Period
to 11 December 2018

The following table provides summary statistics for permanent job vacancies with a requirement for SANS qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 11 December 2018 with a comparison to the same period in the previous 2 years.

SANS Institute
UK
6 months to
11 Dec 2018
Same period 2017 Same period 2016
Rank 611 836 774
Rank change year-on-year +225 -62 +147
Permanent jobs citing SANS 615 378 482
As % of all permanent IT jobs advertised in the UK 0.39% 0.21% 0.26%
As % of the Qualifications category 1.62% 0.88% 1.00%
Number of salaries quoted 404 277 393
UK median annual salary £55,000 £57,500 £59,000
Median salary % change year-on-year -4.35% -2.54% -1.67%
10th Percentile £40,000 £37,500 £40,000
90th Percentile £80,000 £88,750 £85,000
UK excluding London median annual salary £47,500 £50,000 £52,500
% change year-on-year -5.00% -4.76% -10.64%

SANS is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 37,958 43,163 48,400
As % of all permanent IT jobs advertised in the UK 23.77% 24.02% 26.18%
Number of salaries quoted 27,902 33,207 38,676
UK median annual salary £50,000 £47,500 £45,000
Median salary % change year-on-year +5.26% +5.56% -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £81,250 £77,500 £77,250
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +2.41%

SANS
Job Vacancy Trend

Job postings citing SANS as a percentage of all IT jobs advertised.

Job vacancy trend for SANS in the UK

SANS
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing SANS.

Salary trend for SANS in the UK

SANS
Salary Histogram

The salary distribution of IT jobs citing SANS over the 6 months to 11 December 2018.

Salary histogram for SANS in the UK

SANS
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SANS within the UK over the 6 months to 11 December 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +208 596 £55,000 -4.35% 32
UK excluding London +270 432 £47,500 -5.00% 27
London +30 169 £65,000 -7.14% 8
North of England +143 139 £45,000 -15.09% 9
East of England +139 138 £65,000 +30.00% 4
North West +127 130 £45,000 -15.09% 6
South East +66 86 £55,750 -25.67% 4
South West +6 38 £45,000 - 2
Midlands +39 16 £60,000 +25.00% 5
Yorkshire +30 9 £75,000 +84.05% 3
West Midlands +19 9 £51,250 +33.12% 5
Scotland - 8 £57,500 - 2
Northern Ireland - 5 £62,500 -
East Midlands +20 4 £39,000 -32.17%
Wales +1 2 £58,750 -2.08% 1

For the 6 months to 11 December 2018, IT jobs citing SANS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for SANS.

1 475 (77.24%) CISSP
2 335 (54.47%) Cybersecurity
3 325 (52.85%) Information Security
4 283 (46.02%) SIEM
5 274 (44.55%) Windows
6 254 (41.30%) ISO/IEC 27001
7 251 (40.81%) Microsoft
8 250 (40.65%) Penetration Testing
9 245 (39.84%) Linux
10 221 (35.93%) GIAC
11 192 (31.22%) Security Operations
12 190 (30.89%) CISM
13 189 (30.73%) SSCP
14 187 (30.41%) Vulnerability Management
15 182 (29.59%) Firewall
16 168 (27.32%) VMware
17 167 (27.15%) Cisco
18 156 (25.37%) Mentoring
19 153 (24.88%) Finance
20 152 (24.72%) Management Information System
21 147 (23.90%) Cisco Certification
22 140 (22.76%) CREST Certified
23 139 (22.60%) Network Security
23 139 (22.60%) Cyber Kill Chain
24 137 (22.28%) Legal
25 134 (21.79%) CompTIA Security+
25 134 (21.79%) Threat Analysis
26 133 (21.63%) GDPR
27 129 (20.98%) CISA
27 129 (20.98%) OWASP

SANS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 30 (4.88%) Apache Pig
2 17 (2.76%) ExpressionEngine
2 17 (2.76%) WordPress
3 5 (0.81%) Confluence
4 1 (0.16%) CMS
4 1 (0.16%) Elasticsearch
Applications
1 96 (15.61%) Microsoft PowerPoint
2 4 (0.65%) Microsoft Office
Cloud Services
1 58 (9.43%) Amazon AWS
2 37 (6.02%) Microsoft Azure
3 30 (4.88%) Office 365
4 25 (4.07%) Mimecast
5 21 (3.41%) Google Cloud Platform
6 20 (3.25%) IaaS
6 20 (3.25%) SaaS
7 7 (1.14%) Serverless
8 5 (0.81%) AWS CloudFormation
9 3 (0.49%) PaaS
10 2 (0.33%) Cloud Computing
10 2 (0.33%) Google Drive
10 2 (0.33%) OpenDNS
Communications & Networking
1 182 (29.59%) Firewall
2 139 (22.60%) Network Security
3 98 (15.93%) Wi-Fi
4 93 (15.12%) Intrusion Detection
5 79 (12.85%) TCP/IP
6 42 (6.83%) HTTP
6 42 (6.83%) SSL
7 36 (5.85%) Internet
8 32 (5.20%) Wireshark
9 18 (2.93%) SNMP
10 17 (2.76%) FCoE
11 16 (2.60%) DKIM
11 16 (2.60%) DMARC
11 16 (2.60%) Sourcefire
12 9 (1.46%) Wireless
13 7 (1.14%) DNS
14 6 (0.98%) ATM
15 5 (0.81%) Broadband
15 5 (0.81%) LAN
15 5 (0.81%) WAN
Database & Business Intelligence
1 45 (7.32%) Big Data
2 31 (5.04%) Hadoop
3 30 (4.88%) Apache Hive
3 30 (4.88%) MySQL
3 30 (4.88%) SQL Server
4 17 (2.76%) MongoDB
Development Applications
1 52 (8.46%) JIRA
2 35 (5.69%) Git (software)
3 30 (4.88%) Atlassian Bamboo
3 30 (4.88%) Bitbucket
3 30 (4.88%) CodeSonar
3 30 (4.88%) git-flow
3 30 (4.88%) Robot Framework
3 30 (4.88%) Selenium
4 27 (4.39%) Metasploit
5 17 (2.76%) Redmine
6 5 (0.81%) Burp Suite
6 5 (0.81%) Jenkins
6 5 (0.81%) Subversion
7 2 (0.33%) AppScan
8 1 (0.16%) SonarQube
General
1 153 (24.88%) Finance
2 137 (22.28%) Legal
3 73 (11.87%) Retail
4 19 (3.09%) Banking
4 19 (3.09%) Games
5 17 (2.76%) Marketing
6 13 (2.11%) Publishing
7 7 (1.14%) Electronics
7 7 (1.14%) Manufacturing
7 7 (1.14%) Telecoms
8 6 (0.98%) Investment Banking
8 6 (0.98%) Law
9 5 (0.81%) Local Government
10 4 (0.65%) Pharmaceutical
11 3 (0.49%) Financial Institution
12 2 (0.33%) Aerospace
Job Titles
1 256 (41.63%) Analyst
2 181 (29.43%) Security Analyst
3 154 (25.04%) Senior Analyst
4 133 (21.63%) Senior Security Analyst
5 105 (17.07%) Security Engineer
6 103 (16.75%) IT Analyst
6 103 (16.75%) IT Security Analyst
7 102 (16.59%) Senior IT Security Analyst
8 59 (9.59%) SOC Analyst
9 57 (9.27%) Security Manager
10 56 (9.11%) Cybersecurity Analyst
11 44 (7.15%) Consultant
12 36 (5.85%) Architect
13 34 (5.53%) Security Consultant
14 33 (5.37%) Java Engineer
14 33 (5.37%) Security Architect
15 30 (4.88%) Software Engineer
16 28 (4.55%) Engineering Manager
17 26 (4.23%) Senior Cybersecurity Analyst
17 26 (4.23%) SIEM Engineer
Libraries, Frameworks & Software Standards
1 51 (8.29%) Node.js
2 43 (6.99%) .NET
3 40 (6.50%) REST
4 35 (5.69%) LAMP
4 35 (5.69%) SOAP
5 33 (5.37%) Java EE
5 33 (5.37%) STL
6 30 (4.88%) .NET Framework
6 30 (4.88%) ASP.NET
6 30 (4.88%) Django
6 30 (4.88%) RabbitMQ
6 30 (4.88%) Spring MVC
7 21 (3.41%) Web Services
8 15 (2.44%) Regular Expression
9 5 (0.81%) CSS
9 5 (0.81%) HTML
9 5 (0.81%) JSON
9 5 (0.81%) SAML
10 1 (0.16%) ModSecurity
Miscellaneous
1 152 (24.72%) Management Information System
2 139 (22.60%) Cyber Kill Chain
3 115 (18.70%) Security Operations Centre
4 57 (9.27%) Analytical Skills
5 36 (5.85%) Self-Motivation
6 34 (5.53%) Cyberthreat
7 33 (5.37%) PKI
8 17 (2.76%) Data Centre
9 14 (2.28%) Cyber Defence
10 11 (1.79%) Algorithms
10 11 (1.79%) Fintech
11 9 (1.46%) Cyberattack
12 8 (1.30%) Enterprise Storage
13 7 (1.14%) CESG
14 6 (0.98%) Cybercrime
14 6 (0.98%) Internet of Things
15 5 (0.81%) Enterprise Cloud
15 5 (0.81%) User Experience
16 4 (0.65%) Cloud Native
17 2 (0.33%) Online Banking
Operating Systems
1 274 (44.55%) Windows
2 245 (39.84%) Linux
3 99 (16.10%) Unix
4 34 (5.53%) Mac OS X
5 30 (4.88%) Android
5 30 (4.88%) Apple iOS
6 24 (3.90%) Kali Linux
7 16 (2.60%) Red Hat Enterprise Linux
8 13 (2.11%) CentOS
9 8 (1.30%) Debian
9 8 (1.30%) Fedora
9 8 (1.30%) Ubuntu
10 4 (0.65%) Solaris
Processes & Methodologies
1 335 (54.47%) Cybersecurity
2 325 (52.85%) Information Security
3 283 (46.02%) SIEM
4 250 (40.65%) Penetration Testing
5 192 (31.22%) Security Operations
6 187 (30.41%) Vulnerability Management
7 156 (25.37%) Mentoring
8 134 (21.79%) Threat Analysis
9 129 (20.98%) OWASP
10 123 (20.00%) Due Diligence
11 121 (19.67%) Data Protection
12 109 (17.72%) Disaster Recovery
13 105 (17.07%) Business Continuity
14 99 (16.10%) Web Development
15 98 (15.93%) Risk Analysis
16 96 (15.61%) Scenario Testing
17 87 (14.15%) Problem-Solving
18 78 (12.68%) Risk Management
19 76 (12.36%) Threat Intelligence
20 75 (12.20%) Data Loss Prevention
Programming Languages
1 128 (20.81%) SQL
2 85 (13.82%) Python
3 82 (13.33%) C
4 66 (10.73%) Bash Shell
5 65 (10.57%) PowerShell
6 63 (10.24%) Java
7 60 (9.76%) C++
8 51 (8.29%) C#
9 42 (6.83%) PHP
10 35 (5.69%) JavaScript
11 34 (5.53%) Perl
12 33 (5.37%) Objective-C
13 27 (4.39%) Ruby
14 20 (3.25%) VB
15 16 (2.60%) Korn
16 15 (2.44%) Go
17 5 (0.81%) Shell Script
Qualifications
1 475 (77.24%) CISSP
2 221 (35.93%) GIAC
3 190 (30.89%) CISM
4 189 (30.73%) SSCP
5 147 (23.90%) Cisco Certification
6 140 (22.76%) CREST Certified
7 134 (21.79%) CompTIA Security+
8 129 (20.98%) CISA
9 111 (18.05%) CEH
10 103 (16.75%) CSSLP
11 100 (16.26%) Microsoft Certification
12 98 (15.93%) MCSE
13 87 (14.15%) Security Cleared
14 70 (11.38%) CCNA
15 69 (11.22%) (ISC)2 CCSP
15 69 (11.22%) CCSP
16 64 (10.41%) Network+ Certification
17 60 (9.76%) DV Cleared
18 58 (9.43%) Linux+ Certification
19 55 (8.94%) CCNP
Quality Assurance & Compliance
1 254 (41.30%) ISO/IEC 27001
2 133 (21.63%) GDPR
3 127 (20.65%) PCI DSS
4 22 (3.58%) Cyber Essentials
5 11 (1.79%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 9 (1.46%) COBIT
6 9 (1.46%) GPG13
6 9 (1.46%) Sarbanes-Oxley
7 7 (1.14%) HIPAA
8 4 (0.65%) FIPS 140-2
9 3 (0.49%) Web Application Security Consortium
10 2 (0.33%) HMG Security Policy Framework
10 2 (0.33%) ISO 9001
11 1 (0.16%) NIST 800
11 1 (0.16%) PSD2
11 1 (0.16%) SLA
System Software
1 122 (19.84%) VMware Infrastructure
2 42 (6.83%) Docker
3 30 (4.88%) vSphere
4 25 (4.07%) NFS
4 25 (4.07%) Samba
4 25 (4.07%) VMware ESXi
5 23 (3.74%) Snort
6 18 (2.93%) VMware NSX
7 8 (1.30%) VirtualBox
7 8 (1.30%) Xen
8 2 (0.33%) Active Directory
8 2 (0.33%) Squid
Systems Management
1 60 (9.76%) Puppet
2 38 (6.18%) Nessus
3 30 (4.88%) Ansible
3 30 (4.88%) Salt
4 28 (4.55%) CSIRT
5 25 (4.07%) Nagios
5 25 (4.07%) RSA Security Analytics
5 25 (4.07%) vCenter Server
6 24 (3.90%) Host Intrusion Detection System
7 20 (3.25%) Norton AntiVirus
8 16 (2.60%) CASB
9 15 (2.44%) QRadar
10 14 (2.28%) Nmap
11 12 (1.95%) Kubernetes
12 10 (1.63%) Nexpose
13 9 (1.46%) EnCase
13 9 (1.46%) FTK
13 9 (1.46%) Suricata
14 8 (1.30%) OpenNMS
14 8 (1.30%) ZABBIX
Vendors
1 251 (40.81%) Microsoft
2 168 (27.32%) VMware
3 167 (27.15%) Cisco
4 99 (16.10%) Symantec
5 53 (8.62%) Sophos
6 48 (7.80%) Red Hat
6 48 (7.80%) Splunk
7 37 (6.02%) Qualys
8 34 (5.53%) Forcepoint
9 26 (4.23%) EMC
10 25 (4.07%) NetApp
10 25 (4.07%) SolarWinds
11 24 (3.90%) Google
12 20 (3.25%) McAfee
13 18 (2.93%) LogRhythm
14 16 (2.60%) ArcSight
15 15 (2.44%) Sun
16 13 (2.11%) CheckPoint
16 13 (2.11%) CyberArk
16 13 (2.11%) Palo Alto