (0.37%) T-SQL
Qualifications
1 210 (25.61%) CISSP
2 109 (13.29%) CISM
3 72 (8.78%) CISA
4 70 (8.54%) Degree
5 53 (6.46%) PCI QSA
6 45 (5.49%) Cisco Certification
7 34 (4.15%) GCIH
8 30 (3.66%) CEH
8 30 (3.66%) CompTIA Security+
8 30 (3.66%) Security Cleared
9 25 (3.05%) SSCP
10 24 (2.93%) CRISC
11 23 (2.80%) AWS Certification
11 23 (2.80%) OSCP
12 21 (2.56%) CISMP
13 20 (2.44%) SC Cleared
14 17 (2.07%) (ISC)2 CCSP
14 17 (2.07%) GCIA
15 16 (1.95%) GIAC
15 16 (1.95%) ISO 27001 Lead Auditor
Quality Assurance & Compliance
1 435 (53.05%) ISO/IEC 27001
2 304 (37.07%) GDPR
3 251 (30.61%) NIST
4 136 (16.59%) Cyber Essentials
5 79 (9.63%) GRC
6 32 (3.90%) Cyber Essentials PLUS
7 30 (3.66%) SOC 2
8 29 (3.54%) ISO 9001
9 26 (3.17%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
9 26 (3.17%) Sarbanes-Oxley
10 22 (2.68%) NCSC
11 18 (2.20%) PA-DSS
11 18 (2.20%) SLA
12 17 (2.07%) QA
13 15 (1.83%) COBIT
13 15 (1.83%) PSD2
14 13 (1.59%) HIPAA
14 13 (1.59%) SOC 1
15 12 (1.46%) Data Quality
16 7 (0.85%) ISO/IEC 20000
System Software
1 92 (11.22%) Active Directory
2 70 (8.54%) Docker
3 42 (5.12%) VMware Infrastructure
4 14 (1.71%) Hyper-V
5 5 (0.61%) Virtual Desktop
6 4 (0.49%) BitLocker
6 4 (0.49%) Snort
6 4 (0.49%) Virtual Servers
6 4 (0.49%) vSphere
7 3 (0.37%) Citrix Hypervisor
7 3 (0.37%) Firmware
7 3 (0.37%) VMware Workstation
8 2 (0.24%) Microsoft Virtual Server
8 2 (0.24%) Virtual Machines
9 1 (0.12%) iptables
9 1 (0.12%) NFS
Systems Management
1 102 (12.44%) Terraform
2 72 (8.78%) Kubernetes
3 40 (4.88%) Ansible
4 24 (2.93%) Nessus
5 23 (2.80%) Puppet
6 16 (1.95%) CASB
6 16 (1.95%) SCCM
7 14 (1.71%) Grafana
7 14 (1.71%) Single Sign-On
8 13 (1.59%) PowerCLI
8 13 (1.59%) Prometheus
8 13 (1.59%) QRadar
9 8 (0.98%) Opscode Chef
10 7 (0.85%) Kustomize
11 6 (0.73%) WSUS
12 5 (0.61%) Cisco CUCM
12 5 (0.61%) Observium
13 4 (0.49%) EnCase
13 4 (0.49%) FTK
13 4 (0.49%) Suricata
Vendors
1 156 (19.02%) Microsoft
2 61 (7.44%) Oracle
3 56 (6.83%) Google
4 50 (6.10%) VMware
5 33 (4.02%) Cisco
5 33 (4.02%) Red Hat
6 30 (3.66%) Darktrace
7 26 (3.17%) IBM
8 18 (2.20%) Citrix
8 18 (2.20%) Splunk
9 16 (1.95%) HP
10 14 (1.71%) CrowdStrike
10 14 (1.71%) Samsung
10 14 (1.71%) Sitecore
11 13 (1.59%) CheckPoint
11 13 (1.59%) Qualys
12 12 (1.46%) Salesforce.com
13 11 (1.34%) Palo Alto
13 11 (1.34%) SAP
14 9 (1.10%) SolarWinds