Period
to 17 June 2018

The following table provides summary statistics for permanent job vacancies with a requirement for SANS qualifications. Included is a benchmarking guide to the salaries offered over the 6 months to 17 June 2018 with a comparison to the same period in the previous 2 years.

SANS Institute
UK
6 months to
17 Jun 2018
Same period 2017 Same period 2016
Rank 731 791 892
Rank change year-on-year +60 +101 +210
Permanent jobs citing SANS 493 390 430
As % of all permanent IT jobs advertised in the UK 0.29% 0.23% 0.21%
As % of the Qualifications category 1.21% 0.91% 0.78%
Number of salaries quoted 394 272 362
UK median annual salary £57,500 £60,000 £60,000
Median salary % change year-on-year -4.17% - +14.29%
10th Percentile £37,500 £38,750 £41,250
90th Percentile £96,750 £85,000 £85,000
UK excluding London median annual salary £55,000 £55,000 £55,000

SANS is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Permanent vacancies requiring academic qualifications or professional certifications 40,764 42,817 55,167
As % of all permanent IT jobs advertised in the UK 23.73% 24.91% 27.47%
Number of salaries quoted 30,779 33,479 44,378
UK median annual salary £49,500 £45,000 £45,000
Median salary % change year-on-year +10.00% - -
10th Percentile £26,250 £26,250 £26,250
90th Percentile £80,000 £77,500 £75,250
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +6.25%

SANS
Job Vacancy Trend

Job postings citing SANS as a percentage of all IT jobs advertised.

Job vacancy trend for SANS in the UK

SANS
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing SANS.

Salary trend for SANS in the UK

SANS
Salary Histogram

The salary distribution of IT jobs citing SANS over the 6 months to 17 June 2018.

Salary histogram for SANS in the UK

SANS
Top 14 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SANS within the UK over the 6 months to 17 June 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +65 470 £57,500 -4.17% 38
UK excluding London +74 256 £55,000 - 26
London +24 228 £70,000 +12.00% 12
South East +38 96 £52,500 -4.55% 8
North of England +24 57 £57,500 -4.17% 3
North West +33 43 £55,000 +4.76% 2
Midlands +19 37 £60,000 +14.29% 3
East of England +9 28 £40,000 -15.79% 6
South West -30 23 £45,000 - 5
West Midlands +9 18 £60,000 +17.07% 3
East Midlands +21 15 £70,000 -12.50%
Yorkshire +25 14 £77,500 +16.98% 1
Scotland -23 8 £60,000 -29.41%
Wales - 7 £60,000 - 1

For the 6 months to 17 June 2018, IT jobs citing SANS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for SANS.

1 366 (74.24%) CISSP
2 274 (55.58%) Cybersecurity
3 229 (46.45%) Information Security
4 228 (46.25%) CISM
5 177 (35.90%) GIAC
6 175 (35.50%) OWASP
7 147 (29.82%) Penetration Testing
8 143 (29.01%) Firewall
9 139 (28.19%) SIEM
10 131 (26.57%) Security Operations
11 125 (25.35%) ISO/IEC 27001
12 124 (25.15%) Windows
13 123 (24.95%) CISA
14 122 (24.75%) CEH
15 107 (21.70%) CSSLP
16 105 (21.30%) Security Architecture
17 104 (21.10%) SSCP
18 99 (20.08%) Microsoft
18 99 (20.08%) Finance
19 98 (19.88%) Linux
20 89 (18.05%) Cisco Certification
21 84 (17.04%) Management Information System
22 83 (16.84%) CompTIA Security+
23 76 (15.42%) Ethical Hacking
24 68 (13.79%) Agile Software Development
25 67 (13.59%) Risk Management
25 67 (13.59%) CCNA
26 63 (12.78%) PCI DSS
27 60 (12.17%) Security Cleared
28 58 (11.76%) Degree

SANS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 20 (4.06%) Apache Pig
2 14 (2.84%) IIS
3 9 (1.83%) Apache
4 6 (1.22%) WebSphere
5 3 (0.61%) JBoss
5 3 (0.61%) Tomcat
6 1 (0.20%) Exchange Server 2013
6 1 (0.20%) MS Exchange
6 1 (0.20%) Skype for Business
Cloud Services
1 47 (9.53%) Amazon AWS
2 46 (9.33%) Microsoft Azure
3 33 (6.69%) Google Cloud Platform
4 21 (4.26%) SaaS
5 20 (4.06%) Office 365
6 15 (3.04%) Cloud Computing
7 13 (2.64%) Mimecast
8 4 (0.81%) IaaS
9 3 (0.61%) PaaS
10 2 (0.41%) Serverless
Communications & Networking
1 143 (29.01%) Firewall
2 54 (10.95%) TCP/IP
3 49 (9.94%) Network Security
4 36 (7.30%) Intrusion Detection
5 24 (4.87%) SSL
6 23 (4.67%) VPN
7 19 (3.85%) HTTP
8 15 (3.04%) Wireshark
9 13 (2.64%) DKIM
9 13 (2.64%) DMARC
9 13 (2.64%) Internet
10 12 (2.43%) SAN
10 12 (2.43%) SNMP
11 11 (2.23%) Wireless
12 10 (2.03%) FCoE
13 8 (1.62%) Cisco Firepower
13 8 (1.62%) Sourcefire
14 7 (1.42%) VoIP
15 6 (1.22%) PPP
15 6 (1.22%) WAN
Database & Business Intelligence
1 46 (9.33%) Big Data
2 26 (5.27%) SQL Server
3 23 (4.67%) MySQL
4 21 (4.26%) Hadoop
5 20 (4.06%) Apache Hive
6 2 (0.41%) GIS
6 2 (0.41%) NoSQL
7 1 (0.20%) Maltego
Development Applications
1 31 (6.29%) Git (software)
2 28 (5.68%) JIRA
3 18 (3.65%) Atlassian Bamboo
3 18 (3.65%) Bitbucket
3 18 (3.65%) CodeSonar
3 18 (3.65%) git-flow
3 18 (3.65%) Robot Framework
3 18 (3.65%) Selenium
4 10 (2.03%) Jenkins
4 10 (2.03%) Redmine
5 6 (1.22%) SpecFlow
5 6 (1.22%) Team Foundation Server
6 4 (0.81%) Burp Suite
7 2 (0.41%) AppScan
7 2 (0.41%) Metasploit
7 2 (0.41%) SoapUI
General
1 99 (20.08%) Finance
2 26 (5.27%) Legal
3 25 (5.07%) Banking
4 24 (4.87%) Retail
5 22 (4.46%) Games
6 9 (1.83%) Marketing
7 8 (1.62%) Retail Banking
7 8 (1.62%) Telecoms
8 6 (1.22%) Private Banking
9 5 (1.01%) Financial Institution
9 5 (1.01%) Welsh Language
10 4 (0.81%) Local Government
11 3 (0.61%) Advertising
11 3 (0.61%) French Language
11 3 (0.61%) Investment Banking
12 2 (0.41%) Military
13 1 (0.20%) Automotive
13 1 (0.20%) Billing
Job Titles
1 117 (23.73%) Analyst
2 92 (18.66%) Security Analyst
3 81 (16.43%) Security Engineer
4 65 (13.18%) Architect
5 64 (12.98%) Security Architect
6 40 (8.11%) Security Manager
7 39 (7.91%) Tester
8 38 (7.71%) Penetration Tester
9 29 (5.88%) Information Analyst
10 28 (5.68%) Information Security Analyst
11 27 (5.48%) Operational Security Manager
11 27 (5.48%) Security Operations Manager
12 26 (5.27%) Consultant
12 26 (5.27%) Operations Manager
13 22 (4.46%) Applications Engineer
14 20 (4.06%) Security Consultant
14 20 (4.06%) SOC Analyst
15 19 (3.85%) Operations Analyst
15 19 (3.85%) Security Operations Analyst
15 19 (3.85%) SIEM Analyst
Libraries, Frameworks & Software Standards
1 28 (5.68%) REST
2 24 (4.87%) .NET
3 23 (4.67%) Java EE
4 22 (4.46%) ASP.NET
5 20 (4.06%) STL
6 19 (3.85%) LAMP
7 18 (3.65%) .NET Framework
7 18 (3.65%) Django
7 18 (3.65%) Node.js
7 18 (3.65%) RabbitMQ
7 18 (3.65%) SOAP
7 18 (3.65%) Spring MVC
8 12 (2.43%) Web Services
9 9 (1.83%) WCF
10 8 (1.62%) HTML
11 6 (1.22%) CSS
11 6 (1.22%) Gherkin
11 6 (1.22%) jQuery
11 6 (1.22%) MSMQ
11 6 (1.22%) WebSphere MQ
Miscellaneous
1 84 (17.04%) Management Information System
2 47 (9.53%) Analytical Skills
3 37 (7.51%) Security Operations Centre
4 34 (6.90%) Computer Science
5 27 (5.48%) Cyber Defence
6 26 (5.27%) Cyber Kill Chain
7 23 (4.67%) PKI
8 21 (4.26%) Cyberthreat
9 19 (3.85%) Data Centre
10 13 (2.64%) Fintech
11 10 (2.03%) Self-Motivation
12 8 (1.62%) Distributed Denial-of-Service
13 7 (1.42%) Algorithms
13 7 (1.42%) Data Structures
14 5 (1.01%) Data Protection Act
14 5 (1.01%) Enterprise Software
15 4 (0.81%) Cyberattack
15 4 (0.81%) Linux Command Line
15 4 (0.81%) PMI
16 3 (0.61%) Private Cloud
Operating Systems
1 124 (25.15%) Windows
2 98 (19.88%) Linux
3 52 (10.55%) Unix
4 34 (6.90%) Android
5 31 (6.29%) Apple iOS
6 20 (4.06%) Windows Server
7 18 (3.65%) Mac OS X
8 14 (2.84%) Red Hat Enterprise Linux
9 8 (1.62%) Windows 10
10 6 (1.22%) CentOS
10 6 (1.22%) Windows Server 2012
11 5 (1.01%) Kali Linux
11 5 (1.01%) Ubuntu
12 4 (0.81%) Debian
12 4 (0.81%) FreeBSD
13 2 (0.41%) Windows Server 2008
14 1 (0.20%) AIX
14 1 (0.20%) Fedora
14 1 (0.20%) HPUX
14 1 (0.20%) Solaris
Processes & Methodologies
1 274 (55.58%) Cybersecurity
2 229 (46.45%) Information Security
3 175 (35.50%) OWASP
4 147 (29.82%) Penetration Testing
5 139 (28.19%) SIEM
6 131 (26.57%) Security Operations
7 105 (21.30%) Security Architecture
8 76 (15.42%) Ethical Hacking
9 68 (13.79%) Agile Software Development
10 67 (13.59%) Risk Management
11 58 (11.76%) Problem-Solving
12 53 (10.75%) Stakeholder Management
13 50 (10.14%) Test Automation
13 50 (10.14%) Threat Modelling
14 46 (9.33%) Incident Management
14 46 (9.33%) Vulnerability Management
15 44 (8.92%) Data Loss Prevention
16 43 (8.72%) Scrum
17 41 (8.32%) Threat Intelligence
18 40 (8.11%) Use Case
Programming Languages
1 50 (10.14%) Python
2 47 (9.53%) C
3 46 (9.33%) C#
3 46 (9.33%) Java
4 42 (8.52%) C++
5 37 (7.51%) Bash Shell
6 34 (6.90%) JavaScript
7 29 (5.88%) PowerShell
8 23 (4.67%) Objective-C
9 22 (4.46%) PHP
10 14 (2.84%) Shell Script
11 13 (2.64%) Perl
11 13 (2.64%) SQL
12 10 (2.03%) Korn
13 3 (0.61%) Ruby
13 3 (0.61%) VB
14 2 (0.41%) Go
15 1 (0.20%) PL/SQL
Qualifications
1 366 (74.24%) CISSP
2 228 (46.25%) CISM
3 177 (35.90%) GIAC
4 123 (24.95%) CISA
5 122 (24.75%) CEH
6 107 (21.70%) CSSLP
7 104 (21.10%) SSCP
8 89 (18.05%) Cisco Certification
9 83 (16.84%) CompTIA Security+
10 67 (13.59%) CCNA
11 60 (12.17%) Security Cleared
12 58 (11.76%) Degree
13 51 (10.34%) MCSE
13 51 (10.34%) Microsoft Certification
14 40 (8.11%) CRISC
15 37 (7.51%) Linux+ Certification
15 37 (7.51%) OSCP
16 36 (7.30%) DV Cleared
17 35 (7.10%) CREST Certified
18 33 (6.69%) Network+ Certification
Quality Assurance & Compliance
1 125 (25.35%) ISO/IEC 27001
2 63 (12.78%) PCI DSS
3 36 (7.30%) GDPR
4 34 (6.90%) HIPAA
5 33 (6.69%) GCP
6 18 (3.65%) COBIT
6 18 (3.65%) Cyber Essentials
7 12 (2.43%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 11 (2.23%) ISAE 3402
9 6 (1.22%) SLA
10 5 (1.01%) ISO 9001
11 4 (0.81%) COSO
11 4 (0.81%) Sarbanes-Oxley
11 4 (0.81%) Web Application Security Consortium
12 3 (0.61%) Actionable Recommendations
12 3 (0.61%) HMG Security Policy Framework
12 3 (0.61%) QA
13 2 (0.41%) BS7799
13 2 (0.41%) GPG13
13 2 (0.41%) MiFID
System Software
1 22 (4.46%) Docker
2 19 (3.85%) vSphere
3 17 (3.45%) Active Directory
4 11 (2.23%) NFS
4 11 (2.23%) Samba
4 11 (2.23%) VMware ESXi
5 10 (2.03%) VMware NSX
6 8 (1.62%) Snort
6 8 (1.62%) VMware Infrastructure
7 4 (0.81%) pfSense
8 1 (0.20%) Firmware
8 1 (0.20%) VirtualBox
8 1 (0.20%) Xen
Systems Management
1 34 (6.90%) Nessus
2 32 (6.49%) Puppet
3 21 (4.26%) RSA Security Analytics
4 18 (3.65%) Salt
4 18 (3.65%) Single Sign-On
5 13 (2.64%) QRadar
6 11 (2.23%) Ansible
6 11 (2.23%) Nagios
6 11 (2.23%) vCenter Server
7 9 (1.83%) CASB
8 8 (1.62%) RSA enVision
9 7 (1.42%) Nmap
10 6 (1.22%) Nexpose
10 6 (1.22%) Norton AntiVirus
10 6 (1.22%) WebInspect
11 5 (1.01%) CSIRT
12 4 (0.81%) Computer Emergency Response Teams
12 4 (0.81%) Juniper STRM
12 4 (0.81%) OpenVAS
12 4 (0.81%) Systems Management Server (SMS)
Vendors
1 99 (20.08%) Microsoft
2 58 (11.76%) Cisco
3 49 (9.94%) Symantec
4 37 (7.51%) Splunk
5 32 (6.49%) Qualys
5 32 (6.49%) Red Hat
6 31 (6.29%) Veracode
6 31 (6.29%) VMware
7 21 (4.26%) Rapid7
7 21 (4.26%) Sophos
8 20 (4.06%) CheckPoint
8 20 (4.06%) McAfee
8 20 (4.06%) Palo Alto
9 18 (3.65%) Forcepoint
9 18 (3.65%) LogRhythm
10 15 (3.04%) Juniper
11 14 (2.84%) NetApp
12 13 (2.64%) Fortinet
13 12 (2.43%) ArcSight
13 12 (2.43%) IBM