Period
to 2 March 2021

The following table provides summary statistics for permanent job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited SIEM over the 6 months to 2 March 2021 with a comparison to the same period in the previous 2 years.

Security Information and Event Management (SIEM)
UK
6 months to
2 Mar 2021
Same period 2020 Same period 2019
Rank 290 273 307
Rank change year-on-year -17 +34 +38
Permanent jobs citing SIEM 791 1,447 1,606
As % of all permanent jobs advertised in the UK 1.05% 1.19% 1.07%
As % of the Processes & Methodologies category 1.13% 1.30% 1.16%
Number of salaries quoted 758 1,044 1,303
Median annual salary £55,000 £60,000 £57,500
Median salary % change year-on-year -8.33% +4.35% -4.17%
10th Percentile £37,500 £38,750 £37,500
90th Percentile £90,000 £87,500 £85,000
UK excluding London median annual salary £50,000 £52,500 £52,500
% change year-on-year -4.76% - +5.00%

SIEM is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 69,801 111,605 138,829
As % of all permanent IT jobs advertised in the UK 92.60% 92.03% 92.33%
Number of salaries quoted 54,676 89,461 111,007
Median annual salary £55,000 £53,500 £52,500
Median salary % change year-on-year +2.80% +1.90% +5.00%
10th Percentile £32,500 £30,750 £30,000
90th Percentile £90,000 £88,750 £85,000
UK excluding London median annual salary £48,500 £47,500 £45,000
% change year-on-year +2.11% +5.56% -

SIEM
Job Vacancy Trend

Job postings citing SIEM as a proportion of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Salary Trend

3-month moving average salary quoted in jobs citing SIEM.

Salary trend for SIEM in the UK

SIEM
Salary Histogram

Salary distribution for jobs citing SIEM over the 6 months to 2 March 2021.

Salary histogram for SIEM in the UK

SIEM
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SIEM within the UK over the 6 months to 2 March 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -17 711 £57,500 -4.17% 134
UK excluding London -39 412 £50,000 -4.76% 96
London +9 332 £68,000 +0.74% 48
Work from Home +9 163 £52,500 -30.00% 24
South East -19 93 £63,750 +15.91% 27
North of England +12 84 £50,000 -4.76% 21
East of England +94 72 £72,500 +31.82% 9
Midlands -32 69 £50,500 +6.32% 16
West Midlands -29 61 £50,500 +6.32% 15
South West -1 58 £50,000 +11.11% 13
Yorkshire +47 49 £47,500 -19.15% 9
North West +1 31 £50,000 +5.26% 10
Scotland -25 29 £44,000 -2.22% 5
Wales +38 11 £45,000 +2.86% 3
East Midlands +18 10 £75,000 +66.67% 1
North East +10 4 £60,000 +20.00% 2
Northern Ireland +9 2 £62,500 +13.64% 2

For the 6 months to 2 March 2021, IT jobs citing SIEM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for SIEM.

1 401 (50.70%) Cybersecurity
2 362 (45.76%) Firewall
3 298 (37.67%) Information Security
4 235 (29.71%) Security Operations
5 206 (26.04%) CISSP
6 205 (25.92%) Azure
7 179 (22.63%) Vulnerability Management
8 163 (20.61%) Microsoft
9 159 (20.10%) AWS
10 155 (19.60%) Linux
11 142 (17.95%) Windows
12 137 (17.32%) ISO/IEC 27001
13 130 (16.43%) NIST
14 126 (15.93%) Management Information System
14 126 (15.93%) Intrusion Detection
15 125 (15.80%) Splunk
16 121 (15.30%) Network Security
17 120 (15.17%) Finance
18 119 (15.04%) CISM
19 111 (14.03%) Penetration Testing
20 109 (13.78%) Threat Intelligence
21 103 (13.02%) Security Architecture
22 101 (12.77%) Active Directory
23 100 (12.64%) Security Monitoring
24 99 (12.52%) Microsoft 365
25 91 (11.50%) Security Cleared
26 89 (11.25%) Cyber Threat Intelligence
27 87 (11.00%) DevOps
27 87 (11.00%) TCP/IP
28 86 (10.87%) Security Operations Centre

SIEM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 22 (2.78%) Oracle SOA Suite
2 10 (1.26%) OpenStack
3 8 (1.01%) Confluence
3 8 (1.01%) MS Exchange
4 5 (0.63%) IIS
4 5 (0.63%) SharePoint
5 3 (0.38%) Elasticsearch
5 3 (0.38%) Red Hat Fuse
6 1 (0.13%) Exchange Server 2010
6 1 (0.13%) nginx
Applications
1 3 (0.38%) Microsoft Excel
1 3 (0.38%) Microsoft Office
1 3 (0.38%) MS Visio
2 1 (0.13%) Microsoft PowerPoint
Business Applications
1 27 (3.41%) Sentinel
2 1 (0.13%) SAP GRC
2 1 (0.13%) SAP Oil and Gas
2 1 (0.13%) SAP S/4HANA
Cloud Services
1 205 (25.92%) Azure
2 159 (20.10%) AWS
3 99 (12.52%) Microsoft 365
4 72 (9.10%) IaaS
5 65 (8.22%) PaaS
6 57 (7.21%) SaaS
7 30 (3.79%) Azure Active Directory
8 26 (3.29%) GCP
8 26 (3.29%) Virtual Private Cloud
9 22 (2.78%) Amazon GuardDuty
10 14 (1.77%) Cloud Computing
11 10 (1.26%) OpenShift
12 9 (1.14%) Mimecast
13 8 (1.01%) AWS CloudFormation
13 8 (1.01%) Serverless
14 7 (0.88%) Amazon CloudWatch
14 7 (0.88%) Amazon EC2
14 7 (0.88%) AWS Lambda
14 7 (0.88%) GitHub
14 7 (0.88%) Rackspace Cloud
Communications & Networking
1 362 (45.76%) Firewall
2 126 (15.93%) Intrusion Detection
3 121 (15.30%) Network Security
4 87 (11.00%) TCP/IP
5 75 (9.48%) WAN
6 74 (9.36%) LAN
7 58 (7.33%) VPN
8 48 (6.07%) DNS
9 38 (4.80%) Internet
10 36 (4.55%) Cisco ASA
11 30 (3.79%) SSL
12 24 (3.03%) HTTP
13 22 (2.78%) DHCP
14 17 (2.15%) Wi-Fi
15 16 (2.02%) IPsec
16 15 (1.90%) SMTP
17 11 (1.39%) Cisco ISE
17 11 (1.39%) Cisco Nexus
17 11 (1.39%) FTP
17 11 (1.39%) MPLS
Database & Business Intelligence
1 16 (2.02%) Big Data
2 11 (1.39%) Blockchain
3 6 (0.76%) Azure SQL Database
3 6 (0.76%) Cosmos DB
4 4 (0.51%) Amazon RDS
5 3 (0.38%) MongoDB
6 2 (0.25%) Amazon DynamoDB
6 2 (0.25%) NoSQL
6 2 (0.25%) Power BI
6 2 (0.25%) RDBMS
6 2 (0.25%) Relational Database
7 1 (0.13%) MySQL
7 1 (0.13%) PostgreSQL
7 1 (0.13%) SQL Server
Development Applications
1 17 (2.15%) Jenkins
2 15 (1.90%) JIRA
3 8 (1.01%) Git (software)
3 8 (1.01%) Metasploit
4 4 (0.51%) Atlassian Bamboo
5 3 (0.38%) Bitbucket
5 3 (0.38%) Snyk
6 2 (0.25%) Burp Suite
6 2 (0.25%) IDA Disassembler
7 1 (0.13%) Ant
7 1 (0.13%) CircleCI
7 1 (0.13%) Travis CI
General
1 120 (15.17%) Finance
2 43 (5.44%) Law
3 36 (4.55%) Public Sector
4 35 (4.42%) Retail
5 31 (3.92%) Banking
6 17 (2.15%) Telecoms
7 15 (1.90%) Aerospace
7 15 (1.90%) Legal
8 12 (1.52%) Manufacturing
9 11 (1.39%) Marketing
10 6 (0.76%) Local Government
11 5 (0.63%) Police
12 4 (0.51%) Games
13 3 (0.38%) Electronics
14 2 (0.25%) Investment Banking
14 2 (0.25%) Military
14 2 (0.25%) Publishing
15 1 (0.13%) Advertising
15 1 (0.13%) Pharmaceutical
Job Titles
1 217 (27.43%) Analyst
2 168 (21.24%) Security Engineer
3 143 (18.08%) Security Analyst
4 92 (11.63%) Architect
5 70 (8.85%) Security Architect
5 70 (8.85%) SOC Analyst
6 60 (7.59%) Consultant
7 58 (7.33%) Senior Analyst
8 49 (6.19%) Security Consultant
9 43 (5.44%) Cybersecurity Analyst
10 42 (5.31%) Cybersecurity Engineer
11 41 (5.18%) Network Engineer
12 36 (4.55%) Cloud Engineer
12 36 (4.55%) IT Engineer
13 34 (4.30%) Operations Analyst
14 31 (3.92%) Network Security Engineer
15 30 (3.79%) Information Analyst
15 30 (3.79%) Information Security Analyst
15 30 (3.79%) Security Specialist
15 30 (3.79%) Senior Security Engineer
Libraries, Frameworks & Software Standards
1 36 (4.55%) Web Services
2 22 (2.78%) Elastic Stack
3 18 (2.28%) React
4 16 (2.02%) OAuth
5 15 (1.90%) LDAP
6 12 (1.52%) Regular Expression
7 9 (1.14%) JSON
8 6 (0.76%) Middleware
9 4 (0.51%) SAML
10 3 (0.38%) .NET
10 3 (0.38%) ActiveMQ
11 2 (0.25%) ASP.NET
11 2 (0.25%) Kafka
11 2 (0.25%) Node.js
11 2 (0.25%) YAML
12 1 (0.13%) Ember.js
12 1 (0.13%) SAP Fiori
12 1 (0.13%) ServiceStack
Miscellaneous
1 126 (15.93%) Management Information System
2 86 (10.87%) Security Operations Centre
3 77 (9.73%) Cyberthreat
4 67 (8.47%) Analytical Skills
5 48 (6.07%) Public Cloud
6 47 (5.94%) Distributed Denial-of-Service
7 42 (5.31%) Cyberattack
8 39 (4.93%) PKI
9 36 (4.55%) Data Centre
10 30 (3.79%) Cyber Kill Chain
11 21 (2.65%) Mobile App
12 18 (2.28%) Enterprise Software
13 17 (2.15%) Private Cloud
14 16 (2.02%) Cyber Defence
14 16 (2.02%) Data Protection Act
14 16 (2.02%) Greenfield Project
15 11 (1.39%) FMCG
16 10 (1.26%) Cloud Native
17 8 (1.01%) Analytical Mindset
17 8 (1.01%) Blog
Operating Systems
1 155 (19.60%) Linux
2 142 (17.95%) Windows
3 54 (6.83%) Windows Server
4 29 (3.67%) Unix
5 18 (2.28%) Red Hat Enterprise Linux
6 12 (1.52%) CentOS
7 11 (1.39%) Mac OS
8 9 (1.14%) Windows Server 2008
9 8 (1.01%) Apple iOS
10 6 (0.76%) Mac OS X
11 4 (0.51%) VMS
12 3 (0.38%) Android
12 3 (0.38%) Kali Linux
12 3 (0.38%) MVS
12 3 (0.38%) Windows Server 2016
12 3 (0.38%) Windows Server 2019
13 2 (0.25%) Solaris
13 2 (0.25%) Windows XP
14 1 (0.13%) Debian
14 1 (0.13%) Ubuntu
Processes & Methodologies
1 401 (50.70%) Cybersecurity
2 298 (37.67%) Information Security
3 235 (29.71%) Security Operations
4 179 (22.63%) Vulnerability Management
5 111 (14.03%) Penetration Testing
6 109 (13.78%) Threat Intelligence
7 103 (13.02%) Security Architecture
8 100 (12.64%) Security Monitoring
9 89 (11.25%) Cyber Threat Intelligence
10 87 (11.00%) DevOps
11 82 (10.37%) Vulnerability Scanning
12 80 (10.11%) Problem-Solving
13 76 (9.61%) Agile Software Development
14 62 (7.84%) Kalman Filter
15 60 (7.59%) Security Management
16 59 (7.46%) Analytics
16 59 (7.46%) Identity Access Management
17 57 (7.21%) Incident Management
17 57 (7.21%) OWASP
18 53 (6.70%) Vulnerability Assessment
Programming Languages
1 79 (9.99%) Python
2 36 (4.55%) SQL
3 34 (4.30%) PowerShell
4 25 (3.16%) Java
5 24 (3.03%) Perl
6 20 (2.53%) C
7 19 (2.40%) Ruby
8 18 (2.28%) Bash Shell
8 18 (2.28%) Go
9 15 (1.90%) Shell Script
10 3 (0.38%) VBA
11 2 (0.25%) C#
11 2 (0.25%) Groovy
11 2 (0.25%) JavaScript
12 1 (0.13%) C++
12 1 (0.13%) PHP
12 1 (0.13%) VB.NET
Qualifications
1 206 (26.04%) CISSP
2 119 (15.04%) CISM
3 91 (11.50%) Security Cleared
4 80 (10.11%) Degree
5 67 (8.47%) Cisco Certification
6 62 (7.84%) CISA
7 57 (7.21%) SC Cleared
8 46 (5.82%) CEH
9 32 (4.05%) (ISC)2 CCSP
9 32 (4.05%) GCIH
10 31 (3.92%) CCNP
10 31 (3.92%) SANS
11 29 (3.67%) CCSP
11 29 (3.67%) GIAC
12 22 (2.78%) SSCP
13 21 (2.65%) GCFA
14 20 (2.53%) CREST Certified
14 20 (2.53%) GCIA
15 18 (2.28%) CCNA
16 17 (2.15%) OSCP
Quality Assurance & Compliance
1 137 (17.32%) ISO/IEC 27001
2 130 (16.43%) NIST
3 85 (10.75%) GDPR
4 71 (8.98%) PCI DSS
5 56 (7.08%) Cyber Essentials
6 22 (2.78%) NCSC
7 17 (2.15%) COBIT
8 15 (1.90%) SLA
9 12 (1.52%) HIPAA
9 12 (1.52%) QA
10 11 (1.39%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 11 (1.39%) Sarbanes-Oxley
11 10 (1.26%) PMBOK
12 9 (1.14%) GAMP
13 8 (1.01%) Cyber Essentials PLUS
14 7 (0.88%) ISO/IEC 20000
14 7 (0.88%) NIST 800
15 4 (0.51%) Disclosure Scotland
15 4 (0.51%) GPG13
15 4 (0.51%) ISO 22301
System Software
1 101 (12.77%) Active Directory
2 47 (5.94%) Docker
3 35 (4.42%) VMware Infrastructure
4 15 (1.90%) KVM
5 8 (1.01%) XenDesktop
6 4 (0.51%) vSphere
7 3 (0.38%) Snort
8 2 (0.25%) Firmware
9 1 (0.13%) Hyper-V
9 1 (0.13%) Virtual Machines
9 1 (0.13%) VMware ESXi
9 1 (0.13%) VMware NSX
Systems Management
1 52 (6.57%) Terraform
2 42 (5.31%) Kubernetes
3 40 (5.06%) QRadar
4 38 (4.80%) Ansible
5 32 (4.05%) Nessus
6 26 (3.29%) Puppet
7 20 (2.53%) CASB
8 17 (2.15%) Demisto
8 17 (2.15%) Microsoft Intune
9 16 (2.02%) Opscode Chef
10 15 (1.90%) CFEngine
11 12 (1.52%) Host Intrusion Detection System
12 11 (1.39%) Norton AntiVirus
13 9 (1.14%) Computer Emergency Response Teams
14 8 (1.01%) Grafana
14 8 (1.01%) NetBackup
14 8 (1.01%) Prometheus
14 8 (1.01%) Symantec Enterprise Vault
15 7 (0.88%) Computer Incident Response Team
16 5 (0.63%) SCCM
Vendors
1 163 (20.61%) Microsoft
2 125 (15.80%) Splunk
3 73 (9.23%) Cisco
4 58 (7.33%) VMware
5 53 (6.70%) LogRhythm
6 50 (6.32%) Oracle
7 39 (4.93%) AlienVault
8 34 (4.30%) CheckPoint
9 26 (3.29%) Palo Alto
10 25 (3.16%) Google
10 25 (3.16%) Juniper
10 25 (3.16%) Symantec
11 24 (3.03%) Red Hat
12 21 (2.65%) McAfee
13 20 (2.53%) Blue Coat
13 20 (2.53%) ServiceNow
14 18 (2.28%) Darktrace
15 17 (2.15%) ArcSight
16 16 (2.02%) Rapid7
17 15 (1.90%) Citrix