Period
to 22 July 2019

The following table provides summary statistics for permanent job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited SIEM over the 6 months to 22 July 2019 with a comparison to the same period in the previous 2 years.

Security Information and Event Management (SIEM)
UK
6 months to
22 Jul 2019
Same period 2018 Same period 2017
Rank 315 307 366
Rank change year-on-year -8 +59 +7
Permanent jobs citing SIEM 1,483 1,853 1,594
As % of all permanent IT jobs advertised in the UK 1.02% 1.07% 0.89%
As % of the Processes & Methodologies category 1.11% 1.16% 0.97%
Number of salaries quoted 1,165 1,355 1,295
UK median annual salary £60,000 £60,000 £56,000
Median salary % change year-on-year - +7.14% +1.82%
10th Percentile £36,250 £39,750 £37,000
90th Percentile £88,250 £86,250 £90,000
UK excluding London median annual salary £55,000 £55,000 £47,500
% change year-on-year - +15.79% -5.00%

SIEM is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 133,253 159,331 164,371
As % of all permanent IT jobs advertised in the UK 92.05% 91.87% 91.98%
Number of salaries quoted 104,869 127,395 132,192
UK median annual salary £52,500 £50,000 £49,000
Median salary % change year-on-year +5.00% +2.04% +3.16%
10th Percentile £30,000 £29,000 £28,000
90th Percentile £86,250 £82,500 £80,000
UK excluding London median annual salary £45,000 £45,000 £42,500
% change year-on-year - +5.88% -

SIEM
Job Vacancy Trend

Job postings citing SIEM as a percentage of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing SIEM.

Salary trend for SIEM in the UK

SIEM
Salary Histogram

The salary distribution of IT jobs citing SIEM over the 6 months to 22 July 2019.

Salary histogram for SIEM in the UK

SIEM
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SIEM within the UK over the 6 months to 22 July 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +10 1,389 £60,000 - 187
UK excluding London +14 915 £55,000 - 136
London -29 532 £67,500 +3.85% 57
South East +48 280 £58,500 -2.50% 35
East of England +5 163 £60,000 +23.71% 19
North of England +8 156 £50,000 -14.89% 30
Midlands +39 152 £50,000 -13.04% 31
West Midlands +31 120 £52,500 -8.70% 25
South West +30 92 £49,500 -1.00% 16
Yorkshire +40 82 £52,500 -12.50% 10
North West -21 65 £50,000 -11.11% 18
Scotland -31 47 £42,500 -22.73% 3
East Midlands +29 31 £45,000 -25.00% 6
Wales +19 18 £35,000 -12.96% 2
North East +32 9 £42,500 - 2

For the 6 months to 22 July 2019, IT jobs citing SIEM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for SIEM.

1 781 (52.66%) Cybersecurity
2 731 (49.29%) Information Security
3 696 (46.93%) Firewall
4 499 (33.65%) Security Operations
5 468 (31.56%) CISSP
6 383 (25.83%) Linux
7 376 (25.35%) Windows
8 350 (23.60%) Vulnerability Management
9 331 (22.32%) ISO/IEC 27001
10 315 (21.24%) Penetration Testing
11 299 (20.16%) Management Information System
12 284 (19.15%) Finance
13 281 (18.95%) Degree
14 267 (18.00%) Splunk
15 251 (16.93%) Network Security
16 235 (15.85%) CISM
17 231 (15.58%) ITIL
18 215 (14.50%) Python
19 214 (14.43%) Amazon AWS
20 213 (14.36%) Vulnerability Scanning
21 201 (13.55%) Security Architecture
22 200 (13.49%) Microsoft
23 195 (13.15%) TCP/IP
24 192 (12.95%) Security Operations Centre
25 191 (12.88%) Analytical Skills
26 190 (12.81%) Intrusion Detection
27 182 (12.27%) Cisco Certification
28 173 (11.67%) Microsoft Azure
29 169 (11.40%) Cisco
30 168 (11.33%) Problem-Solving

SIEM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 14 (0.94%) MS Exchange
2 11 (0.74%) OpenStack
3 9 (0.61%) Apache
4 6 (0.40%) IIS
5 4 (0.27%) SharePoint
5 4 (0.27%) Skype for Business
5 4 (0.27%) Tomcat
6 3 (0.20%) Cloud Foundry
6 3 (0.20%) Exchange Server 2010
7 2 (0.13%) Exchange Server 2013
7 2 (0.13%) nginx
7 2 (0.13%) WebSphere
8 1 (0.067%) Apache Spark
8 1 (0.067%) Confluence
8 1 (0.067%) Elasticsearch
8 1 (0.067%) SharePoint 2010
Applications
1 15 (1.01%) Microsoft Office
2 3 (0.20%) Microsoft Excel
3 2 (0.13%) Microsoft PowerPoint
3 2 (0.13%) MS Visio
Business Applications
1 3 (0.20%) Sentinel
2 2 (0.13%) assyst
2 2 (0.13%) Dynamics CRM
3 1 (0.067%) Remedy ITSM
3 1 (0.067%) Sage 300 ERP
Cloud Services
1 214 (14.43%) Amazon AWS
2 173 (11.67%) Microsoft Azure
3 82 (5.53%) SaaS
4 78 (5.26%) Office 365
5 49 (3.30%) IaaS
6 42 (2.83%) PaaS
7 40 (2.70%) Google Cloud Platform
8 20 (1.35%) Amazon ECS
9 16 (1.08%) Azure Active Directory
10 9 (0.61%) Cloud Computing
11 6 (0.40%) Mimecast
12 4 (0.27%) Amazon EC2
12 4 (0.27%) Amazon S3
12 4 (0.27%) AWS Fargate
12 4 (0.27%) Virtual Private Cloud
13 3 (0.20%) GitHub
14 2 (0.13%) AWS CloudFormation
14 2 (0.13%) Azure ExpressRoute
14 2 (0.13%) Slack
14 2 (0.13%) Trello
Communications & Networking
1 696 (46.93%) Firewall
2 251 (16.93%) Network Security
3 195 (13.15%) TCP/IP
4 190 (12.81%) Intrusion Detection
5 125 (8.43%) VPN
6 103 (6.95%) DNS
7 88 (5.93%) Internet
8 76 (5.12%) IPsec
9 68 (4.59%) Wireless
10 65 (4.38%) DHCP
11 62 (4.18%) LAN
11 62 (4.18%) WAN
12 61 (4.11%) SSL
13 55 (3.71%) Cisco ASA
14 46 (3.10%) HTTP
15 40 (2.70%) SMTP
16 32 (2.16%) Cisco Firepower
17 31 (2.09%) MPLS
17 31 (2.09%) WLAN
18 30 (2.02%) HTTPS
Database & Business Intelligence
1 45 (3.03%) SQL Server
2 26 (1.75%) MySQL
3 12 (0.81%) Data Lake
4 10 (0.67%) MongoDB
5 9 (0.61%) Azure SQL Database
5 9 (0.61%) Big Data
6 4 (0.27%) Amazon RDS
7 3 (0.20%) Data Warehouse
7 3 (0.20%) Semantic Layer
7 3 (0.20%) Sisense
8 2 (0.13%) DB2
8 2 (0.13%) Hadoop
8 2 (0.13%) NoSQL
9 1 (0.067%) Apache Hive
9 1 (0.067%) Cosmos DB
9 1 (0.067%) PostgreSQL
9 1 (0.067%) SQL Server 2008
9 1 (0.067%) SQL Server 2012
9 1 (0.067%) SQL Server 2016
Development Applications
1 40 (2.70%) Jenkins
2 20 (1.35%) PhantomJS
3 15 (1.01%) Metasploit
4 11 (0.74%) Hudson
4 11 (0.74%) JIRA
5 10 (0.67%) Atlassian Bamboo
5 10 (0.67%) Vagrant
6 9 (0.61%) IDA Disassembler
7 6 (0.40%) Burp Suite
7 6 (0.40%) SonarQube
8 5 (0.34%) OllyDbg
9 4 (0.27%) Git (software)
9 4 (0.27%) VSS/SourceSafe
10 1 (0.067%) Robot Framework
10 1 (0.067%) TestRail
General
1 284 (19.15%) Finance
2 63 (4.25%) Banking
3 50 (3.37%) Retail
4 33 (2.23%) Legal
5 19 (1.28%) Games
6 17 (1.15%) Law
6 17 (1.15%) Telecoms
7 9 (0.61%) Aerospace
8 8 (0.54%) Marketing
9 7 (0.47%) Financial Institution
10 6 (0.40%) Back Office
10 6 (0.40%) Military
11 5 (0.34%) Manufacturing
11 5 (0.34%) Publishing
12 4 (0.27%) French Language
12 4 (0.27%) Pharmaceutical
13 3 (0.20%) Advertising
14 2 (0.13%) Electronics
15 1 (0.067%) Automotive
15 1 (0.067%) Front Office
Job Titles
1 468 (31.56%) Analyst
2 382 (25.76%) Security Analyst
3 361 (24.34%) Security Engineer
4 135 (9.10%) Architect
5 121 (8.16%) Cybersecurity Analyst
6 115 (7.75%) Consultant
7 114 (7.69%) Security Architect
8 113 (7.62%) SOC Analyst
9 98 (6.61%) Cybersecurity Engineer
9 98 (6.61%) Security Manager
10 94 (6.34%) Security Consultant
11 76 (5.12%) IT Analyst
12 75 (5.06%) IT Security Analyst
13 71 (4.79%) Senior Analyst
14 70 (4.72%) Information Analyst
14 70 (4.72%) Information Security Analyst
15 65 (4.38%) Senior Security Engineer
16 52 (3.51%) Security Specialist
17 50 (3.37%) IT Engineer
17 50 (3.37%) Senior Security Analyst
Libraries, Frameworks & Software Standards
1 39 (2.63%) SailPoint
2 23 (1.55%) 802.1X
3 20 (1.35%) Node.js
4 18 (1.21%) Elastic Stack
5 17 (1.15%) Web Services
6 16 (1.08%) LDAP
7 10 (0.67%) .NET
8 9 (0.61%) XML
9 8 (0.54%) SAML
9 8 (0.54%) XML Messaging
10 7 (0.47%) Middleware
11 6 (0.40%) REST
12 4 (0.27%) OLE
12 4 (0.27%) Regular Expression
12 4 (0.27%) SAP Fiori
12 4 (0.27%) SAPUI5
12 4 (0.27%) Web Dynpro
13 3 (0.20%) OAuth
14 2 (0.13%) LAMP
14 2 (0.13%) OpenID
Miscellaneous
1 299 (20.16%) Management Information System
2 192 (12.95%) Security Operations Centre
3 191 (12.88%) Analytical Skills
4 125 (8.43%) Cyberthreat
5 83 (5.60%) PKI
6 70 (4.72%) Cyber Kill Chain
7 68 (4.59%) Distributed Denial-of-Service
8 62 (4.18%) Data Centre
9 53 (3.57%) Cyber Defence
10 49 (3.30%) Self-Motivation
11 39 (2.63%) Cyberattack
12 35 (2.36%) Data Protection Act
12 35 (2.36%) Public Cloud
13 32 (2.16%) e-Learning
14 20 (1.35%) NHS
15 18 (1.21%) Linux Command Line
16 15 (1.01%) Social Media
17 14 (0.94%) CESG
18 12 (0.81%) Wiki
19 11 (0.74%) Cybercrime
Operating Systems
1 383 (25.83%) Linux
2 376 (25.35%) Windows
3 156 (10.52%) Unix
4 63 (4.25%) Windows Server
5 27 (1.82%) Red Hat Enterprise Linux
6 24 (1.62%) Windows 10
6 24 (1.62%) Windows Server 2008
7 23 (1.55%) Windows Server 2012
8 19 (1.28%) Mac OS
9 16 (1.08%) CatOS
9 16 (1.08%) Kali Linux
10 14 (0.94%) Windows 7
11 11 (0.74%) CentOS
12 7 (0.47%) Apple iOS
13 6 (0.40%) Windows Server 2003
14 5 (0.34%) AIX
14 5 (0.34%) HPUX
14 5 (0.34%) Windows XP
15 3 (0.20%) Mac OS X
15 3 (0.20%) Solaris
Processes & Methodologies
1 781 (52.66%) Cybersecurity
2 731 (49.29%) Information Security
3 499 (33.65%) Security Operations
4 350 (23.60%) Vulnerability Management
5 315 (21.24%) Penetration Testing
6 231 (15.58%) ITIL
7 213 (14.36%) Vulnerability Scanning
8 201 (13.55%) Security Architecture
9 168 (11.33%) Problem-Solving
10 167 (11.26%) Identity Access Management
11 155 (10.45%) Threat Intelligence
12 153 (10.32%) Kalman Filter
13 136 (9.17%) Incident Management
14 127 (8.56%) Continuous Improvement
15 124 (8.36%) DevOps
16 119 (8.02%) Agile Software Development
17 118 (7.96%) Data Protection
18 111 (7.48%) Cyber Threat Intelligence
19 106 (7.15%) TOGAF
20 103 (6.95%) Security Management
Programming Languages
1 215 (14.50%) Python
2 124 (8.36%) Java
3 94 (6.34%) PowerShell
4 69 (4.65%) C++
5 57 (3.84%) JavaScript
6 52 (3.51%) Bash Shell
7 45 (3.03%) SQL
8 33 (2.23%) Go
9 30 (2.02%) Ruby
10 27 (1.82%) C
10 27 (1.82%) Perl
11 24 (1.62%) Shell Script
12 14 (0.94%) C#
13 10 (0.67%) TypeScript
14 5 (0.34%) Bourne shell
14 5 (0.34%) Korn
15 4 (0.27%) ABAP
15 4 (0.27%) PHP
16 1 (0.067%) R
16 1 (0.067%) Rust
Qualifications
1 468 (31.56%) CISSP
2 281 (18.95%) Degree
3 235 (15.85%) CISM
4 182 (12.27%) Cisco Certification
5 161 (10.86%) CEH
6 151 (10.18%) CISA
7 141 (9.51%) Security Cleared
8 120 (8.09%) GIAC
9 81 (5.46%) CCNA
10 80 (5.39%) SANS
11 79 (5.33%) SC Cleared
12 64 (4.32%) CCNP
13 55 (3.71%) Computer Science Degree
14 52 (3.51%) (ISC)2 CCSP
15 50 (3.37%) Microsoft Certification
16 47 (3.17%) CompTIA Security+
17 43 (2.90%) OSCP
18 42 (2.83%) SSCP
19 41 (2.76%) MCSE
20 40 (2.70%) CCSP
Quality Assurance & Compliance
1 331 (22.32%) ISO/IEC 27001
2 153 (10.32%) GDPR
3 148 (9.98%) PCI DSS
4 143 (9.64%) NIST
5 58 (3.91%) Cyber Essentials
6 45 (3.03%) SLA
7 43 (2.90%) COBIT
8 32 (2.16%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
9 31 (2.09%) HMG Security Policy Framework
9 31 (2.09%) Sarbanes-Oxley
10 21 (1.42%) Cyber Essentials PLUS
11 16 (1.08%) NIST 800
12 13 (0.88%) GPG13
13 9 (0.61%) HIPAA
13 9 (0.61%) MiFID
14 4 (0.27%) ISO 31000
14 4 (0.27%) QA
15 3 (0.20%) ISAE 3402
15 3 (0.20%) NCSC
15 3 (0.20%) RMADS
System Software
1 97 (6.54%) Active Directory
2 53 (3.57%) VMware Infrastructure
3 28 (1.89%) Docker
4 17 (1.15%) vSphere
5 13 (0.88%) Hyper-V
6 10 (0.67%) Virtual Servers
7 8 (0.54%) Snort
7 8 (0.54%) Virtual Machines
8 3 (0.20%) KVM
8 3 (0.20%) LXC
8 3 (0.20%) Xen
8 3 (0.20%) XenApp
9 2 (0.13%) BitLocker
9 2 (0.13%) iptables
9 2 (0.13%) Microsoft Virtual Server
9 2 (0.13%) NFS
9 2 (0.13%) Postfix
9 2 (0.13%) Samba
9 2 (0.13%) VMware Server
10 1 (0.067%) Microsoft App-V
Systems Management
1 115 (7.75%) Nessus
2 83 (5.60%) QRadar
3 53 (3.57%) Ansible
4 48 (3.24%) Kubernetes
4 48 (3.24%) Opscode Chef
5 45 (3.03%) McAfee ePO
6 44 (2.97%) Puppet
7 41 (2.76%) SCCM
8 35 (2.36%) Terraform
9 27 (1.82%) FortiGate
10 25 (1.69%) CASB
11 22 (1.48%) CSIRT
12 20 (1.35%) Norton AntiVirus
13 17 (1.15%) Computer Incident Response Team
13 17 (1.15%) Nagios
14 16 (1.08%) Computer Emergency Response Teams
14 16 (1.08%) RANCID
15 14 (0.94%) Grafana
15 14 (0.94%) Single Sign-On
15 14 (0.94%) ZABBIX
Vendors
1 267 (18.00%) Splunk
2 200 (13.49%) Microsoft
3 169 (11.40%) Cisco
4 135 (9.10%) LogRhythm
5 105 (7.08%) Qualys
6 95 (6.41%) Palo Alto
7 81 (5.46%) ArcSight
8 79 (5.33%) Symantec
9 75 (5.06%) CyberArk
10 74 (4.99%) McAfee
10 74 (4.99%) VMware
11 71 (4.79%) CheckPoint
12 63 (4.25%) Juniper
13 46 (3.10%) SolarWinds
14 45 (3.03%) ServiceNow
15 44 (2.97%) Fortinet
16 35 (2.36%) Meraki
17 34 (2.29%) Aveksa
17 34 (2.29%) Citrix
17 34 (2.29%) Google