Period
to 18 August 2017

The following table provides summary statistics for permanent job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited SIEM over the 6 months to 18 August 2017 with a comparison to the same period in the previous 2 years.

Security Information and Event Management (SIEM)
UK
6 months to
18 Aug 2017
Same period 2016 Same period 2015
Rank 350 348 491
Rank change year-on-year -2 +143 +142
Permanent jobs citing SIEM 1615 1804 1240
As % of all permanent IT jobs advertised in the UK 0.91% 0.91% 0.57%
As % of the Processes & Methodologies category 1.01% 1.03% 0.65%
Number of salaries quoted 1310 1463 946
UK median annual salary £57,250 £55,000 £52,500
Median salary % change year-on-year +4.09% +4.76% +10.53%
10th Percentile £37,000 £36,250 £35,000
90th Percentile £90,000 £82,500 £80,000
UK excluding London median annual salary £47,500 £50,000 £47,250
% change year-on-year -5.00% +5.82% +5.00%

SIEM is in the process and methodology skills category. The next table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process and methodology skills.

Process & Methodology Skills
UK
Permanent job vacancies with a requirement for process and methodology skills 159119 175986 191424
As % of all permanent IT job vacancies advertised in the UK 89.89% 89.06% 88.11%
Number of salaries quoted 126483 146806 156211
UK median annual salary £50,000 £49,000 £47,500
Median salary % change year-on-year +2.04% +3.16% +5.56%
10th Percentile £28,723 £27,500 £27,500
90th Percentile £80,000 £77,500 £76,250
UK excluding London median annual salary £42,500 £42,500 £42,500

SIEM
Job Vacancy Trend

Job postings citing SIEM as a percentage of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing SIEM.

Salary trend for SIEM in the UK

SIEM
Salary Histogram

The salary distribution of IT jobs citing SIEM over the 6 months to 18 August 2017.

Salary histogram for SIEM in the UK

SIEM
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SIEM within the UK over the 6 months to 18 August 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -19 1499 £57,500 +4.55% 90
London +52 885 £60,000 -4.00% 46
UK excluding London -69 676 £47,500 -5.00% 46
South East -34 204 £48,500 -7.62% 12
South West +66 147 £50,000 -13.04% 4
North of England -75 114 £47,500 -5.00% 18
Midlands -49 112 £42,500 -5.56% 10
West Midlands -48 104 £42,500 -5.56% 9
North West -29 83 £47,500 -5.00% 8
Scotland +35 45 £52,500 - 2
East of England -26 41 £50,000 -
Wales +30 29 £47,500 +35.71%
Yorkshire -47 26 £55,000 +10.00% 8
East Midlands +15 8 £47,500 +12.43% 1
North East +19 5 £36,500 +32.73% 2
Northern Ireland -14 1 £57,500 +43.75%

For the 6 months to 18 August 2017, IT jobs citing SIEM also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for SIEM.

1 869 (53.81%) Firewall
2 789 (48.85%) Information Security
3 652 (40.37%) CISSP
4 598 (37.03%) Cybersecurity
5 509 (31.52%) Windows
6 477 (29.54%) Security Operations
7 448 (27.74%) CISM
8 440 (27.24%) ISO/IEC 27001
9 436 (27.00%) Linux
10 431 (26.69%) Finance
11 367 (22.72%) Network Security
12 365 (22.60%) Vulnerability Management
13 327 (20.25%) TCP/IP
14 313 (19.38%) Cisco
15 302 (18.70%) ITIL
16 278 (17.21%) Management Information System
17 260 (16.10%) Penetration Testing
18 257 (15.91%) CheckPoint
19 253 (15.67%) Active Directory
20 249 (15.42%) Vulnerability Scanning
21 242 (14.98%) LogRhythm
22 211 (13.07%) Palo Alto
23 207 (12.82%) Security Architecture
24 206 (12.76%) Splunk
24 206 (12.76%) CISA
25 205 (12.69%) GIAC
26 203 (12.57%) Degree
27 199 (12.32%) Windows Server
28 193 (11.95%) Data Protection
29 183 (11.33%) Security Monitoring

SIEM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 27 (1.67%) SharePoint
2 20 (1.24%) MS Exchange
3 10 (0.62%) Elasticsearch
4 8 (0.50%) Exchange Server 2010
5 7 (0.43%) IIS
6 4 (0.25%) Apache
7 1 (0.062%) Apache Spark
7 1 (0.062%) Blackberry Enterprise Server
7 1 (0.062%) nginx
7 1 (0.062%) OpenStack
Applications
1 13 (0.80%) Microsoft Excel
2 8 (0.50%) Microsoft Office
3 4 (0.25%) Microsoft PowerPoint
3 4 (0.25%) Microsoft Project
4 3 (0.19%) MS Visio
5 2 (0.12%) Spreadsheet
Business Applications
1 11 (0.68%) assyst
2 3 (0.19%) Sentinel
3 2 (0.12%) Remedy ITSM
Cloud Services
1 98 (6.07%) Amazon AWS
2 61 (3.78%) Microsoft Azure
3 38 (2.35%) Office 365
4 31 (1.92%) Cloud Computing
5 29 (1.80%) IaaS
6 17 (1.05%) SaaS
7 16 (0.99%) PaaS
8 8 (0.50%) Akamai
9 7 (0.43%) Mimecast
10 3 (0.19%) GitHub
11 2 (0.12%) Amazon ELB
11 2 (0.12%) Google Cloud Platform
11 2 (0.12%) Virtual Private Cloud
12 1 (0.062%) Amazon S3
12 1 (0.062%) Amazon SQS
12 1 (0.062%) OpenDNS
Communications & Networking
1 869 (53.81%) Firewall
2 367 (22.72%) Network Security
3 327 (20.25%) TCP/IP
4 156 (9.66%) DNS
5 154 (9.54%) Intrusion Detection
6 147 (9.10%) WAN
7 130 (8.05%) LAN
8 121 (7.49%) VPN
9 119 (7.37%) Internet
10 116 (7.18%) DHCP
11 92 (5.70%) Cisco ASA
12 74 (4.58%) Wireless
13 73 (4.52%) HTTP
14 70 (4.33%) SSL
15 62 (3.84%) Wireshark
16 60 (3.72%) MPLS
17 50 (3.10%) SMTP
18 49 (3.03%) IPsec
19 45 (2.79%) FTP
20 42 (2.60%) BGP
Database & Business Intelligence
1 38 (2.35%) SQL Server
2 19 (1.18%) Big Data
3 4 (0.25%) MySQL
3 4 (0.25%) Relational Database
4 1 (0.062%) Apache Cassandra
4 1 (0.062%) Blockchain
4 1 (0.062%) Hadoop
4 1 (0.062%) MongoDB
4 1 (0.062%) NoSQL
4 1 (0.062%) SQL Server 2008
4 1 (0.062%) SQL Server 2012
4 1 (0.062%) SQL Server 2014
Development Applications
1 26 (1.61%) Metasploit
2 10 (0.62%) Burp Suite
3 2 (0.12%) Jenkins
General
1 431 (26.69%) Finance
2 136 (8.42%) Banking
3 79 (4.89%) Legal
4 69 (4.27%) Telecoms
5 44 (2.72%) Law
6 18 (1.11%) Games
7 11 (0.68%) Advertising
8 10 (0.62%) Digital Economy
8 10 (0.62%) Manufacturing
9 8 (0.50%) Billing
9 8 (0.50%) Marketing
10 7 (0.43%) Aerospace
10 7 (0.43%) Electronics
10 7 (0.43%) Retail
11 6 (0.37%) Financial Institution
11 6 (0.37%) Spanish Language
12 4 (0.25%) Publishing
13 3 (0.19%) French Language
13 3 (0.19%) Investment Banking
13 3 (0.19%) Retail Banking
Job Titles
1 640 (39.63%) Analyst
2 474 (29.35%) Security Analyst
3 322 (19.94%) Security Engineer
4 202 (12.51%) SOC Analyst
5 153 (9.47%) Security Manager
6 125 (7.74%) Architect
7 115 (7.12%) Security Architect
8 114 (7.06%) IT Analyst
9 107 (6.63%) Network Engineer
10 104 (6.44%) IT Security Analyst
11 99 (6.13%) Information Analyst
11 99 (6.13%) Information Security Analyst
12 95 (5.88%) IT Engineer
13 93 (5.76%) Network Security Engineer
14 92 (5.70%) Consultant
15 87 (5.39%) Operations Analyst
16 86 (5.33%) Security Operations Analyst
17 85 (5.26%) IT Security Engineer
18 79 (4.89%) Senior Analyst
19 74 (4.58%) Security Specialist
Libraries, Frameworks & Software Standards
1 59 (3.65%) SailPoint
2 29 (1.80%) Web Services
3 27 (1.67%) .NET
4 21 (1.30%) 802.1X
5 14 (0.87%) OAuth
5 14 (0.87%) SAML
6 12 (0.74%) OpenID
7 11 (0.68%) Regular Expression
8 10 (0.62%) Middleware
9 9 (0.56%) LAMP
10 8 (0.50%) HTML
11 5 (0.31%) XML
12 3 (0.19%) Elastic Stack
12 3 (0.19%) REST
13 2 (0.12%) JSON
14 1 (0.062%) Ajax
14 1 (0.062%) CSS
14 1 (0.062%) jQuery
14 1 (0.062%) Velocity
14 1 (0.062%) XMPP
Miscellaneous
1 278 (17.21%) Management Information System
2 175 (10.84%) Security Operations Centre
3 148 (9.16%) Analytical Skills
3 148 (9.16%) Cyberthreat
4 124 (7.68%) Computer Science
5 121 (7.49%) Data Protection Act
6 111 (6.87%) Data Centre
7 88 (5.45%) PKI
8 66 (4.09%) Cyber Attack
9 60 (3.72%) Distributed Denial-of-Service
10 40 (2.48%) iPad
11 32 (1.98%) Cyber Defence
12 27 (1.67%) CESG
13 23 (1.42%) Linux Command Line
14 19 (1.18%) Cyber Kill Chain
15 13 (0.80%) NHS
16 12 (0.74%) Fintech
16 12 (0.74%) RSA SecurID
16 12 (0.74%) SCADA
17 11 (0.68%) Freedom of Information
Operating Systems
1 509 (31.52%) Windows
2 436 (27.00%) Linux
3 199 (12.32%) Windows Server
4 143 (8.85%) Unix
5 55 (3.41%) Apple iOS
6 48 (2.97%) CentOS
7 45 (2.79%) Kali Linux
8 39 (2.41%) Mac OS X
9 29 (1.80%) Debian
10 25 (1.55%) Ubuntu
11 24 (1.49%) Red Hat Enterprise Linux
12 23 (1.42%) Windows Server 2012
13 18 (1.11%) Windows Server 2008
14 15 (0.93%) Android
15 10 (0.62%) SUSE Linux Enterprise Server
16 7 (0.43%) Windows 10
16 7 (0.43%) Windows 7
16 7 (0.43%) Windows 8
17 4 (0.25%) AIX
18 3 (0.19%) HPUX
Processes & Methodologies
1 789 (48.85%) Information Security
2 598 (37.03%) Cybersecurity
3 477 (29.54%) Security Operations
4 365 (22.60%) Vulnerability Management
5 302 (18.70%) ITIL
6 260 (16.10%) Penetration Testing
7 249 (15.42%) Vulnerability Scanning
8 207 (12.82%) Security Architecture
9 193 (11.95%) Data Protection
10 183 (11.33%) Security Monitoring
11 180 (11.15%) Incident Management
12 159 (9.85%) Vulnerability Assessment
13 132 (8.17%) Risk Management
14 130 (8.05%) Analytics
15 124 (7.68%) Threat Intelligence
16 115 (7.12%) Data Loss Prevention
17 95 (5.88%) Cyber Threat Intelligence
17 95 (5.88%) Identity Access Management
18 86 (5.33%) Network Monitoring
19 85 (5.26%) Change Management
Programming Languages
1 148 (9.16%) Python
2 86 (5.33%) PowerShell
3 85 (5.26%) SQL
4 84 (5.20%) Java
5 61 (3.78%) Perl
6 40 (2.48%) Bash Shell
7 34 (2.11%) Ruby
8 31 (1.92%) Korn
9 29 (1.80%) JavaScript
10 26 (1.61%) Bourne shell
11 22 (1.36%) C
12 21 (1.30%) C#
12 21 (1.30%) PHP
13 5 (0.31%) C-shell
13 5 (0.31%) VB
14 4 (0.25%) C++
14 4 (0.25%) Shell Script
15 1 (0.062%) VB.NET
15 1 (0.062%) VBA
Qualifications
1 652 (40.37%) CISSP
2 448 (27.74%) CISM
3 206 (12.76%) CISA
4 205 (12.69%) GIAC
5 203 (12.57%) Degree
6 181 (11.21%) Security Cleared
7 165 (10.22%) CEH
8 134 (8.30%) SC Cleared
9 131 (8.11%) Cisco Certification
10 120 (7.43%) GCIH
11 116 (7.18%) SANS
12 99 (6.13%) GSEC
13 89 (5.51%) GCIA
14 80 (4.95%) CCNP
15 73 (4.52%) DV Cleared
16 70 (4.33%) CCNA
17 55 (3.41%) CREST Certified
18 53 (3.28%) GISF
19 46 (2.85%) CompTIA Security+
19 46 (2.85%) Security+ Certification
Quality Assurance & Compliance
1 440 (27.24%) ISO/IEC 27001
2 179 (11.08%) PCI DSS
3 107 (6.63%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 94 (5.82%) Cyber Essentials
5 77 (4.77%) GDPR
6 54 (3.34%) Sarbanes-Oxley
7 29 (1.80%) NIST 800
8 26 (1.61%) COBIT
9 19 (1.18%) Cyber Essentials PLUS
10 16 (0.99%) SLA
11 14 (0.87%) QA
12 13 (0.80%) ISO 22301
13 11 (0.68%) GPG13
14 8 (0.50%) ISO/IEC 27005
15 7 (0.43%) HMG Security Policy Framework
16 4 (0.25%) HIPAA
17 3 (0.19%) ISO 14001
17 3 (0.19%) ISO 9001
18 2 (0.12%) FIPS 140-2
18 2 (0.12%) ISO/IEC 20000
System Software
1 253 (15.67%) Active Directory
2 129 (7.99%) Snort
3 71 (4.40%) VMware Infrastructure
4 43 (2.66%) ProxySG
4 43 (2.66%) Virtual Machines
5 32 (1.98%) Hyper-V
6 22 (1.36%) vSphere
7 13 (0.80%) pfSense
8 12 (0.74%) VMware ESXi
9 10 (0.62%) iptables
10 7 (0.43%) Terminal Services
10 7 (0.43%) XenApp
11 6 (0.37%) Virtual Servers
12 5 (0.31%) Docker
13 4 (0.25%) BitLocker
13 4 (0.25%) VMware Server
14 3 (0.19%) VMware NSX
15 2 (0.12%) Microsoft Virtual Server
15 2 (0.12%) vCloud
Systems Management
1 174 (10.77%) Nessus
2 91 (5.63%) QRadar
3 68 (4.21%) McAfee ePO
3 68 (4.21%) SCCM
4 59 (3.65%) CSIRT
5 44 (2.72%) FortiGate
6 43 (2.66%) Nexpose
6 43 (2.66%) Nmap
7 38 (2.35%) Host Intrusion Detection System
8 33 (2.04%) RSA enVision
9 26 (1.61%) WSUS
10 25 (1.55%) Network Intrusion Detection System
10 25 (1.55%) RSA Security Analytics
11 24 (1.49%) EnCase
12 22 (1.36%) Core Impact
12 22 (1.36%) OpenVAS
12 22 (1.36%) PowerBroker
13 15 (0.93%) OSSEC
14 13 (0.80%) Computer Emergency Response Teams
15 10 (0.62%) SELinux
Vendors
1 313 (19.38%) Cisco
2 257 (15.91%) CheckPoint
3 242 (14.98%) LogRhythm
4 211 (13.07%) Palo Alto
5 206 (12.76%) Splunk
6 172 (10.65%) ArcSight
7 125 (7.74%) Juniper
8 124 (7.68%) Microsoft
9 122 (7.55%) McAfee
10 109 (6.75%) CyberArk
11 101 (6.25%) Symantec
12 99 (6.13%) Qualys
13 91 (5.63%) VMware
14 87 (5.39%) AlienVault
15 67 (4.15%) Blue Coat
16 54 (3.34%) SolarWinds
17 52 (3.22%) Fortinet
18 51 (3.16%) F5
19 46 (2.85%) Aveksa
20 44 (2.72%) Rapid7