Period
to 21 October 2017

The following table provides summary statistics for permanent job vacancies with a requirement for Vulnerability Assessment skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Vulnerability Assessment over the 6 months to 21 October 2017 with a comparison to the same period in the previous 2 years.

Vulnerability Assessment
UK
6 months to
21 Oct 2017
Same period 2016 Same period 2015
Rank 759 644 784
Rank change year-on-year -115 +140 +160
Permanent jobs citing Vulnerability Assessment 444 693 562
As % of all permanent IT jobs advertised in the UK 0.26% 0.36% 0.26%
As % of the Processes & Methodologies category 0.28% 0.41% 0.29%
Number of salaries quoted 338 535 416
UK median annual salary £55,000 £59,000 £55,000
Median salary % change year-on-year -6.78% +7.27% +12.82%
10th Percentile £35,700 £37,750 £32,500
90th Percentile £82,500 £83,750 £80,625
UK excluding London median annual salary £55,000 £54,000 £50,000
% change year-on-year +1.85% +8.00% +11.11%

Vulnerability Assessment is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 156565 170492 194103
As % of all permanent IT jobs advertised in the UK 89.94% 89.23% 88.60%
Number of salaries quoted 123230 141844 159582
UK median annual salary £50,000 £49,500 £47,500
Median salary % change year-on-year +1.01% +4.21% +5.56%
10th Percentile £28,750 £28,000 £27,500
90th Percentile £80,000 £78,750 £76,250
UK excluding London median annual salary £43,500 £42,500 £42,500
% change year-on-year +2.35% - +6.25%

Vulnerability Assessment
Job Vacancy Trend

Job postings citing Vulnerability Assessment as a percentage of all IT jobs advertised.

Job vacancy trend for Vulnerability Assessment in the UK

Vulnerability Assessment
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Vulnerability Assessment.

Salary trend for Vulnerability Assessment in the UK

Vulnerability Assessment
Salary Histogram

The salary distribution of IT jobs citing Vulnerability Assessment over the 6 months to 21 October 2017.

Salary histogram for Vulnerability Assessment in the UK

Vulnerability Assessment
Top 17 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Vulnerability Assessment within the UK over the 6 months to 21 October 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -102 432 £55,000 -6.78% 21
London -22 231 £55,000 -15.38% 11
UK excluding London -111 208 £55,000 +1.85% 11
South East -76 98 £55,000 - 6
South West +17 32 £60,000 +20.00% 2
Midlands +38 29 £69,000 +38.00%
North of England -30 28 £44,500 -1.11% 1
West Midlands +20 26 £69,000 +31.43%
North West -37 16 £46,250 +2.78% 1
East of England +2 11 £45,000 -5.26% 1
Yorkshire -1 10 £36,000 -20.00%
Scotland - 4 £48,000 -
East Midlands +33 3 £45,000 -
Isle of Man - 3 - -
North East - 2 £55,000 -
Northern Ireland - 2 £60,000 - 1
Wales +19 1 £72,500 +61.11%

For the 6 months to 21 October 2017, IT jobs citing Vulnerability Assessment also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for Vulnerability Assessment.

1 285 (64.19%) Information Security
2 198 (44.59%) Firewall
3 184 (41.44%) Penetration Testing
4 168 (37.84%) CISSP
5 157 (35.36%) SIEM
6 127 (28.60%) Cybersecurity
7 125 (28.15%) ISO/IEC 27001
7 125 (28.15%) Finance
8 118 (26.58%) CISM
9 110 (24.77%) Linux
9 110 (24.77%) Network Security
10 107 (24.10%) Management Information System
11 99 (22.30%) Windows
11 99 (22.30%) Degree
12 89 (20.05%) Security Operations
13 87 (19.59%) Risk Management
14 74 (16.67%) Security Cleared
15 73 (16.44%) Nessus
16 70 (15.77%) PCI DSS
17 62 (13.96%) Unix
18 58 (13.06%) Risk Assessment
19 55 (12.39%) CEH
19 55 (12.39%) ITIL
19 55 (12.39%) Computer Science
20 53 (11.94%) DV Cleared
21 51 (11.49%) Network Design
22 50 (11.26%) Intrusion Detection
22 50 (11.26%) Telecoms
22 50 (11.26%) Data Protection
23 49 (11.04%) OWASP

Vulnerability Assessment
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 5 (1.13%) WebSphere
2 3 (0.68%) IIS
3 1 (0.23%) Apache
3 1 (0.23%) Elasticsearch
3 1 (0.23%) WordPress
Applications
1 6 (1.35%) Microsoft Office
2 4 (0.90%) Microsoft Excel
2 4 (0.90%) Microsoft PowerPoint
2 4 (0.90%) MS Visio
3 2 (0.45%) Microsoft Project
Business Applications
1 4 (0.90%) Payment Gateway
Cloud Services
1 11 (2.48%) Amazon AWS
2 8 (1.80%) Microsoft Azure
3 7 (1.58%) Office 365
4 4 (0.90%) SaaS
5 2 (0.45%) GitHub
5 2 (0.45%) IaaS
6 1 (0.23%) Akamai
6 1 (0.23%) Cloud Computing
6 1 (0.23%) PaaS
Communications & Networking
1 198 (44.59%) Firewall
2 110 (24.77%) Network Security
3 50 (11.26%) Intrusion Detection
4 44 (9.91%) TCP/IP
5 37 (8.33%) Wireless
6 32 (7.21%) WAN
7 30 (6.76%) Internet
8 29 (6.53%) DNS
8 29 (6.53%) SS7
9 27 (6.08%) LAN
10 23 (5.18%) VPN
11 21 (4.73%) Ethernet
12 20 (4.50%) Cisco ASA
13 19 (4.28%) DHCP
13 19 (4.28%) Radio Access Network
14 18 (4.05%) VoLTE
15 14 (3.15%) Multicast
16 13 (2.93%) DMZ
16 13 (2.93%) SSL
17 10 (2.25%) VoIP
Database & Business Intelligence
1 9 (2.03%) Big Data
2 5 (1.13%) Geospatial Data
2 5 (1.13%) Hadoop
2 5 (1.13%) Looker
2 5 (1.13%) NoSQL
3 1 (0.23%) Couchbase
3 1 (0.23%) GIS
3 1 (0.23%) Oracle Reports
Development Applications
1 19 (4.28%) Burp Suite
2 18 (4.05%) Metasploit
3 12 (2.70%) AppScan
4 9 (2.03%) Paros
5 5 (1.13%) Fiddler
6 4 (0.90%) Rational DOORS
6 4 (0.90%) WebScarab
7 3 (0.68%) Sonatype Nexus
8 2 (0.45%) Jenkins
9 1 (0.23%) CircleCI
9 1 (0.23%) SoapUI
9 1 (0.23%) Xcode
General
1 125 (28.15%) Finance
2 50 (11.26%) Telecoms
3 28 (6.31%) Banking
4 23 (5.18%) Legal
5 17 (3.83%) Law
6 9 (2.03%) Digital Economy
6 9 (2.03%) Financial Institution
7 5 (1.13%) Investment Banking
7 5 (1.13%) Local Government
8 4 (0.90%) Advertising
8 4 (0.90%) Retail
9 3 (0.68%) Aerospace
9 3 (0.68%) International Banking
9 3 (0.68%) Spanish Language
10 2 (0.45%) Games
10 2 (0.45%) Marketing
10 2 (0.45%) Retail Banking
11 1 (0.23%) Electronics
11 1 (0.23%) Manufacturing
11 1 (0.23%) Military
Job Titles
1 171 (38.51%) Analyst
2 147 (33.11%) Security Analyst
3 53 (11.94%) Information Analyst
3 53 (11.94%) Information Security Analyst
4 52 (11.71%) Consultant
4 52 (11.71%) Security Engineer
5 49 (11.04%) Network Engineer
6 40 (9.01%) Security Consultant
7 39 (8.78%) Penetration Tester
7 39 (8.78%) Tester
8 30 (6.76%) Security Manager
9 24 (5.41%) Senior Analyst
9 24 (5.41%) Technical Analyst
9 24 (5.41%) Technical Security Analyst
10 23 (5.18%) IT Analyst
10 23 (5.18%) Senior Security Analyst
11 22 (4.95%) IT Security Analyst
12 19 (4.28%) Network Security Engineer
13 18 (4.05%) Core Network Engineer
13 18 (4.05%) RAN Engineer
Libraries, Frameworks & Software Standards
1 15 (3.38%) .NET
1 15 (3.38%) HTML
1 15 (3.38%) XML
2 10 (2.25%) CGI
3 5 (1.13%) JSON
3 5 (1.13%) RESTful
3 5 (1.13%) Web Services
4 4 (0.90%) ASP.NET Web API
4 4 (0.90%) HTML5
5 1 (0.23%) Ajax
5 1 (0.23%) AngularJS
5 1 (0.23%) ASP.NET
5 1 (0.23%) Express
5 1 (0.23%) Node.js
5 1 (0.23%) Regular Expression
5 1 (0.23%) REST
5 1 (0.23%) Ruby on Rails
5 1 (0.23%) SOAP
5 1 (0.23%) Velocity
Miscellaneous
1 107 (24.10%) Management Information System
2 55 (12.39%) Computer Science
3 43 (9.68%) Data Centre
4 36 (8.11%) Analytical Skills
5 32 (7.21%) Cyberthreat
6 26 (5.86%) Cyber Attack
6 26 (5.86%) PKI
7 18 (4.05%) Smartphone
8 15 (3.38%) Distributed Denial-of-Service
8 15 (3.38%) Mobile App
9 12 (2.70%) Security Operations Centre
10 11 (2.48%) Data Protection Act
11 9 (2.03%) CESG
12 8 (1.80%) Fintech
13 6 (1.35%) NHS
14 5 (1.13%) BYOD
14 5 (1.13%) Cybercrime
15 4 (0.90%) Virtual Team
16 3 (0.68%) Cyber Defence
16 3 (0.68%) Internet of Things
Operating Systems
1 110 (24.77%) Linux
2 99 (22.30%) Windows
3 62 (13.96%) Unix
4 28 (6.31%) Android
5 27 (6.08%) Kali Linux
6 15 (3.38%) Windows Server
7 10 (2.25%) Apple iOS
8 3 (0.68%) Windows 10
8 3 (0.68%) Windows 7
9 2 (0.45%) Red Hat Enterprise Linux
10 1 (0.23%) VxWorks
Processes & Methodologies
1 285 (64.19%) Information Security
2 184 (41.44%) Penetration Testing
3 157 (35.36%) SIEM
4 127 (28.60%) Cybersecurity
5 89 (20.05%) Security Operations
6 87 (19.59%) Risk Management
7 58 (13.06%) Risk Assessment
8 55 (12.39%) ITIL
9 51 (11.49%) Network Design
10 50 (11.26%) Data Protection
11 49 (11.04%) OWASP
12 48 (10.81%) Security Monitoring
12 48 (10.81%) Vulnerability Scanning
13 45 (10.14%) Security Testing
14 44 (9.91%) Incident Management
15 43 (9.68%) Data Security
15 43 (9.68%) Security Architecture
16 41 (9.23%) Vulnerability Management
17 38 (8.56%) Security Management
17 38 (8.56%) Threat Analysis
Programming Languages
1 40 (9.01%) C
2 38 (8.56%) Python
3 25 (5.63%) Perl
4 20 (4.50%) Java
5 13 (2.93%) C#
5 13 (2.93%) C++
6 12 (2.70%) JavaScript
7 10 (2.25%) PowerShell
8 8 (1.80%) SQL
9 6 (1.35%) Bash Shell
10 5 (1.13%) PHP
11 4 (0.90%) Ruby
11 4 (0.90%) VB.NET
12 2 (0.45%) Shell Script
13 1 (0.23%) AWK
13 1 (0.23%) ES6
13 1 (0.23%) Objective-C
13 1 (0.23%) TypeScript
Qualifications
1 168 (37.84%) CISSP
2 118 (26.58%) CISM
3 99 (22.30%) Degree
4 74 (16.67%) Security Cleared
5 55 (12.39%) CEH
6 53 (11.94%) DV Cleared
7 44 (9.91%) CISA
8 38 (8.56%) GIAC
9 35 (7.88%) GCIH
10 28 (6.31%) GCIA
11 25 (5.63%) SC Cleared
12 24 (5.41%) Cisco Certification
13 23 (5.18%) CCNA
13 23 (5.18%) CHECK Team Leader
13 23 (5.18%) Computer Science Degree
14 21 (4.73%) CREST Certified
15 20 (4.50%) SANS
16 19 (4.28%) OSCP
17 18 (4.05%) CASP
17 18 (4.05%) SSCP
Quality Assurance & Compliance
1 125 (28.15%) ISO/IEC 27001
2 70 (15.77%) PCI DSS
3 25 (5.63%) Cyber Essentials
4 22 (4.95%) GDPR
5 20 (4.50%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 12 (2.70%) COBIT
7 9 (2.03%) NIST 800
8 8 (1.80%) Cyber Essentials PLUS
9 6 (1.35%) ISO/IEC 27005
10 5 (1.13%) RMADS
11 4 (0.90%) HMG Security Policy Framework
11 4 (0.90%) Sarbanes-Oxley
12 3 (0.68%) SLA
13 2 (0.45%) HIPAA
14 1 (0.23%) BS25999
14 1 (0.23%) FIPS 140-2
14 1 (0.23%) SSAE 16
System Software
1 29 (6.53%) Virtual Machines
2 23 (5.18%) Active Directory
3 6 (1.35%) Snort
3 6 (1.35%) VMware ESXi
4 5 (1.13%) Firmware
5 4 (0.90%) VMware Infrastructure
6 3 (0.68%) Docker
7 1 (0.23%) Hyper-V
7 1 (0.23%) LXC
7 1 (0.23%) VirtualBox
7 1 (0.23%) VMware NSX
7 1 (0.23%) vSphere
7 1 (0.23%) Xen
Systems Management
1 73 (16.44%) Nessus
2 30 (6.76%) QRadar
3 28 (6.31%) CSIRT
4 21 (4.73%) Nmap
5 10 (2.25%) HP Fortify
6 9 (2.03%) WebInspect
7 7 (1.58%) Host Intrusion Detection System
8 6 (1.35%) Computer Emergency Response Teams
8 6 (1.35%) Network Intrusion Detection System
8 6 (1.35%) Suricata
9 4 (0.90%) Computer Incident Response Team
9 4 (0.90%) EnCase
10 3 (0.68%) Nagios
11 2 (0.45%) OpenVAS
11 2 (0.45%) Opscode Chef
11 2 (0.45%) Puppet
12 1 (0.23%) Cisco CME
12 1 (0.23%) Cisco CUCM
12 1 (0.23%) John the Ripper
12 1 (0.23%) vRealize
Vendors
1 48 (10.81%) Cisco
2 35 (7.88%) CheckPoint
3 34 (7.66%) Microsoft
4 33 (7.43%) Splunk
5 28 (6.31%) Oracle
6 25 (5.63%) Qualys
7 24 (5.41%) BeyondTrust
8 11 (2.48%) HP
9 9 (2.03%) NetWitness
10 8 (1.80%) LogRhythm
10 8 (1.80%) Palo Alto
10 8 (1.80%) Sophos
11 7 (1.58%) Citrix
11 7 (1.58%) McAfee
12 6 (1.35%) Veracode
12 6 (1.35%) VMware
13 5 (1.13%) NetApp
14 4 (0.90%) F5
14 4 (0.90%) Fortinet
15 2 (0.45%) Huawei