Period
to 19 September 2018

The following table provides summary statistics for permanent job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited SIEM over the 6 months to 19 September 2018 with a comparison to the same period in the previous 2 years.

Security Information and Event Management (SIEM)
UK
6 months to
19 Sep 2018
Same period 2017 Same period 2016
Rank 288 357 361
Rank change year-on-year +69 +4 +129
Permanent jobs citing SIEM 1,968 1,640 1,718
As % of all permanent IT jobs advertised in the UK 1.18% 0.92% 0.89%
As % of the Processes & Methodologies category 1.29% 1.01% 0.97%
Number of salaries quoted 1,468 1,322 1,394
UK median annual salary £60,000 £57,500 £57,500
Median salary % change year-on-year +4.35% - +5.50%
10th Percentile £40,000 £36,300 £36,250
90th Percentile £85,000 £90,000 £82,500
UK excluding London median annual salary £55,000 £47,500 £50,000
% change year-on-year +15.79% -5.00% +5.26%

SIEM is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 152,439 162,423 176,281
As % of all permanent IT jobs advertised in the UK 91.04% 91.55% 90.89%
Number of salaries quoted 121,297 128,279 147,112
UK median annual salary £50,000 £50,000 £48,500
Median salary % change year-on-year - +3.09% +2.11%
10th Percentile £29,000 £28,000 £27,500
90th Percentile £82,500 £80,000 £78,750
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - -

SIEM
Job Vacancy Trend

Job postings citing SIEM as a percentage of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing SIEM.

Salary trend for SIEM in the UK

SIEM
Salary Histogram

The salary distribution of IT jobs citing SIEM over the 6 months to 19 September 2018.

Salary histogram for SIEM in the UK

SIEM
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SIEM within the UK over the 6 months to 19 September 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +66 1,853 £60,000 +4.35% 196
UK excluding London +142 1,144 £55,000 +15.79% 130
London +2 794 £65,000 +7.44% 74
East of England +216 329 £50,000 - 19
North of England +144 265 £54,500 +21.11% 18
South East +29 238 £57,500 +18.56% 43
North West +123 205 £55,000 +15.79% 10
Midlands +86 180 £57,500 +35.29% 29
West Midlands +53 133 £57,500 +35.29% 21
Scotland +37 74 £65,000 +33.33% 1
South West -67 65 £57,500 +21.05% 13
Yorkshire +42 57 £47,500 -5.00% 6
East Midlands +46 44 £57,500 +150.00% 8
Wales -5 6 £42,605 -10.31% 7
Isle of Man - 5 £55,000 -
Northern Ireland +4 4 - -
North East -24 3 £40,382 +10.63% 2

For the 6 months to 19 September 2018, IT jobs citing SIEM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for SIEM.

1 958 (48.68%) Firewall
2 927 (47.10%) Cybersecurity
3 926 (47.05%) Information Security
4 835 (42.43%) CISSP
5 668 (33.94%) Security Operations
6 593 (30.13%) Vulnerability Management
7 590 (29.98%) ISO/IEC 27001
8 545 (27.69%) Windows
9 499 (25.36%) Linux
10 466 (23.68%) Network Security
11 379 (19.26%) Splunk
12 366 (18.60%) Data Loss Prevention
13 364 (18.50%) CISM
14 346 (17.58%) Finance
15 344 (17.48%) Security Operations Centre
16 331 (16.82%) Penetration Testing
17 310 (15.75%) Cisco
18 308 (15.65%) Cisco Certification
19 306 (15.55%) Degree
20 302 (15.35%) PCI DSS
21 295 (14.99%) Microsoft
21 295 (14.99%) Management Information System
22 286 (14.53%) TCP/IP
23 283 (14.38%) Risk Management
24 273 (13.87%) CEH
25 270 (13.72%) ITIL
26 264 (13.41%) GDPR
27 256 (13.01%) Analytical Skills
28 244 (12.40%) Intrusion Detection
29 242 (12.30%) Data Protection

SIEM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 37 (1.88%) IIS
2 25 (1.27%) Elasticsearch
3 23 (1.17%) Apache
4 17 (0.86%) Confluence
5 14 (0.71%) Apache Spark
6 13 (0.66%) MS Exchange
7 11 (0.56%) SharePoint
8 5 (0.25%) Exchange Server 2013
8 5 (0.25%) nginx
8 5 (0.25%) Skype for Business
9 4 (0.20%) JBoss
9 4 (0.20%) Tomcat
10 3 (0.15%) Oracle Coherence
10 3 (0.15%) Oracle HTTP Server
10 3 (0.15%) WebLogic
11 2 (0.10%) Exchange Server 2010
12 1 (0.051%) CMS
Applications
1 48 (2.44%) Microsoft PowerPoint
2 26 (1.32%) Microsoft Office
3 16 (0.81%) MS Visio
4 7 (0.36%) Microsoft Excel
Business Applications
1 7 (0.36%) assyst
1 7 (0.36%) Sentinel
2 1 (0.051%) Dynamics CRM
Cloud Services
1 233 (11.84%) Amazon AWS
2 210 (10.67%) Microsoft Azure
3 78 (3.96%) SaaS
4 59 (3.00%) Office 365
5 47 (2.39%) IaaS
6 42 (2.13%) Mimecast
7 30 (1.52%) PaaS
8 27 (1.37%) GitHub
9 18 (0.91%) Amazon EC2
10 17 (0.86%) Amazon ElastiCache
10 17 (0.86%) Amazon ELB
10 17 (0.86%) AWS CloudFormation
10 17 (0.86%) Route 53
11 16 (0.81%) Google Cloud Platform
12 10 (0.51%) Cloud Computing
13 8 (0.41%) Serverless
14 6 (0.30%) Azure Active Directory
15 3 (0.15%) OpenShift
16 1 (0.051%) Akamai
16 1 (0.051%) Amazon S3
Communications & Networking
1 958 (48.68%) Firewall
2 466 (23.68%) Network Security
3 286 (14.53%) TCP/IP
4 244 (12.40%) Intrusion Detection
5 220 (11.18%) VPN
6 112 (5.69%) WAN
7 101 (5.13%) LAN
8 90 (4.57%) DNS
9 86 (4.37%) SSL
10 70 (3.56%) Wireshark
11 67 (3.40%) HTTP
12 63 (3.20%) Internet
13 62 (3.15%) Cisco ASA
14 53 (2.69%) Wireless
15 48 (2.44%) Cisco Firepower
16 47 (2.39%) DHCP
17 45 (2.29%) IPsec
18 44 (2.24%) MPLS
18 44 (2.24%) Wi-Fi
18 44 (2.24%) WLAN
Database & Business Intelligence
1 39 (1.98%) SQL Server
2 37 (1.88%) Big Data
3 22 (1.12%) Redis
4 18 (0.91%) Relational Database
5 17 (0.86%) Event Store
5 17 (0.86%) Hadoop
6 8 (0.41%) Data Warehouse
7 6 (0.30%) NoSQL
8 3 (0.15%) Hazelcast
8 3 (0.15%) MySQL
8 3 (0.15%) Oracle Database
8 3 (0.15%) Oracle Database 11g
8 3 (0.15%) Oracle Database 12c
8 3 (0.15%) PostgreSQL
9 2 (0.10%) Apache Hive
9 2 (0.10%) GIS
9 2 (0.10%) SQL Server 2008
9 2 (0.10%) SQL Server 2014
10 1 (0.051%) Apache Cassandra
10 1 (0.051%) MongoDB
Development Applications
1 64 (3.25%) Jenkins
2 52 (2.64%) Vagrant
3 44 (2.24%) Atlassian Bamboo
3 44 (2.24%) Hudson
4 38 (1.93%) JIRA
5 35 (1.78%) Metasploit
6 34 (1.73%) Octopus Deploy
6 34 (1.73%) TeamCity
7 19 (0.97%) Git (software)
8 17 (0.86%) Subversion
9 4 (0.20%) Burp Suite
10 3 (0.15%) SonarQube
11 1 (0.051%) AppScan
11 1 (0.051%) GDB
11 1 (0.051%) GitLab
11 1 (0.051%) Rational DOORS
11 1 (0.051%) sqlmap
General
1 346 (17.58%) Finance
2 135 (6.86%) Retail
3 121 (6.15%) Banking
4 110 (5.59%) Legal
5 81 (4.12%) Investment Banking
6 26 (1.32%) Law
7 23 (1.17%) Games
7 23 (1.17%) Publishing
8 19 (0.97%) Financial Institution
9 18 (0.91%) Advertising
10 11 (0.56%) Manufacturing
11 9 (0.46%) Aerospace
11 9 (0.46%) Telecoms
12 8 (0.41%) Marketing
13 7 (0.36%) French Language
14 5 (0.25%) Local Government
15 4 (0.20%) German Language
15 4 (0.20%) Italian Language
16 3 (0.15%) Military
17 2 (0.10%) Billing
Job Titles
1 508 (25.81%) Analyst
2 392 (19.92%) Security Engineer
3 358 (18.19%) Security Analyst
4 217 (11.03%) Architect
5 210 (10.67%) Security Manager
6 189 (9.60%) Consultant
7 187 (9.50%) Security Architect
8 175 (8.89%) Security Consultant
9 153 (7.77%) SOC Analyst
10 118 (6.00%) Information Security Manager
11 115 (5.84%) Information Manager
11 115 (5.84%) IT Analyst
12 110 (5.59%) IT Security Analyst
13 109 (5.54%) Senior Analyst
14 90 (4.57%) Senior Security Analyst
15 89 (4.52%) Solutions Architect
16 77 (3.91%) Senior Security Engineer
17 76 (3.86%) IT Engineer
17 76 (3.86%) IT Security Engineer
18 75 (3.81%) Security Solutions Architect
Libraries, Frameworks & Software Standards
1 67 (3.40%) Elastic Stack
2 26 (1.32%) .NET
3 21 (1.07%) LDAP
3 21 (1.07%) RabbitMQ
4 19 (0.97%) REST
5 18 (0.91%) HTML
6 17 (0.86%) .NET Framework
6 17 (0.86%) Ajax
6 17 (0.86%) ASP.NET
7 14 (0.71%) Middleware
8 13 (0.66%) Regular Expression
8 13 (0.66%) Web Services
9 9 (0.46%) SAML
10 6 (0.30%) ISPF
11 5 (0.25%) CGI
11 5 (0.25%) SOAP
12 4 (0.20%) ActiveMQ
12 4 (0.20%) LAMP
12 4 (0.20%) Node.js
13 3 (0.15%) Spring Boot
Miscellaneous
1 344 (17.48%) Security Operations Centre
2 295 (14.99%) Management Information System
3 256 (13.01%) Analytical Skills
4 242 (12.30%) Distributed Denial-of-Service
5 209 (10.62%) PKI
6 157 (7.98%) Data Centre
7 150 (7.62%) Computer Science
8 139 (7.06%) Cyberthreat
9 125 (6.35%) Self-Motivation
10 115 (5.84%) Data Protection Act
11 106 (5.39%) Cyber Kill Chain
12 53 (2.69%) Cyberattack
13 37 (1.88%) Cyber Defence
14 35 (1.78%) Fintech
15 27 (1.37%) Enterprise Software
16 22 (1.12%) Clustering
17 19 (0.97%) CMDB
18 18 (0.91%) CESG
18 18 (0.91%) Replication
19 17 (0.86%) Private Cloud
Operating Systems
1 545 (27.69%) Windows
2 499 (25.36%) Linux
3 120 (6.10%) Unix
4 110 (5.59%) Windows Server
5 48 (2.44%) Mac OS X
6 35 (1.78%) CentOS
6 35 (1.78%) Kali Linux
7 31 (1.58%) Apple iOS
8 30 (1.52%) Windows Server 2012
9 25 (1.27%) Windows Server 2008
10 20 (1.02%) Ubuntu
11 19 (0.97%) AIX
12 18 (0.91%) Red Hat Enterprise Linux
13 11 (0.56%) Windows 7
14 10 (0.51%) HPUX
15 9 (0.46%) Windows Server 2003
15 9 (0.46%) Windows XP
16 7 (0.36%) VMS
17 6 (0.30%) Windows 10
18 5 (0.25%) Debian
Processes & Methodologies
1 927 (47.10%) Cybersecurity
2 926 (47.05%) Information Security
3 668 (33.94%) Security Operations
4 593 (30.13%) Vulnerability Management
5 366 (18.60%) Data Loss Prevention
6 331 (16.82%) Penetration Testing
7 283 (14.38%) Risk Management
8 270 (13.72%) ITIL
9 242 (12.30%) Data Protection
10 241 (12.25%) Incident Management
11 238 (12.09%) Security Architecture
12 226 (11.48%) Vulnerability Assessment
13 198 (10.06%) Agile Software Development
14 191 (9.71%) Security Management
15 187 (9.50%) Identity Access Management
16 186 (9.45%) Problem-Solving
17 184 (9.35%) Vulnerability Scanning
18 159 (8.08%) Threat Intelligence
19 156 (7.93%) Kalman Filter
20 150 (7.62%) Threat Management
Programming Languages
1 190 (9.65%) Python
2 104 (5.28%) Java
3 102 (5.18%) SQL
4 70 (3.56%) Ruby
5 67 (3.40%) Perl
6 63 (3.20%) Bash Shell
7 60 (3.05%) PowerShell
8 56 (2.85%) Go
9 34 (1.73%) JavaScript
10 23 (1.17%) C#
11 17 (0.86%) C
11 17 (0.86%) PHP
11 17 (0.86%) T-SQL
12 12 (0.61%) Shell Script
13 9 (0.46%) VBA
14 6 (0.30%) JCL
14 6 (0.30%) REXX
15 5 (0.25%) C++
16 3 (0.15%) R
17 2 (0.10%) VB
Qualifications
1 835 (42.43%) CISSP
2 364 (18.50%) CISM
3 308 (15.65%) Cisco Certification
4 306 (15.55%) Degree
5 273 (13.87%) CEH
6 230 (11.69%) SANS
7 207 (10.52%) CISA
8 175 (8.89%) GIAC
9 174 (8.84%) CompTIA Security+
10 162 (8.23%) CCNP
11 153 (7.77%) Security Cleared
12 147 (7.47%) SSCP
13 115 (5.84%) (ISC)2 CCSP
14 112 (5.69%) SC Cleared
15 96 (4.88%) Computer Science Degree
16 95 (4.83%) CREST Certified
17 94 (4.78%) CSSLP
18 92 (4.67%) CCIE
19 89 (4.52%) GCIH
20 81 (4.12%) CCNA
Quality Assurance & Compliance
1 590 (29.98%) ISO/IEC 27001
2 302 (15.35%) PCI DSS
3 264 (13.41%) GDPR
4 121 (6.15%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 83 (4.22%) Cyber Essentials
6 56 (2.85%) GPG13
7 52 (2.64%) COBIT
8 37 (1.88%) SLA
9 32 (1.63%) Cyber Essentials PLUS
9 32 (1.63%) QA
10 20 (1.02%) ISO 22301
11 18 (0.91%) MiFID
12 15 (0.76%) HMG Security Policy Framework
13 14 (0.71%) Sarbanes-Oxley
14 10 (0.51%) PMO
15 9 (0.46%) ISO 9001
16 7 (0.36%) ISO/IEC 20000
16 7 (0.36%) NIST 800
17 5 (0.25%) ISO 14001
18 4 (0.20%) Government Security Classifications
System Software
1 175 (8.89%) Active Directory
2 123 (6.25%) VMware Infrastructure
3 58 (2.95%) Docker
4 49 (2.49%) Snort
5 44 (2.24%) Hyper-V
6 32 (1.63%) Virtual Machines
7 12 (0.61%) vSphere
8 11 (0.56%) Firmware
8 11 (0.56%) HDFS
8 11 (0.56%) VMware NSX
9 7 (0.36%) iptables
10 6 (0.30%) RACF
10 6 (0.30%) XenApp
10 6 (0.30%) XenDesktop
11 4 (0.20%) KVM
12 3 (0.15%) Microsoft Virtual Server
12 3 (0.15%) ProxySG
12 3 (0.15%) Virtual Servers
13 1 (0.051%) Microsoft App-V
13 1 (0.051%) Virtual Desktop
Systems Management
1 193 (9.81%) QRadar
2 75 (3.81%) Opscode Chef
3 74 (3.76%) Ansible
4 69 (3.51%) Nessus
4 69 (3.51%) Packer
5 56 (2.85%) Kubernetes
5 56 (2.85%) Puppet
6 54 (2.74%) Nagios
6 54 (2.74%) Terraform
7 53 (2.69%) Docker Swarm
8 52 (2.64%) Consul
8 52 (2.64%) Grafana
8 52 (2.64%) Graphite
8 52 (2.64%) Opsview
8 52 (2.64%) Salt
8 52 (2.64%) ZABBIX
9 43 (2.18%) RSA Security Analytics
10 40 (2.03%) CASB
11 38 (1.93%) Network Intrusion Detection System
12 28 (1.42%) SCCM
Vendors
1 379 (19.26%) Splunk
2 310 (15.75%) Cisco
3 295 (14.99%) Microsoft
4 207 (10.52%) Qualys
5 184 (9.35%) VMware
6 163 (8.28%) LogRhythm
7 155 (7.88%) CheckPoint
8 120 (6.10%) ArcSight
9 106 (5.39%) Symantec
10 93 (4.73%) Palo Alto
11 89 (4.52%) Juniper
12 82 (4.17%) Forcepoint
13 79 (4.01%) Fortinet
13 79 (4.01%) Red Hat
14 74 (3.76%) Sophos
15 58 (2.95%) AlienVault
16 50 (2.54%) McAfee
17 46 (2.34%) Tufin
18 44 (2.24%) SolarWinds
19 41 (2.08%) Oracle