Period
to 12 June 2021

The following table provides summary statistics for permanent job vacancies with a requirement for Vulnerability Management skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Vulnerability Management over the 6 months to 12 June 2021 with a comparison to the same period in the previous 2 years.

Vulnerability Management
UK
6 months to
12 Jun 2021
Same period 2020 Same period 2019
Rank 471 414 572
Rank change year-on-year -57 +158 -49
Permanent jobs citing Vulnerability Management 581 570 688
As % of all permanent jobs advertised in the UK 0.58% 0.68% 0.48%
As % of the Processes & Methodologies category 0.62% 0.73% 0.52%
Number of salaries quoted 384 456 556
10th Percentile £42,650 £35,923 £37,500
25th Percentile £52,500 £46,250 £46,250
Median annual salary (50th Percentile) £65,000 £60,000 £61,875
Median % change year-on-year +8.33% -3.03% -1.00%
75th Percentile £81,250 £75,000 £86,250
90th Percentile £95,000 £88,125 £106,250
UK excluding London median annual salary £55,000 £55,000 £55,000

Vulnerability Management is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 93,157 77,966 132,717
As % of all permanent IT jobs advertised in the UK 93.10% 92.34% 92.35%
Number of salaries quoted 65,671 62,581 105,227
10th Percentile £32,500 £31,250 £30,000
25th Percentile £41,250 £41,250 £37,500
Median annual salary (50th Percentile) £55,000 £55,000 £52,500
Median % change year-on-year - +4.76% +5.00%
75th Percentile £75,000 £73,750 £70,000
90th Percentile £91,250 £90,000 £86,250
UK excluding London median annual salary £48,900 £47,500 £45,000
% change year-on-year +2.95% +5.56% -

Vulnerability Management
Job Vacancy Trend

Job postings citing Vulnerability Management as a proportion of all IT jobs advertised.

Job vacancy trend for Vulnerability Management in the UK

Vulnerability Management
Salary Trend

3-month moving average salary quoted in jobs citing Vulnerability Management.

Salary trend for Vulnerability Management in the UK

Vulnerability Management
Salary Histogram

Salary distribution for jobs citing Vulnerability Management over the 6 months to 12 June 2021.

Salary histogram for Vulnerability Management in the UK

Vulnerability Management
Top 16 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Vulnerability Management within the UK over the 6 months to 12 June 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -29 537 £65,000 +8.33% 74
London -12 287 £75,000 +15.38% 28
UK excluding London -55 269 £55,000 - 53
Work from Home -199 69 £65,000 -10.34% 15
Midlands -11 67 £62,500 +8.70% 7
South East -41 59 £55,000 -8.33% 22
North of England -32 58 £55,000 +10.00% 11
East of England +3 47 £52,500 +5.00% 1
West Midlands -23 37 £62,500 +4.60% 5
Scotland -37 29 £42,000 +20.00% 5
North West -20 28 £65,000 +14.54% 7
East Midlands -7 26 £52,500 +22.09% 2
Yorkshire -41 24 £55,000 +41.03% 2
South West -65 10 £55,000 +37.50% 5
North East -2 8 £59,500 +8.18% 2
Wales -11 1 £52,500 +23.53% 2

For the 6 months to 12 June 2021, IT jobs citing Vulnerability Management also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for Vulnerability Management.

1 303 (52.15%) Cybersecurity
2 285 (49.05%) Information Security
3 187 (32.19%) Security Operations
4 182 (31.33%) SIEM
5 160 (27.54%) Azure
6 153 (26.33%) AWS
7 144 (24.78%) Social Skills
8 138 (23.75%) Firewall
9 132 (22.72%) Finance
10 130 (22.38%) ISO/IEC 27001
11 122 (21.00%) CISSP
11 122 (21.00%) Penetration Testing
12 121 (20.83%) Microsoft
13 108 (18.59%) Windows
14 102 (17.56%) Management Information System
15 93 (16.01%) Threat Intelligence
16 88 (15.15%) Network Security
17 86 (14.80%) CISM
17 86 (14.80%) Degree
18 81 (13.94%) Risk Management
19 80 (13.77%) NIST
20 79 (13.60%) DevOps
20 79 (13.60%) Agile Software Development
21 77 (13.25%) Linux
22 75 (12.91%) PCI DSS
23 72 (12.39%) Security Architecture
24 68 (11.70%) CEH
25 67 (11.53%) Cyberthreat
25 67 (11.53%) Cyber Threat Intelligence
26 66 (11.36%) Microsoft 365

Vulnerability Management
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 9 (1.55%) IIS
2 5 (0.86%) Apache
2 5 (0.86%) SharePoint
3 4 (0.69%) Confluence
4 3 (0.52%) Exchange Server 2010
4 3 (0.52%) MS Exchange
5 2 (0.34%) Elasticsearch
Applications
1 12 (2.07%) Microsoft Office
2 7 (1.20%) Microsoft PowerPoint
3 4 (0.69%) Microsoft Excel
Business Applications
1 8 (1.38%) Sentinel
2 3 (0.52%) NetSuite
3 1 (0.17%) Temenos T24
Cloud Services
1 160 (27.54%) Azure
2 153 (26.33%) AWS
3 66 (11.36%) Microsoft 365
4 49 (8.43%) SaaS
5 40 (6.88%) GCP
6 30 (5.16%) PaaS
7 29 (4.99%) Serverless
8 28 (4.82%) IaaS
9 23 (3.96%) Azure Active Directory
10 20 (3.44%) AWS Lambda
10 20 (3.44%) Cloud Computing
11 13 (2.24%) Azure Sentinel
11 13 (2.24%) GitHub
12 12 (2.07%) Power Platform
13 11 (1.89%) Azure Key Vault
14 10 (1.72%) OpenShift
15 9 (1.55%) Amazon EC2
15 9 (1.55%) Amazon S3
15 9 (1.55%) PowerApps
15 9 (1.55%) Virtual Private Cloud
Communications & Networking
1 138 (23.75%) Firewall
2 88 (15.15%) Network Security
3 45 (7.75%) TCP/IP
4 37 (6.37%) VPN
5 30 (5.16%) Intrusion Detection
6 22 (3.79%) DNS
7 15 (2.58%) HTTP
7 15 (2.58%) LAN
8 14 (2.41%) Cisco Nexus
8 14 (2.41%) Internet
9 11 (1.89%) DHCP
9 11 (1.89%) ICMP
9 11 (1.89%) WAN
10 10 (1.72%) SNMP
11 8 (1.38%) Cisco ISE
11 8 (1.38%) DMZ
11 8 (1.38%) Wireless
12 7 (1.20%) IPv4
13 6 (1.03%) 802.11
13 6 (1.03%) SAN
Database & Business Intelligence
1 8 (1.38%) Amazon RDS
1 8 (1.38%) SQL Server
2 4 (0.69%) Blockchain
2 4 (0.69%) Power BI
3 3 (0.52%) Azure SQL Database
3 3 (0.52%) Data Warehouse
3 3 (0.52%) SQL Server 2012
3 3 (0.52%) SQL Server 2016
4 2 (0.34%) BusinessObjects
4 2 (0.34%) RDBMS
4 2 (0.34%) Relational Database
4 2 (0.34%) SAP HANA
4 2 (0.34%) Tableau
4 2 (0.34%) Tableau Server
5 1 (0.17%) GIS
5 1 (0.17%) PostgreSQL
Development Applications
1 23 (3.96%) Jenkins
2 20 (3.44%) Git (software)
3 13 (2.24%) Sonatype Nexus
4 12 (2.07%) Metasploit
5 8 (1.38%) Burp Suite
6 7 (1.20%) Snyk
7 5 (0.86%) GitLab
8 3 (0.52%) MSI
9 2 (0.34%) JIRA
9 2 (0.34%) Maven
9 2 (0.34%) TeamCity
General
1 144 (24.78%) Social Skills
2 132 (22.72%) Finance
3 42 (7.23%) Legal
4 40 (6.88%) Analytical Skills
5 35 (6.02%) Banking
6 34 (5.85%) Retail
7 20 (3.44%) Law
8 19 (3.27%) Manufacturing
9 12 (2.07%) Police
9 12 (2.07%) Presentation Skills
9 12 (2.07%) Public Sector
10 6 (1.03%) Influencing Skills
11 5 (0.86%) Aerospace
11 5 (0.86%) Military
12 3 (0.52%) Marketing
12 3 (0.52%) Retail Banking
12 3 (0.52%) Telecoms
13 2 (0.34%) Financial Institution
13 2 (0.34%) French Language
13 2 (0.34%) German Language
Job Titles
1 127 (21.86%) Analyst
2 120 (20.65%) Security Engineer
3 87 (14.97%) Security Analyst
4 63 (10.84%) Consultant
5 48 (8.26%) Security Consultant
6 45 (7.75%) Architect
6 45 (7.75%) Security Manager
7 41 (7.06%) Security Architect
8 31 (5.34%) Vulnerability Analyst
9 27 (4.65%) IT Engineer
9 27 (4.65%) IT Security Engineer
10 25 (4.30%) Cybersecurity Engineer
11 23 (3.96%) Information Analyst
11 23 (3.96%) Information Security Analyst
12 22 (3.79%) Cybersecurity Consultant
12 22 (3.79%) Security Specialist
13 21 (3.61%) IT Analyst
14 19 (3.27%) IT Security Analyst
15 17 (2.93%) Security Officer
16 16 (2.75%) Cloud Engineer
Libraries, Frameworks & Software Standards
1 13 (2.24%) .NET
2 12 (2.07%) CGI
3 11 (1.89%) SAML
4 8 (1.38%) 802.1X
4 8 (1.38%) Elastic Stack
4 8 (1.38%) OAuth
4 8 (1.38%) OpenID
5 6 (1.03%) Middleware
6 4 (0.69%) ISPF
6 4 (0.69%) Web Services
7 3 (0.52%) .NET Framework
7 3 (0.52%) LDAP
8 2 (0.34%) .NET Core
8 2 (0.34%) Apache Flex
8 2 (0.34%) Hibernate
8 2 (0.34%) Java EE
8 2 (0.34%) RESTful
8 2 (0.34%) SOAP
8 2 (0.34%) Spring
8 2 (0.34%) XML
Miscellaneous
1 102 (17.56%) Management Information System
2 67 (11.53%) Cyberthreat
3 39 (6.71%) Public Cloud
4 36 (6.20%) Security Operations Centre
5 23 (3.96%) Cyber Kill Chain
6 21 (3.61%) Distributed Denial-of-Service
7 18 (3.10%) Mobile App
8 13 (2.24%) Cyber Defence
9 12 (2.07%) Smart Meter
10 11 (1.89%) Data Centre
11 10 (1.72%) Cloud Native
12 9 (1.55%) Cyberattack
12 9 (1.55%) Self-Motivation
13 8 (1.38%) PKI
13 8 (1.38%) Video Conferencing
14 6 (1.03%) BYOD
14 6 (1.03%) Virtual Team
15 5 (0.86%) Linux Command Line
15 5 (0.86%) SCADA
16 4 (0.69%) Data Protection Act
Operating Systems
1 108 (18.59%) Windows
2 77 (13.25%) Linux
3 31 (5.34%) Windows Server
4 12 (2.07%) Kali Linux
4 12 (2.07%) Unix
5 11 (1.89%) Mac OS
5 11 (1.89%) Windows 10
6 10 (1.72%) Windows Server 2019
7 7 (1.20%) Windows Server 2012
7 7 (1.20%) Windows Server 2016
8 5 (0.86%) Red Hat Enterprise Linux
8 5 (0.86%) Windows Server 2008
9 4 (0.69%) VMS
10 2 (0.34%) SUSE
11 1 (0.17%) Oracle Linux
Processes & Methodologies
1 303 (52.15%) Cybersecurity
2 285 (49.05%) Information Security
3 187 (32.19%) Security Operations
4 182 (31.33%) SIEM
5 122 (21.00%) Penetration Testing
6 93 (16.01%) Threat Intelligence
7 81 (13.94%) Risk Management
8 79 (13.60%) Agile Software Development
8 79 (13.60%) DevOps
9 72 (12.39%) Security Architecture
10 67 (11.53%) Cyber Threat Intelligence
11 66 (11.36%) OWASP
12 62 (10.67%) Security Monitoring
13 59 (10.15%) Vulnerability Scanning
14 52 (8.95%) Security Testing
15 49 (8.43%) DevSecOps
15 49 (8.43%) Security Management
16 48 (8.26%) Incident Management
17 43 (7.40%) Identity Access Management
18 42 (7.23%) Mentoring
Programming Languages
1 62 (10.67%) PowerShell
1 62 (10.67%) Python
2 25 (4.30%) SQL
3 15 (2.58%) Bash Shell
4 14 (2.41%) C#
5 9 (1.55%) T-SQL
6 8 (1.38%) Ruby
7 7 (1.20%) Java
8 6 (1.03%) C++
8 6 (1.03%) Lua
9 5 (0.86%) C
10 3 (0.52%) PHP
11 2 (0.34%) Groovy
11 2 (0.34%) JavaScript
12 1 (0.17%) Go
12 1 (0.17%) Shell Script
Qualifications
1 122 (21.00%) CISSP
2 86 (14.80%) CISM
2 86 (14.80%) Degree
3 68 (11.70%) CEH
4 46 (7.92%) CISA
5 40 (6.88%) Cisco Certification
5 40 (6.88%) CompTIA Security+
6 31 (5.34%) SANS
6 31 (5.34%) Security Cleared
7 26 (4.48%) OSCP
8 25 (4.30%) Microsoft Certification
8 25 (4.30%) SSCP
9 22 (3.79%) GIAC
10 19 (3.27%) Computer Science Degree
11 18 (3.10%) (ISC)2 CCSP
12 16 (2.75%) MCSE
13 12 (2.07%) CCSP
13 12 (2.07%) ISSAP
14 11 (1.89%) CRISC
14 11 (1.89%) SC Cleared
Quality Assurance & Compliance
1 130 (22.38%) ISO/IEC 27001
2 80 (13.77%) NIST
3 75 (12.91%) PCI DSS
4 55 (9.47%) GDPR
5 52 (8.95%) Cyber Essentials
6 23 (3.96%) Cyber Essentials PLUS
7 20 (3.44%) SLA
8 14 (2.41%) GRC
9 12 (2.07%) NCSC
10 10 (1.72%) Sarbanes-Oxley
11 8 (1.38%) COBIT
12 7 (1.20%) QA
13 6 (1.03%) SOC 2
14 4 (0.69%) ISO 9001
14 4 (0.69%) PMO
15 3 (0.52%) Actionable Recommendations
15 3 (0.52%) FedRAMP
16 2 (0.34%) HMG Security Policy Framework
16 2 (0.34%) ISO 31000
16 2 (0.34%) ISO/IEC 27005
System Software
1 65 (11.19%) Active Directory
2 29 (4.99%) VMware Infrastructure
3 26 (4.48%) Docker
4 13 (2.24%) Virtual Machines
5 8 (1.38%) Hyper-V
6 7 (1.20%) Virtual Desktop
7 6 (1.03%) Microsoft Virtual Server
7 6 (1.03%) Virtual Servers
8 4 (0.69%) Firmware
8 4 (0.69%) Terminal Server
8 4 (0.69%) vSphere
9 3 (0.52%) Microsoft App-V
9 3 (0.52%) XenApp
10 2 (0.34%) Snort
10 2 (0.34%) VMware ESXi
11 1 (0.17%) Citrix Hypervisor
Systems Management
1 48 (8.26%) Nessus
2 35 (6.02%) Terraform
3 28 (4.82%) SCCM
4 26 (4.48%) Kubernetes
5 18 (3.10%) Ansible
5 18 (3.10%) CASB
6 13 (2.24%) Nmap
7 11 (1.89%) Puppet
8 10 (1.72%) Nexpose
9 8 (1.38%) Microsoft Intune
10 7 (1.20%) QRadar
10 7 (1.20%) SCOM
11 5 (0.86%) Computer Incident Response Team
11 5 (0.86%) McAfee ePO
12 4 (0.69%) CSIRT
12 4 (0.69%) Nagios
13 3 (0.52%) Packer
14 2 (0.34%) Host Intrusion Detection System
14 2 (0.34%) Jamf Pro
14 2 (0.34%) Network Intrusion Detection System
Vendors
1 121 (20.83%) Microsoft
2 57 (9.81%) Qualys
3 39 (6.71%) VMware
4 37 (6.37%) Cisco
5 35 (6.02%) Splunk
6 27 (4.65%) Palo Alto
7 24 (4.13%) Google
8 19 (3.27%) Rapid7
9 12 (2.07%) Citrix
10 11 (1.89%) CheckPoint
10 11 (1.89%) LogRhythm
11 10 (1.72%) CyberArk
12 9 (1.55%) Oracle
13 8 (1.38%) McAfee
13 8 (1.38%) ServiceNow
14 7 (1.20%) CrowdStrike
14 7 (1.20%) Fortinet
15 6 (1.03%) Meraki
15 6 (1.03%) Red Hat
16 5 (0.86%) Sophos