Period
to 23 September 2019

The following table provides summary statistics for permanent job vacancies with a requirement for PCI DSS skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited PCI DSS over the 6 months to 23 September 2019 with a comparison to the same period in the previous 2 years.

Payment Card Industry Data Security Standard (PCI DSS)
UK
6 months to
23 Sep 2019
Same period 2018 Same period 2017
Rank 411 366 356
Rank change year-on-year -45 -10 -83
Permanent jobs citing PCI DSS 1,003 1,450 1,617
As % of all permanent IT jobs advertised in the UK 0.72% 0.88% 0.92%
As % of the Quality Assurance & Compliance category 5.39% 6.68% 7.46%
Number of salaries quoted 717 1,199 1,352
UK median annual salary £60,000 £57,500 £55,500
Median salary % change year-on-year +4.35% +3.60% +0.91%
10th Percentile £35,000 £37,500 £36,250
90th Percentile £90,000 £85,000 £77,500
UK excluding London median annual salary £53,000 £52,500 £55,000
% change year-on-year +0.95% -4.55% +4.76%

PCI DSS is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Permanent vacancies with a requirement for quality assurance or compliance skills 18,623 21,718 21,679
As % of all permanent IT jobs advertised in the UK 13.30% 13.14% 12.34%
Number of salaries quoted 13,771 16,494 16,060
UK median annual salary £50,000 £50,000 £50,000
10th Percentile £28,000 £28,500 £27,500
90th Percentile £82,500 £80,000 £77,500
UK excluding London median annual salary £45,000 £45,000 £42,500
% change year-on-year - +5.88% -

PCI DSS
Job Vacancy Trend

Job postings citing PCI DSS as a percentage of all IT jobs advertised.

Job vacancy trend for PCI DSS in the UK

PCI DSS
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing PCI DSS.

Salary trend for PCI DSS in the UK

PCI DSS
Salary Histogram

The salary distribution of IT jobs citing PCI DSS over the 6 months to 23 September 2019.

Salary histogram for PCI DSS in the UK

PCI DSS
Top 14 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing PCI DSS within the UK over the 6 months to 23 September 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -61 907 £60,000 +4.35% 119
UK excluding London -40 624 £53,000 +0.95% 88
London -46 318 £70,000 +2.78% 33
South East +19 201 £55,000 -8.33% 27
Midlands -9 119 £55,000 +10.00% 14
North of England -115 118 £46,438 +3.19% 26
East of England +48 94 £57,500 +6.48% 9
West Midlands -5 88 £53,750 +13.16% 12
North West -34 69 £47,500 +5.56% 13
Yorkshire -91 47 £45,000 - 12
South West +7 41 £45,000 -26.53% 10
Scotland +49 40 £40,622 -19.56% 1
East Midlands +11 30 £51,250 +13.89% 2
Wales +11 11 £40,000 -0.62% 1

For the 6 months to 23 September 2019, IT jobs citing PCI DSS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for PCI DSS.

1 576 (57.43%) ISO/IEC 27001
2 551 (54.94%) Information Security
3 309 (30.81%) CISSP
4 290 (28.91%) GDPR
5 279 (27.82%) Cybersecurity
6 265 (26.42%) CISM
7 264 (26.32%) Finance
8 222 (22.13%) Firewall
9 191 (19.04%) NIST
10 190 (18.94%) Windows
11 183 (18.25%) ITIL
12 179 (17.85%) Risk Management
13 171 (17.05%) Azure
14 164 (16.35%) SIEM
15 161 (16.05%) Penetration Testing
16 160 (15.95%) Microsoft
17 157 (15.65%) Agile Software Development
18 151 (15.05%) CISA
19 150 (14.96%) Security Architecture
20 141 (14.06%) Retail
21 138 (13.76%) Degree
22 131 (13.06%) AWS
23 128 (12.76%) Vulnerability Management
24 127 (12.66%) Active Directory
25 120 (11.96%) Security Operations
26 119 (11.86%) Cisco
26 119 (11.86%) Stakeholder Management
27 114 (11.37%) Security Testing
28 113 (11.27%) Data Protection
28 113 (11.27%) Management Information System

PCI DSS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 32 (3.19%) MS Exchange
2 27 (2.69%) IIS
3 24 (2.39%) SharePoint
4 20 (1.99%) Exchange Server 2013
5 11 (1.10%) Blackberry Enterprise Server
6 8 (0.80%) Exchange Server 2010
7 7 (0.70%) Apache
7 7 (0.70%) Tomcat
8 6 (0.60%) WebSphere
9 4 (0.40%) Confluence
9 4 (0.40%) MediaWiki
10 2 (0.20%) nginx
10 2 (0.20%) Skype for Business
11 1 (0.100%) BizTalk Server
11 1 (0.100%) OpenStack
Applications
1 9 (0.90%) Microsoft Office
2 4 (0.40%) Microsoft Excel
3 1 (0.100%) Microsoft PowerPoint
3 1 (0.100%) Microsoft Project
3 1 (0.100%) Spreadsheet
Business Applications
1 6 (0.60%) SAP Hybris
2 3 (0.30%) Payment Gateway
3 1 (0.100%) Dynamics CRM
3 1 (0.100%) Postilion
3 1 (0.100%) Remedy ITSM
3 1 (0.100%) Unit4 Business World
Cloud Services
1 171 (17.05%) Azure
2 131 (13.06%) AWS
3 69 (6.88%) Office 365
4 42 (4.19%) Cloud Computing
5 38 (3.79%) SaaS
6 35 (3.49%) GCP
7 18 (1.79%) IaaS
7 18 (1.79%) PaaS
8 11 (1.10%) GitHub
9 9 (0.90%) Dynamics 365
9 9 (0.90%) OneDrive
9 9 (0.90%) OpenShift
10 6 (0.60%) Mimecast
11 5 (0.50%) Amazon S3
11 5 (0.50%) Power Platform
12 4 (0.40%) Amazon EC2
12 4 (0.40%) AWS CloudFormation
12 4 (0.40%) G Suite
13 3 (0.30%) Azure Active Directory
14 2 (0.20%) Virtual Private Cloud
Communications & Networking
1 222 (22.13%) Firewall
2 100 (9.97%) Network Security
3 80 (7.98%) VPN
4 79 (7.88%) DNS
5 71 (7.08%) TCP/IP
6 65 (6.48%) WAN
7 64 (6.38%) LAN
8 62 (6.18%) HTTP
9 55 (5.48%) DHCP
10 41 (4.09%) Cisco ASA
11 33 (3.29%) Intrusion Detection
12 31 (3.09%) VLAN
13 30 (2.99%) SSL
14 28 (2.79%) Cisco Firepower
14 28 (2.79%) Wireless
15 25 (2.49%) IPsec
16 24 (2.39%) Internet
17 23 (2.29%) VoIP
18 21 (2.09%) BGP
19 16 (1.60%) BIG-IP
Database & Business Intelligence
1 48 (4.79%) SQL Server
2 19 (1.89%) Big Data
3 15 (1.50%) MySQL
4 9 (0.90%) PostgreSQL
5 5 (0.50%) Power BI
5 5 (0.50%) SQL Server 2008
6 4 (0.40%) Amazon RDS
6 4 (0.40%) Maltego
6 4 (0.40%) MongoDB
6 4 (0.40%) SQL Server Integration Services
7 3 (0.30%) Data Lake
8 2 (0.20%) Relational Database
8 2 (0.20%) SQL Server 2005
8 2 (0.20%) SQL Server Analysis Services
9 1 (0.100%) Apache Cassandra
9 1 (0.100%) DTS
9 1 (0.100%) MariaDB
9 1 (0.100%) Microsoft Analysis Services
9 1 (0.100%) SQL Server 2012
9 1 (0.100%) SQL Server Reporting Services
Development Applications
1 24 (2.39%) JIRA
2 22 (2.19%) Git (software)
3 14 (1.40%) Rational DOORS
3 14 (1.40%) Rational Rhapsody
4 13 (1.30%) Octopus Deploy
5 12 (1.20%) SonarQube
6 11 (1.10%) GitLab
7 10 (1.00%) Visual Studio Team System
8 9 (0.90%) Burp Suite
8 9 (0.90%) Metasploit
9 8 (0.80%) Sonatype Nexus
10 6 (0.60%) Bitbucket
10 6 (0.60%) Visual Studio
11 5 (0.50%) Jenkins
11 5 (0.50%) Team Foundation Server
12 3 (0.30%) Atlassian Bamboo
12 3 (0.30%) IDA Disassembler
13 2 (0.20%) Artifactory
13 2 (0.20%) Gatling
13 2 (0.20%) Gradle
General
1 264 (26.32%) Finance
2 141 (14.06%) Retail
3 59 (5.88%) Public Sector
4 58 (5.78%) Legal
5 30 (2.99%) Telecoms
6 22 (2.19%) Banking
7 21 (2.09%) Law
8 17 (1.69%) Manufacturing
8 17 (1.69%) Marketing
9 12 (1.20%) Local Government
10 10 (1.00%) Front Office
11 9 (0.90%) French Language
11 9 (0.90%) German Language
11 9 (0.90%) Italian Language
11 9 (0.90%) Spanish Language
12 8 (0.80%) Back Office
13 7 (0.70%) Games
14 4 (0.40%) Advertising
15 1 (0.100%) Automotive
15 1 (0.100%) Electronics
Job Titles
1 179 (17.85%) Analyst
2 158 (15.75%) Security Analyst
3 156 (15.55%) Consultant
4 133 (13.26%) Security Consultant
5 129 (12.86%) Architect
6 101 (10.07%) Information Analyst
6 101 (10.07%) Information Security Analyst
7 99 (9.87%) Security Manager
8 90 (8.97%) Security Architect
9 62 (6.18%) Information Manager
9 62 (6.18%) Information Security Manager
9 62 (6.18%) Security Engineer
10 45 (4.49%) Cybersecurity Consultant
10 45 (4.49%) Senior Analyst
10 45 (4.49%) Senior Security Analyst
11 44 (4.39%) Infrastructure Engineer
11 44 (4.39%) Security Officer
12 39 (3.89%) Senior Information Analyst
12 39 (3.89%) Senior Information Security Analyst
13 36 (3.59%) Network Engineer
Libraries, Frameworks & Software Standards
1 28 (2.79%) Web Services
2 17 (1.69%) JSON
3 16 (1.60%) .NET
4 15 (1.50%) OAuth
5 13 (1.30%) CSS
5 13 (1.30%) REST
6 12 (1.20%) HTML
6 12 (1.20%) OAuth2
6 12 (1.20%) OpenID
6 12 (1.20%) XACML
6 12 (1.20%) XML
7 11 (1.10%) AngularJS
8 10 (1.00%) React
9 9 (0.90%) HTML5
10 6 (0.60%) jQuery
10 6 (0.60%) SailPoint
11 5 (0.50%) SOAP
11 5 (0.50%) Vue.js
12 4 (0.40%) ASP.NET
12 4 (0.40%) RabbitMQ
Miscellaneous
1 113 (11.27%) Management Information System
2 64 (6.38%) Analytical Skills
3 52 (5.18%) Data Centre
4 43 (4.29%) PKI
5 29 (2.89%) BYOD
5 29 (2.89%) Data Protection Act
6 24 (2.39%) Cyberthreat
7 23 (2.29%) Self-Motivation
8 21 (2.09%) Cyberattack
9 20 (1.99%) CESG
9 20 (1.99%) Hybrid Cloud
10 17 (1.69%) Security Operations Centre
11 14 (1.40%) Public Cloud
12 13 (1.30%) Distributed Denial-of-Service
13 10 (1.00%) Client/Server
14 9 (0.90%) Driving Licence
14 9 (0.90%) Mobile Computing
15 8 (0.80%) Mobile App
16 7 (0.70%) EFT
16 7 (0.70%) Freedom of Information
Operating Systems
1 190 (18.94%) Windows
2 108 (10.77%) Linux
3 90 (8.97%) Windows Server
4 41 (4.09%) Windows Server 2012
5 37 (3.69%) CentOS
6 35 (3.49%) Unix
7 27 (2.69%) Windows 10
8 22 (2.19%) Red Hat Enterprise Linux
8 22 (2.19%) Windows 7
9 17 (1.69%) Ubuntu
10 15 (1.50%) Windows Server 2008
11 11 (1.10%) Mac OS
12 9 (0.90%) Solaris
13 8 (0.80%) Android
13 8 (0.80%) Debian
13 8 (0.80%) SUSE
14 7 (0.70%) Apple iOS
15 6 (0.60%) Windows Server 2003
16 4 (0.40%) Mac OS X
17 3 (0.30%) Windows XP
Processes & Methodologies
1 551 (54.94%) Information Security
2 279 (27.82%) Cybersecurity
3 183 (18.25%) ITIL
4 179 (17.85%) Risk Management
5 164 (16.35%) SIEM
6 161 (16.05%) Penetration Testing
7 157 (15.65%) Agile Software Development
8 150 (14.96%) Security Architecture
9 128 (12.76%) Vulnerability Management
10 120 (11.96%) Security Operations
11 119 (11.86%) Stakeholder Management
12 114 (11.37%) Security Testing
13 113 (11.27%) Data Protection
14 97 (9.67%) Security Management
15 91 (9.07%) Problem-Solving
16 89 (8.87%) DevOps
17 88 (8.77%) OWASP
18 82 (8.18%) Incident Management
19 70 (6.98%) Continuous Improvement
20 69 (6.88%) Mentoring
Programming Languages
1 57 (5.68%) PowerShell
2 47 (4.69%) SQL
3 32 (3.19%) Python
4 20 (1.99%) JavaScript
5 17 (1.69%) C#
6 16 (1.60%) Java
7 12 (1.20%) Bash Shell
7 12 (1.20%) PHP
8 11 (1.10%) Ruby
9 9 (0.90%) C
10 7 (0.70%) Shell Script
10 7 (0.70%) TypeScript
11 6 (0.60%) Perl
12 5 (0.50%) VB
13 3 (0.30%) VB.NET
14 2 (0.20%) Java 8
14 2 (0.20%) Kotlin
14 2 (0.20%) Objective-C
15 1 (0.100%) T-SQL
Qualifications
1 309 (30.81%) CISSP
2 265 (26.42%) CISM
3 151 (15.05%) CISA
4 138 (13.76%) Degree
5 102 (10.17%) Cisco Certification
6 66 (6.58%) Security Cleared
7 52 (5.18%) CRISC
8 51 (5.08%) SC Cleared
9 45 (4.49%) CCNA
9 45 (4.49%) CEH
9 45 (4.49%) ISO 27001 Lead Auditor
10 43 (4.29%) Microsoft Certification
11 39 (3.89%) (ISC)2 CCSP
12 35 (3.49%) CCNP
13 29 (2.89%) CREST Certified
14 27 (2.69%) SANS
15 25 (2.49%) Computer Science Degree
16 24 (2.39%) CCSP
16 24 (2.39%) GIAC
16 24 (2.39%) MCSE
Quality Assurance & Compliance
1 576 (57.43%) ISO/IEC 27001
2 290 (28.91%) GDPR
3 191 (19.04%) NIST
4 107 (10.67%) Sarbanes-Oxley
5 92 (9.17%) Cyber Essentials
6 81 (8.08%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 65 (6.48%) COBIT
8 40 (3.99%) HMG Security Policy Framework
9 38 (3.79%) ISO 22301
10 28 (2.79%) SLA
11 21 (2.09%) ISO 9001
12 19 (1.89%) RMADS
13 15 (1.50%) QA
14 14 (1.40%) ISO/IEC 15288
14 14 (1.40%) NCSC
15 13 (1.30%) HIPAA
16 11 (1.10%) ISO 31000
16 11 (1.10%) NIST 800
17 10 (1.00%) Cyber Essentials PLUS
17 10 (1.00%) ISO/IEC 27005
System Software
1 127 (12.66%) Active Directory
2 50 (4.99%) VMware Infrastructure
3 47 (4.69%) Hyper-V
4 27 (2.69%) Docker
5 17 (1.69%) vSphere
6 14 (1.40%) Virtual Machines
7 10 (1.00%) VMware NSX
8 8 (0.80%) KVM
8 8 (0.80%) Terminal Services
8 8 (0.80%) VMware ESXi
9 7 (0.70%) Firmware
10 6 (0.60%) ISA Server
11 4 (0.40%) Snort
12 3 (0.30%) VMware Server
13 2 (0.20%) BitLocker
13 2 (0.20%) Virtual Desktop
14 1 (0.100%) MetaFrame
14 1 (0.100%) XenApp
14 1 (0.100%) Xsan
Systems Management
1 36 (3.59%) Nessus
2 33 (3.29%) SCCM
3 28 (2.79%) Puppet
4 25 (2.49%) CASB
5 22 (2.19%) Ansible
6 20 (1.99%) Terraform
7 19 (1.89%) Symantec Endpoint Protection
8 18 (1.79%) Kubernetes
9 17 (1.69%) Stealthwatch
10 16 (1.60%) SCOM
10 16 (1.60%) SCOrch
11 14 (1.40%) HP Quality Center
12 11 (1.10%) Docker Swarm
12 11 (1.10%) Opscode Chef
13 9 (0.90%) Nmap
13 9 (0.90%) WSUS
14 8 (0.80%) Cisco CUCM
14 8 (0.80%) FortiGate
14 8 (0.80%) vRealize
15 7 (0.70%) QRadar
Vendors
1 160 (15.95%) Microsoft
2 119 (11.86%) Cisco
3 87 (8.67%) VMware
4 52 (5.18%) Splunk
5 51 (5.08%) Palo Alto
6 49 (4.89%) Symantec
7 42 (4.19%) Qualys
8 41 (4.09%) McAfee
9 38 (3.79%) CheckPoint
10 32 (3.19%) Google
11 29 (2.89%) IBM
12 27 (2.69%) Juniper
13 25 (2.49%) HP
13 25 (2.49%) Trend Micro
14 23 (2.29%) Oracle
15 22 (2.19%) ArcSight
15 22 (2.19%) F5
16 21 (2.09%) CyberArk
17 17 (1.69%) ServiceNow
18 15 (1.50%) Red Hat