Period
to 23 September 2020

The following table provides summary statistics for permanent job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited SIEM over the 6 months to 23 September 2020 with a comparison to the same period in the previous 2 years.

Security Information and Event Management (SIEM)
UK
6 months to
23 Sep 2020
Same period 2019 Same period 2018
Rank 250 302 287
Rank change year-on-year +52 -15 +73
Permanent jobs citing SIEM 618 1,532 1,959
As % of all permanent jobs advertised in the UK 1.25% 1.09% 1.18%
As % of the Processes & Methodologies category 1.35% 1.19% 1.29%
Number of salaries quoted 522 1,215 1,529
Median annual salary £57,500 £60,000 £60,000
Median salary % change year-on-year -4.17% - +4.35%
10th Percentile £37,500 £36,000 £40,000
90th Percentile £82,500 £90,000 £85,000
UK excluding London median annual salary £50,000 £52,500 £55,000
% change year-on-year -4.76% -4.55% +15.79%

SIEM is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 45,744 129,089 151,885
As % of all permanent IT jobs advertised in the UK 92.54% 92.20% 91.87%
Number of salaries quoted 37,182 101,360 120,890
Median annual salary £55,000 £52,500 £50,000
Median salary % change year-on-year +4.76% +5.00% -
10th Percentile £33,000 £30,000 £29,000
90th Percentile £91,250 £86,250 £82,500
UK excluding London median annual salary £50,000 £45,000 £45,000
% change year-on-year +11.11% - +5.88%

SIEM
Job Vacancy Trend

Job postings citing SIEM as a proportion of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Salary Trend

3-month moving average salary quoted in jobs citing SIEM.

Salary trend for SIEM in the UK

SIEM
Salary Histogram

Salary distribution for jobs citing SIEM over the 6 months to 23 September 2020.

Salary histogram for SIEM in the UK

SIEM
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing SIEM within the UK over the 6 months to 23 September 2020. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +42 561 £58,000 -3.33% 83
UK excluding London +41 334 £50,000 -4.76% 50
London +75 268 £63,750 -8.93% 36
Midlands +76 101 £57,500 +15.00% 10
South East +54 83 £45,000 -21.74% 11
West Midlands +37 63 £60,000 +20.00% 9
North of England +124 60 £47,500 -5.00% 8
Work from Home +30 56 £52,500 -25.00% 5
East Midlands +89 38 £47,500 +11.76% 1
North West +104 28 £50,000 - 6
Scotland +43 26 £45,000 -10.00% 3
Yorkshire +105 22 £40,000 -20.00% 1
East of England +14 22 £65,000 +8.33% 10
Wales +52 21 £45,000 +20.81% 1
South West +72 19 £50,000 +38.89% 7
North East +29 10 £50,000 +31.58% 1
Northern Ireland - 2 £57,500 -

For the 6 months to 23 September 2020, IT jobs citing SIEM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for SIEM.

1 341 (55.18%) Cybersecurity
2 274 (44.34%) Firewall
3 259 (41.91%) Security Operations
4 243 (39.32%) Information Security
5 161 (26.05%) Azure
6 158 (25.57%) Windows
7 148 (23.95%) AWS
8 144 (23.30%) Finance
9 141 (22.82%) CISSP
10 139 (22.49%) Vulnerability Management
11 135 (21.84%) Splunk
12 133 (21.52%) Linux
12 133 (21.52%) Microsoft
13 116 (18.77%) Security Operations Centre
14 112 (18.12%) Office 365
15 108 (17.48%) Active Directory
16 107 (17.31%) Management Information System
17 102 (16.50%) Threat Intelligence
18 100 (16.18%) Intrusion Detection
19 94 (15.21%) NIST
20 93 (15.05%) Penetration Testing
20 93 (15.05%) LogRhythm
21 92 (14.89%) Network Security
21 92 (14.89%) CISM
22 91 (14.72%) Security Cleared
22 91 (14.72%) ISO/IEC 27001
23 90 (14.56%) Cyber Threat Intelligence
24 88 (14.24%) Python
25 84 (13.59%) Cyberthreat
26 82 (13.27%) Vulnerability Scanning

SIEM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 6 (0.97%) SharePoint
2 3 (0.49%) IIS
3 2 (0.32%) BizTalk Server
3 2 (0.32%) Confluence
4 1 (0.16%) Apache
4 1 (0.16%) Elasticsearch
4 1 (0.16%) Oracle SOA Suite
Applications
1 38 (6.15%) Microsoft Office
2 3 (0.49%) Microsoft Excel
2 3 (0.49%) MS Visio
Business Applications
1 31 (5.02%) Sentinel
Cloud Services
1 161 (26.05%) Azure
2 148 (23.95%) AWS
3 112 (18.12%) Office 365
4 49 (7.93%) IaaS
5 30 (4.85%) PaaS
6 21 (3.40%) SaaS
7 18 (2.91%) Azure Active Directory
8 17 (2.75%) GCP
9 14 (2.27%) Logic Apps
10 12 (1.94%) Virtual Private Cloud
11 10 (1.62%) AWS CloudFormation
12 8 (1.29%) Amazon GuardDuty
13 6 (0.97%) Slack
14 4 (0.65%) AWS CloudTrail
14 4 (0.65%) Cloud Computing
14 4 (0.65%) Mimecast
14 4 (0.65%) Trello
15 2 (0.32%) GitHub
16 1 (0.16%) Amazon EC2
16 1 (0.16%) Rackspace Cloud
Communications & Networking
1 274 (44.34%) Firewall
2 100 (16.18%) Intrusion Detection
3 92 (14.89%) Network Security
4 65 (10.52%) TCP/IP
5 50 (8.09%) VPN
6 48 (7.77%) Internet
7 40 (6.47%) DNS
8 32 (5.18%) LAN
9 27 (4.37%) Wireshark
10 25 (4.05%) WAN
11 21 (3.40%) Wireless
12 17 (2.75%) HTTP
13 14 (2.27%) DKIM
13 14 (2.27%) DMARC
13 14 (2.27%) SSL
14 10 (1.62%) DHCP
14 10 (1.62%) SMTP
15 8 (1.29%) Cisco ASA
15 8 (1.29%) DMZ
15 8 (1.29%) VLAN
Database & Business Intelligence
1 14 (2.27%) Big Data
2 7 (1.13%) Data Lake
3 3 (0.49%) SQL Server
4 2 (0.32%) Blockchain
5 1 (0.16%) Azure SQL Database
5 1 (0.16%) MariaDB
5 1 (0.16%) Oracle Reports
5 1 (0.16%) Redis
5 1 (0.16%) SQL Server Reporting Services
Development Applications
1 31 (5.02%) Metasploit
2 9 (1.46%) Jenkins
3 8 (1.29%) JIRA
4 7 (1.13%) Atlassian Bamboo
5 6 (0.97%) Hudson
5 6 (0.97%) Vagrant
6 4 (0.65%) CircleCI
7 3 (0.49%) Burp Suite
General
1 144 (23.30%) Finance
2 42 (6.80%) Manufacturing
3 32 (5.18%) Public Sector
3 32 (5.18%) Telecoms
4 28 (4.53%) Banking
4 28 (4.53%) Marketing
5 26 (4.21%) Electronics
5 26 (4.21%) Law
6 17 (2.75%) Retail
7 16 (2.59%) Aerospace
8 8 (1.29%) Investment Banking
8 8 (1.29%) Legal
9 6 (0.97%) Financial Institution
10 5 (0.81%) Advertising
10 5 (0.81%) Military
11 2 (0.32%) German Language
12 1 (0.16%) Games
12 1 (0.16%) Pharmaceutical
Job Titles
1 204 (33.01%) Analyst
2 157 (25.40%) Security Analyst
2 157 (25.40%) Security Engineer
3 40 (6.47%) Consultant
4 37 (5.99%) Architect
4 37 (5.99%) Information Analyst
4 37 (5.99%) Information Security Analyst
5 36 (5.83%) Senior Analyst
6 35 (5.66%) SOC Analyst
7 33 (5.34%) Operations Engineer
7 33 (5.34%) Security Consultant
7 33 (5.34%) SIEM Engineer
8 31 (5.02%) Cybersecurity Analyst
8 31 (5.02%) Security Architect
9 27 (4.37%) Security Specialist
10 25 (4.05%) Cybersecurity Engineer
10 25 (4.05%) IT Analyst
10 25 (4.05%) IT Security Analyst
11 23 (3.72%) SOC Engineer
12 22 (3.56%) Senior Security Engineer
Libraries, Frameworks & Software Standards
1 15 (2.43%) Web Services
2 13 (2.10%) Regular Expression
3 8 (1.29%) SailPoint
4 6 (0.97%) React
4 6 (0.97%) YAML
5 5 (0.81%) .NET
6 4 (0.65%) LDAP
7 3 (0.49%) SAML
8 2 (0.32%) Elastic Stack
8 2 (0.32%) ModSecurity
8 2 (0.32%) OAuth
9 1 (0.16%) Middleware
9 1 (0.16%) RabbitMQ
9 1 (0.16%) XML
9 1 (0.16%) XML Messaging
Miscellaneous
1 116 (18.77%) Security Operations Centre
2 107 (17.31%) Management Information System
3 84 (13.59%) Cyberthreat
4 51 (8.25%) Analytical Skills
5 36 (5.83%) Cyber Kill Chain
6 34 (5.50%) Cyberattack
7 32 (5.18%) Distributed Denial-of-Service
8 21 (3.40%) Data Centre
9 20 (3.24%) Public Cloud
10 13 (2.10%) Data Protection Act
11 11 (1.78%) Cyber Defence
11 11 (1.78%) PKI
12 10 (1.62%) Internet of Things
13 7 (1.13%) Mobile App
14 6 (0.97%) Robotics
14 6 (0.97%) Self-Motivation
15 4 (0.65%) Blog
15 4 (0.65%) Enterprise Cloud
15 4 (0.65%) Replication
16 3 (0.49%) User Experience
Operating Systems
1 158 (25.57%) Windows
2 133 (21.52%) Linux
3 58 (9.39%) Unix
4 48 (7.77%) Windows Server
5 20 (3.24%) Kali Linux
6 16 (2.59%) Mac OS
7 10 (1.62%) Solaris
8 6 (0.97%) Windows XP
9 5 (0.81%) Windows Server 2012
10 4 (0.65%) Apple iOS
10 4 (0.65%) Mac OS X
10 4 (0.65%) Ubuntu
10 4 (0.65%) VMS
11 2 (0.32%) Red Hat Enterprise Linux
11 2 (0.32%) Windows 10
11 2 (0.32%) Windows Server 2016
12 1 (0.16%) AIX
12 1 (0.16%) Debian
12 1 (0.16%) Windows 7
12 1 (0.16%) Windows Server 2008
Processes & Methodologies
1 341 (55.18%) Cybersecurity
2 259 (41.91%) Security Operations
3 243 (39.32%) Information Security
4 139 (22.49%) Vulnerability Management
5 102 (16.50%) Threat Intelligence
6 93 (15.05%) Penetration Testing
7 90 (14.56%) Cyber Threat Intelligence
8 82 (13.27%) Vulnerability Scanning
9 72 (11.65%) Kalman Filter
10 69 (11.17%) Malware Analysis
11 56 (9.06%) Identity Access Management
11 56 (9.06%) Security Monitoring
12 51 (8.25%) DevOps
12 51 (8.25%) ITIL
12 51 (8.25%) Security Management
13 48 (7.77%) Incident Management
13 48 (7.77%) Problem-Solving
14 46 (7.44%) Privileged Access Management
15 44 (7.12%) Analytics
16 41 (6.63%) Web Filtering
Programming Languages
1 88 (14.24%) Python
2 52 (8.41%) PowerShell
3 50 (8.09%) Bash Shell
4 34 (5.50%) SQL
5 28 (4.53%) Perl
6 16 (2.59%) Java
7 7 (1.13%) C++
7 7 (1.13%) R
7 7 (1.13%) Ruby
8 6 (0.97%) Go
9 5 (0.81%) C
9 5 (0.81%) C#
10 4 (0.65%) JavaScript
10 4 (0.65%) Shell Script
11 3 (0.49%) PHP
12 1 (0.16%) VB
Qualifications
1 141 (22.82%) CISSP
2 92 (14.89%) CISM
3 91 (14.72%) Security Cleared
4 67 (10.84%) SANS
5 65 (10.52%) Degree
6 62 (10.03%) SC Cleared
7 42 (6.80%) Cisco Certification
7 42 (6.80%) CREST Certified
8 40 (6.47%) GCIH
9 36 (5.83%) CISA
10 31 (5.02%) CEH
10 31 (5.02%) GCIA
11 25 (4.05%) CCNA
12 20 (3.24%) (ISC)2 CCSP
13 19 (3.07%) CCSP
14 17 (2.75%) GCFA
15 15 (2.43%) CompTIA Security+
15 15 (2.43%) DV Cleared
16 13 (2.10%) GIAC
17 12 (1.94%) CRISC
Quality Assurance & Compliance
1 94 (15.21%) NIST
2 91 (14.72%) ISO/IEC 27001
3 68 (11.00%) GDPR
4 43 (6.96%) PCI DSS
5 23 (3.72%) Cyber Essentials
6 22 (3.56%) COBIT
7 19 (3.07%) HMG Security Policy Framework
8 15 (2.43%) SLA
9 12 (1.94%) Sarbanes-Oxley
10 9 (1.46%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
11 8 (1.29%) ISO 9001
12 6 (0.97%) NCSC
13 4 (0.65%) AICPA
13 4 (0.65%) GPG13
13 4 (0.65%) JSP 440
14 3 (0.49%) Cyber Essentials PLUS
14 3 (0.49%) GAMP
14 3 (0.49%) HIPAA
15 2 (0.32%) NIST 800
16 1 (0.16%) ISO/IEC 27005
System Software
1 108 (17.48%) Active Directory
2 21 (3.40%) Snort
3 20 (3.24%) VMware Infrastructure
4 17 (2.75%) Docker
5 5 (0.81%) vSphere
6 3 (0.49%) Hyper-V
7 2 (0.32%) LXC
8 1 (0.16%) Microsoft Virtual Server
8 1 (0.16%) Virtual Servers
8 1 (0.16%) VMware ESXi
8 1 (0.16%) VMware NSX
Systems Management
1 59 (9.55%) QRadar
2 32 (5.18%) Microsoft Intune
3 27 (4.37%) Nessus
4 23 (3.72%) CSIRT
5 19 (3.07%) Kubernetes
5 19 (3.07%) Terraform
6 18 (2.91%) Ansible
6 18 (2.91%) Puppet
7 12 (1.94%) Network Intrusion Detection System
7 12 (1.94%) Opscode Chef
7 12 (1.94%) SCCM
8 10 (1.62%) Nagios
9 9 (1.46%) Computer Incident Response Team
9 9 (1.46%) Host Intrusion Detection System
10 7 (1.13%) Computer Emergency Response Teams
10 7 (1.13%) Grafana
10 7 (1.13%) Opsview
11 6 (0.97%) Graphite
11 6 (0.97%) Packer
11 6 (0.97%) SCOM
Vendors
1 135 (21.84%) Splunk
2 133 (21.52%) Microsoft
3 93 (15.05%) LogRhythm
4 76 (12.30%) Cisco
5 55 (8.90%) VMware
6 49 (7.93%) ArcSight
7 44 (7.12%) CheckPoint
8 37 (5.99%) CyberArk
9 36 (5.83%) IBM
10 35 (5.66%) Palo Alto
11 33 (5.34%) AlienVault
12 26 (4.21%) BeyondTrust
12 26 (4.21%) Bomgar
12 26 (4.21%) NetWitness
12 26 (4.21%) SAP
12 26 (4.21%) Thycotic
13 17 (2.75%) McAfee
14 15 (2.43%) Google
15 12 (1.94%) SolarWinds
16 10 (1.62%) Darktrace