Period
to

The following table provides summary statistics for permanent job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited SIEM over the 6 months to 17 August 2022 with a comparison to the same period in the previous 2 years.

Security Information and Event Management (SIEM)
UK
6 months to
17 Aug 2022
Same period 2021 Same period 2020
Rank 364 352 260
Rank change year-on-year -12 -92 +58
Permanent jobs citing SIEM 1,636 1,101 758
As % of all permanent jobs advertised in the UK 0.98% 0.95% 1.23%
As % of the Processes & Methodologies category 1.02% 1.01% 1.32%
Number of salaries quoted 1,111 836 585
10th Percentile £38,750 £39,750 £37,100
25th Percentile £51,250 £51,250 £45,000
Median annual salary (50th Percentile) £65,000 £65,000 £57,500
Median % change year-on-year - +13.04% -4.17%
75th Percentile £85,000 £80,000 £70,000
90th Percentile £101,250 £85,000 £83,450
UK excluding London median annual salary £63,342 £60,000 £50,000
% change year-on-year +5.57% +20.00% -4.76%

SIEM is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 160,150 109,369 57,584
As % of all permanent IT jobs advertised in the UK 96.19% 94.69% 93.64%
Number of salaries quoted 83,502 73,898 46,767
10th Percentile £33,750 £32,500 £32,500
25th Percentile £45,000 £42,000 £41,250
Median annual salary (50th Percentile) £60,000 £55,000 £55,000
Median % change year-on-year +9.09% - +4.76%
75th Percentile £80,000 £75,000 £73,750
90th Percentile £97,290 £92,500 £90,000
UK excluding London median annual salary £52,500 £50,000 £47,500
% change year-on-year +5.00% +5.26% +5.56%

SIEM
Job Vacancy Trend

Job postings citing SIEM as a proportion of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Salary Trend

3-month moving average salary quoted in jobs citing SIEM.

Salary trend for SIEM in the UK

SIEM
Salary Histogram

Salary distribution for jobs citing SIEM over the 6 months to 17 August 2022.

Salary histogram for SIEM in the UK

SIEM
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SIEM within the UK over the 6 months to 17 August 2022. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
England -26 1,331 £65,000 - 156
UK excluding London -10 779 £63,342 +5.57% 117
Work from Home -38 694 £67,500 +3.85% 57
London -40 642 £75,000 +7.14% 56
North of England +25 210 £60,000 +9.09% 28
South East -4 210 £67,500 +3.85% 25
North West +35 157 £65,000 +39.78% 16
Scotland +9 122 £68,750 +5.77% 10
Midlands -78 94 £62,500 +13.64% 20
South West -22 84 £55,000 - 20
West Midlands -47 77 £62,500 +19.05% 12
Yorkshire -11 56 £60,000 - 12
East of England -83 38 £57,500 -19.01% 7
Wales -6 22 £52,250 +49.29% 7
East Midlands -13 15 £62,500 -3.85% 8
Northern Ireland -10 6 £65,000 +160.00%
North East -13 5 £110,000 +83.33%

For the 6 months to 17 August 2022, IT jobs citing SIEM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for SIEM.

1 1,104 (67.48%) Cybersecurity
2 720 (44.01%) Information Security
3 583 (35.64%) Security Operations
4 558 (34.11%) Firewall
5 547 (33.44%) Azure
6 530 (32.40%) Incident Response
7 440 (26.89%) Microsoft
8 419 (25.61%) Social Skills
9 411 (25.12%) CISSP
10 392 (23.96%) Finance
11 388 (23.72%) ISO/IEC 27001
12 356 (21.76%) Windows
13 354 (21.64%) Splunk
14 336 (20.54%) Vulnerability Management
15 311 (19.01%) Threat Intelligence
16 295 (18.03%) Linux
17 292 (17.85%) AWS
18 270 (16.50%) NIST
19 262 (16.01%) Degree
20 260 (15.89%) Python
21 251 (15.34%) Management Information System
22 250 (15.28%) SOAR
23 246 (15.04%) Penetration Testing
24 237 (14.49%) Azure Sentinel
25 236 (14.43%) Cyber Threat Intelligence
26 209 (12.78%) Use Case
26 209 (12.78%) Data Loss Prevention
27 206 (12.59%) Network Security
28 205 (12.53%) Security Cleared
29 203 (12.41%) Vulnerability Scanning

SIEM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 19 (1.16%) IIS
1 19 (1.16%) MS Exchange
2 16 (0.98%) Apache Spark
3 14 (0.86%) Confluence
4 13 (0.79%) SharePoint
5 12 (0.73%) Apache
6 9 (0.55%) OpenStack
7 7 (0.43%) Cloud Foundry
8 2 (0.12%) WebLogic
Applications
1 35 (2.14%) Microsoft Office
2 30 (1.83%) Microsoft Excel
2 30 (1.83%) MS Visio
3 22 (1.34%) Microsoft PowerPoint
Business Applications
1 8 (0.49%) Oracle EBS
2 1 (0.061%) Veritas eDiscovery
Cloud Services
1 547 (33.44%) Azure
2 292 (17.85%) AWS
3 237 (14.49%) Azure Sentinel
4 195 (11.92%) Microsoft 365
5 127 (7.76%) SaaS
6 85 (5.20%) GCP
7 65 (3.97%) IaaS
8 62 (3.79%) Mimecast
8 62 (3.79%) PaaS
9 47 (2.87%) Azure Active Directory
10 40 (2.44%) Cloud Computing
11 36 (2.20%) Datadog
12 28 (1.71%) Serverless
13 27 (1.65%) GitHub
14 19 (1.16%) Power Platform
15 15 (0.92%) Azure Stack
16 14 (0.86%) Azure DevOps
17 8 (0.49%) Amazon GuardDuty
17 8 (0.49%) Google Workspace
18 6 (0.37%) Dynamics 365
Communications & Networking
1 558 (34.11%) Firewall
2 206 (12.59%) Network Security
3 192 (11.74%) Intrusion Detection
4 112 (6.85%) TCP/IP
5 79 (4.83%) DNS
6 70 (4.28%) VPN
7 57 (3.48%) WAN
8 50 (3.06%) Internet
9 49 (3.00%) SSL
10 46 (2.81%) DHCP
11 44 (2.69%) Wireless
12 41 (2.51%) LAN
13 27 (1.65%) Wireshark
14 23 (1.41%) IPsec
15 22 (1.34%) BGP
16 19 (1.16%) SD-WAN
17 16 (0.98%) OSPF
17 16 (0.98%) SSH
17 16 (0.98%) Wi-Fi
17 16 (0.98%) Wireless Security
Database & Business Intelligence
1 40 (2.44%) Big Data
2 27 (1.65%) SQL Server
3 24 (1.47%) PostgreSQL
4 19 (1.16%) Power BI
5 14 (0.86%) Tableau
6 12 (0.73%) Elasticsearch
6 12 (0.73%) Hadoop
6 12 (0.73%) NoSQL
7 5 (0.31%) Data Lake
7 5 (0.31%) GIS
8 3 (0.18%) Azure SQL Database
9 2 (0.12%) MongoDB
9 2 (0.12%) MySQL
10 1 (0.061%) Amazon Athena
10 1 (0.061%) Amazon RDS
10 1 (0.061%) Data Warehouse
Development Applications
1 15 (0.92%) JIRA
2 13 (0.79%) Git (software)
2 13 (0.79%) GitLab
3 7 (0.43%) Metasploit
4 4 (0.24%) Jenkins
4 4 (0.24%) Team Foundation Server
5 3 (0.18%) Ant
5 3 (0.18%) ERwin
6 2 (0.12%) Burp Suite
7 1 (0.061%) Octopus Deploy
7 1 (0.061%) Sonatype Nexus
7 1 (0.061%) TeamCity
General
1 419 (25.61%) Social Skills
2 392 (23.96%) Finance
3 134 (8.19%) Legal
4 103 (6.30%) Analytical Skills
5 88 (5.38%) Retail
6 84 (5.13%) Inclusion and Diversity
7 68 (4.16%) Banking
7 68 (4.16%) Law
8 48 (2.93%) Manufacturing
8 48 (2.93%) Marketing
8 48 (2.93%) Public Sector
9 39 (2.38%) Aviation
10 28 (1.71%) Investment Banking
11 25 (1.53%) Telecoms
12 23 (1.41%) Presentation Skills
13 16 (0.98%) Documentation Skills
14 13 (0.79%) Influencing Skills
15 12 (0.73%) Military
15 12 (0.73%) Organisational Skills
16 10 (0.61%) Local Government
Job Titles
1 415 (25.37%) Analyst
2 327 (19.99%) Security Engineer
3 261 (15.95%) Security Analyst
4 221 (13.51%) Architect
5 144 (8.80%) Consultant
6 134 (8.19%) Security Consultant
7 132 (8.07%) Security Architect
8 122 (7.46%) Security Manager
9 108 (6.60%) SOC Analyst
10 85 (5.20%) Senior Security Engineer
11 82 (5.01%) Solutions Architect
12 76 (4.65%) Cybersecurity Analyst
13 65 (3.97%) Senior Analyst
14 63 (3.85%) SIEM Analyst
15 58 (3.55%) Senior Consultant
16 56 (3.42%) Cybersecurity Engineer
16 56 (3.42%) Information Manager
17 55 (3.36%) Information Analyst
17 55 (3.36%) Information Security Analyst
17 55 (3.36%) Information Security Manager
Libraries, Frameworks & Software Standards
1 36 (2.20%) SAML
2 35 (2.14%) LDAP
3 23 (1.41%) Kafka
4 19 (1.16%) Elastic Stack
5 16 (0.98%) Node.js
6 12 (0.73%) COM
7 11 (0.67%) GraphQL
7 11 (0.67%) Mason
7 11 (0.67%) React
8 10 (0.61%) REST
9 5 (0.31%) OAuth
9 5 (0.31%) OpenID
9 5 (0.31%) Regular Expression
9 5 (0.31%) RESTful
10 4 (0.24%) JSON
10 4 (0.24%) Middleware
10 4 (0.24%) ModSecurity
10 4 (0.24%) YAML
11 3 (0.18%) .NET
11 3 (0.18%) 802.1X
Miscellaneous
1 251 (15.34%) Management Information System
2 182 (11.12%) Security Operations Centre
3 112 (6.85%) Cyberthreat
4 90 (5.50%) Data Centre
5 89 (5.44%) Cyber Defence
6 86 (5.26%) Public Cloud
7 77 (4.71%) Distributed Denial-of-Service
8 74 (4.52%) Cyberattack
9 56 (3.42%) PKI
10 53 (3.24%) Self-Motivation
11 49 (3.00%) CSOC
12 41 (2.51%) Cyber Kill Chain
13 38 (2.32%) Private Cloud
14 31 (1.89%) Hybrid Cloud
15 28 (1.71%) Insider Threat
15 28 (1.71%) Legacy Systems
16 16 (0.98%) Data Protection Act
17 15 (0.92%) Blog
17 15 (0.92%) IoT
18 14 (0.86%) Virtual Team
Operating Systems
1 356 (21.76%) Windows
2 295 (18.03%) Linux
3 96 (5.87%) Unix
4 72 (4.40%) Windows Server
5 22 (1.34%) Windows 10
6 19 (1.16%) Ubuntu
7 18 (1.10%) CentOS
8 16 (0.98%) Red Hat Enterprise Linux
9 11 (0.67%) Windows Server 2019
10 10 (0.61%) Mac OS
10 10 (0.61%) Windows Server 2016
11 8 (0.49%) Oracle Linux
12 6 (0.37%) Kali Linux
12 6 (0.37%) Windows Server 2012
13 5 (0.31%) Debian
13 5 (0.31%) Mac OS X
14 1 (0.061%) Solaris
14 1 (0.061%) VMS
14 1 (0.061%) Windows Server 2008
Processes & Methodologies
1 1,104 (67.48%) Cybersecurity
2 720 (44.01%) Information Security
3 583 (35.64%) Security Operations
4 530 (32.40%) Incident Response
5 336 (20.54%) Vulnerability Management
6 311 (19.01%) Threat Intelligence
7 250 (15.28%) SOAR
8 246 (15.04%) Penetration Testing
9 236 (14.43%) Cyber Threat Intelligence
10 209 (12.78%) Data Loss Prevention
10 209 (12.78%) Use Case
11 203 (12.41%) Vulnerability Scanning
12 188 (11.49%) Incident Management
13 170 (10.39%) ITIL
14 168 (10.27%) MITRE ATT&CK
14 168 (10.27%) Presales
15 162 (9.90%) Problem-Solving
16 157 (9.60%) DevOps
17 151 (9.23%) Risk Management
17 151 (9.23%) Security Architecture
Programming Languages
1 260 (15.89%) Python
2 182 (11.12%) PowerShell
3 110 (6.72%) Bash
4 60 (3.67%) SQL
5 39 (2.38%) Go
6 26 (1.59%) Perl
7 25 (1.53%) Ruby
8 23 (1.41%) C
9 22 (1.34%) JavaScript
10 17 (1.04%) C#
10 17 (1.04%) TypeScript
11 12 (0.73%) Java
12 9 (0.55%) C++
13 6 (0.37%) R
14 5 (0.31%) VBA
15 4 (0.24%) Search Processing Language
16 3 (0.18%) Groovy
16 3 (0.18%) Scala
17 2 (0.12%) PL/SQL
18 1 (0.061%) Erlang
Qualifications
1 411 (25.12%) CISSP
2 262 (16.01%) Degree
3 205 (12.53%) Security Cleared
4 196 (11.98%) CISM
5 144 (8.80%) CEH
6 133 (8.13%) GCIH
7 121 (7.40%) SC Cleared
8 113 (6.91%) GIAC
9 95 (5.81%) SANS
10 86 (5.26%) Cisco Certification
11 81 (4.95%) CISA
12 71 (4.34%) DV Cleared
13 64 (3.91%) CompTIA Security+
14 60 (3.67%) GCIA
15 53 (3.24%) SSCP
16 48 (2.93%) Computer Science Degree
17 45 (2.75%) GCFA
18 42 (2.57%) CISMP
19 41 (2.51%) GREM
19 41 (2.51%) OSCP
Quality Assurance & Compliance
1 388 (23.72%) ISO/IEC 27001
2 270 (16.50%) NIST
3 180 (11.00%) PCI DSS
4 160 (9.78%) GDPR
5 156 (9.54%) Cyber Essentials
6 60 (3.67%) Cyber Essentials PLUS
7 49 (3.00%) GRC
8 46 (2.81%) NCSC
9 43 (2.63%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 22 (1.34%) Sarbanes-Oxley
10 22 (1.34%) SLA
11 21 (1.28%) QA
12 18 (1.10%) RMADS
12 18 (1.10%) SOC 2
13 15 (0.92%) COBIT
14 10 (0.61%) HMG Security Policy Framework
15 9 (0.55%) HIPAA
16 8 (0.49%) IASME
16 8 (0.49%) NIST 800
17 5 (0.31%) SOC 1
System Software
1 174 (10.64%) Active Directory
2 57 (3.48%) VMware Infrastructure
3 32 (1.96%) Docker
4 18 (1.10%) Hyper-V
5 16 (0.98%) Snort
5 16 (0.98%) Virtual Machines
6 12 (0.73%) vSphere
7 8 (0.49%) VMware Workstation
8 7 (0.43%) KVM
8 7 (0.43%) LXC
8 7 (0.43%) Xen
9 6 (0.37%) Virtual Desktop
9 6 (0.37%) Virtual Servers
10 5 (0.31%) Forefront TMG
10 5 (0.31%) VMware ESXi
10 5 (0.31%) XenDesktop
11 3 (0.18%) Microsoft App-V
11 3 (0.18%) Squid
12 2 (0.12%) BitLocker
13 1 (0.061%) iptables
Systems Management
1 82 (5.01%) Nessus
2 75 (4.58%) CASB
3 74 (4.52%) QRadar
4 53 (3.24%) Kubernetes
5 41 (2.51%) CSIRT
6 36 (2.20%) Terraform
7 34 (2.08%) FortiGate
8 29 (1.77%) Microsoft Intune
9 25 (1.53%) Kibana
10 24 (1.47%) Ansible
11 19 (1.16%) Single Sign-On
12 17 (1.04%) Nexpose
12 17 (1.04%) WSUS
13 16 (0.98%) Computer Emergency Response Teams
14 13 (0.79%) SCCM
15 11 (0.67%) logstash
15 11 (0.67%) Puppet
16 10 (0.61%) Opscode Chef
17 8 (0.49%) Active Directory Federation Services
17 8 (0.49%) SCOM
Vendors
1 440 (26.89%) Microsoft
2 354 (21.64%) Splunk
3 138 (8.44%) CrowdStrike
4 135 (8.25%) Cisco
5 109 (6.66%) Google
6 108 (6.60%) Palo Alto
7 81 (4.95%) VMware
8 66 (4.03%) SolarWinds
9 56 (3.42%) LogRhythm
10 55 (3.36%) Fortinet
11 54 (3.30%) CheckPoint
12 53 (3.24%) McAfee
13 51 (3.12%) ServiceNow
14 47 (2.87%) Darktrace
15 42 (2.57%) Sun
16 41 (2.51%) Zscaler
17 36 (2.20%) CyberArk
18 34 (2.08%) ArcSight
18 34 (2.08%) Red Hat
19 33 (2.02%) Juniper