Period
to 17 July 2018

The following table provides summary statistics for permanent job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited SIEM over the 6 months to 17 July 2018 with a comparison to the same period in the previous 2 years.

Security Information and Event Management (SIEM)
UK
6 months to
17 Jul 2018
Same period 2017 Same period 2016
Rank 313 354 378
Rank change year-on-year +41 +24 +136
Permanent jobs citing SIEM 1,849 1,569 1,765
As % of all permanent IT jobs advertised in the UK 1.05% 0.88% 0.87%
As % of the Processes & Methodologies category 1.16% 0.97% 0.96%
Number of salaries quoted 1,356 1,271 1,453
UK median annual salary £60,000 £56,000 £55,000
Median salary % change year-on-year +7.14% +1.82% +4.76%
10th Percentile £39,375 £37,500 £36,250
90th Percentile £86,250 £90,000 £82,500
UK excluding London median annual salary £55,000 £47,500 £50,000
% change year-on-year +15.79% -5.00% +5.26%

SIEM is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 159,438 161,090 183,017
As % of all permanent IT jobs advertised in the UK 90.68% 90.70% 90.02%
Number of salaries quoted 127,376 129,920 152,232
UK median annual salary £50,000 £49,000 £47,500
Median salary % change year-on-year +2.04% +3.16% -
10th Percentile £29,000 £28,000 £27,500
90th Percentile £82,500 £80,000 £77,500
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +1.19%

SIEM
Job Vacancy Trend

Job postings citing SIEM as a percentage of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing SIEM.

Salary trend for SIEM in the UK

SIEM
Salary Histogram

The salary distribution of IT jobs citing SIEM over the 6 months to 17 July 2018.

Salary histogram for SIEM in the UK

SIEM
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SIEM within the UK over the 6 months to 17 July 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +40 1,713 £60,000 +4.35% 172
UK excluding London +78 989 £55,000 +15.79% 106
London +18 829 £65,000 +4.00% 74
East of England +184 269 £47,500 -5.00% 22
South East +50 264 £60,000 +14.29% 13
North of England +62 170 £58,750 +23.68% 30
Midlands +35 150 £57,500 +27.78% 21
North West +47 118 £56,250 +25.00% 14
West Midlands +22 113 £57,500 +27.78% 15
Scotland +3 83 £55,000 +4.76% 4
South West -69 66 £50,000 - 12
Yorkshire +47 50 £60,000 +9.09% 16
East Midlands +19 34 £65,000 +44.44% 6
Wales -11 11 £40,210 -10.65% 3
Isle of Man - 5 £55,000 -
Northern Ireland - 3 - - 1
North East -23 2 - -

For the 6 months to 17 July 2018, IT jobs citing SIEM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for SIEM.

1 930 (50.30%) Firewall
2 904 (48.89%) Cybersecurity
3 823 (44.51%) Information Security
4 669 (36.18%) CISSP
5 625 (33.80%) Security Operations
6 526 (28.45%) Vulnerability Management
7 481 (26.01%) ISO/IEC 27001
8 466 (25.20%) Network Security
9 395 (21.36%) Windows
10 374 (20.23%) Linux
11 371 (20.06%) CISM
12 340 (18.39%) Splunk
13 323 (17.47%) Security Operations Centre
14 317 (17.14%) Finance
15 291 (15.74%) Degree
16 282 (15.25%) Data Loss Prevention
17 273 (14.76%) ITIL
17 273 (14.76%) Cisco Certification
18 271 (14.66%) TCP/IP
18 271 (14.66%) Management Information System
19 270 (14.60%) Cisco
20 269 (14.55%) Security Architecture
21 243 (13.14%) PCI DSS
22 230 (12.44%) Incident Management
23 228 (12.33%) Analytical Skills
24 225 (12.17%) Penetration Testing
25 223 (12.06%) CEH
25 223 (12.06%) CISA
26 219 (11.84%) Intrusion Detection
27 213 (11.52%) Distributed Denial-of-Service

SIEM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 43 (2.33%) IIS
2 31 (1.68%) Apache
3 22 (1.19%) Elasticsearch
4 15 (0.81%) Apache Spark
5 13 (0.70%) Confluence
6 9 (0.49%) Exchange Server 2013
6 9 (0.49%) JBoss
6 9 (0.49%) MS Exchange
6 9 (0.49%) Tomcat
7 7 (0.38%) nginx
8 5 (0.27%) Skype for Business
9 4 (0.22%) SharePoint
10 3 (0.16%) Exchange Server 2010
11 2 (0.11%) Oracle Coherence
11 2 (0.11%) Oracle HTTP Server
11 2 (0.11%) WebLogic
12 1 (0.054%) CMS
Applications
1 30 (1.62%) Microsoft Office
2 19 (1.03%) MS Visio
3 15 (0.81%) Microsoft PowerPoint
4 3 (0.16%) Microsoft Excel
Business Applications
1 6 (0.32%) assyst
1 6 (0.32%) Sentinel
2 2 (0.11%) Dynamics CRM
3 1 (0.054%) Remedy ITSM
Cloud Services
1 189 (10.22%) Amazon AWS
2 162 (8.76%) Microsoft Azure
3 59 (3.19%) SaaS
4 56 (3.03%) Office 365
5 53 (2.87%) IaaS
6 36 (1.95%) Mimecast
7 33 (1.78%) PaaS
8 30 (1.62%) GitHub
9 14 (0.76%) Amazon EC2
10 13 (0.70%) Amazon ElastiCache
10 13 (0.70%) Amazon ELB
10 13 (0.70%) AWS CloudFormation
10 13 (0.70%) Route 53
11 10 (0.54%) Cloud Computing
12 8 (0.43%) Azure Active Directory
13 6 (0.32%) Akamai
13 6 (0.32%) Google Cloud Platform
13 6 (0.32%) OneDrive
13 6 (0.32%) Serverless
14 4 (0.22%) Amazon S3
Communications & Networking
1 930 (50.30%) Firewall
2 466 (25.20%) Network Security
3 271 (14.66%) TCP/IP
4 219 (11.84%) Intrusion Detection
5 208 (11.25%) VPN
6 119 (6.44%) WAN
7 106 (5.73%) DNS
8 104 (5.62%) LAN
9 87 (4.71%) SSL
10 76 (4.11%) Cisco ASA
11 67 (3.62%) Internet
12 63 (3.41%) DHCP
13 62 (3.35%) HTTP
14 60 (3.24%) MPLS
14 60 (3.24%) Wireless
15 55 (2.97%) IPsec
16 52 (2.81%) Cisco Firepower
17 47 (2.54%) Cisco Nexus
18 44 (2.38%) WLAN
19 43 (2.33%) Wireshark
Database & Business Intelligence
1 38 (2.06%) SQL Server
2 31 (1.68%) Big Data
3 17 (0.92%) Hadoop
3 17 (0.92%) Redis
4 14 (0.76%) Relational Database
5 13 (0.70%) Event Store
6 10 (0.54%) MySQL
6 10 (0.54%) NoSQL
7 6 (0.32%) Apache Hive
7 6 (0.32%) SQL Server 2008
8 5 (0.27%) Apache Cassandra
8 5 (0.27%) MongoDB
9 4 (0.22%) SQL Server 2016
10 2 (0.11%) GIS
10 2 (0.11%) Hazelcast
10 2 (0.11%) Oracle Database
10 2 (0.11%) Oracle Database 11g
10 2 (0.11%) Oracle Database 12c
10 2 (0.11%) SQL Server 2014
11 1 (0.054%) PostgreSQL
Development Applications
1 49 (2.65%) Jenkins
2 34 (1.84%) Vagrant
3 31 (1.68%) Atlassian Bamboo
3 31 (1.68%) Hudson
3 31 (1.68%) JIRA
4 25 (1.35%) Metasploit
5 13 (0.70%) Octopus Deploy
5 13 (0.70%) TeamCity
6 8 (0.43%) Burp Suite
7 1 (0.054%) AppScan
7 1 (0.054%) GDB
7 1 (0.054%) Git (software)
7 1 (0.054%) GitLab
7 1 (0.054%) Rational DOORS
7 1 (0.054%) sqlmap
General
1 317 (17.14%) Finance
2 94 (5.08%) Banking
3 73 (3.95%) Retail
4 71 (3.84%) Legal
5 50 (2.70%) Investment Banking
6 31 (1.68%) Games
7 23 (1.24%) Law
8 21 (1.14%) Aerospace
9 20 (1.08%) Publishing
10 16 (0.87%) Financial Institution
11 15 (0.81%) Advertising
11 15 (0.81%) Telecoms
12 9 (0.49%) Manufacturing
12 9 (0.49%) Marketing
13 8 (0.43%) Local Government
14 7 (0.38%) French Language
15 5 (0.27%) Military
16 4 (0.22%) German Language
16 4 (0.22%) Italian Language
17 3 (0.16%) Retail Banking
Job Titles
1 431 (23.31%) Analyst
2 393 (21.25%) Security Engineer
3 325 (17.58%) Security Analyst
4 212 (11.47%) Architect
5 191 (10.33%) Consultant
6 187 (10.11%) Security Architect
7 177 (9.57%) Security Consultant
8 170 (9.19%) Security Manager
9 122 (6.60%) SOC Analyst
10 103 (5.57%) Solutions Architect
11 90 (4.87%) Security Solutions Architect
12 86 (4.65%) Network Engineer
13 85 (4.60%) IT Analyst
14 81 (4.38%) IT Consultant
14 81 (4.38%) IT Security Consultant
15 76 (4.11%) Head of Security
15 76 (4.11%) IT Engineer
15 76 (4.11%) IT Security Analyst
15 76 (4.11%) IT Security Engineer
16 70 (3.79%) Security Specialist
Libraries, Frameworks & Software Standards
1 38 (2.06%) Elastic Stack
2 23 (1.24%) HTML
3 20 (1.08%) .NET
3 20 (1.08%) Middleware
4 19 (1.03%) LDAP
5 17 (0.92%) RabbitMQ
6 16 (0.87%) Ajax
7 14 (0.76%) REST
7 14 (0.76%) Web Services
8 13 (0.70%) .NET Framework
8 13 (0.70%) ASP.NET
9 12 (0.65%) SAML
10 7 (0.38%) Regular Expression
11 5 (0.27%) OAuth
11 5 (0.27%) SailPoint
12 4 (0.22%) 802.1X
12 4 (0.22%) ActiveMQ
12 4 (0.22%) CSS
13 3 (0.16%) LAMP
13 3 (0.16%) XML
Miscellaneous
1 323 (17.47%) Security Operations Centre
2 271 (14.66%) Management Information System
3 228 (12.33%) Analytical Skills
4 213 (11.52%) Distributed Denial-of-Service
5 179 (9.68%) Data Centre
6 171 (9.25%) PKI
7 139 (7.52%) Cyberthreat
8 136 (7.36%) Computer Science
9 112 (6.06%) Self-Motivation
10 93 (5.03%) Data Protection Act
11 77 (4.16%) Cyberattack
12 59 (3.19%) Fintech
13 46 (2.49%) Cyber Kill Chain
14 28 (1.51%) Cyber Defence
15 21 (1.14%) Public Cloud
16 20 (1.08%) Enterprise Software
17 18 (0.97%) CESG
17 18 (0.97%) CMDB
17 18 (0.97%) Greenfield Project
18 16 (0.87%) Replication
Operating Systems
1 395 (21.36%) Windows
2 374 (20.23%) Linux
3 117 (6.33%) Unix
4 107 (5.79%) Windows Server
5 44 (2.38%) Mac OS X
6 29 (1.57%) Kali Linux
7 28 (1.51%) CentOS
8 24 (1.30%) Windows Server 2012
9 22 (1.19%) Apple iOS
9 22 (1.19%) Windows Server 2008
10 17 (0.92%) AIX
10 17 (0.92%) Red Hat Enterprise Linux
10 17 (0.92%) Ubuntu
11 6 (0.32%) HPUX
11 6 (0.32%) Windows 10
12 5 (0.27%) DC/OS
12 5 (0.27%) Oracle Linux
12 5 (0.27%) Windows 7
12 5 (0.27%) Windows Server 2003
12 5 (0.27%) Windows XP
Processes & Methodologies
1 904 (48.89%) Cybersecurity
2 823 (44.51%) Information Security
3 625 (33.80%) Security Operations
4 526 (28.45%) Vulnerability Management
5 282 (15.25%) Data Loss Prevention
6 273 (14.76%) ITIL
7 269 (14.55%) Security Architecture
8 230 (12.44%) Incident Management
9 225 (12.17%) Penetration Testing
10 209 (11.30%) Identity Access Management
11 202 (10.92%) Agile Software Development
12 191 (10.33%) Vulnerability Scanning
13 182 (9.84%) Risk Management
14 175 (9.46%) Data Protection
15 171 (9.25%) Vulnerability Assessment
16 167 (9.03%) Security Monitoring
17 159 (8.60%) Threat Management
18 145 (7.84%) Problem-Solving
19 137 (7.41%) Continuous Improvement
20 125 (6.76%) Threat Intelligence
Programming Languages
1 170 (9.19%) Python
2 82 (4.43%) Java
3 69 (3.73%) Bash Shell
4 67 (3.62%) PowerShell
5 58 (3.14%) Ruby
6 57 (3.08%) SQL
7 52 (2.81%) Perl
8 45 (2.43%) Go
9 27 (1.46%) JavaScript
10 26 (1.41%) C
11 20 (1.08%) C#
12 18 (0.97%) PHP
13 14 (0.76%) T-SQL
14 9 (0.49%) Shell Script
15 6 (0.32%) VBA
16 3 (0.16%) C++
17 2 (0.11%) Bourne shell
17 2 (0.11%) Korn
17 2 (0.11%) VB
18 1 (0.054%) JCL
Qualifications
1 669 (36.18%) CISSP
2 371 (20.06%) CISM
3 291 (15.74%) Degree
4 273 (14.76%) Cisco Certification
5 223 (12.06%) CEH
5 223 (12.06%) CISA
6 165 (8.92%) CCNP
7 160 (8.65%) GIAC
8 154 (8.33%) SANS
9 128 (6.92%) CompTIA Security+
10 123 (6.65%) Security Cleared
11 120 (6.49%) SSCP
12 98 (5.30%) GCIH
13 88 (4.76%) SC Cleared
14 87 (4.71%) CCNA
15 82 (4.43%) CCDP
15 82 (4.43%) Computer Science Degree
16 76 (4.11%) CCIE
17 65 (3.52%) CREST Certified
18 62 (3.35%) CSSLP
Quality Assurance & Compliance
1 481 (26.01%) ISO/IEC 27001
2 243 (13.14%) PCI DSS
3 190 (10.28%) GDPR
4 101 (5.46%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 77 (4.16%) Cyber Essentials
6 44 (2.38%) COBIT
7 43 (2.33%) GPG13
8 32 (1.73%) QA
9 29 (1.57%) SLA
10 27 (1.46%) Cyber Essentials PLUS
11 17 (0.92%) Sarbanes-Oxley
12 15 (0.81%) HMG Security Policy Framework
13 13 (0.70%) ISO 9001
14 11 (0.59%) NIST 800
15 6 (0.32%) ISO/IEC 20000
15 6 (0.32%) PMO
16 5 (0.27%) ISO 14001
16 5 (0.27%) MiFID
17 4 (0.22%) Government Security Classifications
17 4 (0.22%) ISO 22301
System Software
1 133 (7.19%) Active Directory
2 73 (3.95%) VMware Infrastructure
3 52 (2.81%) Docker
4 30 (1.62%) Snort
5 28 (1.51%) Hyper-V
6 22 (1.19%) Virtual Machines
7 17 (0.92%) VMware NSX
8 11 (0.59%) Firmware
9 8 (0.43%) HDFS
9 8 (0.43%) vSphere
10 4 (0.22%) ProxySG
10 4 (0.22%) VMware ESXi
11 2 (0.11%) iptables
11 2 (0.11%) LXC
11 2 (0.11%) XenApp
11 2 (0.11%) XenDesktop
12 1 (0.054%) NFS
12 1 (0.054%) RACF
Systems Management
1 179 (9.68%) QRadar
2 62 (3.35%) Nessus
3 60 (3.24%) Opscode Chef
4 54 (2.92%) Ansible
5 48 (2.60%) Kubernetes
6 47 (2.54%) Packer
6 47 (2.54%) Puppet
7 41 (2.22%) CASB
8 39 (2.11%) Docker Swarm
9 36 (1.95%) Nagios
10 35 (1.89%) Terraform
11 34 (1.84%) Consul
11 34 (1.84%) Grafana
11 34 (1.84%) Graphite
11 34 (1.84%) Opsview
11 34 (1.84%) Salt
11 34 (1.84%) ZABBIX
12 28 (1.51%) Single Sign-On
13 23 (1.24%) Network Intrusion Detection System
14 21 (1.14%) Kibana
Vendors
1 340 (18.39%) Splunk
2 270 (14.60%) Cisco
3 191 (10.33%) Microsoft
4 171 (9.25%) CheckPoint
5 158 (8.55%) Qualys
6 156 (8.44%) LogRhythm
7 115 (6.22%) ArcSight
8 107 (5.79%) VMware
9 105 (5.68%) Juniper
9 105 (5.68%) Palo Alto
10 89 (4.81%) Fortinet
11 79 (4.27%) Forcepoint
12 73 (3.95%) Sophos
13 62 (3.35%) Symantec
14 53 (2.87%) SolarWinds
15 52 (2.81%) F5
16 51 (2.76%) Tufin
17 50 (2.70%) McAfee
18 49 (2.65%) Red Hat
19 38 (2.06%) Citrix