Period
to 18 February 2018

The following table provides summary statistics for permanent job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited SIEM over the 6 months to 18 February 2018 with a comparison to the same period in the previous 2 years.

Security Information and Event Management (SIEM)
UK
6 months to
18 Feb 2018
Same period 2017 Same period 2016
Rank 328 359 475
Rank change year-on-year +31 +116 +115
Permanent jobs citing SIEM 1,617 1,484 1,303
As % of all permanent IT jobs advertised in the UK 0.93% 0.85% 0.62%
As % of the Processes & Methodologies category 1.03% 0.95% 0.70%
Number of salaries quoted 1,233 1,167 1,096
UK median annual salary £60,000 £60,000 £55,000
Median salary % change year-on-year - +9.09% +7.84%
10th Percentile £34,000 £36,000 £36,750
90th Percentile £85,000 £86,250 £77,500
UK excluding London median annual salary £50,000 £47,500 £52,500
% change year-on-year +5.26% -9.52% +5.00%

SIEM is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 156,623 156,367 187,175
As % of all permanent IT jobs advertised in the UK 89.90% 89.54% 88.84%
Number of salaries quoted 126,956 128,832 155,017
UK median annual salary £50,000 £48,500 £47,500
Median salary % change year-on-year +3.09% +2.11% +5.56%
10th Percentile £29,000 £28,250 £27,500
90th Percentile £80,250 £79,000 £77,500
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +6.25%

SIEM
Job Vacancy Trend

Job postings citing SIEM as a percentage of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing SIEM.

Salary trend for SIEM in the UK

SIEM
Salary Histogram

The salary distribution of IT jobs citing SIEM over the 6 months to 18 February 2018.

Salary histogram for SIEM in the UK

SIEM
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SIEM within the UK over the 6 months to 18 February 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +26 1,509 £60,000 - 179
London +50 857 £65,000 -0.76% 75
UK excluding London -13 701 £50,000 +5.26% 117
South East -17 236 £50,000 -4.76% 26
East of England +73 120 £50,000 -6.98% 18
Midlands -68 115 £52,125 +15.83% 19
North of England +22 94 £47,500 +7.34% 25
South West -2 93 £42,000 -16.00% 16
West Midlands -64 93 £51,500 +14.44% 10
Scotland -20 51 £32,500 -29.35% 6
North West -10 44 £47,500 +11.76% 13
Yorkshire +20 42 £45,000 -10.00% 9
East Midlands +22 22 £57,500 +27.78% 9
Wales +16 13 £57,500 +43.75% 7
North East - 8 £48,500 - 3

For the 6 months to 18 February 2018, IT jobs citing SIEM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for SIEM.

1 824 (50.96%) Cybersecurity
2 798 (49.35%) Information Security
3 794 (49.10%) Firewall
4 703 (43.48%) CISSP
5 525 (32.47%) Security Operations
6 470 (29.07%) Linux
7 466 (28.82%) Windows
8 454 (28.08%) ISO/IEC 27001
9 418 (25.85%) CISM
10 415 (25.66%) Vulnerability Management
11 398 (24.61%) Network Security
12 343 (21.21%) TCP/IP
13 292 (18.06%) Degree
14 291 (18.00%) ITIL
15 290 (17.93%) Management Information System
15 290 (17.93%) Penetration Testing
16 283 (17.50%) Finance
17 255 (15.77%) CISA
18 252 (15.58%) Incident Management
19 249 (15.40%) Splunk
20 238 (14.72%) Cisco
21 232 (14.35%) GIAC
22 226 (13.98%) Security Operations Centre
23 215 (13.30%) Security Architecture
24 210 (12.99%) Vulnerability Scanning
25 207 (12.80%) Data Loss Prevention
26 201 (12.43%) Cisco Certification
27 192 (11.87%) PCI DSS
28 191 (11.81%) Data Protection
29 189 (11.69%) Microsoft

SIEM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 36 (2.23%) SharePoint
2 29 (1.79%) IIS
3 28 (1.73%) Apache
4 13 (0.80%) Elasticsearch
5 8 (0.49%) Apache Spark
6 7 (0.43%) Skype for Business
7 6 (0.37%) Exchange Server 2013
7 6 (0.37%) MS Exchange
7 6 (0.37%) nginx
8 5 (0.31%) CMS
8 5 (0.31%) JBoss
9 4 (0.25%) Tomcat
10 2 (0.12%) Apache Pig
10 2 (0.12%) Exchange Server 2010
10 2 (0.12%) OpenStack
11 1 (0.062%) Confluence
11 1 (0.062%) WordPress
Applications
1 33 (2.04%) Microsoft Office
2 3 (0.19%) MS Visio
3 2 (0.12%) Microsoft Excel
3 2 (0.12%) Microsoft PowerPoint
4 1 (0.062%) HipChat
Business Applications
1 34 (2.10%) Dynamics CRM
2 5 (0.31%) Remedy ITSM
3 3 (0.19%) assyst
4 1 (0.062%) SunGard APT
Cloud Services
1 95 (5.88%) Amazon AWS
2 93 (5.75%) Microsoft Azure
3 75 (4.64%) Office 365
4 39 (2.41%) OneDrive
5 29 (1.79%) IaaS
6 26 (1.61%) Mimecast
6 26 (1.61%) PaaS
6 26 (1.61%) SaaS
7 13 (0.80%) Akamai
8 9 (0.56%) GitHub
9 6 (0.37%) Cloud Computing
10 4 (0.25%) Google Cloud Platform
11 3 (0.19%) Amazon S3
11 3 (0.19%) Amazon SQS
11 3 (0.19%) Azure Active Directory
12 2 (0.12%) Amazon CloudWatch
Communications & Networking
1 794 (49.10%) Firewall
2 398 (24.61%) Network Security
3 343 (21.21%) TCP/IP
4 161 (9.96%) Intrusion Detection
5 160 (9.89%) DNS
6 143 (8.84%) VPN
7 100 (6.18%) WAN
8 98 (6.06%) DHCP
9 85 (5.26%) Internet
10 84 (5.19%) LAN
11 77 (4.76%) SSL
12 76 (4.70%) Cisco ASA
12 76 (4.70%) MPLS
13 67 (4.14%) HTTP
14 59 (3.65%) Wireless
15 55 (3.40%) IPsec
15 55 (3.40%) SMTP
16 54 (3.34%) Wireshark
17 51 (3.15%) BGP
17 51 (3.15%) OSPF
Database & Business Intelligence
1 32 (1.98%) Big Data
2 29 (1.79%) MySQL
3 25 (1.55%) SQL Server
4 13 (0.80%) Hadoop
5 5 (0.31%) MongoDB
5 5 (0.31%) SQL Server 2008
5 5 (0.31%) SQL Server 2016
6 4 (0.25%) Apache Hive
6 4 (0.25%) Blockchain
7 3 (0.19%) NoSQL
8 2 (0.12%) Apache Cassandra
8 2 (0.12%) Relational Database
9 1 (0.062%) Oracle Reports
9 1 (0.062%) PostgreSQL
Development Applications
1 30 (1.86%) Metasploit
2 19 (1.18%) Burp Suite
3 16 (0.99%) Jenkins
4 10 (0.62%) Atlassian Bamboo
4 10 (0.62%) Hudson
5 7 (0.43%) JIRA
6 6 (0.37%) Vagrant
7 2 (0.12%) Git (software)
8 1 (0.062%) GDB
8 1 (0.062%) MSI
8 1 (0.062%) sqlmap
8 1 (0.062%) Team Foundation Server
8 1 (0.062%) Visual Studio
General
1 283 (17.50%) Finance
2 89 (5.50%) Banking
3 73 (4.51%) Law
4 68 (4.21%) Legal
5 22 (1.36%) Retail
6 20 (1.24%) Telecoms
7 18 (1.11%) Games
8 10 (0.62%) Aerospace
8 10 (0.62%) Investment Banking
8 10 (0.62%) Military
9 8 (0.49%) Publishing
10 7 (0.43%) Advertising
10 7 (0.43%) Billing
10 7 (0.43%) Marketing
11 6 (0.37%) Financial Institution
11 6 (0.37%) Local Government
11 6 (0.37%) Manufacturing
12 4 (0.25%) Digital Economy
12 4 (0.25%) Electronics
13 3 (0.19%) French Language
Job Titles
1 491 (30.36%) Analyst
2 342 (21.15%) Security Analyst
3 330 (20.41%) Security Engineer
4 174 (10.76%) Consultant
5 155 (9.59%) Security Consultant
6 151 (9.34%) Security Manager
7 148 (9.15%) SOC Analyst
8 127 (7.85%) Architect
9 122 (7.54%) Security Architect
10 91 (5.63%) IT Analyst
11 85 (5.26%) IT Security Analyst
12 82 (5.07%) Security Specialist
13 77 (4.76%) Network Engineer
14 71 (4.39%) Information Analyst
15 70 (4.33%) Information Security Analyst
16 66 (4.08%) Network Security Engineer
17 65 (4.02%) SIEM Analyst
18 61 (3.77%) IT Manager
18 61 (3.77%) SIEM Consultant
19 60 (3.71%) IT Security Manager
Libraries, Frameworks & Software Standards
1 26 (1.61%) HTML
2 20 (1.24%) Middleware
3 19 (1.18%) .NET
3 19 (1.18%) LDAP
4 14 (0.87%) CSS
4 14 (0.87%) Elastic Stack
4 14 (0.87%) Regular Expression
5 12 (0.74%) OAuth
6 11 (0.68%) SAML
7 8 (0.49%) Web Services
8 7 (0.43%) PCRE
8 7 (0.43%) SailPoint
8 7 (0.43%) XML
9 5 (0.31%) CGI
10 4 (0.25%) RESTful
11 3 (0.19%) jQuery
11 3 (0.19%) Laravel
11 3 (0.19%) LEMP Stack
11 3 (0.19%) Memcached
11 3 (0.19%) OpenID
Miscellaneous
1 290 (17.93%) Management Information System
2 226 (13.98%) Security Operations Centre
3 174 (10.76%) Cyberthreat
4 131 (8.10%) Data Centre
5 130 (8.04%) Analytical Skills
6 89 (5.50%) Computer Science
6 89 (5.50%) Data Protection Act
7 88 (5.44%) PKI
8 80 (4.95%) Cyberattack
9 52 (3.22%) Cyber Defence
10 49 (3.03%) Distributed Denial-of-Service
11 36 (2.23%) Greenfield Project
12 34 (2.10%) Cyber Kill Chain
13 32 (1.98%) Fintech
14 22 (1.36%) Public Cloud
15 18 (1.11%) Enterprise Software
16 14 (0.87%) NHS
17 11 (0.68%) Algorithms
17 11 (0.68%) Clustering
17 11 (0.68%) Virtual Team
Operating Systems
1 470 (29.07%) Linux
2 466 (28.82%) Windows
3 140 (8.66%) Unix
4 95 (5.88%) Windows Server
5 45 (2.78%) Kali Linux
6 35 (2.16%) Mac OS X
7 34 (2.10%) Apple iOS
8 19 (1.18%) Windows Server 2008
9 14 (0.87%) VMS
10 13 (0.80%) Red Hat Enterprise Linux
10 13 (0.80%) Ubuntu
11 12 (0.74%) CentOS
12 11 (0.68%) FreeBSD
12 11 (0.68%) Windows Server 2012
13 10 (0.62%) AIX
14 9 (0.56%) Debian
15 6 (0.37%) Solaris
16 2 (0.12%) Android
16 2 (0.12%) Windows Server 2003
17 1 (0.062%) Windows 7
Processes & Methodologies
1 824 (50.96%) Cybersecurity
2 798 (49.35%) Information Security
3 525 (32.47%) Security Operations
4 415 (25.66%) Vulnerability Management
5 291 (18.00%) ITIL
6 290 (17.93%) Penetration Testing
7 252 (15.58%) Incident Management
8 215 (13.30%) Security Architecture
9 210 (12.99%) Vulnerability Scanning
10 207 (12.80%) Data Loss Prevention
11 191 (11.81%) Data Protection
12 175 (10.82%) Security Monitoring
13 167 (10.33%) Identity Access Management
14 163 (10.08%) Vulnerability Assessment
15 154 (9.52%) Threat Intelligence
16 151 (9.34%) Risk Management
17 137 (8.47%) Cyber Threat Intelligence
18 124 (7.67%) Analytics
19 119 (7.36%) Agile Software Development
20 115 (7.11%) Security Management
Programming Languages
1 163 (10.08%) Python
2 114 (7.05%) Bash Shell
3 108 (6.68%) PowerShell
4 67 (4.14%) Ruby
5 66 (4.08%) Java
6 59 (3.65%) Perl
7 48 (2.97%) C#
8 45 (2.78%) C
9 40 (2.47%) SQL
10 34 (2.10%) Bourne shell
10 34 (2.10%) Korn
11 24 (1.48%) PHP
11 24 (1.48%) Shell Script
12 16 (0.99%) JavaScript
13 11 (0.68%) Go
14 9 (0.56%) Lua
15 7 (0.43%) C++
16 1 (0.062%) Assembly Language
16 1 (0.062%) VB.NET
16 1 (0.062%) VBA
Qualifications
1 703 (43.48%) CISSP
2 418 (25.85%) CISM
3 292 (18.06%) Degree
4 255 (15.77%) CISA
5 232 (14.35%) GIAC
6 201 (12.43%) Cisco Certification
7 187 (11.56%) CEH
8 186 (11.50%) SANS
9 176 (10.88%) Security Cleared
10 135 (8.35%) GCIH
11 120 (7.42%) SC Cleared
12 119 (7.36%) CCNA
13 105 (6.49%) SSCP
14 101 (6.25%) CCNP
15 88 (5.44%) GCIA
16 86 (5.32%) CompTIA Security+
17 71 (4.39%) CREST Certified
18 48 (2.97%) OSCP
19 47 (2.91%) CCIE
20 45 (2.78%) DV Cleared
Quality Assurance & Compliance
1 454 (28.08%) ISO/IEC 27001
2 192 (11.87%) PCI DSS
3 170 (10.51%) GDPR
4 92 (5.69%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 66 (4.08%) COBIT
6 62 (3.83%) Cyber Essentials
7 39 (2.41%) GPG13
8 30 (1.86%) NIST 800
9 24 (1.48%) SLA
10 23 (1.42%) Sarbanes-Oxley
11 20 (1.24%) QA
12 19 (1.18%) Cyber Essentials PLUS
13 13 (0.80%) ISO 22301
13 13 (0.80%) ISO 9001
14 12 (0.74%) PMO
15 9 (0.56%) HMG Security Policy Framework
16 8 (0.49%) ISO 31000
17 7 (0.43%) Government Security Classifications
18 6 (0.37%) MiFID
19 5 (0.31%) FISMA
System Software
1 129 (7.98%) Active Directory
2 67 (4.14%) VMware Infrastructure
3 66 (4.08%) Snort
4 63 (3.90%) Virtual Machines
5 25 (1.55%) Docker
6 19 (1.18%) VMware ESXi
7 17 (1.05%) vSphere
8 15 (0.93%) Hyper-V
9 7 (0.43%) ProxySG
10 6 (0.37%) HDFS
10 6 (0.37%) pfSense
11 5 (0.31%) VMware NSX
12 4 (0.25%) XenApp
12 4 (0.25%) XenDesktop
13 3 (0.19%) Firmware
14 2 (0.12%) KVM
15 1 (0.062%) RHEV
15 1 (0.062%) Virtual Servers
15 1 (0.062%) VirtualBox
15 1 (0.062%) VMware Server
Systems Management
1 123 (7.61%) Nessus
2 117 (7.24%) QRadar
3 48 (2.97%) CSIRT
4 35 (2.16%) RSA enVision
5 31 (1.92%) SCCM
6 29 (1.79%) McAfee ePO
7 28 (1.73%) Core Impact
8 26 (1.61%) Single Sign-On
9 25 (1.55%) Host Intrusion Detection System
10 24 (1.48%) Puppet
11 22 (1.36%) OpenVAS
12 20 (1.24%) FortiGate
12 20 (1.24%) Nagios
13 19 (1.18%) SCOM
14 18 (1.11%) RSA Security Analytics
15 15 (0.93%) Kubernetes
16 13 (0.80%) Cisco CUCM
16 13 (0.80%) Network Intrusion Detection System
16 13 (0.80%) Opscode Chef
17 11 (0.68%) Cisco UCCX
Vendors
1 249 (15.40%) Splunk
2 238 (14.72%) Cisco
3 189 (11.69%) Microsoft
4 143 (8.84%) CheckPoint
5 131 (8.10%) ArcSight
6 107 (6.62%) LogRhythm
7 106 (6.56%) Palo Alto
8 97 (6.00%) VMware
9 87 (5.38%) McAfee
10 73 (4.51%) Fortinet
11 71 (4.39%) Juniper
12 64 (3.96%) F5
13 62 (3.83%) Qualys
14 57 (3.53%) Sourcefire
15 55 (3.40%) Symantec
16 49 (3.03%) Sophos
17 48 (2.97%) Oracle
17 48 (2.97%) SolarWinds
18 47 (2.91%) Blue Coat
18 47 (2.91%) Forcepoint