Security Information and Event Management (SIEM)
UK

The table below provides summary statistics for permanent job vacancies requiring SIEM skills. It includes a benchmarking guide to the annual salaries offered in vacancies that cited SIEM over the 6 months leading up to 16 May 2025, comparing them to the same period in the previous two years.

6 months to
16 May 2025
Same period 2024 Same period 2023
Rank 344 331 230
Rank change year-on-year -13 -101 +138
Permanent jobs citing SIEM 438 855 1,627
As % of all permanent jobs advertised in the UK 0.79% 0.86% 1.63%
As % of the Processes & Methodologies category 0.84% 1.01% 1.71%
Number of salaries quoted 337 701 738
10th Percentile £43,100 £38,500 £38,750
25th Percentile £49,000 £47,500 £50,000
Median annual salary (50th Percentile) £62,500 £62,783 £65,000
Median % change year-on-year -0.45% -3.41% -
75th Percentile £77,500 £77,500 £77,500
90th Percentile £90,000 £95,000 £90,000
UK excluding London median annual salary £55,000 £60,000 £57,500
% change year-on-year -8.33% +4.35% -

All Process and Methodology Skills
UK

SIEM falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies requiring process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills 52,098 84,818 95,320
As % of all permanent jobs advertised in the UK 93.84% 85.52% 95.60%
Number of salaries quoted 26,512 59,706 56,022
10th Percentile £29,750 £29,000 £34,000
25th Percentile £41,750 £40,000 £45,000
Median annual salary (50th Percentile) £57,500 £55,000 £61,180
Median % change year-on-year +4.55% -10.10% +1.97%
75th Percentile £75,000 £72,500 £81,250
90th Percentile £97,500 £92,500 £100,000
UK excluding London median annual salary £52,000 £50,000 £55,000
% change year-on-year +4.00% -9.09% +4.76%

SIEM
Job Vacancy Trend

Job postings citing SIEM as a proportion of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Salary Trend

3-month moving average salary quoted in jobs citing SIEM.

Salary trend for SIEM in the UK

SIEM
Salary Histogram

Salary distribution for jobs citing SIEM over the 6 months to 16 May 2025.

Salary histogram for SIEM in the UK

SIEM
Top 18 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SIEM within the UK over the 6 months to 16 May 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Jobs
England -37 409 £63,000 -3.08% 432
UK excluding London -3 226 £55,000 -8.33% 311
London -11 179 £75,000 +11.11% 200
Work from Home -32 128 £60,000 - 233
South East +20 64 £50,000 -13.04% 132
Midlands +85 59 £47,500 -9.52% 25
North of England -46 43 £58,500 +8.84% 63
West Midlands +73 39 £55,000 +17.02% 17
North West -21 31 £75,000 +59.57% 33
East of England +37 30 £61,500 -5.38% 38
East Midlands +37 20 £45,000 -14.29% 8
South West +46 14 £49,615 -42.48% 25
Scotland +99 12 £46,754 -0.52% 31
Yorkshire +14 8 £51,250 -14.58% 24
North East +26 4 £57,500 +35.29% 7
Northern Ireland +36 2 - - 15
Wales +26 1 £55,000 -6.38%
Isle of Man +15 1 £34,500 -

SIEM
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 9 (2.05%) Microsoft Exchange
2 6 (1.37%) SharePoint
3 4 (0.91%) Confluence
Applications
1 3 (0.68%) Microsoft Excel
1 3 (0.68%) Microsoft PowerPoint
Cloud Services
1 146 (33.33%) Azure
2 73 (16.67%) Azure Sentinel
3 58 (13.24%) AWS
4 43 (9.82%) Microsoft 365
5 35 (7.99%) GCP
6 24 (5.48%) Entra ID
7 19 (4.34%) SaaS
8 13 (2.97%) Azure Logic Apps
9 12 (2.74%) IaaS
9 12 (2.74%) PaaS
10 10 (2.28%) Azure Monitor
11 9 (2.05%) Azure DevOps
11 9 (2.05%) Serverless
12 7 (1.60%) Cloud Computing
13 6 (1.37%) Amazon GuardDuty
14 5 (1.14%) AWS Lambda
15 4 (0.91%) Amazon CloudWatch
16 3 (0.68%) AWS CloudFormation
16 3 (0.68%) AWS CloudTrail
16 3 (0.68%) Virtual Private Cloud
Communications & Networking
1 224 (51.14%) Firewall
2 91 (20.78%) Network Security
3 69 (15.75%) Intrusion Detection
4 56 (12.79%) VPN
5 32 (7.31%) TCP/IP
6 30 (6.85%) DNS
7 26 (5.94%) WAN
8 17 (3.88%) LAN
9 14 (3.20%) Internet
10 13 (2.97%) DHCP
10 13 (2.97%) SAN
11 12 (2.74%) SMTP
12 11 (2.51%) HTTP
13 9 (2.05%) FTP
13 9 (2.05%) Wireshark
14 8 (1.83%) SD-WAN
15 7 (1.60%) BGP
15 7 (1.60%) Cisco Firepower
15 7 (1.60%) OSPF
15 7 (1.60%) Spanning Tree
Database & Business Intelligence
1 7 (1.60%) Relational Database
2 3 (0.68%) PostgreSQL
3 2 (0.46%) Power BI
3 2 (0.46%) SQL Server
4 1 (0.23%) DB2
4 1 (0.23%) Hadoop
4 1 (0.23%) MongoDB
4 1 (0.23%) MySQL
4 1 (0.23%) Oracle Reports
4 1 (0.23%) Tableau
Development Applications
1 8 (1.83%) Burp Suite
2 4 (0.91%) Bitbucket
2 4 (0.91%) JIRA
3 1 (0.23%) Artifactory
3 1 (0.23%) CircleCI
3 1 (0.23%) Git
3 1 (0.23%) GitLab
3 1 (0.23%) IDA Disassembler
3 1 (0.23%) Jenkins
3 1 (0.23%) Metasploit
3 1 (0.23%) Postman
3 1 (0.23%) REST Assured
3 1 (0.23%) SoapUI
General
1 155 (35.39%) Social Skills
2 80 (18.26%) Finance
3 76 (17.35%) Analytical Skills
4 32 (7.31%) Legal
5 28 (6.39%) Law
6 25 (5.71%) Retail
7 17 (3.88%) Banking
8 16 (3.65%) Inclusion and Diversity
9 12 (2.74%) Manufacturing
10 11 (2.51%) Telecoms
11 10 (2.28%) Public Sector
12 8 (1.83%) Mandarin Language
13 7 (1.60%) Aerospace
13 7 (1.60%) Aviation
13 7 (1.60%) Electronics
14 6 (1.37%) Pharmaceutical
15 5 (1.14%) Front Office
15 5 (1.14%) Marketing
16 3 (0.68%) Documentation Skills
16 3 (0.68%) Presentation Skills
Job Titles
1 168 (38.36%) Analyst
2 103 (23.52%) Security Analyst
3 68 (15.53%) Senior
4 57 (13.01%) SOC Analyst
5 55 (12.56%) Security Engineer
6 52 (11.87%) Cybersecurity Analyst
7 46 (10.50%) Lead
8 39 (8.90%) Architect
9 38 (8.68%) Senior Analyst
10 36 (8.22%) Security Architect
11 22 (5.02%) Cybersecurity Engineer
12 21 (4.79%) SOC Engineer
13 18 (4.11%) Infrastructure Engineer
14 17 (3.88%) Security Manager
15 16 (3.65%) Operations Analyst
16 15 (3.42%) Information Analyst
16 15 (3.42%) Information Security Analyst
16 15 (3.42%) SIEM Analyst
17 14 (3.20%) Network Engineer
18 13 (2.97%) Security Operations Analyst
Libraries, Frameworks & Software Standards
1 16 (3.65%) LDAP
2 9 (2.05%) SAML
3 6 (1.37%) OAuth
3 6 (1.37%) SailPoint
4 5 (1.14%) Elastic Stack
4 5 (1.14%) OpenID
5 2 (0.46%) AWS CDK
5 2 (0.46%) AWS SAM
5 2 (0.46%) REST
5 2 (0.46%) YAML
6 1 (0.23%) boto
6 1 (0.23%) JSON
6 1 (0.23%) JWT
6 1 (0.23%) OAuth2
Miscellaneous
1 113 (25.80%) Management Information System
2 96 (21.92%) Security Posture
3 60 (13.70%) Cyber Threat
4 57 (13.01%) Security Operations Centre
5 24 (5.48%) Self-Motivation
6 23 (5.25%) PKI
7 21 (4.79%) Social Media
7 21 (4.79%) Team-Oriented Environment
8 17 (3.88%) Hedge funds
9 15 (3.42%) Onboarding
10 13 (2.97%) Client/Server
11 12 (2.74%) Cyber Defence
12 11 (2.51%) Distributed Denial-of-Service
13 10 (2.28%) Private Cloud
14 9 (2.05%) CSOC
14 9 (2.05%) Data Centre
14 9 (2.05%) Podcast
14 9 (2.05%) Virtual Team
15 6 (1.37%) Cloud Native
15 6 (1.37%) Robotics
Operating Systems
1 139 (31.74%) Windows
2 61 (13.93%) Linux
3 23 (5.25%) Windows Server
4 21 (4.79%) Windows Vista
5 7 (1.60%) Apple iOS
6 6 (1.37%) Android
7 5 (1.14%) Mac OS
7 5 (1.14%) Red Hat Enterprise Linux
8 4 (0.91%) Unix
8 4 (0.91%) Windows Server 2016
9 3 (0.68%) Windows 10
10 2 (0.46%) Windows Server 2019
11 1 (0.23%) Windows Server 2008
11 1 (0.23%) Windows Server 2012
Processes & Methodologies
1 284 (64.84%) Cybersecurity
2 229 (52.28%) Incident Response
3 180 (41.10%) Information Security
4 156 (35.62%) Security Operations
5 125 (28.54%) Vulnerability Management
6 124 (28.31%) Problem-Solving
7 84 (19.18%) Cloud Security
8 80 (18.26%) Risk Management
9 72 (16.44%) Threat Intelligence
10 67 (15.30%) Data Loss Prevention
11 58 (13.24%) Computer Science
11 58 (13.24%) Continuous Improvement
12 56 (12.79%) Incident Management
12 56 (12.79%) Security Monitoring
12 56 (12.79%) Vulnerability Assessment
13 55 (12.56%) Cyber Threat Intelligence
14 51 (11.64%) Identity Access Management
15 49 (11.19%) Data Protection
16 46 (10.50%) DevOps
17 45 (10.27%) Security Architecture
Programming Languages
1 89 (20.32%) PowerShell
2 79 (18.04%) Python
3 47 (10.73%) Kusto Query Language
4 35 (7.99%) Bash
5 13 (2.97%) C#
6 9 (2.05%) Perl
7 7 (1.60%) SQL
8 6 (1.37%) C++
8 6 (1.37%) Go
9 3 (0.68%) JavaScript
9 3 (0.68%) Search Processing Language
10 2 (0.46%) Bicep
10 2 (0.46%) Shell Script
10 2 (0.46%) TypeScript
11 1 (0.23%) Groovy
11 1 (0.23%) Ruby
11 1 (0.23%) VBA
Qualifications
1 133 (30.37%) CISSP
2 125 (28.54%) Degree
3 94 (21.46%) Security Cleared
4 81 (18.49%) CISM
5 67 (15.30%) CEH
5 67 (15.30%) SC Cleared
6 60 (13.70%) CompTIA Security+
7 57 (13.01%) Computer Science Degree
8 46 (10.50%) GCIH
9 40 (9.13%) Cisco Certification
10 39 (8.90%) DV Cleared
11 35 (7.99%) GCIA
11 35 (7.99%) OSCP
12 33 (7.53%) CISA
13 30 (6.85%) Master's Degree
14 25 (5.71%) (ISC)2 CCSP
15 24 (5.48%) SANS
16 22 (5.02%) DBS Check
17 18 (4.11%) GIAC
18 14 (3.20%) CompTIA CySA+
Quality Assurance & Compliance
1 142 (32.42%) ISO/IEC 27001
2 113 (25.80%) NIST
3 76 (17.35%) GDPR
4 47 (10.73%) Cyber Essentials
5 29 (6.62%) PCI DSS
6 25 (5.71%) Cyber Essentials PLUS
7 21 (4.79%) SLA
8 18 (4.11%) NCSC
9 17 (3.88%) COBIT
10 13 (2.97%) HIPAA
11 11 (2.51%) SOC 2
12 8 (1.83%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
13 6 (1.37%) NIST 800
14 5 (1.14%) GRC
15 3 (0.68%) JSP 440
16 2 (0.46%) Accessibility
17 1 (0.23%) Actionable Recommendations
17 1 (0.23%) California Consumer Privacy Act
17 1 (0.23%) GLBA
17 1 (0.23%) Sarbanes-Oxley
System Software
1 47 (10.73%) Active Directory
2 21 (4.79%) VMware Infrastructure
3 20 (4.57%) Docker
4 7 (1.60%) VMware ESXi
5 5 (1.14%) Hyper-V
6 4 (0.91%) Virtual Machines
7 1 (0.23%) EMC RecoverPoint
7 1 (0.23%) Snort
Systems Management
1 44 (10.05%) QRadar
2 19 (4.34%) Microsoft Intune
3 18 (4.11%) Terraform
4 15 (3.42%) Ansible
5 13 (2.97%) Kubernetes
6 12 (2.74%) Nessus
7 9 (2.05%) Single Sign-On
8 6 (1.37%) ArcSight ESM
8 6 (1.37%) CSIRT
9 5 (1.14%) CASB
9 5 (1.14%) Progress Chef
9 5 (1.14%) Puppet
10 4 (0.91%) FortiGate
10 4 (0.91%) Graylog
10 4 (0.91%) ZENworks
11 3 (0.68%) Computer Emergency Response Teams
11 3 (0.68%) Grafana
11 3 (0.68%) SCCM
12 2 (0.46%) Host Intrusion Detection System
12 2 (0.46%) SCOM
Vendors
1 165 (37.67%) Microsoft
2 82 (18.72%) Splunk
3 46 (10.50%) VMware
4 36 (8.22%) Cisco
5 25 (5.71%) Tenable
6 24 (5.48%) CrowdStrike
7 20 (4.57%) Juniper
8 18 (4.11%) Palo Alto
9 14 (3.20%) ArcSight
9 14 (3.20%) McAfee
10 11 (2.51%) AlienVault
11 10 (2.28%) Fortinet
11 10 (2.28%) Google
12 8 (1.83%) Dell
12 8 (1.83%) Qualys
13 7 (1.60%) CheckPoint
14 6 (1.37%) LogLogic
14 6 (1.37%) LogRhythm
14 6 (1.37%) SolarWinds
15 5 (1.14%) Meraki