Period
to 20 July 2018

The following table provides summary statistics for permanent job vacancies with a requirement for Vulnerability Management skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Vulnerability Management over the 6 months to 20 July 2018 with a comparison to the same period in the previous 2 years.

Vulnerability Management
UK
6 months to
20 Jul 2018
Same period 2017 Same period 2016
Rank 467 631 680
Rank change year-on-year +164 +49 +204
Permanent jobs citing Vulnerability Management 1,071 681 706
As % of all permanent IT jobs advertised in the UK 0.61% 0.38% 0.35%
As % of the Processes & Methodologies category 0.67% 0.42% 0.39%
Number of salaries quoted 837 541 583
UK median annual salary £65,000 £57,500 £57,500
Median salary % change year-on-year +13.04% - +4.55%
10th Percentile £41,575 £37,000 £42,000
90th Percentile £86,250 £86,250 £80,200
UK excluding London median annual salary £55,000 £47,500 £52,500
% change year-on-year +15.79% -9.52% +10.53%

Vulnerability Management is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 158,731 160,892 182,711
As % of all permanent IT jobs advertised in the UK 90.67% 90.74% 90.02%
Number of salaries quoted 126,853 129,433 151,996
UK median annual salary £50,000 £49,500 £47,500
Median salary % change year-on-year +1.01% +4.21% -
10th Percentile £29,000 £28,000 £27,500
90th Percentile £82,500 £80,000 £77,500
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - +1.19%

Vulnerability Management
Job Vacancy Trend

Job postings citing Vulnerability Management as a percentage of all IT jobs advertised.

Job vacancy trend for Vulnerability Management in the UK

Vulnerability Management
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Vulnerability Management.

Salary trend for Vulnerability Management in the UK

Vulnerability Management
Salary Histogram

The salary distribution of IT jobs citing Vulnerability Management over the 6 months to 20 July 2018.

Salary histogram for Vulnerability Management in the UK

Vulnerability Management
Top 14 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Vulnerability Management within the UK over the 6 months to 20 July 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +162 1,021 £62,500 +8.70% 70
London +92 549 £65,000 -3.70% 33
UK excluding London +188 515 £55,000 +15.79% 43
East of England +119 142 £54,000 +8.00% 8
South East +41 141 £55,000 +8.64% 5
North of England +74 116 £60,000 +20.00% 19
North West +64 67 £60,000 +50.00% 2
Midlands +19 57 £66,250 +47.22% 4
Yorkshire +43 49 £51,250 +2.50% 17
Scotland +16 44 £65,000 +46.89% 5
West Midlands +21 31 £67,500 +39.18% 3
South West +11 27 £53,250 -3.18% 1
East Midlands +27 26 £65,000 +52.94% 1
Wales +6 3 £35,000 +75.00%

For the 6 months to 20 July 2018, IT jobs citing Vulnerability Management also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for Vulnerability Management.

1 549 (51.26%) Information Security
2 544 (50.79%) Cybersecurity
3 537 (50.14%) SIEM
4 498 (46.50%) Firewall
5 391 (36.51%) CISSP
6 289 (26.98%) Security Operations
7 274 (25.58%) ISO/IEC 27001
8 250 (23.34%) Network Security
9 239 (22.32%) Finance
10 231 (21.57%) Qualys
11 214 (19.98%) Windows
12 207 (19.33%) CISM
13 189 (17.65%) Linux
14 177 (16.53%) Risk Management
15 174 (16.25%) Incident Management
16 168 (15.69%) Splunk
16 168 (15.69%) Data Loss Prevention
17 160 (14.94%) Penetration Testing
18 149 (13.91%) ITIL
19 145 (13.54%) Vulnerability Scanning
19 145 (13.54%) Distributed Denial-of-Service
20 144 (13.45%) PCI DSS
21 135 (12.61%) Management Information System
22 134 (12.51%) Cisco Certification
23 133 (12.42%) Security Architecture
24 132 (12.32%) Identity Access Management
25 131 (12.23%) GDPR
25 131 (12.23%) Data Protection
26 129 (12.04%) Cisco
27 127 (11.86%) TCP/IP

Vulnerability Management
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 21 (1.96%) IIS
2 15 (1.40%) JBoss
2 15 (1.40%) Tomcat
3 13 (1.21%) Apache
4 12 (1.12%) MS Exchange
5 7 (0.65%) WebLogic
6 4 (0.37%) SharePoint
7 2 (0.19%) Apache Spark
8 1 (0.093%) Confluence
8 1 (0.093%) Exchange Server 2007
Applications
1 27 (2.52%) Microsoft Office
2 15 (1.40%) Microsoft PowerPoint
3 13 (1.21%) MS Visio
4 1 (0.093%) Microsoft Excel
Business Applications
1 2 (0.19%) Dynamics CRM
2 1 (0.093%) Remedy ITSM
Cloud Services
1 111 (10.36%) Amazon AWS
2 96 (8.96%) Microsoft Azure
3 40 (3.73%) PaaS
4 38 (3.55%) SaaS
5 24 (2.24%) Cloud Computing
6 19 (1.77%) IaaS
6 19 (1.77%) Office 365
7 6 (0.56%) Virtual Private Cloud
8 5 (0.47%) Google Cloud Platform
9 3 (0.28%) Amazon EC2
9 3 (0.28%) Amazon S3
9 3 (0.28%) AWS CloudTrail
9 3 (0.28%) AWS Lambda
9 3 (0.28%) OneDrive
9 3 (0.28%) Route 53
9 3 (0.28%) Serverless
10 2 (0.19%) G Suite
10 2 (0.19%) Mimecast
11 1 (0.093%) AWS CloudFormation
11 1 (0.093%) Azure Active Directory
Communications & Networking
1 498 (46.50%) Firewall
2 250 (23.34%) Network Security
3 127 (11.86%) TCP/IP
3 127 (11.86%) VPN
4 98 (9.15%) WAN
5 93 (8.68%) LAN
6 74 (6.91%) SSL
7 64 (5.98%) Intrusion Detection
8 55 (5.14%) DNS
9 50 (4.67%) WLAN
10 48 (4.48%) Cisco ASA
11 41 (3.83%) IPsec
12 37 (3.45%) HTTP
13 35 (3.27%) MPLS
13 35 (3.27%) VLAN
14 33 (3.08%) DHCP
15 30 (2.80%) VoIP
15 30 (2.80%) Wireless
16 24 (2.24%) Cisco Firepower
17 22 (2.05%) Internet
Database & Business Intelligence
1 11 (1.03%) Big Data
2 8 (0.75%) MySQL
3 7 (0.65%) Relational Database
4 5 (0.47%) Apache Cassandra
4 5 (0.47%) MongoDB
4 5 (0.47%) NoSQL
5 3 (0.28%) Amazon DynamoDB
5 3 (0.28%) Amazon RDS
5 3 (0.28%) Hadoop
5 3 (0.28%) SQL Server
6 2 (0.19%) Apache Hive
6 2 (0.19%) Geospatial Data
6 2 (0.19%) Power BI
6 2 (0.19%) SQL Server 2008
6 2 (0.19%) SQL Server 2014
7 1 (0.093%) GIS
Development Applications
1 23 (2.15%) Metasploit
2 4 (0.37%) Burp Suite
3 3 (0.28%) Git (software)
4 2 (0.19%) Jenkins
5 1 (0.093%) Bitbucket
5 1 (0.093%) JIRA
5 1 (0.093%) TeamCity
General
1 239 (22.32%) Finance
2 86 (8.03%) Banking
3 59 (5.51%) Investment Banking
4 45 (4.20%) Retail
5 25 (2.33%) Legal
6 20 (1.87%) Telecoms
7 19 (1.77%) Law
8 15 (1.40%) Financial Institution
9 13 (1.21%) Games
10 12 (1.12%) Advertising
11 10 (0.93%) German Language
12 6 (0.56%) Spanish Language
13 4 (0.37%) French Language
13 4 (0.37%) Italian Language
13 4 (0.37%) Marketing
14 2 (0.19%) Billing
14 2 (0.19%) Pharmaceutical
15 1 (0.093%) Back Office
15 1 (0.093%) Military
Job Titles
1 204 (19.05%) Analyst
2 187 (17.46%) Security Engineer
3 163 (15.22%) Security Analyst
4 126 (11.76%) Consultant
5 125 (11.67%) Security Manager
6 124 (11.58%) Security Consultant
7 103 (9.62%) Architect
8 98 (9.15%) Security Architect
9 58 (5.42%) IT Consultant
9 58 (5.42%) IT Security Consultant
10 57 (5.32%) IT Manager
11 51 (4.76%) Infrastructure Engineer
12 46 (4.30%) Security Officer
12 46 (4.30%) Security Solutions Architect
12 46 (4.30%) Solutions Architect
13 45 (4.20%) Cybersecurity Consultant
13 45 (4.20%) Network Engineer
13 45 (4.20%) Security Specialist
14 44 (4.11%) IT Analyst
14 44 (4.11%) IT Security Analyst
Libraries, Frameworks & Software Standards
1 24 (2.24%) LDAP
2 23 (2.15%) Web Services
3 10 (0.93%) SAML
4 9 (0.84%) LAMP
5 8 (0.75%) Middleware
5 8 (0.75%) REST
6 7 (0.65%) .NET
6 7 (0.65%) OAuth
6 7 (0.65%) SOAP
6 7 (0.65%) Spring Boot
6 7 (0.65%) Zuul
7 6 (0.56%) Elastic Stack
8 2 (0.19%) Java EE
8 2 (0.19%) RESTful
9 1 (0.093%) JSON
9 1 (0.093%) Regular Expression
Miscellaneous
1 145 (13.54%) Distributed Denial-of-Service
2 135 (12.61%) Management Information System
3 118 (11.02%) Security Operations Centre
4 103 (9.62%) Analytical Skills
5 97 (9.06%) PKI
6 82 (7.66%) Cyberthreat
7 76 (7.10%) Data Protection Act
8 64 (5.98%) Data Centre
9 46 (4.30%) Fintech
10 42 (3.92%) Computer Science
11 28 (2.61%) Self-Motivation
12 18 (1.68%) Cyber Kill Chain
13 15 (1.40%) Enterprise Software
14 13 (1.21%) Virtual Team
15 10 (0.93%) Public Cloud
16 7 (0.65%) Clustering
16 7 (0.65%) Cyberattack
17 6 (0.56%) BYOD
18 5 (0.47%) Enterprise Cloud
18 5 (0.47%) Private Cloud
Operating Systems
1 214 (19.98%) Windows
2 189 (17.65%) Linux
3 96 (8.96%) Windows Server
4 39 (3.64%) Unix
5 29 (2.71%) Kali Linux
6 27 (2.52%) Mac OS X
7 22 (2.05%) Apple iOS
7 22 (2.05%) Windows Server 2008
8 11 (1.03%) Windows 7
9 10 (0.93%) CentOS
10 9 (0.84%) Red Hat Enterprise Linux
10 9 (0.84%) Windows Server 2012
11 8 (0.75%) Windows 10
12 5 (0.47%) DC/OS
12 5 (0.47%) Oracle Linux
13 4 (0.37%) VMS
14 2 (0.19%) AIX
14 2 (0.19%) Solaris
15 1 (0.093%) Ubuntu
Processes & Methodologies
1 549 (51.26%) Information Security
2 544 (50.79%) Cybersecurity
3 537 (50.14%) SIEM
4 289 (26.98%) Security Operations
5 177 (16.53%) Risk Management
6 174 (16.25%) Incident Management
7 168 (15.69%) Data Loss Prevention
8 160 (14.94%) Penetration Testing
9 149 (13.91%) ITIL
10 145 (13.54%) Vulnerability Scanning
11 133 (12.42%) Security Architecture
12 132 (12.32%) Identity Access Management
13 131 (12.23%) Data Protection
14 115 (10.74%) Stakeholder Management
15 106 (9.90%) Threat Management
16 100 (9.34%) Agile Software Development
17 96 (8.96%) Problem-Solving
18 95 (8.87%) Continuous Improvement
19 93 (8.68%) Security Management
20 86 (8.03%) Business Continuity
Programming Languages
1 51 (4.76%) Python
2 40 (3.73%) Bash Shell
3 26 (2.43%) PowerShell
4 25 (2.33%) Perl
5 18 (1.68%) Ruby
6 15 (1.40%) C
7 14 (1.31%) Java
8 10 (0.93%) C#
9 9 (0.84%) JavaScript
9 9 (0.84%) PHP
10 8 (0.75%) Go
10 8 (0.75%) SQL
11 4 (0.37%) C++
12 2 (0.19%) Bourne shell
12 2 (0.19%) Korn
13 1 (0.093%) Shell Script
Qualifications
1 391 (36.51%) CISSP
2 207 (19.33%) CISM
3 134 (12.51%) Cisco Certification
4 116 (10.83%) CEH
5 107 (9.99%) CISA
6 106 (9.90%) Degree
7 75 (7.00%) GIAC
8 69 (6.44%) CCNP
9 65 (6.07%) Security Cleared
10 62 (5.79%) SANS
11 57 (5.32%) SC Cleared
12 55 (5.14%) CCDP
13 53 (4.95%) CISMP
14 48 (4.48%) CompTIA Security+
15 41 (3.83%) CCNA
16 40 (3.73%) GCIH
17 37 (3.45%) SSCP
18 32 (2.99%) CREST Certified
19 26 (2.43%) (ISC)2 CCSP
19 26 (2.43%) OSCP
Quality Assurance & Compliance
1 274 (25.58%) ISO/IEC 27001
2 144 (13.45%) PCI DSS
3 131 (12.23%) GDPR
4 79 (7.38%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 33 (3.08%) COBIT
6 28 (2.61%) Cyber Essentials
7 18 (1.68%) SLA
8 9 (0.84%) Sarbanes-Oxley
9 8 (0.75%) Cyber Essentials PLUS
10 5 (0.47%) ISO 9001
11 4 (0.37%) Government Security Classifications
11 4 (0.37%) HIPAA
11 4 (0.37%) HMG Security Policy Framework
11 4 (0.37%) QA
12 2 (0.19%) ISAE 3402
13 1 (0.093%) FISMA
13 1 (0.093%) GPG13
13 1 (0.093%) ISO/IEC 27005
13 1 (0.093%) NIST 800
13 1 (0.093%) PMO
System Software
1 93 (8.68%) Active Directory
2 31 (2.89%) VMware Infrastructure
3 18 (1.68%) Virtual Machines
4 12 (1.12%) Firmware
5 11 (1.03%) ProxySG
6 8 (0.75%) Hyper-V
7 7 (0.65%) Docker
7 7 (0.65%) Snort
8 2 (0.19%) VMware Workstation
8 2 (0.19%) XenServer
9 1 (0.093%) Squid
Systems Management
1 125 (11.67%) Nessus
2 111 (10.36%) QRadar
3 23 (2.15%) Nmap
4 22 (2.05%) McAfee ePO
5 15 (1.40%) Single Sign-On
6 14 (1.31%) CSIRT
7 11 (1.03%) Cisco CUCM
7 11 (1.03%) Cisco UCCX
7 11 (1.03%) TrustSec
8 9 (0.84%) Failover Clustering
9 8 (0.75%) WSUS
10 7 (0.65%) CASB
10 7 (0.65%) Kubernetes
10 7 (0.65%) SCCM
11 6 (0.56%) Core Impact
11 6 (0.56%) Nexpose
11 6 (0.56%) Norton AntiVirus
11 6 (0.56%) Tivoli Storage Manager
12 5 (0.47%) Docker Swarm
12 5 (0.47%) Host Intrusion Detection System
Vendors
1 231 (21.57%) Qualys
2 168 (15.69%) Splunk
3 129 (12.04%) Cisco
4 86 (8.03%) CheckPoint
5 73 (6.82%) Juniper
6 70 (6.54%) Microsoft
7 58 (5.42%) McAfee
8 56 (5.23%) Forcepoint
9 51 (4.76%) Fortinet
10 45 (4.20%) LogRhythm
10 45 (4.20%) Tufin
11 38 (3.55%) F5
11 38 (3.55%) Oracle
12 37 (3.45%) VMware
13 36 (3.36%) ArcSight
14 27 (2.52%) Foundstone
15 23 (2.15%) Apple
16 22 (2.05%) Rapid7
17 21 (1.96%) Dell
18 20 (1.87%) IBM