Period
to 18 February 2018

The following table provides summary statistics for permanent job vacancies with a requirement for Vulnerability Management skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Vulnerability Management over the 6 months to 18 February 2018 with a comparison to the same period in the previous 2 years.

Vulnerability Management
UK
6 months to
18 Feb 2018
Same period 2017 Same period 2016
Rank 580 582 732
Rank change year-on-year +2 +150 +192
Permanent jobs citing Vulnerability Management 745 735 653
As % of all permanent IT jobs advertised in the UK 0.43% 0.42% 0.31%
As % of the Processes & Methodologies category 0.48% 0.47% 0.35%
Number of salaries quoted 593 588 539
UK median annual salary £60,000 £60,000 £55,000
Median salary % change year-on-year - +9.09% +4.76%
10th Percentile £40,000 £40,000 £37,500
90th Percentile £85,000 £86,250 £82,500
UK excluding London median annual salary £50,000 £55,000 £52,500
% change year-on-year -9.09% +4.76% +16.67%

Vulnerability Management is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 156,623 156,367 187,175
As % of all permanent IT jobs advertised in the UK 89.90% 89.54% 88.84%
Number of salaries quoted 126,956 128,832 155,017
UK median annual salary £50,000 £48,500 £47,500
Median salary % change year-on-year +3.09% +2.11% +5.56%
10th Percentile £29,000 £28,250 £27,500
90th Percentile £80,250 £79,000 £77,500
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +6.25%

Vulnerability Management
Job Vacancy Trend

Job postings citing Vulnerability Management as a percentage of all IT jobs advertised.

Job vacancy trend for Vulnerability Management in the UK

Vulnerability Management
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Vulnerability Management.

Salary trend for Vulnerability Management in the UK

Vulnerability Management
Salary Histogram

The salary distribution of IT jobs citing Vulnerability Management over the 6 months to 18 February 2018.

Salary histogram for Vulnerability Management in the UK

Vulnerability Management
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Vulnerability Management within the UK over the 6 months to 18 February 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -8 718 £60,000 - 78
London +17 461 £67,500 -3.57% 35
UK excluding London -35 262 £50,000 -9.09% 45
South East -20 86 £50,000 -16.67% 11
North of England +11 65 £45,000 -10.00% 6
Midlands -25 50 £52,500 +10.53% 5
Yorkshire +39 46 £45,000 +35.34% 6
East of England +20 45 £50,000 -20.00% 14
West Midlands -8 38 £50,000 +5.26% 1
North West -35 15 £62,500 +25.00%
South West -7 14 £40,000 -33.33% 7
East Midlands +13 12 £65,000 +44.44% 4
Wales +13 7 £33,000 +65.00% 1
Scotland -40 5 £67,500 +35.00% 1
North East -24 4 £48,500 -25.38%
Northern Ireland -17 2 £60,000 +100.00%

For the 6 months to 18 February 2018, IT jobs citing Vulnerability Management also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for Vulnerability Management.

1 475 (63.76%) Information Security
2 415 (55.70%) SIEM
3 396 (53.15%) CISSP
4 380 (51.01%) Firewall
5 334 (44.83%) Cybersecurity
6 243 (32.62%) CISM
7 240 (32.21%) ISO/IEC 27001
8 224 (30.07%) Finance
9 217 (29.13%) Security Operations
10 201 (26.98%) Penetration Testing
11 200 (26.85%) Windows
12 199 (26.71%) Network Security
13 192 (25.77%) Linux
14 163 (21.88%) Incident Management
14 163 (21.88%) Vulnerability Scanning
15 149 (20.00%) TCP/IP
16 147 (19.73%) CISA
17 134 (17.99%) GIAC
18 133 (17.85%) PCI DSS
19 132 (17.72%) Microsoft
20 131 (17.58%) Data Protection
21 129 (17.32%) ITIL
22 128 (17.18%) Data Loss Prevention
23 123 (16.51%) Security Architecture
24 121 (16.24%) Management Information System
25 112 (15.03%) Risk Management
25 112 (15.03%) GDPR
26 108 (14.50%) Identity Access Management
27 107 (14.36%) Nessus
28 104 (13.96%) Cisco Certification

Vulnerability Management
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 35 (4.70%) SharePoint
2 18 (2.42%) IIS
3 13 (1.74%) JBoss
4 12 (1.61%) Tomcat
5 10 (1.34%) Apache
6 5 (0.67%) WebLogic
7 3 (0.40%) Apache Spark
7 3 (0.40%) iPlanet
7 3 (0.40%) WebSphere
7 3 (0.40%) WebSphere Application Server
8 2 (0.27%) MS Exchange
9 1 (0.13%) OpenStack
9 1 (0.13%) Skype for Business
Applications
1 17 (2.28%) Microsoft Office
2 3 (0.40%) Microsoft PowerPoint
3 2 (0.27%) Microsoft Excel
Business Applications
1 34 (4.56%) Dynamics CRM
2 5 (0.67%) Remedy ITSM
3 1 (0.13%) SunGard APT
Cloud Services
1 84 (11.28%) Microsoft Azure
2 80 (10.74%) Amazon AWS
3 44 (5.91%) Office 365
4 34 (4.56%) OneDrive
5 18 (2.42%) PaaS
6 15 (2.01%) Cloud Computing
7 12 (1.61%) IaaS
7 12 (1.61%) SaaS
8 4 (0.54%) Google Cloud Platform
9 2 (0.27%) Virtual Private Cloud
10 1 (0.13%) Mimecast
Communications & Networking
1 380 (51.01%) Firewall
2 199 (26.71%) Network Security
3 149 (20.00%) TCP/IP
4 69 (9.26%) WAN
5 64 (8.59%) DNS
6 63 (8.46%) VPN
7 61 (8.19%) Intrusion Detection
7 61 (8.19%) LAN
8 46 (6.17%) DHCP
9 38 (5.10%) SSL
10 35 (4.70%) Wireless
11 33 (4.43%) HTTP
12 31 (4.16%) VLAN
13 23 (3.09%) DMZ
14 22 (2.95%) HTTPS
15 20 (2.68%) IPsec
15 20 (2.68%) Multicast
15 20 (2.68%) SNMP
16 19 (2.55%) Internet
16 19 (2.55%) MPLS
Database & Business Intelligence
1 16 (2.15%) Big Data
2 7 (0.94%) MySQL
3 5 (0.67%) Relational Database
4 4 (0.54%) SQL Server
5 3 (0.40%) Hadoop
6 2 (0.27%) Apache Cassandra
6 2 (0.27%) MongoDB
6 2 (0.27%) NoSQL
Development Applications
1 19 (2.55%) Burp Suite
2 18 (2.42%) Metasploit
3 2 (0.27%) AppScan
3 2 (0.27%) FxCop
3 2 (0.27%) SonarQube
4 1 (0.13%) Sonatype Nexus
General
1 224 (30.07%) Finance
2 80 (10.74%) Banking
3 42 (5.64%) Law
4 41 (5.50%) Legal
5 16 (2.15%) Investment Banking
5 16 (2.15%) Retail
6 12 (1.61%) Financial Institution
7 10 (1.34%) Military
8 9 (1.21%) Telecoms
9 5 (0.67%) Marketing
10 4 (0.54%) Electronics
10 4 (0.54%) Games
10 4 (0.54%) Manufacturing
10 4 (0.54%) Multimedia
11 2 (0.27%) Retail Banking
12 1 (0.13%) Advertising
12 1 (0.13%) International Banking
Job Titles
1 223 (29.93%) Analyst
2 182 (24.43%) Security Analyst
3 110 (14.77%) Security Engineer
4 93 (12.48%) Security Manager
5 67 (8.99%) Consultant
6 62 (8.32%) Architect
7 59 (7.92%) Security Architect
8 58 (7.79%) Security Consultant
9 52 (6.98%) IT Analyst
10 49 (6.58%) Security Specialist
10 49 (6.58%) Senior Analyst
11 46 (6.17%) IT Security Analyst
12 43 (5.77%) Information Analyst
12 43 (5.77%) Information Security Analyst
13 41 (5.50%) IT Engineer
14 39 (5.23%) IT Manager
15 38 (5.10%) IT Security Engineer
16 36 (4.83%) Cybersecurity Analyst
16 36 (4.83%) IT Security Manager
17 34 (4.56%) Network Engineer
Libraries, Frameworks & Software Standards
1 17 (2.28%) LDAP
2 14 (1.88%) Middleware
3 13 (1.74%) Web Services
4 10 (1.34%) OAuth
4 10 (1.34%) SAML
5 4 (0.54%) Elastic Stack
5 4 (0.54%) RESTful
6 3 (0.40%) .NET
6 3 (0.40%) PCRE
6 3 (0.40%) Regular Expression
6 3 (0.40%) SailPoint
7 2 (0.27%) FIX Protocol
7 2 (0.27%) IBM Integration Bus
7 2 (0.27%) LAMP
7 2 (0.27%) REST
7 2 (0.27%) SOAP
7 2 (0.27%) Spring Boot
7 2 (0.27%) WebSphere MQ
7 2 (0.27%) Zuul
Miscellaneous
1 121 (16.24%) Management Information System
2 78 (10.47%) Cyberthreat
3 77 (10.34%) Data Protection Act
4 60 (8.05%) Analytical Skills
5 51 (6.85%) Security Operations Centre
6 37 (4.97%) Distributed Denial-of-Service
7 31 (4.16%) Computer Science
8 26 (3.49%) Cyberattack
9 22 (2.95%) Data Centre
10 17 (2.28%) PKI
11 14 (1.88%) Fintech
12 11 (1.48%) Clustering
13 10 (1.34%) Private Cloud
14 9 (1.21%) CESG
14 9 (1.21%) Greenfield Project
15 7 (0.94%) Cyber Defence
15 7 (0.94%) Public Cloud
16 6 (0.81%) Linux Command Line
17 5 (0.67%) Mainframe
18 4 (0.54%) Hedge funds
Operating Systems
1 200 (26.85%) Windows
2 192 (25.77%) Linux
3 79 (10.60%) Windows Server
4 68 (9.13%) Unix
5 33 (4.43%) Kali Linux
6 31 (4.16%) Apple iOS
7 29 (3.89%) Mac OS X
8 12 (1.61%) Red Hat Enterprise Linux
9 11 (1.48%) VMS
10 8 (1.07%) Solaris
11 7 (0.94%) CentOS
12 6 (0.81%) Debian
12 6 (0.81%) Ubuntu
12 6 (0.81%) Windows Server 2008
13 4 (0.54%) AIX
14 3 (0.40%) Windows Server 2012
15 2 (0.27%) Android
15 2 (0.27%) Windows 10
15 2 (0.27%) Windows 7
16 1 (0.13%) DC/OS
Processes & Methodologies
1 475 (63.76%) Information Security
2 415 (55.70%) SIEM
3 334 (44.83%) Cybersecurity
4 217 (29.13%) Security Operations
5 201 (26.98%) Penetration Testing
6 163 (21.88%) Incident Management
6 163 (21.88%) Vulnerability Scanning
7 131 (17.58%) Data Protection
8 129 (17.32%) ITIL
9 128 (17.18%) Data Loss Prevention
10 123 (16.51%) Security Architecture
11 112 (15.03%) Risk Management
12 108 (14.50%) Identity Access Management
13 88 (11.81%) Agile Software Development
14 73 (9.80%) Security Management
15 69 (9.26%) Stakeholder Management
16 62 (8.32%) Threat Intelligence
17 57 (7.65%) Kalman Filter
18 56 (7.52%) Security Monitoring
19 53 (7.11%) Vulnerability Assessment
Programming Languages
1 69 (9.26%) Python
2 63 (8.46%) Bash Shell
3 53 (7.11%) Perl
3 53 (7.11%) Ruby
4 46 (6.17%) PowerShell
5 36 (4.83%) C#
6 34 (4.56%) Bourne shell
6 34 (4.56%) Korn
7 21 (2.82%) SQL
8 14 (1.88%) C
9 4 (0.54%) Java
9 4 (0.54%) PHP
9 4 (0.54%) Shell Script
10 2 (0.27%) JavaScript
11 1 (0.13%) Go
11 1 (0.13%) T-SQL
11 1 (0.13%) VB
11 1 (0.13%) VBScript
Qualifications
1 396 (53.15%) CISSP
2 243 (32.62%) CISM
3 147 (19.73%) CISA
4 134 (17.99%) GIAC
5 104 (13.96%) Cisco Certification
6 82 (11.01%) Degree
7 73 (9.80%) CEH
8 64 (8.59%) CCNA
8 64 (8.59%) OSCP
9 57 (7.65%) GCIH
10 54 (7.25%) SSCP
11 47 (6.31%) CREST Certified
12 41 (5.50%) SANS
13 39 (5.23%) CCNP
14 32 (4.30%) GCIA
15 26 (3.49%) Security Cleared
16 22 (2.95%) CISMP
17 21 (2.82%) SC Cleared
18 19 (2.55%) CCSA
18 19 (2.55%) CCSP
Quality Assurance & Compliance
1 240 (32.21%) ISO/IEC 27001
2 133 (17.85%) PCI DSS
3 112 (15.03%) GDPR
4 75 (10.07%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 29 (3.89%) COBIT
6 26 (3.49%) Cyber Essentials
7 14 (1.88%) SLA
8 10 (1.34%) PMO
9 9 (1.21%) Sarbanes-Oxley
10 8 (1.07%) ISO 9001
11 7 (0.94%) Government Security Classifications
12 5 (0.67%) ISO 31000
13 4 (0.54%) ISO/IEC 20000
14 3 (0.40%) Cyber Essentials PLUS
14 3 (0.40%) GPG13
14 3 (0.40%) HIPAA
14 3 (0.40%) ISO 22301
15 2 (0.27%) ISO/IEC 27005
16 1 (0.13%) HMG Security Policy Framework
16 1 (0.13%) QA
System Software
1 80 (10.74%) Active Directory
2 26 (3.49%) VMware Infrastructure
3 22 (2.95%) Virtual Machines
4 16 (2.15%) Snort
5 8 (1.07%) vSphere
6 6 (0.81%) pfSense
7 5 (0.67%) BitLocker
7 5 (0.67%) Docker
8 4 (0.54%) Hyper-V
9 3 (0.40%) HDFS
9 3 (0.40%) XenApp
10 2 (0.27%) Firmware
10 2 (0.27%) Virtual Desktop
Systems Management
1 107 (14.36%) Nessus
2 40 (5.37%) QRadar
3 38 (5.10%) CSIRT
4 28 (3.76%) Core Impact
4 28 (3.76%) SCCM
5 20 (2.68%) OpenVAS
6 15 (2.01%) WSUS
7 14 (1.88%) McAfee ePO
8 12 (1.61%) RSA enVision
9 10 (1.34%) Failover Clustering
9 10 (1.34%) Host Intrusion Detection System
9 10 (1.34%) SCOM
10 8 (1.07%) SCOrch
11 6 (0.81%) FortiGate
11 6 (0.81%) OSSEC
11 6 (0.81%) Suricata
12 5 (0.67%) Kubernetes
12 5 (0.67%) Single Sign-On
12 5 (0.67%) Tivoli Storage Manager
13 4 (0.54%) Nmap
Vendors
1 132 (17.72%) Microsoft
2 86 (11.54%) Cisco
3 70 (9.40%) CheckPoint
4 69 (9.26%) Splunk
5 58 (7.79%) Qualys
6 53 (7.11%) F5
7 45 (6.04%) Juniper
8 44 (5.91%) McAfee
9 41 (5.50%) LogRhythm
10 39 (5.23%) Palo Alto
11 38 (5.10%) Fortinet
12 36 (4.83%) ArcSight
13 35 (4.70%) VMware
14 31 (4.16%) Apple
15 29 (3.89%) Oracle
16 27 (3.62%) Forcepoint
17 22 (2.95%) Symantec
18 20 (2.68%) Varonis
19 15 (2.01%) BeyondTrust
19 15 (2.01%) CyberArk