Period
to 5 December 2020

The following table provides summary statistics for permanent job vacancies with a requirement for Security Testing skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Security Testing over the 6 months to 5 December 2020 with a comparison to the same period in the previous 2 years.

Security Testing
UK
6 months to
5 Dec 2020
Same period 2019 Same period 2018
Rank 514 612 618
Rank change year-on-year +98 +6 +185
Permanent jobs citing Security Testing 222 499 653
As % of all permanent jobs advertised in the UK 0.39% 0.37% 0.40%
As % of the Processes & Methodologies category 0.43% 0.40% 0.44%
Number of salaries quoted 182 379 474
Median annual salary £60,000 £60,000 £55,000
Median salary % change year-on-year - +9.09% +10.00%
10th Percentile £37,500 £36,450 £36,825
90th Percentile £95,000 £95,000 £80,000
UK excluding London median annual salary £55,000 £55,000 £46,000
% change year-on-year - +19.57% +2.22%

Security Testing is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 52,070 124,510 149,828
As % of all permanent IT jobs advertised in the UK 92.19% 92.17% 92.03%
Number of salaries quoted 43,210 98,636 119,085
Median annual salary £55,000 £52,500 £51,000
Median salary % change year-on-year +4.76% +2.94% +2.00%
10th Percentile £32,500 £30,000 £29,000
90th Percentile £90,000 £87,500 £85,000
UK excluding London median annual salary £49,000 £45,000 £45,000
% change year-on-year +8.89% - +3.45%

Security Testing
Job Vacancy Trend

Job postings citing Security Testing as a proportion of all IT jobs advertised.

Job vacancy trend for Security Testing in the UK

Security Testing
Salary Trend

3-month moving average salary quoted in jobs citing Security Testing.

Salary trend for Security Testing in the UK

Security Testing
Salary Histogram

Salary distribution for jobs citing Security Testing over the 6 months to 5 December 2020.

Salary histogram for Security Testing in the UK

Security Testing
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Security Testing within the UK over the 6 months to 5 December 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +88 185 £60,000 -3.48% 49
UK excluding London +97 140 £55,000 - 40
South East +115 69 £60,000 -4.00% 13
London +125 54 £88,750 +10.94% 12
Work from Home -1 34 £62,500 +0.27% 6
North of England +102 30 £55,000 +18.28% 14
Midlands +99 19 £55,000 +4.76% 7
West Midlands +76 16 £55,000 -7.17% 2
North West +102 15 £57,500 +36.90% 6
Yorkshire +49 14 £42,750 -22.27% 7
South West +82 10 £55,000 -11.52% 2
Scotland +64 6 £40,000 -27.27% 2
Wales +43 5 £35,500 -16.47% 1
East Midlands +87 2 £67,500 +54.29% 5
East of England +106 1 - - 1
North East - 1 £30,000 - 1

For the 6 months to 5 December 2020, IT jobs citing Security Testing also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for Security Testing.

1 89 (40.09%) Information Security
2 82 (36.94%) Cybersecurity
3 73 (32.88%) Agile Software Development
4 70 (31.53%) Test Automation
5 67 (30.18%) Finance
6 62 (27.93%) Penetration Testing
7 57 (25.68%) QA
8 53 (23.87%) ISO/IEC 27001
9 50 (22.52%) OWASP
9 50 (22.52%) Azure
10 48 (21.62%) Risk Management
11 46 (20.72%) Microsoft
12 39 (17.57%) Manufacturing
12 39 (17.57%) Data Privacy
13 38 (17.12%) AWS
13 38 (17.12%) .NET
14 35 (15.77%) DevOps
15 33 (14.86%) Python
16 31 (13.96%) Office 365
17 30 (13.51%) Selenium
18 28 (12.61%) SaaS
18 28 (12.61%) PCI DSS
19 27 (12.16%) TypeScript
20 26 (11.71%) Security Operations
20 26 (11.71%) Performance Testing
20 26 (11.71%) Continuous Integration
20 26 (11.71%) Linux
20 26 (11.71%) C#
21 25 (11.26%) JavaScript
21 25 (11.26%) Vulnerability Management

Security Testing
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 5 (2.25%) CMS
2 4 (1.80%) Umbraco
3 3 (1.35%) Confluence
4 1 (0.45%) Apache TomEE
4 1 (0.45%) Elasticsearch
4 1 (0.45%) EPiServer
4 1 (0.45%) JBoss
4 1 (0.45%) WebSphere
Business Applications
1 5 (2.25%) Dynamics CRM
2 4 (1.80%) Dynamics NAV
2 4 (1.80%) Magento
3 3 (1.35%) Sentinel
4 1 (0.45%) Actimize
Cloud Services
1 50 (22.52%) Azure
2 38 (17.12%) AWS
3 31 (13.96%) Office 365
4 28 (12.61%) SaaS
5 10 (4.50%) Cloud Computing
6 6 (2.70%) GCP
7 5 (2.25%) Logic Apps
8 4 (1.80%) Dynamics 365
9 3 (1.35%) PaaS
10 2 (0.90%) GitHub
10 2 (0.90%) Power Automate
11 1 (0.45%) AWS CloudFormation
11 1 (0.45%) AWS CloudTrail
11 1 (0.45%) NuGet
11 1 (0.45%) Tricentis Tosca
Communications & Networking
1 15 (6.76%) Firewall
2 12 (5.41%) Skype
2 12 (5.41%) TCP/IP
3 11 (4.95%) Network Security
4 9 (4.05%) VPN
4 9 (4.05%) Wireshark
5 8 (3.60%) H.323
5 8 (3.60%) HTTP
6 6 (2.70%) IPsec
6 6 (2.70%) LAN
6 6 (2.70%) WAN
7 5 (2.25%) Wi-Fi
8 4 (1.80%) Internet
9 3 (1.35%) DKIM
9 3 (1.35%) DMARC
9 3 (1.35%) DNS
9 3 (1.35%) X.509
10 2 (0.90%) Cisco IPT
10 2 (0.90%) Unified Communications
11 1 (0.45%) VLAN
Database & Business Intelligence
1 6 (2.70%) SQL Server
2 3 (1.35%) DB2
2 3 (1.35%) MongoDB
2 3 (1.35%) NoSQL
3 1 (0.45%) Big Data
3 1 (0.45%) Relational Database
Development Applications
1 30 (13.51%) Selenium
2 16 (7.21%) Burp Suite
3 10 (4.50%) Git (software)
3 10 (4.50%) Jenkins
3 10 (4.50%) JIRA
4 8 (3.60%) SpecFlow
5 7 (3.15%) Charles Proxy
5 7 (3.15%) Fiddler
5 7 (3.15%) JMeter
5 7 (3.15%) Metasploit
6 6 (2.70%) WebDriver
7 5 (2.25%) Cypress.io
7 5 (2.25%) Hudson
7 5 (2.25%) Subversion
8 4 (1.80%) Cucumber
8 4 (1.80%) LoadRunner
9 3 (1.35%) GitLab
9 3 (1.35%) Gradle
9 3 (1.35%) Postman
9 3 (1.35%) SoapUI
General
1 67 (30.18%) Finance
2 39 (17.57%) Manufacturing
3 18 (8.11%) Marketing
4 17 (7.66%) Telecoms
5 11 (4.95%) Electronics
5 11 (4.95%) Legal
6 10 (4.50%) Public Sector
7 4 (1.80%) Back Office
7 4 (1.80%) Banking
7 4 (1.80%) Digital Economy
8 3 (1.35%) Aerospace
8 3 (1.35%) Military
8 3 (1.35%) Retail
9 1 (0.45%) Advertising
9 1 (0.45%) Games
Job Titles
1 48 (21.62%) Consultant
1 48 (21.62%) Security Consultant
2 28 (12.61%) Security Engineer
3 25 (11.26%) Cybersecurity Consultant
3 25 (11.26%) Developer
4 23 (10.36%) Analyst
4 23 (10.36%) QA Engineer
4 23 (10.36%) Tester
5 21 (9.46%) Senior Consultant
5 21 (9.46%) Senior Security Consultant
6 18 (8.11%) Penetration Tester
7 16 (7.21%) Senior Security Engineer
8 14 (6.31%) Security Analyst
9 13 (5.86%) Senior QA Engineer
10 12 (5.41%) Information Security Consultant
10 12 (5.41%) Security Technical Consultant
10 12 (5.41%) Senior Cybersecurity Consultant
10 12 (5.41%) Technical Consultant
10 12 (5.41%) Technical Security Consultant
11 11 (4.95%) Test Engineer
Libraries, Frameworks & Software Standards
1 38 (17.12%) .NET
2 22 (9.91%) OAuth
2 22 (9.91%) OAuth2
3 20 (9.01%) OpenID
4 15 (6.76%) React
5 14 (6.31%) ASP.NET
5 14 (6.31%) RESTful
5 14 (6.31%) Web Services
6 10 (4.50%) REST
7 8 (3.60%) pytest
7 8 (3.60%) WebRTC
8 7 (3.15%) .NET Core
8 7 (3.15%) ASP.NET Core
8 7 (3.15%) ASP.NET MVC
9 5 (2.25%) Gherkin
9 5 (2.25%) HTML
9 5 (2.25%) jQuery
10 4 (1.80%) ASP.NET MVC 3
10 4 (1.80%) CSS
10 4 (1.80%) KnockoutJS
Miscellaneous
1 15 (6.76%) PKI
2 14 (6.31%) Management Information System
3 13 (5.86%) Mobile App
4 11 (4.95%) Cyberthreat
5 10 (4.50%) Data Centre
6 9 (4.05%) Video Conferencing
7 8 (3.60%) Blog
7 8 (3.60%) Data Protection Act
7 8 (3.60%) Over-the-Top Content
8 7 (3.15%) Analytical Skills
8 7 (3.15%) Cyberattack
8 7 (3.15%) Distributed Denial-of-Service
8 7 (3.15%) Mainframe
9 6 (2.70%) Public Cloud
10 4 (1.80%) AS400
10 4 (1.80%) Cloud Native
10 4 (1.80%) IBM Mainframe
10 4 (1.80%) Security Operations Centre
11 3 (1.35%) BYOD
11 3 (1.35%) Self-Motivation
Operating Systems
1 26 (11.71%) Linux
2 9 (4.05%) Windows
3 7 (3.15%) Kali Linux
4 6 (2.70%) Mac OS
4 6 (2.70%) Unix
5 3 (1.35%) Android
6 2 (0.90%) Apple iOS
Processes & Methodologies
1 89 (40.09%) Information Security
2 82 (36.94%) Cybersecurity
3 73 (32.88%) Agile Software Development
4 70 (31.53%) Test Automation
5 62 (27.93%) Penetration Testing
6 50 (22.52%) OWASP
7 48 (21.62%) Risk Management
8 39 (17.57%) Data Privacy
9 35 (15.77%) DevOps
10 26 (11.71%) Continuous Integration
10 26 (11.71%) Performance Testing
10 26 (11.71%) Security Operations
11 25 (11.26%) Vulnerability Management
12 24 (10.81%) Functional Testing
13 22 (9.91%) Scrum
14 21 (9.46%) Security Management
15 20 (9.01%) Business Development
15 20 (9.01%) GAP Analysis
15 20 (9.01%) Software Engineering
16 18 (8.11%) Computer Science
Programming Languages
1 33 (14.86%) Python
2 27 (12.16%) TypeScript
3 26 (11.71%) C#
4 25 (11.26%) JavaScript
5 18 (8.11%) SQL
6 15 (6.76%) Java
7 9 (4.05%) PowerShell
8 6 (2.70%) Bash Shell
8 6 (2.70%) C++
9 5 (2.25%) C
10 4 (1.80%) Ruby
11 3 (1.35%) Go
11 3 (1.35%) Groovy
12 2 (0.90%) PHP
13 1 (0.45%) Apex Code
13 1 (0.45%) Java 8
13 1 (0.45%) Perl
Qualifications
1 23 (10.36%) Degree
2 18 (8.11%) CISSP
3 15 (6.76%) CEH
4 14 (6.31%) CISM
4 14 (6.31%) CREST Certified
5 12 (5.41%) SANS
6 9 (4.05%) Cisco Certification
7 8 (3.60%) Computer Science Degree
7 8 (3.60%) OSCP
8 7 (3.15%) CESG Certified Professional
9 6 (2.70%) CEPT
9 6 (2.70%) EC-Council LPT
9 6 (2.70%) GXPN
9 6 (2.70%) ISTQB
9 6 (2.70%) OSCE
10 5 (2.25%) CCNP
10 5 (2.25%) CRISC
10 5 (2.25%) GCIH
10 5 (2.25%) ISTQB Foundation Certification
11 4 (1.80%) CISA
Quality Assurance & Compliance
1 57 (25.68%) QA
2 53 (23.87%) ISO/IEC 27001
3 28 (12.61%) PCI DSS
4 25 (11.26%) GDPR
5 17 (7.66%) Cyber Essentials
6 15 (6.76%) NIST
7 12 (5.41%) HMG Security Policy Framework
8 7 (3.15%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
9 5 (2.25%) NCSC
10 3 (1.35%) ISO 9001
11 1 (0.45%) Cyber Essentials PLUS
11 1 (0.45%) Sarbanes-Oxley
11 1 (0.45%) SLA
11 1 (0.45%) WCAG
System Software
1 24 (10.81%) Docker
2 8 (3.60%) Hyper-V
2 8 (3.60%) KVM
2 8 (3.60%) VMware Infrastructure
3 3 (1.35%) Active Directory
3 3 (1.35%) Firmware
3 3 (1.35%) Snort
Systems Management
1 7 (3.15%) Terraform
2 6 (2.70%) Kubernetes
3 4 (1.80%) Ansible
3 4 (1.80%) Nessus
4 3 (1.35%) Microsoft Intune
5 2 (0.90%) Computer Incident Response Team
5 2 (0.90%) HP Fortify
5 2 (0.90%) Puppet
6 1 (0.45%) Grafana
6 1 (0.45%) Graphite
6 1 (0.45%) Host Intrusion Detection System
6 1 (0.45%) HP ALM
6 1 (0.45%) Nmap
6 1 (0.45%) Packer
6 1 (0.45%) Prometheus
6 1 (0.45%) Single Sign-On
6 1 (0.45%) WebInspect
Vendors
1 46 (20.72%) Microsoft
2 8 (3.60%) SAP
2 8 (3.60%) VMware
3 5 (2.25%) Cisco
4 4 (1.80%) Black Duck
4 4 (1.80%) IBM
5 3 (1.35%) Adobe
6 2 (0.90%) HP
6 2 (0.90%) Splunk
6 2 (0.90%) Thycotic
7 1 (0.45%) ArcSight
7 1 (0.45%) Arista
7 1 (0.45%) Micro Focus
7 1 (0.45%) New Relic
7 1 (0.45%) Oracle
7 1 (0.45%) Ping Identity
7 1 (0.45%) Salesforce.com
7 1 (0.45%) SaltStack
7 1 (0.45%) Sonatype
7 1 (0.45%) Veracode