Period
to 17 October 2019

The following table provides summary statistics for permanent job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited SIEM over the 6 months to 17 October 2019 with a comparison to the same period in the previous 2 years.

Security Information and Event Management (SIEM)
UK
6 months to
17 Oct 2019
Same period 2018 Same period 2017
Rank 288 282 358
Rank change year-on-year -6 +76 +1
Permanent jobs citing SIEM 1,540 1,996 1,627
As % of all permanent IT jobs advertised in the UK 1.12% 1.21% 0.93%
As % of the Processes & Methodologies category 1.22% 1.32% 1.01%
Number of salaries quoted 1,104 1,505 1,316
UK median annual salary £60,000 £60,000 £57,500
Median salary % change year-on-year - +4.35% -
10th Percentile £35,000 £38,750 £36,250
90th Percentile £88,750 £83,750 £87,500
UK excluding London median annual salary £50,000 £55,000 £47,500
% change year-on-year -9.09% +15.79% -5.00%

SIEM is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 126,404 150,983 161,680
As % of all permanent IT jobs advertised in the UK 92.13% 91.80% 92.32%
Number of salaries quoted 99,380 120,151 127,603
UK median annual salary £52,500 £50,000 £50,000
Median salary % change year-on-year +5.00% - +4.17%
10th Percentile £30,000 £29,000 £28,250
90th Percentile £86,250 £83,750 £80,000
UK excluding London median annual salary £45,000 £45,000 £42,500
% change year-on-year - +5.88% -

SIEM
Job Vacancy Trend

Job postings citing SIEM as a percentage of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing SIEM.

Salary trend for SIEM in the UK

SIEM
Salary Histogram

The salary distribution of IT jobs citing SIEM over the 6 months to 17 October 2019.

Salary histogram for SIEM in the UK

SIEM
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SIEM within the UK over the 6 months to 17 October 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -23 1,395 £60,000 - 177
UK excluding London -7 926 £50,000 -9.09% 133
London -8 549 £67,500 +3.85% 53
South East +64 287 £60,000 +4.35% 32
Midlands +25 191 £47,500 -17.39% 30
West Midlands +31 142 £48,750 -15.22% 22
East of England -47 142 £55,000 +10.00% 10
North of England -118 112 £50,000 -8.26% 31
South West +42 94 £36,000 -22.58% 22
Scotland +35 84 £50,000 -23.08% 5
North West -95 62 £50,000 -9.09% 22
East Midlands +18 48 £42,500 -26.09% 8
Yorkshire -11 47 £45,000 -5.26% 7
Wales +21 11 £39,000 -13.33% 2
North East +9 3 £42,000 -1.18% 2
Northern Ireland -10 1 £50,000 - 2

For the 6 months to 17 October 2019, IT jobs citing SIEM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for SIEM.

1 821 (53.31%) Cybersecurity
2 695 (45.13%) Information Security
3 677 (43.96%) Firewall
4 576 (37.40%) Security Operations
5 454 (29.48%) CISSP
6 415 (26.95%) Linux
7 367 (23.83%) Windows
8 361 (23.44%) Vulnerability Management
9 346 (22.47%) ISO/IEC 27001
10 314 (20.39%) Penetration Testing
11 309 (20.06%) Network Security
12 308 (20.00%) Splunk
13 281 (18.25%) Degree
14 279 (18.12%) Finance
15 272 (17.66%) CISM
16 270 (17.53%) AWS
17 254 (16.49%) Management Information System
18 245 (15.91%) Azure
19 227 (14.74%) TCP/IP
20 224 (14.55%) ITIL
21 223 (14.48%) Python
22 222 (14.42%) Security Operations Centre
23 203 (13.18%) Microsoft
24 196 (12.73%) Analytical Skills
25 192 (12.47%) Security Architecture
26 180 (11.69%) Intrusion Detection
27 177 (11.49%) Problem-Solving
28 176 (11.43%) PCI DSS
29 174 (11.30%) Vulnerability Scanning
30 173 (11.23%) Incident Management

SIEM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 15 (0.97%) MS Exchange
2 9 (0.58%) Elasticsearch
3 8 (0.52%) OpenStack
4 7 (0.45%) Exchange Server 2010
4 7 (0.45%) Exchange Server 2013
5 6 (0.39%) SharePoint
6 4 (0.26%) Apache
7 3 (0.19%) Cloud Foundry
7 3 (0.19%) Confluence
8 2 (0.13%) Apache Spark
8 2 (0.13%) IIS
9 1 (0.065%) nginx
9 1 (0.065%) SAS
9 1 (0.065%) Skype for Business
9 1 (0.065%) Tomcat
Applications
1 16 (1.04%) Microsoft Office
2 3 (0.19%) Microsoft Excel
3 1 (0.065%) Microsoft PowerPoint
Business Applications
1 1 (0.065%) Remedy ITSM
1 1 (0.065%) Sentinel
Cloud Services
1 270 (17.53%) AWS
2 245 (15.91%) Azure
3 112 (7.27%) Office 365
4 91 (5.91%) SaaS
5 75 (4.87%) GCP
6 60 (3.90%) IaaS
7 56 (3.64%) PaaS
8 23 (1.49%) Cloud Computing
9 15 (0.97%) Amazon ECS
10 13 (0.84%) Azure Active Directory
11 9 (0.58%) Azure ExpressRoute
12 6 (0.39%) AWS CloudFormation
12 6 (0.39%) Slack
12 6 (0.39%) Trello
13 4 (0.26%) AWS CloudTrail
13 4 (0.26%) GitHub
14 3 (0.19%) Amazon CloudWatch
14 3 (0.19%) Amazon EC2
14 3 (0.19%) Virtual Private Cloud
15 2 (0.13%) Amazon S3
Communications & Networking
1 677 (43.96%) Firewall
2 309 (20.06%) Network Security
3 227 (14.74%) TCP/IP
4 180 (11.69%) Intrusion Detection
5 131 (8.51%) VPN
6 112 (7.27%) DNS
7 79 (5.13%) Internet
7 79 (5.13%) WAN
8 75 (4.87%) LAN
9 68 (4.42%) DHCP
9 68 (4.42%) IPsec
10 66 (4.29%) Wireless
11 55 (3.57%) Cisco ASA
12 38 (2.47%) SSL
13 37 (2.40%) MPLS
14 36 (2.34%) HTTP
15 29 (1.88%) NetScaler
15 29 (1.88%) Wireshark
16 26 (1.69%) OSPF
17 24 (1.56%) Cisco Firepower
Database & Business Intelligence
1 39 (2.53%) SQL Server
2 23 (1.49%) MySQL
3 13 (0.84%) MongoDB
4 9 (0.58%) Maltego
5 8 (0.52%) Big Data
6 6 (0.39%) Data Lake
7 5 (0.32%) Azure SQL Database
8 3 (0.19%) Blockchain
8 3 (0.19%) PostgreSQL
9 2 (0.13%) Data Warehouse
9 2 (0.13%) Hadoop
9 2 (0.13%) Semantic Layer
9 2 (0.13%) Sisense
9 2 (0.13%) SQL Server 2012
9 2 (0.13%) SQL Server 2014
10 1 (0.065%) Amazon RDS
10 1 (0.065%) Apache Hive
10 1 (0.065%) Cosmos DB
10 1 (0.065%) DB2
Development Applications
1 75 (4.87%) Jenkins
2 40 (2.60%) PhantomJS
3 25 (1.62%) Vagrant
4 24 (1.56%) Metasploit
5 16 (1.04%) Atlassian Bamboo
5 16 (1.04%) Hudson
6 14 (0.91%) Burp Suite
6 14 (0.91%) JIRA
7 10 (0.65%) IDA Disassembler
8 8 (0.52%) VSS/SourceSafe
9 5 (0.32%) OllyDbg
9 5 (0.32%) SonarQube
10 3 (0.19%) Robot Framework
10 3 (0.19%) TestRail
11 2 (0.13%) Git (software)
General
1 279 (18.12%) Finance
2 71 (4.61%) Law
3 58 (3.77%) Public Sector
4 56 (3.64%) Retail
5 52 (3.38%) Banking
6 43 (2.79%) Legal
7 31 (2.01%) Games
8 20 (1.30%) Telecoms
9 15 (0.97%) Marketing
10 12 (0.78%) Investment Banking
11 10 (0.65%) Aerospace
12 5 (0.32%) Manufacturing
12 5 (0.32%) Military
12 5 (0.32%) Pharmaceutical
13 4 (0.26%) Advertising
14 3 (0.19%) Back Office
14 3 (0.19%) Financial Institution
14 3 (0.19%) French Language
14 3 (0.19%) Local Government
15 2 (0.13%) Police
Job Titles
1 486 (31.56%) Analyst
2 337 (21.88%) Security Engineer
3 334 (21.69%) Security Analyst
4 145 (9.42%) SOC Analyst
5 128 (8.31%) Architect
6 125 (8.12%) Consultant
7 116 (7.53%) Security Consultant
8 108 (7.01%) Security Architect
9 96 (6.23%) Cybersecurity Engineer
10 94 (6.10%) Security Manager
11 91 (5.91%) Senior Analyst
12 88 (5.71%) Cybersecurity Analyst
13 79 (5.13%) DevOps Engineer
14 74 (4.81%) Information Analyst
14 74 (4.81%) Information Security Analyst
15 61 (3.96%) IT Analyst
15 61 (3.96%) IT Security Analyst
16 55 (3.57%) Operations Analyst
17 54 (3.51%) Cybersecurity Consultant
17 54 (3.51%) Security Operations Analyst
Libraries, Frameworks & Software Standards
1 40 (2.60%) Node.js
2 29 (1.88%) SailPoint
3 23 (1.49%) Elastic Stack
4 17 (1.10%) 802.1X
5 14 (0.91%) Regular Expression
5 14 (0.91%) Web Services
6 12 (0.78%) .NET
7 5 (0.32%) JSON
8 4 (0.26%) LDAP
8 4 (0.26%) OAuth
8 4 (0.26%) OLE
8 4 (0.26%) OpenID
9 3 (0.19%) Middleware
9 3 (0.19%) SAML
10 2 (0.13%) CSS
10 2 (0.13%) D3.js
10 2 (0.13%) EJB
10 2 (0.13%) HTML
11 1 (0.065%) .NET Core
11 1 (0.065%) LEMP Stack
Miscellaneous
1 254 (16.49%) Management Information System
2 222 (14.42%) Security Operations Centre
3 196 (12.73%) Analytical Skills
4 113 (7.34%) Cyberthreat
5 71 (4.61%) Cyber Kill Chain
6 68 (4.42%) Distributed Denial-of-Service
7 63 (4.09%) PKI
8 61 (3.96%) Data Centre
9 59 (3.83%) Cyber Defence
10 52 (3.38%) Cyberattack
11 46 (2.99%) Data Protection Act
12 45 (2.92%) Self-Motivation
13 24 (1.56%) Cybercrime
14 22 (1.43%) Greenfield Project
15 16 (1.04%) Public Cloud
16 14 (0.91%) CESG
17 13 (0.84%) Social Media
18 12 (0.78%) Enterprise Software
18 12 (0.78%) Hybrid Cloud
19 9 (0.58%) Virtual Team
Operating Systems
1 415 (26.95%) Linux
2 367 (23.83%) Windows
3 158 (10.26%) Unix
4 65 (4.22%) Windows Server
5 21 (1.36%) Red Hat Enterprise Linux
6 16 (1.04%) Mac OS
6 16 (1.04%) Windows Server 2008
7 15 (0.97%) CatOS
8 14 (0.91%) Kali Linux
9 13 (0.84%) Windows Server 2012
10 10 (0.65%) Windows 10
11 8 (0.52%) CentOS
12 4 (0.26%) Ubuntu
12 4 (0.26%) Windows Server 2003
13 3 (0.19%) Apple iOS
13 3 (0.19%) Solaris
14 1 (0.065%) Mac OS X
14 1 (0.065%) SUSE
14 1 (0.065%) VMS
14 1 (0.065%) Windows 7
Processes & Methodologies
1 821 (53.31%) Cybersecurity
2 695 (45.13%) Information Security
3 576 (37.40%) Security Operations
4 361 (23.44%) Vulnerability Management
5 314 (20.39%) Penetration Testing
6 224 (14.55%) ITIL
7 192 (12.47%) Security Architecture
8 177 (11.49%) Problem-Solving
9 174 (11.30%) Vulnerability Scanning
10 173 (11.23%) Incident Management
11 168 (10.91%) Identity Access Management
12 146 (9.48%) DevOps
13 141 (9.16%) Continuous Improvement
13 141 (9.16%) Threat Intelligence
14 135 (8.77%) Agile Software Development
15 131 (8.51%) Kalman Filter
16 127 (8.25%) Stakeholder Management
17 124 (8.05%) Security Management
18 123 (7.99%) Analytics
19 117 (7.60%) TOGAF
Programming Languages
1 223 (14.48%) Python
2 140 (9.09%) Java
3 116 (7.53%) PowerShell
4 80 (5.19%) C++
5 71 (4.61%) JavaScript
6 67 (4.35%) Bash Shell
7 59 (3.83%) Go
8 34 (2.21%) Ruby
8 34 (2.21%) SQL
9 29 (1.88%) Shell Script
10 27 (1.75%) C
11 13 (0.84%) C#
11 13 (0.84%) Perl
12 12 (0.78%) TypeScript
13 6 (0.39%) PHP
14 5 (0.32%) Bourne shell
14 5 (0.32%) Korn
15 2 (0.13%) R
16 1 (0.065%) Rust
Qualifications
1 454 (29.48%) CISSP
2 281 (18.25%) Degree
3 272 (17.66%) CISM
4 169 (10.97%) Security Cleared
5 167 (10.84%) Cisco Certification
6 120 (7.79%) CISA
7 105 (6.82%) GIAC
8 100 (6.49%) CEH
9 81 (5.26%) SC Cleared
10 76 (4.94%) CCNA
11 69 (4.48%) SANS
12 54 (3.51%) CCNP
13 46 (2.99%) CompTIA Security+
14 44 (2.86%) (ISC)2 CCSP
15 42 (2.73%) Computer Science Degree
15 42 (2.73%) DV Cleared
16 40 (2.60%) Master's Degree
17 39 (2.53%) GCIH
18 36 (2.34%) CCSP
18 36 (2.34%) TOGAF Certification
Quality Assurance & Compliance
1 346 (22.47%) ISO/IEC 27001
2 176 (11.43%) PCI DSS
3 155 (10.06%) NIST
4 125 (8.12%) GDPR
5 54 (3.51%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 52 (3.38%) Cyber Essentials
7 48 (3.12%) SLA
8 41 (2.66%) COBIT
9 31 (2.01%) HMG Security Policy Framework
10 22 (1.43%) Cyber Essentials PLUS
11 18 (1.17%) Sarbanes-Oxley
12 12 (0.78%) ISO 9001
13 9 (0.58%) JSP 440
13 9 (0.58%) MiFID
14 7 (0.45%) HIPAA
15 6 (0.39%) GPG13
15 6 (0.39%) ISO/IEC 27005
15 6 (0.39%) NIST 800
16 3 (0.19%) ISO 31000
16 3 (0.19%) NCSC
System Software
1 73 (4.74%) Active Directory
2 46 (2.99%) Docker
3 31 (2.01%) VMware Infrastructure
4 15 (0.97%) Hyper-V
5 13 (0.84%) vSphere
6 11 (0.71%) Snort
7 4 (0.26%) VMware ESXi
7 4 (0.26%) XenApp
8 3 (0.19%) iptables
8 3 (0.19%) KVM
8 3 (0.19%) LXC
8 3 (0.19%) ProxySG
8 3 (0.19%) Virtual Machines
8 3 (0.19%) Xen
8 3 (0.19%) XenDesktop
9 2 (0.13%) NFS
10 1 (0.065%) BitLocker
10 1 (0.065%) Postfix
10 1 (0.065%) Samba
10 1 (0.065%) VMware Server
Systems Management
1 113 (7.34%) Nessus
2 97 (6.30%) QRadar
3 84 (5.45%) Kubernetes
4 80 (5.19%) Ansible
4 80 (5.19%) Opscode Chef
4 80 (5.19%) Puppet
5 78 (5.06%) Terraform
6 46 (2.99%) FortiGate
7 43 (2.79%) SCCM
8 33 (2.14%) McAfee ePO
9 28 (1.82%) Nagios
10 26 (1.69%) Grafana
10 26 (1.69%) Salt
10 26 (1.69%) ZABBIX
11 25 (1.62%) Consul
11 25 (1.62%) Docker Swarm
11 25 (1.62%) Graphite
11 25 (1.62%) Opsview
11 25 (1.62%) Packer
12 18 (1.17%) CSIRT
Vendors
1 308 (20.00%) Splunk
2 203 (13.18%) Microsoft
3 163 (10.58%) Cisco
4 144 (9.35%) LogRhythm
5 101 (6.56%) Palo Alto
6 92 (5.97%) ArcSight
7 91 (5.91%) Qualys
8 87 (5.65%) CyberArk
8 87 (5.65%) Symantec
9 81 (5.26%) McAfee
10 79 (5.13%) Google
11 78 (5.06%) ServiceNow
12 67 (4.35%) Fortinet
13 65 (4.22%) SolarWinds
14 60 (3.90%) CheckPoint
15 57 (3.70%) VMware
16 47 (3.05%) Juniper
17 33 (2.14%) AlienVault
18 32 (2.08%) Citrix
19 31 (2.01%) F5