Period
to 23 May 2018

The following table provides summary statistics for permanent job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited SIEM over the 6 months to 23 May 2018 with a comparison to the same period in the previous 2 years.

Security Information and Event Management (SIEM)
UK
6 months to
23 May 2018
Same period 2017 Same period 2016
Rank 318 361 403
Rank change year-on-year +43 +42 +157
Permanent jobs citing SIEM 1,739 1,479 1,565
As % of all permanent IT jobs advertised in the UK 1.01% 0.87% 0.78%
As % of the Processes & Methodologies category 1.11% 0.97% 0.87%
Number of salaries quoted 1,301 1,193 1,310
UK median annual salary £60,000 £56,000 £55,000
Median salary % change year-on-year +7.14% +1.82% +5.26%
10th Percentile £35,000 £36,250 £37,500
90th Percentile £86,250 £89,750 £80,000
UK excluding London median annual salary £52,500 £47,500 £52,500
% change year-on-year +10.53% -9.52% +10.53%

SIEM is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 156,179 153,171 180,630
As % of all permanent IT jobs advertised in the UK 90.87% 90.54% 89.99%
Number of salaries quoted 125,708 125,548 150,184
UK median annual salary £50,000 £47,500 £47,500
Median salary % change year-on-year +5.26% - +3.26%
10th Percentile £29,750 £28,000 £27,500
90th Percentile £82,500 £78,750 £77,500
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +3.66%

SIEM
Job Vacancy Trend

Job postings citing SIEM as a percentage of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing SIEM.

Salary trend for SIEM in the UK

SIEM
Salary Histogram

The salary distribution of IT jobs citing SIEM over the 6 months to 23 May 2018.

Salary histogram for SIEM in the UK

SIEM
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SIEM within the UK over the 6 months to 23 May 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +35 1,610 £60,000 +4.35% 195
London +36 857 £62,500 -3.85% 93
UK excluding London +36 849 £52,500 +10.53% 107
South East +50 272 £57,500 +9.52% 32
East of England +116 179 £47,500 -5.00% 18
Midlands -19 145 £57,500 +31.43% 15
North of England +41 125 £55,000 +22.22% 18
West Midlands -28 120 £53,750 +26.47% 11
Scotland -4 80 £55,000 +15.79% 4
North West +26 77 £55,000 +22.22% 9
South West -68 67 £47,000 -6.00% 19
Yorkshire +51 44 £53,250 -3.18% 8
East Midlands +10 25 £65,000 +44.44% 4
Wales -6 10 £39,605 -11.99%
Isle of Man - 5 £55,000 -
North East -19 4 £48,500 +32.88% 1
Northern Ireland - 2 - - 1

For the 6 months to 23 May 2018, IT jobs citing SIEM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for SIEM.

1 919 (52.85%) Firewall
2 864 (49.68%) Cybersecurity
3 788 (45.31%) Information Security
4 689 (39.62%) CISSP
5 578 (33.24%) Security Operations
6 491 (28.23%) Vulnerability Management
7 477 (27.43%) Network Security
8 467 (26.85%) ISO/IEC 27001
9 389 (22.37%) CISM
10 384 (22.08%) Windows
11 361 (20.76%) Linux
12 325 (18.69%) Splunk
13 302 (17.37%) Management Information System
14 300 (17.25%) ITIL
15 293 (16.85%) TCP/IP
16 290 (16.68%) Degree
17 286 (16.45%) Security Operations Centre
18 284 (16.33%) Finance
19 277 (15.93%) Cisco
19 277 (15.93%) Cisco Certification
20 268 (15.41%) Data Loss Prevention
21 242 (13.92%) Penetration Testing
22 232 (13.34%) Incident Management
23 228 (13.11%) Security Architecture
24 219 (12.59%) CISA
25 218 (12.54%) PCI DSS
26 195 (11.21%) Intrusion Detection
27 194 (11.16%) CEH
27 194 (11.16%) VPN
28 193 (11.10%) Vulnerability Assessment

SIEM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 54 (3.11%) IIS
2 33 (1.90%) Apache
3 17 (0.98%) SharePoint
4 14 (0.81%) Apache Spark
5 13 (0.75%) Elasticsearch
6 9 (0.52%) Exchange Server 2013
7 8 (0.46%) Confluence
7 8 (0.46%) MS Exchange
8 7 (0.40%) JBoss
8 7 (0.40%) Skype for Business
8 7 (0.40%) Tomcat
9 4 (0.23%) Exchange Server 2010
10 3 (0.17%) nginx
Applications
1 26 (1.50%) Microsoft Office
2 19 (1.09%) MS Visio
3 12 (0.69%) Microsoft PowerPoint
4 2 (0.12%) Microsoft Excel
Business Applications
1 15 (0.86%) Dynamics CRM
2 5 (0.29%) Remedy ITSM
3 3 (0.17%) assyst
3 3 (0.17%) Sentinel
Cloud Services
1 143 (8.22%) Amazon AWS
2 130 (7.48%) Microsoft Azure
3 65 (3.74%) Office 365
4 51 (2.93%) IaaS
5 42 (2.42%) SaaS
6 35 (2.01%) PaaS
7 33 (1.90%) Mimecast
8 20 (1.15%) GitHub
8 20 (1.15%) OneDrive
9 9 (0.52%) Akamai
10 8 (0.46%) Amazon EC2
10 8 (0.46%) Amazon ElastiCache
10 8 (0.46%) Amazon ELB
10 8 (0.46%) AWS CloudFormation
10 8 (0.46%) Azure Active Directory
10 8 (0.46%) Route 53
11 7 (0.40%) Cloud Computing
12 5 (0.29%) Google Cloud Platform
13 3 (0.17%) Amazon S3
13 3 (0.17%) Amazon SQS
Communications & Networking
1 919 (52.85%) Firewall
2 477 (27.43%) Network Security
3 293 (16.85%) TCP/IP
4 195 (11.21%) Intrusion Detection
5 194 (11.16%) VPN
6 142 (8.17%) DNS
7 128 (7.36%) WAN
8 108 (6.21%) LAN
9 92 (5.29%) SSL
10 91 (5.23%) Cisco ASA
11 90 (5.18%) DHCP
12 73 (4.20%) Internet
13 71 (4.08%) MPLS
14 69 (3.97%) Wireless
15 63 (3.62%) HTTP
16 59 (3.39%) Wireshark
17 58 (3.34%) IPsec
18 56 (3.22%) BGP
19 54 (3.11%) OSPF
20 52 (2.99%) Cisco Nexus
Database & Business Intelligence
1 31 (1.78%) Big Data
2 30 (1.73%) SQL Server
3 16 (0.92%) Hadoop
3 16 (0.92%) MySQL
4 9 (0.52%) Relational Database
5 8 (0.46%) Event Store
5 8 (0.46%) Redis
6 5 (0.29%) Apache Cassandra
6 5 (0.29%) Apache Hive
6 5 (0.29%) MongoDB
6 5 (0.29%) NoSQL
6 5 (0.29%) SQL Server 2008
6 5 (0.29%) SQL Server 2016
7 1 (0.058%) PostgreSQL
Development Applications
1 31 (1.78%) Jenkins
2 22 (1.27%) Atlassian Bamboo
2 22 (1.27%) Hudson
3 21 (1.21%) Metasploit
4 20 (1.15%) Vagrant
5 18 (1.04%) JIRA
6 13 (0.75%) Burp Suite
7 8 (0.46%) Octopus Deploy
7 8 (0.46%) TeamCity
8 1 (0.058%) GDB
8 1 (0.058%) Git (software)
8 1 (0.058%) sqlmap
General
1 284 (16.33%) Finance
2 76 (4.37%) Legal
3 59 (3.39%) Banking
4 57 (3.28%) Retail
5 37 (2.13%) Law
6 33 (1.90%) Games
7 16 (0.92%) Aerospace
7 16 (0.92%) Telecoms
8 12 (0.69%) Advertising
8 12 (0.69%) Marketing
8 12 (0.69%) Publishing
9 11 (0.63%) Investment Banking
10 9 (0.52%) Manufacturing
11 8 (0.46%) Financial Institution
11 8 (0.46%) Military
12 7 (0.40%) Local Government
13 4 (0.23%) French Language
14 3 (0.17%) Retail Banking
15 2 (0.12%) Multimedia
15 2 (0.12%) Spanish Language
Job Titles
1 445 (25.59%) Analyst
2 355 (20.41%) Security Engineer
3 336 (19.32%) Security Analyst
4 194 (11.16%) Consultant
5 189 (10.87%) Architect
6 179 (10.29%) Security Consultant
7 169 (9.72%) Security Architect
8 153 (8.80%) Security Manager
9 140 (8.05%) SOC Analyst
10 96 (5.52%) Solutions Architect
11 89 (5.12%) IT Analyst
12 87 (5.00%) Network Engineer
12 87 (5.00%) Security Solutions Architect
13 86 (4.95%) Security Specialist
14 83 (4.77%) Head of Security
15 80 (4.60%) IT Security Analyst
16 77 (4.43%) IT Consultant
16 77 (4.43%) IT Security Consultant
17 69 (3.97%) IT Engineer
17 69 (3.97%) IT Security Engineer
Libraries, Frameworks & Software Standards
1 25 (1.44%) HTML
2 23 (1.32%) Elastic Stack
3 18 (1.04%) Middleware
4 17 (0.98%) SAML
5 16 (0.92%) .NET
5 16 (0.92%) LDAP
6 14 (0.81%) Web Services
7 13 (0.75%) OAuth
8 11 (0.63%) Ajax
9 9 (0.52%) REST
10 8 (0.46%) .NET Framework
10 8 (0.46%) ASP.NET
10 8 (0.46%) CSS
10 8 (0.46%) RabbitMQ
11 6 (0.35%) SailPoint
12 5 (0.29%) XML
13 4 (0.23%) 802.1X
13 4 (0.23%) OpenID
14 3 (0.17%) Laravel
14 3 (0.17%) Regular Expression
Miscellaneous
1 302 (17.37%) Management Information System
2 286 (16.45%) Security Operations Centre
3 184 (10.58%) Analytical Skills
4 182 (10.47%) Data Centre
5 165 (9.49%) Cyberthreat
6 149 (8.57%) Distributed Denial-of-Service
7 146 (8.40%) PKI
8 121 (6.96%) Computer Science
9 104 (5.98%) Self-Motivation
10 88 (5.06%) Cyberattack
11 75 (4.31%) Data Protection Act
12 54 (3.11%) Fintech
13 49 (2.82%) Cyber Kill Chain
14 36 (2.07%) Cyber Defence
15 28 (1.61%) Public Cloud
16 27 (1.55%) Greenfield Project
17 18 (1.04%) Enterprise Software
18 15 (0.86%) FlexPod
18 15 (0.86%) Linux Command Line
19 14 (0.81%) Private Cloud
Operating Systems
1 384 (22.08%) Windows
2 361 (20.76%) Linux
3 112 (6.44%) Unix
4 95 (5.46%) Windows Server
5 40 (2.30%) Mac OS X
6 37 (2.13%) Kali Linux
7 24 (1.38%) CentOS
8 23 (1.32%) Apple iOS
8 23 (1.32%) Windows Server 2012
9 21 (1.21%) Windows Server 2008
10 18 (1.04%) Red Hat Enterprise Linux
10 18 (1.04%) Ubuntu
11 17 (0.98%) AIX
12 10 (0.58%) FreeBSD
13 9 (0.52%) Debian
14 7 (0.40%) Solaris
15 6 (0.35%) VMS
15 6 (0.35%) Windows Server 2003
16 5 (0.29%) Oracle Linux
16 5 (0.29%) Windows 10
Processes & Methodologies
1 864 (49.68%) Cybersecurity
2 788 (45.31%) Information Security
3 578 (33.24%) Security Operations
4 491 (28.23%) Vulnerability Management
5 300 (17.25%) ITIL
6 268 (15.41%) Data Loss Prevention
7 242 (13.92%) Penetration Testing
8 232 (13.34%) Incident Management
9 228 (13.11%) Security Architecture
10 193 (11.10%) Vulnerability Assessment
11 192 (11.04%) Security Monitoring
12 183 (10.52%) Identity Access Management
13 172 (9.89%) Vulnerability Scanning
14 159 (9.14%) Risk Management
15 156 (8.97%) Agile Software Development
16 152 (8.74%) Data Protection
17 149 (8.57%) Security Management
18 145 (8.34%) Threat Intelligence
19 136 (7.82%) Threat Management
20 121 (6.96%) Problem-Solving
Programming Languages
1 134 (7.71%) Python
2 81 (4.66%) PowerShell
3 73 (4.20%) Bash Shell
4 58 (3.34%) Java
5 45 (2.59%) SQL
6 44 (2.53%) Ruby
7 41 (2.36%) Perl
8 40 (2.30%) C
9 31 (1.78%) C#
10 25 (1.44%) Go
11 17 (0.98%) JavaScript
12 15 (0.86%) Bourne shell
12 15 (0.86%) Korn
13 9 (0.52%) T-SQL
14 8 (0.46%) Shell Script
15 7 (0.40%) PHP
16 5 (0.29%) C++
17 1 (0.058%) PL/SQL
17 1 (0.058%) R
17 1 (0.058%) VB
Qualifications
1 689 (39.62%) CISSP
2 389 (22.37%) CISM
3 290 (16.68%) Degree
4 277 (15.93%) Cisco Certification
5 219 (12.59%) CISA
6 194 (11.16%) CEH
7 173 (9.95%) CCNP
8 168 (9.66%) GIAC
9 156 (8.97%) SANS
10 128 (7.36%) Security Cleared
11 125 (7.19%) SSCP
12 107 (6.15%) GCIH
13 106 (6.10%) CCNA
14 92 (5.29%) SC Cleared
15 85 (4.89%) CCIE
15 85 (4.89%) CompTIA Security+
16 77 (4.43%) CCDP
17 61 (3.51%) Computer Science Degree
18 57 (3.28%) CREST Certified
19 55 (3.16%) CSSLP
Quality Assurance & Compliance
1 467 (26.85%) ISO/IEC 27001
2 218 (12.54%) PCI DSS
3 179 (10.29%) GDPR
4 92 (5.29%) Cyber Essentials
5 78 (4.49%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 72 (4.14%) COBIT
7 44 (2.53%) GPG13
8 31 (1.78%) SLA
9 26 (1.50%) Cyber Essentials PLUS
9 26 (1.50%) QA
10 23 (1.32%) ISO 9001
10 23 (1.32%) Sarbanes-Oxley
11 12 (0.69%) NIST 800
11 12 (0.69%) PMO
12 11 (0.63%) ISO 31000
13 9 (0.52%) HMG Security Policy Framework
14 7 (0.40%) MiFID
15 5 (0.29%) ISO 14001
15 5 (0.29%) ISO/IEC 20000
16 4 (0.23%) Government Security Classifications
System Software
1 124 (7.13%) Active Directory
2 78 (4.49%) VMware Infrastructure
3 39 (2.24%) Snort
4 37 (2.13%) Docker
5 28 (1.61%) Hyper-V
6 23 (1.32%) Virtual Machines
7 16 (0.92%) VMware NSX
8 12 (0.69%) vSphere
9 11 (0.63%) Firmware
10 8 (0.46%) HDFS
11 7 (0.40%) VMware ESXi
12 6 (0.35%) pfSense
13 2 (0.12%) LXC
14 1 (0.058%) NFS
14 1 (0.058%) ProxySG
14 1 (0.058%) Virtual Servers
Systems Management
1 166 (9.55%) QRadar
2 86 (4.95%) Nessus
3 43 (2.47%) CASB
4 38 (2.19%) Opscode Chef
5 35 (2.01%) CSIRT
5 35 (2.01%) Puppet
6 34 (1.96%) Ansible
7 33 (1.90%) Single Sign-On
8 32 (1.84%) Kubernetes
9 29 (1.67%) RSA enVision
10 28 (1.61%) Packer
11 25 (1.44%) Docker Swarm
12 24 (1.38%) Cisco CUCM
12 24 (1.38%) RSA Security Analytics
13 23 (1.32%) Cisco UCCX
14 22 (1.27%) Nagios
14 22 (1.27%) Salt
15 20 (1.15%) Graphite
15 20 (1.15%) Opsview
15 20 (1.15%) ZABBIX
Vendors
1 325 (18.69%) Splunk
2 277 (15.93%) Cisco
3 187 (10.75%) Microsoft
4 181 (10.41%) CheckPoint
5 157 (9.03%) LogRhythm
6 120 (6.90%) ArcSight
7 113 (6.50%) Juniper
8 112 (6.44%) VMware
9 111 (6.38%) Palo Alto
10 108 (6.21%) Qualys
11 97 (5.58%) Fortinet
12 76 (4.37%) Forcepoint
13 64 (3.68%) Red Hat
14 63 (3.62%) F5
15 61 (3.51%) Sophos
16 53 (3.05%) McAfee
17 52 (2.99%) SolarWinds
17 52 (2.99%) Symantec
18 47 (2.70%) Tufin
19 41 (2.36%) IBM