Threat Detection Job Trends

Threat Detection
UK

The table below provides summary statistics and salary benchmarking for jobs requiring Threat Detection skills. It covers permanent job vacancies from the 6 months leading up to 12 January 2026, with comparisons to the same periods in the previous two years.

 6 months to
12 Jan 2026		 Same period 2025 Same period 2024
Rank 527 600 663
Rank change year-on-year +73 +63 +202
Permanent jobs citing Threat Detection 115 107 72
As % of all permanent jobs in the UK 0.19% 0.20% 0.13%
As % of the Processes & Methodologies category 0.24% 0.22% 0.14%
Number of salaries quoted 99 71 57
10th Percentile £36,250 £48,165 £32,750
25th Percentile £51,250 £55,875 £51,250
Median annual salary (50th Percentile) £75,000 £72,500 £60,000
Median % change year-on-year +3.45% +20.83% -13.29%
75th Percentile £87,500 £88,125 £72,500
90th Percentile £111,000 £110,000 £96,000
UK excluding London median annual salary £59,000 £57,000 £57,500
% change year-on-year +3.51% -0.87% -11.54%

All Process & Methodology Skills
UK

Threat Detection falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies requiring process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills 48,033 48,451 50,427
As % of all permanent jobs advertised in the UK 81.00% 90.60% 89.96%
Number of salaries quoted 28,230 23,579 38,463
10th Percentile £28,500 £35,000 £31,250
25th Percentile £37,500 £45,000 £42,500
Median annual salary (50th Percentile) £55,000 £60,000 £60,000
Median % change year-on-year -8.33% - -4.00%
75th Percentile £75,000 £80,000 £78,479
90th Percentile £95,000 £100,000 £97,500
UK excluding London median annual salary £50,000 £55,000 £52,000
% change year-on-year -9.09% +5.77% -5.45%

Threat Detection
Job Vacancy Trend

Historical trend showing the proportion of permanent IT job postings citing Threat Detection relative to all permanent IT jobs advertised.

Threat Detection job vacancy trend in the UK

Threat Detection
Salary Trend

Salary distribution trend for jobs in the UK citing Threat Detection.

Salary distribution trend for jobs in the UK citing Threat Detection

Threat Detection
Salary Histogram

Salary distribution for jobs citing Threat Detection over the 6 months to 12 January 2026.

Salary histogram for Threat Detection in the UK

Threat Detection
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Threat Detection within the UK over the 6 months to 12 January 2026. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Permanent
IT Job Ads		 Median Salary
Past 6 Months		 Median Salary
% Change
on Same Period
Last Year		 Live
Jobs
England +90 107 £75,000 +3.45% 63
UK excluding London +57 64 £59,000 +3.51% 49
Work from Home +76 52 £87,500 +9.38% 30
London +56 50 £82,500 - 22
South East +40 18 £59,500 -15.00% 16
North of England +2 16 £50,000 -7.41% 11
Midlands +25 11 £52,500 -12.50% 9
South West +17 11 £75,000 +46.89% 3
North West +26 10 £35,000 -22.22% 10
West Midlands +25 8 £53,750 -10.42% 7
Wales - 5 £85,000 - 1
North East - 4 £105,000 -
East Midlands - 3 £50,000 - 2
East of England +24 2 £56,750 -21.72% 7
Scotland -1 2 £60,800 -24.00% 3
Yorkshire -16 2 £92,500 +38.06% 1

Threat Detection
Co-Occurring Skills & Capabilities by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1 5 (4.35%) SharePoint
1 5 (4.35%) WordPress
2 4 (3.48%) Apache Airflow
2 4 (3.48%) Apache Spark
3 2 (1.74%) Microsoft Exchange
Business Applications
1 1 (0.87%) Elite 3E
Cloud Services
1 45 (39.13%) Azure
2 37 (32.17%) AWS
3 30 (26.09%) Microsoft 365
4 19 (16.52%) GCP
5 11 (9.57%) Azure Sentinel
6 10 (8.70%) Entra ID
6 10 (8.70%) Power Automate
6 10 (8.70%) Power Platform
6 10 (8.70%) SaaS
7 8 (6.96%) GitHub
7 8 (6.96%) GitHub Actions
8 5 (4.35%) Azure AI
8 5 (4.35%) Cloud Computing
8 5 (4.35%) Dynamics 365
8 5 (4.35%) Microsoft Copilot
8 5 (4.35%) OneDrive
9 4 (3.48%) Mimecast
10 3 (2.61%) Datadog
10 3 (2.61%) Microsoft Purview
11 2 (1.74%) SecurityScorecard
Communications & Networking
1 31 (26.96%) Firewall
2 24 (20.87%) Network Security
3 14 (12.17%) VPN
4 10 (8.70%) Wireshark
5 7 (6.09%) DNS
5 7 (6.09%) Intrusion Detection
5 7 (6.09%) SSL
6 6 (5.22%) TCP/IP
7 3 (2.61%) HTTP
8 2 (1.74%) Cisco ISE
8 2 (1.74%) Cisco Nexus
8 2 (1.74%) Internet
8 2 (1.74%) SSH
9 1 (0.87%) FTP
9 1 (0.87%) NAS
9 1 (0.87%) SAN
9 1 (0.87%) SCCP
9 1 (0.87%) SMTP
Database & Business Intelligence
1 10 (8.70%) Power BI
2 2 (1.74%) SQL Server
3 1 (0.87%) Elasticsearch
Development Applications
1 4 (3.48%) TeamCity
2 3 (2.61%) CircleCI
2 3 (2.61%) Jenkins
3 1 (0.87%) GitLab
General
1 44 (38.26%) Social Skills
2 23 (20.00%) Finance
3 11 (9.57%) Analytical Skills
4 10 (8.70%) Legal
5 9 (7.83%) Banking
6 8 (6.96%) Law
6 8 (6.96%) Retail
7 6 (5.22%) Financial Institution
8 4 (3.48%) Back Office
9 2 (1.74%) Documentation Skills
9 2 (1.74%) Inclusion and Diversity
9 2 (1.74%) Marketing
9 2 (1.74%) Military
9 2 (1.74%) Public Sector
10 1 (0.87%) Aerospace
10 1 (0.87%) Automotive
10 1 (0.87%) Influencing Skills
10 1 (0.87%) Manufacturing
10 1 (0.87%) Organisational Skills
10 1 (0.87%) Presentation Skills
Job Titles
1 30 (26.09%) Security Engineer
2 28 (24.35%) Analyst
3 19 (16.52%) Senior
4 17 (14.78%) Security Analyst
5 10 (8.70%) IT Support
6 9 (7.83%) Head of Cybersecurity
6 9 (7.83%) Head of Security
7 8 (6.96%) Head of IT
8 7 (6.09%) Senior Security Engineer
9 6 (5.22%) Cybersecurity Analyst
9 6 (5.22%) Cybersecurity Engineer
9 6 (5.22%) Information Analyst
9 6 (5.22%) Information Security Analyst
9 6 (5.22%) Infrastructure Engineer
9 6 (5.22%) Infrastructure Security Engineer
9 6 (5.22%) Lead
9 6 (5.22%) Senior Analyst
9 6 (5.22%) SOC Analyst
10 5 (4.35%) Security Support Engineer
10 5 (4.35%) Support Officer
Libraries, Frameworks & Software Standards
1 6 (5.22%) PyTorch
1 6 (5.22%) TensorFlow
2 5 (4.35%) HTML
3 4 (3.48%) ARM Templates
4 3 (2.61%) Pandas
4 3 (2.61%) scikit-learn
5 1 (0.87%) Dask
5 1 (0.87%) Elastic Stack
5 1 (0.87%) FastAPI
5 1 (0.87%) Flask
5 1 (0.87%) LDAP
Miscellaneous
1 22 (19.13%) Onboarding
2 20 (17.39%) Security Posture
3 16 (13.91%) Security Operations Centre
4 14 (12.17%) Cyber Threat
5 12 (10.43%) Cloud Native
6 11 (9.57%) Cyber Kill Chain
7 7 (6.09%) Management Information System
8 6 (5.22%) Cyber Security Posture
8 6 (5.22%) Hybrid Cloud
9 5 (4.35%) Video Conferencing
10 4 (3.48%) ARM Cortex
10 4 (3.48%) Blog
10 4 (3.48%) Digital Media
10 4 (3.48%) Operational Technology
11 3 (2.61%) Analytical Mindset
11 3 (2.61%) Cyber Defence
11 3 (2.61%) Cyberattack
11 3 (2.61%) YubiKey
12 2 (1.74%) CCTV
12 2 (1.74%) Enterprise Software
Operating Systems
1 29 (25.22%) Windows
2 20 (17.39%) Linux
3 11 (9.57%) Windows Server
4 6 (5.22%) Unix
5 5 (4.35%) Windows 10
Processes & Methodologies
1 77 (66.96%) Incident Response
2 73 (63.48%) Cybersecurity
3 71 (61.74%) SIEM
4 48 (41.74%) Security Operations
5 36 (31.30%) Vulnerability Management
6 29 (25.22%) Cloud Security
6 29 (25.22%) Threat Intelligence
7 28 (24.35%) MITRE ATT&CK
8 27 (23.48%) Information Security
9 26 (22.61%) Cyber Threat Intelligence
9 26 (22.61%) Security Monitoring
10 25 (21.74%) Use Case
11 23 (20.00%) Continuous Improvement
12 19 (16.52%) Analytics
12 19 (16.52%) Problem-Solving
13 17 (14.78%) Identity Access Management
13 17 (14.78%) Incident Management
14 16 (13.91%) Data Loss Prevention
15 15 (13.04%) Mentoring
15 15 (13.04%) Threat and Vulnerability Management
Programming Languages
1 20 (17.39%) Python
2 12 (10.43%) Kusto Query Language
2 12 (10.43%) PowerShell
3 7 (6.09%) Bash
3 7 (6.09%) SQL
4 4 (3.48%) Bicep
4 4 (3.48%) Go
5 1 (0.87%) Perl
Qualifications
1 30 (26.09%) CISSP
2 25 (21.74%) Degree
3 14 (12.17%) CISM
4 13 (11.30%) GCIA
5 12 (10.43%) CompTIA Security+
5 12 (10.43%) GCIH
6 11 (9.57%) AWS Certification
6 11 (9.57%) GCFA
7 9 (7.83%) CEH
8 8 (6.96%) Azure Certification
9 7 (6.09%) Cisco Certification
10 6 (5.22%) Security Cleared
11 5 (4.35%) (ISC)2 CCSP
11 5 (4.35%) A+ Certification
11 5 (4.35%) Computer Science Degree
11 5 (4.35%) DV Cleared
11 5 (4.35%) GIAC
11 5 (4.35%) SSCP
12 4 (3.48%) AWS Certified Solutions Architect
12 4 (3.48%) Master's Degree
Quality Assurance & Compliance
1 39 (33.91%) ISO/IEC 27001
2 36 (31.30%) NIST
3 28 (24.35%) Cyber Essentials
4 17 (14.78%) GDPR
5 10 (8.70%) Cyber Essentials PLUS
6 8 (6.96%) SOC 2
7 6 (5.22%) PCI DSS
8 5 (4.35%) Accessibility
9 4 (3.48%) GRC
10 2 (1.74%) COBIT
11 1 (0.87%) QA
System Software
1 10 (8.70%) VMware Infrastructure
2 7 (6.09%) Active Directory
3 6 (5.22%) Docker
4 3 (2.61%) Hyper-V
4 3 (2.61%) VMware ESXi
4 3 (2.61%) vSphere
5 2 (1.74%) EMC RecoverPoint
5 2 (1.74%) pfSense
5 2 (1.74%) Squid
Systems Management
1 14 (12.17%) Terraform
2 12 (10.43%) Kubernetes
3 5 (4.35%) Microsoft Intune
4 4 (3.48%) Cilium
4 4 (3.48%) QRadar
5 3 (2.61%) Ansible
5 3 (2.61%) Grafana
6 2 (1.74%) Cisco CUCM
6 2 (1.74%) Computer Incident Response Team
6 2 (1.74%) Nessus
6 2 (1.74%) Single Sign-On
6 2 (1.74%) Suricata
6 2 (1.74%) vCenter Server
6 2 (1.74%) VxRail
7 1 (0.87%) Argo
7 1 (0.87%) Computer Emergency Response Teams
7 1 (0.87%) CSIRT
7 1 (0.87%) Kibana
7 1 (0.87%) logstash
7 1 (0.87%) PowerCLI
Vendors
1 43 (37.39%) Microsoft
2 17 (14.78%) Splunk
3 12 (10.43%) VMware
4 7 (6.09%) Qualys
5 6 (5.22%) CrowdStrike
6 5 (4.35%) Palo Alto
7 4 (3.48%) Cisco
7 4 (3.48%) Fortinet
7 4 (3.48%) ServiceNow
7 4 (3.48%) Tenable
8 3 (2.61%) Okta
8 3 (2.61%) SolarWinds
8 3 (2.61%) Zscaler
9 2 (1.74%) ArcSight
9 2 (1.74%) CheckPoint
9 2 (1.74%) Dell
9 2 (1.74%) LogicMonitor
9 2 (1.74%) Meraki
9 2 (1.74%) Sophos
10 1 (0.87%) SAP
71 Threat Detection jobs Nationwide