Period
to 27 May 2018

The following table provides summary statistics for permanent job vacancies with a requirement for Vulnerability Assessment skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Vulnerability Assessment over the 6 months to 27 May 2018 with a comparison to the same period in the previous 2 years.

Vulnerability Assessment
UK
6 months to
27 May 2018
Same period 2017 Same period 2016
Rank 751 715 739
Rank change year-on-year -36 +24 +148
Permanent jobs citing Vulnerability Assessment 449 484 591
As % of all permanent IT jobs advertised in the UK 0.26% 0.28% 0.29%
As % of the Processes & Methodologies category 0.29% 0.31% 0.33%
Number of salaries quoted 307 365 436
UK median annual salary £55,000 £60,000 £60,000
Median salary % change year-on-year -8.33% - +4.35%
10th Percentile £34,650 £41,250 £40,500
90th Percentile £95,000 £85,000 £90,000
UK excluding London median annual salary £51,750 £52,500 £52,500
% change year-on-year -1.43% - +16.67%

Vulnerability Assessment is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 156,453 154,494 180,532
As % of all permanent IT jobs advertised in the UK 90.82% 90.55% 89.98%
Number of salaries quoted 125,648 126,607 150,063
UK median annual salary £50,000 £47,500 £47,500
Median salary % change year-on-year +5.26% - +3.26%
10th Percentile £29,750 £28,000 £27,500
90th Percentile £82,500 £78,750 £77,500
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +3.66%

Vulnerability Assessment
Job Vacancy Trend

Job postings citing Vulnerability Assessment as a percentage of all IT jobs advertised.

Job vacancy trend for Vulnerability Assessment in the UK

Vulnerability Assessment
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Vulnerability Assessment.

Salary trend for Vulnerability Assessment in the UK

Vulnerability Assessment
Salary Histogram

The salary distribution of IT jobs citing Vulnerability Assessment over the 6 months to 27 May 2018.

Salary histogram for Vulnerability Assessment in the UK

Vulnerability Assessment
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Vulnerability Assessment within the UK over the 6 months to 27 May 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -36 427 £55,000 -6.38% 50
UK excluding London -10 239 £51,750 -1.43% 30
London -24 211 £60,000 -4.00% 21
South West +16 59 £41,563 -34.80% 6
South East -57 55 £55,000 +4.76% 7
East of England +35 43 £38,750 -13.89% 5
North of England -13 38 £51,250 -3.30% 8
Midlands +28 30 £65,000 +36.84% 3
North West -20 22 £48,750 -9.00% 5
East Midlands +13 16 £70,000 +79.49% 2
Yorkshire +22 15 £55,000 +37.50% 2
West Midlands -4 14 £52,125 +7.19% 1
Scotland -37 9 £50,000 +3.09%
Wales +14 5 £35,750 -40.42% 1
Northern Ireland +6 2 £52,500 +75.00%
North East -23 1 £60,000 +103.39% 1

For the 6 months to 27 May 2018, IT jobs citing Vulnerability Assessment also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for Vulnerability Assessment.

1 306 (68.15%) Information Security
2 206 (45.88%) Firewall
3 199 (44.32%) Cybersecurity
4 193 (42.98%) SIEM
5 155 (34.52%) CISSP
6 139 (30.96%) Management Information System
7 115 (25.61%) ISO/IEC 27001
8 108 (24.05%) Windows
8 108 (24.05%) Security Operations
9 106 (23.61%) Penetration Testing
10 96 (21.38%) CISM
11 95 (21.16%) Network Security
12 83 (18.49%) ITIL
13 82 (18.26%) Degree
14 76 (16.93%) Finance
15 73 (16.26%) Security Monitoring
16 70 (15.59%) Linux
17 68 (15.14%) Security Architecture
18 62 (13.81%) Intrusion Detection
19 58 (12.92%) Computer Science
20 56 (12.47%) Nessus
21 53 (11.80%) TCP/IP
21 53 (11.80%) Continuous Improvement
22 52 (11.58%) Cisco
23 50 (11.14%) Self-Motivation
24 49 (10.91%) Risk Management
25 47 (10.47%) Risk Assessment
25 47 (10.47%) Security Cleared
26 46 (10.24%) Microsoft
27 45 (10.02%) PCI DSS

Vulnerability Assessment
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 11 (2.45%) OpenStack
2 6 (1.34%) IIS
3 1 (0.22%) MS Exchange
3 1 (0.22%) Skype for Business
Applications
1 22 (4.90%) Microsoft Office
2 1 (0.22%) Microsoft Excel
2 1 (0.22%) Microsoft PowerPoint
2 1 (0.22%) MS Visio
Cloud Services
1 17 (3.79%) Amazon AWS
2 10 (2.23%) IaaS
3 8 (1.78%) Microsoft Azure
3 8 (1.78%) PaaS
4 7 (1.56%) Google Cloud Platform
5 6 (1.34%) Office 365
6 5 (1.11%) SaaS
Communications & Networking
1 206 (45.88%) Firewall
2 95 (21.16%) Network Security
3 62 (13.81%) Intrusion Detection
4 53 (11.80%) TCP/IP
5 39 (8.69%) VPN
6 24 (5.35%) WAN
7 23 (5.12%) SSL
8 21 (4.68%) Internet
9 19 (4.23%) Wireshark
10 18 (4.01%) Wireless
11 14 (3.12%) HTTP
12 11 (2.45%) DNS
12 11 (2.45%) SMTP
12 11 (2.45%) VLAN
12 11 (2.45%) Wi-Fi
13 10 (2.23%) LAN
13 10 (2.23%) MPLS
14 9 (2.00%) SSH
15 8 (1.78%) IPsec
16 7 (1.56%) SCCP
Database & Business Intelligence
1 9 (2.00%) Big Data
2 5 (1.11%) Geospatial Data
2 5 (1.11%) NoSQL
3 3 (0.67%) SQL Server
3 3 (0.67%) SQL Server 2014
4 2 (0.45%) GIS
Development Applications
1 15 (3.34%) Burp Suite
1 15 (3.34%) Metasploit
2 5 (1.11%) AppScan
3 4 (0.89%) Rational DOORS
4 3 (0.67%) JIRA
4 3 (0.67%) Visual Studio
5 2 (0.45%) SoapUI
5 2 (0.45%) SonarQube
5 2 (0.45%) WebScarab
General
1 76 (16.93%) Finance
2 40 (8.91%) Legal
3 36 (8.02%) Retail
4 18 (4.01%) Games
5 17 (3.79%) Banking
6 12 (2.67%) Telecoms
7 11 (2.45%) Manufacturing
8 4 (0.89%) Law
9 3 (0.67%) Back Office
9 3 (0.67%) Financial Institution
9 3 (0.67%) Marketing
10 2 (0.45%) Advertising
10 2 (0.45%) Aerospace
10 2 (0.45%) Automotive
10 2 (0.45%) Spanish Language
Job Titles
1 166 (36.97%) Analyst
2 136 (30.29%) Security Analyst
3 42 (9.35%) Architect
3 42 (9.35%) SOC Analyst
4 39 (8.69%) Head of Security
5 38 (8.46%) Security Engineer
5 38 (8.46%) Security Manager
6 37 (8.24%) Security Architect
7 35 (7.80%) Head of Cybersecurity
8 33 (7.35%) Consultant
8 33 (7.35%) IT Analyst
8 33 (7.35%) IT Security Analyst
9 29 (6.46%) Information Analyst
9 29 (6.46%) Information Security Analyst
9 29 (6.46%) Security Consultant
10 28 (6.24%) Senior Analyst
11 24 (5.35%) Penetration Tester
11 24 (5.35%) Tester
12 22 (4.90%) IT Architect
12 22 (4.90%) IT Security Architect
Libraries, Frameworks & Software Standards
1 9 (2.00%) .NET
1 9 (2.00%) Web Services
2 7 (1.56%) LDAP
3 4 (0.89%) HTML
4 2 (0.45%) Ajax
4 2 (0.45%) Apache Flex
4 2 (0.45%) ASP.NET
4 2 (0.45%) JSON
4 2 (0.45%) Middleware
4 2 (0.45%) XML
5 1 (0.22%) 802.1X
5 1 (0.22%) Elastic Stack
5 1 (0.22%) Regular Expression
5 1 (0.22%) SAML
Miscellaneous
1 139 (30.96%) Management Information System
2 58 (12.92%) Computer Science
3 50 (11.14%) Self-Motivation
4 43 (9.58%) Analytical Skills
5 36 (8.02%) Cyberthreat
6 26 (5.79%) Cyberattack
7 21 (4.68%) Security Operations Centre
8 15 (3.34%) PKI
9 13 (2.90%) Cyber Kill Chain
9 13 (2.90%) Data Centre
10 12 (2.67%) Distributed Denial-of-Service
11 11 (2.45%) NHS
12 10 (2.23%) Fintech
12 10 (2.23%) Greenfield Project
12 10 (2.23%) Mobile App
12 10 (2.23%) Virtual Team
13 8 (1.78%) Cyber Defence
13 8 (1.78%) FMCG
14 5 (1.11%) Client/Server
14 5 (1.11%) Public Cloud
Operating Systems
1 108 (24.05%) Windows
2 70 (15.59%) Linux
3 31 (6.90%) Unix
4 9 (2.00%) Kali Linux
5 5 (1.11%) Windows Server
6 4 (0.89%) Windows Server 2008
7 2 (0.45%) AIX
7 2 (0.45%) Android
7 2 (0.45%) Apple iOS
8 1 (0.22%) Windows Server 2012
Processes & Methodologies
1 306 (68.15%) Information Security
2 199 (44.32%) Cybersecurity
3 193 (42.98%) SIEM
4 108 (24.05%) Security Operations
5 106 (23.61%) Penetration Testing
6 83 (18.49%) ITIL
7 73 (16.26%) Security Monitoring
8 68 (15.14%) Security Architecture
9 53 (11.80%) Continuous Improvement
10 49 (10.91%) Risk Management
11 47 (10.47%) Risk Assessment
12 45 (10.02%) Vulnerability Management
13 41 (9.13%) Analytics
13 41 (9.13%) Kalman Filter
13 41 (9.13%) Patch Management
14 40 (8.91%) OWASP
15 38 (8.46%) Identity Access Management
16 37 (8.24%) Data Protection
17 34 (7.57%) Internal Audit
18 33 (7.35%) Security Testing
Programming Languages
1 40 (8.91%) Python
2 22 (4.90%) C
3 20 (4.45%) PowerShell
4 19 (4.23%) Java
5 14 (3.12%) Bash Shell
6 12 (2.67%) Perl
7 7 (1.56%) Go
8 6 (1.34%) Shell Script
9 5 (1.11%) JavaScript
9 5 (1.11%) SQL
10 4 (0.89%) C#
10 4 (0.89%) C++
10 4 (0.89%) PHP
11 2 (0.45%) Objective-C
12 1 (0.22%) Ruby
12 1 (0.22%) VB
Qualifications
1 155 (34.52%) CISSP
2 96 (21.38%) CISM
3 82 (18.26%) Degree
4 47 (10.47%) Security Cleared
5 43 (9.58%) CISA
5 43 (9.58%) SANS
6 42 (9.35%) GIAC
7 40 (8.91%) Cisco Certification
8 36 (8.02%) CEH
8 36 (8.02%) SSCP
9 29 (6.46%) GCIH
10 23 (5.12%) GCIA
11 22 (4.90%) (ISC)2 CCSP
11 22 (4.90%) CCNP
11 22 (4.90%) CCSP
11 22 (4.90%) Computer Science Degree
11 22 (4.90%) CREST Certified
12 17 (3.79%) OSCP
13 15 (3.34%) CCIE
14 14 (3.12%) CompTIA Security+
Quality Assurance & Compliance
1 115 (25.61%) ISO/IEC 27001
2 45 (10.02%) PCI DSS
3 41 (9.13%) COBIT
4 28 (6.24%) GDPR
5 15 (3.34%) Cyber Essentials
6 8 (1.78%) Sarbanes-Oxley
7 7 (1.56%) GCP
8 6 (1.34%) HMG Security Policy Framework
8 6 (1.34%) RMADS
9 5 (1.11%) Cyber Essentials PLUS
9 5 (1.11%) ISO 31000
9 5 (1.11%) QA
9 5 (1.11%) SSAE 16
10 4 (0.89%) ISO 22301
10 4 (0.89%) ISO 9001
10 4 (0.89%) SLA
11 2 (0.45%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
11 2 (0.45%) PMO
12 1 (0.22%) FISMA
12 1 (0.22%) NIST 800
System Software
1 22 (4.90%) VMware Infrastructure
2 20 (4.45%) Virtual Machines
3 19 (4.23%) Active Directory
4 7 (1.56%) Docker
5 5 (1.11%) Snort
6 3 (0.67%) Hyper-V
6 3 (0.67%) vSphere
7 2 (0.45%) VMware ESXi
8 1 (0.22%) VMware NSX
Systems Management
1 56 (12.47%) Nessus
2 27 (6.01%) QRadar
3 21 (4.68%) CSIRT
4 11 (2.45%) RSA Security Analytics
5 8 (1.78%) WebInspect
6 7 (1.56%) IBM BigFix
6 7 (1.56%) Network Intrusion Detection System
6 7 (1.56%) Nmap
7 5 (1.11%) Host Intrusion Detection System
8 4 (0.89%) Nagios
9 3 (0.67%) Ansible
9 3 (0.67%) Opscode Chef
9 3 (0.67%) Puppet
9 3 (0.67%) SCCM
9 3 (0.67%) SCVMM
9 3 (0.67%) Single Sign-On
9 3 (0.67%) vCenter Server
10 2 (0.45%) Failover Clustering
10 2 (0.45%) SCOM
10 2 (0.45%) WSUS
Vendors
1 52 (11.58%) Cisco
2 46 (10.24%) Microsoft
3 31 (6.90%) VMware
4 26 (5.79%) Splunk
5 21 (4.68%) BeyondTrust
6 20 (4.45%) Oracle
7 12 (2.67%) Symantec
8 11 (2.45%) Red Hat
9 10 (2.23%) HP
9 10 (2.23%) IBM
9 10 (2.23%) Juniper
9 10 (2.23%) Qualys
10 9 (2.00%) CheckPoint
11 8 (1.78%) Sophos
12 7 (1.56%) Black Duck
12 7 (1.56%) BMC
12 7 (1.56%) LogRhythm
12 7 (1.56%) Sonatype
13 6 (1.34%) F5
13 6 (1.34%) Palo Alto