Period
to 21 October 2017

The following table provides summary statistics for permanent job vacancies with a requirement for Vulnerability Management skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Vulnerability Management over the 6 months to 21 October 2017 with a comparison to the same period in the previous 2 years.

Vulnerability Management
UK
6 months to
21 Oct 2017
Same period 2016 Same period 2015
Rank 619 596 782
Rank change year-on-year -23 +186 +237
Permanent jobs citing Vulnerability Management 642 791 564
As % of all permanent IT jobs advertised in the UK 0.37% 0.41% 0.26%
As % of the Processes & Methodologies category 0.41% 0.46% 0.29%
Number of salaries quoted 519 635 481
UK median annual salary £60,000 £62,500 £55,000
Median salary % change year-on-year -4.00% +13.64% +10.00%
10th Percentile £38,650 £42,500 £36,250
90th Percentile £86,250 £83,250 £77,500
UK excluding London median annual salary £50,000 £53,500 £47,500
% change year-on-year -6.54% +12.63% +18.75%

Vulnerability Management is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 156565 170492 194103
As % of all permanent IT jobs advertised in the UK 89.94% 89.23% 88.60%
Number of salaries quoted 123230 141844 159582
UK median annual salary £50,000 £49,500 £47,500
Median salary % change year-on-year +1.01% +4.21% +5.56%
10th Percentile £28,750 £28,000 £27,500
90th Percentile £80,000 £78,750 £76,250
UK excluding London median annual salary £43,500 £42,500 £42,500
% change year-on-year +2.35% - +6.25%

Vulnerability Management
Job Vacancy Trend

Job postings citing Vulnerability Management as a percentage of all IT jobs advertised.

Job vacancy trend for Vulnerability Management in the UK

Vulnerability Management
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Vulnerability Management.

Salary trend for Vulnerability Management in the UK

Vulnerability Management
Salary Histogram

The salary distribution of IT jobs citing Vulnerability Management over the 6 months to 21 October 2017.

Salary histogram for Vulnerability Management in the UK

Vulnerability Management
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Vulnerability Management within the UK over the 6 months to 21 October 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -33 604 £60,000 -4.00% 25
London +2 417 £65,000 -3.70% 14
UK excluding London -93 198 £50,000 -6.54% 14
South East -7 93 £50,625 -7.95% 3
North of England -17 36 £52,500 +5.00% 2
East of England -6 23 £50,000 -4.76% 3
Yorkshire +22 22 £50,000 +41.84% 1
Midlands +25 17 £49,250 +31.33% 1
South West -1 17 £40,735 -25.94% 2
West Midlands +4 16 £53,500 +42.67% 1
North West -38 14 £62,500 +25.00% 1
Scotland -26 8 £44,250 -11.50% 2
Wales +19 3 £33,000 +65.00%
Northern Ireland - 2 £60,000 - 1
East Midlands +36 1 £30,250 -

For the 6 months to 21 October 2017, IT jobs citing Vulnerability Management also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for Vulnerability Management.

1 420 (65.42%) Information Security
2 349 (54.36%) SIEM
3 339 (52.80%) CISSP
4 330 (51.40%) Firewall
5 289 (45.02%) Cybersecurity
6 259 (40.34%) Security Operations
7 237 (36.92%) Windows
8 229 (35.67%) CISM
9 214 (33.33%) ISO/IEC 27001
10 207 (32.24%) Linux
11 194 (30.22%) Penetration Testing
12 189 (29.44%) Finance
13 157 (24.45%) Vulnerability Scanning
14 150 (23.36%) Network Security
15 142 (22.12%) Security Architecture
16 137 (21.34%) Data Protection
17 135 (21.03%) Active Directory
18 125 (19.47%) TCP/IP
19 120 (18.69%) PCI DSS
20 117 (18.22%) Banking
20 117 (18.22%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
21 116 (18.07%) ITIL
22 103 (16.04%) Data Protection Act
23 102 (15.89%) Windows Server
24 100 (15.58%) CISA
25 98 (15.26%) Management Information System
26 96 (14.95%) Agile Software Development
27 95 (14.80%) Data Loss Prevention
28 93 (14.49%) Degree
29 91 (14.17%) GIAC

Vulnerability Management
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 26 (4.05%) SharePoint
2 9 (1.40%) MS Exchange
3 8 (1.25%) Exchange Server 2007
4 4 (0.62%) IIS
5 3 (0.47%) Apache
5 3 (0.47%) IBM Notes
6 2 (0.31%) nginx
6 2 (0.31%) OpenStack
6 2 (0.31%) Skype for Business
7 1 (0.16%) Confluence
7 1 (0.16%) Exchange Server 2010
7 1 (0.16%) Exchange Server 2013
7 1 (0.16%) JBoss
7 1 (0.16%) Tomcat
Applications
1 25 (3.89%) Microsoft Office
2 9 (1.40%) Microsoft Excel
3 6 (0.93%) Microsoft PowerPoint
4 2 (0.31%) Spreadsheet
5 1 (0.16%) MS Visio
Business Applications
1 10 (1.56%) Dynamics CRM
2 3 (0.47%) Sentinel
3 1 (0.16%) SunGard APT
Cloud Services
1 67 (10.44%) Amazon AWS
2 34 (5.30%) Microsoft Azure
3 21 (3.27%) Office 365
4 18 (2.80%) OneDrive
5 14 (2.18%) Mimecast
6 8 (1.25%) OpenDNS
7 5 (0.78%) Cloud Computing
7 5 (0.78%) IaaS
8 4 (0.62%) SaaS
9 2 (0.31%) AWS Lambda
9 2 (0.31%) PaaS
9 2 (0.31%) Serverless
9 2 (0.31%) Virtual Private Cloud
10 1 (0.16%) AWS CloudFormation
10 1 (0.16%) Google Cloud Platform
Communications & Networking
1 330 (51.40%) Firewall
2 150 (23.36%) Network Security
3 125 (19.47%) TCP/IP
4 60 (9.35%) Intrusion Detection
5 42 (6.54%) VPN
6 25 (3.89%) Internet
7 23 (3.58%) WAN
7 23 (3.58%) Wireless
8 22 (3.43%) LAN
9 17 (2.65%) DHCP
10 16 (2.49%) Cisco ASA
11 14 (2.18%) DNS
12 13 (2.02%) IPsec
12 13 (2.02%) VLAN
13 10 (1.56%) SAN
13 10 (1.56%) SSL
14 8 (1.25%) DMZ
14 8 (1.25%) VoIP
14 8 (1.25%) WLAN
15 7 (1.09%) OSPF
Database & Business Intelligence
1 19 (2.96%) SQL Server
2 6 (0.93%) Big Data
3 3 (0.47%) GIS
3 3 (0.47%) MySQL
4 2 (0.31%) Apache Cassandra
4 2 (0.31%) MongoDB
4 2 (0.31%) NoSQL
4 2 (0.31%) Relational Database
5 1 (0.16%) SQL Server 2008
5 1 (0.16%) SQL Server 2012
5 1 (0.16%) SQL Server 2014
Development Applications
1 16 (2.49%) Metasploit
2 6 (0.93%) Burp Suite
3 3 (0.47%) AppScan
3 3 (0.47%) Sonatype Nexus
4 2 (0.31%) FxCop
4 2 (0.31%) SonarQube
5 1 (0.16%) GitLab
5 1 (0.16%) JIRA
5 1 (0.16%) sqlmap
General
1 189 (29.44%) Finance
2 117 (18.22%) Banking
3 32 (4.98%) Legal
4 25 (3.89%) Law
5 21 (3.27%) Telecoms
6 16 (2.49%) Investment Banking
7 9 (1.40%) Financial Institution
8 8 (1.25%) Multimedia
9 6 (0.93%) Retail
10 5 (0.78%) Electronics
10 5 (0.78%) Manufacturing
10 5 (0.78%) Marketing
11 4 (0.62%) Games
11 4 (0.62%) Military
12 3 (0.47%) International Banking
12 3 (0.47%) Retail Banking
13 2 (0.31%) Advertising
13 2 (0.31%) French Language
14 1 (0.16%) Digital Economy
14 1 (0.16%) Dutch Language
Job Titles
1 204 (31.78%) Analyst
2 161 (25.08%) Security Analyst
3 124 (19.31%) Security Engineer
4 111 (17.29%) Security Manager
5 64 (9.97%) IT Engineer
6 63 (9.81%) IT Security Engineer
7 61 (9.50%) IT Analyst
8 55 (8.57%) IT Security Analyst
9 47 (7.32%) Consultant
10 45 (7.01%) Operations Engineer
11 44 (6.85%) IT Manager
12 43 (6.70%) IT Security Manager
12 43 (6.70%) Security Consultant
13 41 (6.39%) Operations Analyst
13 41 (6.39%) Security Operations Analyst
14 37 (5.76%) Architect
14 37 (5.76%) Information Analyst
14 37 (5.76%) Information Security Analyst
15 36 (5.61%) Security Architect
15 36 (5.61%) Security Specialist
Libraries, Frameworks & Software Standards
1 23 (3.58%) SailPoint
2 18 (2.80%) Web Services
3 5 (0.78%) Middleware
4 3 (0.47%) EDI
5 2 (0.31%) .NET
5 2 (0.31%) FIX Protocol
5 2 (0.31%) RESTful
6 1 (0.16%) OLE
Miscellaneous
1 103 (16.04%) Data Protection Act
2 98 (15.26%) Management Information System
3 72 (11.21%) Analytical Skills
4 52 (8.10%) Security Operations Centre
5 43 (6.70%) Computer Science
6 36 (5.61%) Cyberthreat
7 26 (4.05%) PKI
8 17 (2.65%) Distributed Denial-of-Service
9 14 (2.18%) Cyber Attack
9 14 (2.18%) Data Centre
10 10 (1.56%) CESG
11 8 (1.25%) Linux Command Line
12 6 (0.93%) Blackberry
12 6 (0.93%) Cybercrime
12 6 (0.93%) Fat Client
12 6 (0.93%) Public Cloud
12 6 (0.93%) Thin Client
13 5 (0.78%) BYOD
14 4 (0.62%) Hedge funds
14 4 (0.62%) Virtual Team
Operating Systems
1 237 (36.92%) Windows
2 207 (32.24%) Linux
3 102 (15.89%) Windows Server
4 58 (9.03%) Unix
5 46 (7.17%) Apple iOS
6 41 (6.39%) Mac OS X
7 30 (4.67%) Kali Linux
8 13 (2.02%) Windows 10
9 12 (1.87%) VMS
10 10 (1.56%) Red Hat Enterprise Linux
11 9 (1.40%) CentOS
11 9 (1.40%) Debian
11 9 (1.40%) Windows Server 2008
12 8 (1.25%) Ubuntu
12 8 (1.25%) Windows 7
13 7 (1.09%) Windows Server 2012
14 6 (0.93%) Android
15 1 (0.16%) Solaris
Processes & Methodologies
1 420 (65.42%) Information Security
2 349 (54.36%) SIEM
3 289 (45.02%) Cybersecurity
4 259 (40.34%) Security Operations
5 194 (30.22%) Penetration Testing
6 157 (24.45%) Vulnerability Scanning
7 142 (22.12%) Security Architecture
8 137 (21.34%) Data Protection
9 116 (18.07%) ITIL
10 96 (14.95%) Agile Software Development
11 95 (14.80%) Data Loss Prevention
12 84 (13.08%) DRM
13 82 (12.77%) Risk Management
14 77 (11.99%) Incident Management
15 64 (9.97%) Identity Access Management
16 62 (9.66%) Analytics
17 59 (9.19%) Security Monitoring
18 48 (7.48%) Stakeholder Management
19 43 (6.70%) Ethical Hacking
19 43 (6.70%) Forensic Analysis
Programming Languages
1 45 (7.01%) PowerShell
1 45 (7.01%) Python
2 36 (5.61%) SQL
3 25 (3.89%) C#
4 24 (3.74%) Java
5 23 (3.58%) Perl
6 19 (2.96%) Ruby
7 17 (2.65%) Bash Shell
8 15 (2.34%) Korn
9 10 (1.56%) Bourne shell
10 5 (0.78%) C-shell
11 4 (0.62%) C
11 4 (0.62%) C++
12 3 (0.47%) PHP
12 3 (0.47%) VB
13 2 (0.31%) Go
13 2 (0.31%) VB.NET
Qualifications
1 339 (52.80%) CISSP
2 229 (35.67%) CISM
3 100 (15.58%) CISA
4 93 (14.49%) Degree
5 91 (14.17%) GIAC
6 68 (10.59%) CEH
7 44 (6.85%) Security Cleared
8 43 (6.70%) GSEC
9 41 (6.39%) Cisco Certification
10 33 (5.14%) CREST Certified
11 28 (4.36%) Computer Science Degree
11 28 (4.36%) GCIH
12 27 (4.21%) CCNP
13 26 (4.05%) CRISC
14 25 (3.89%) SANS
15 23 (3.58%) GISF
16 22 (3.43%) OSCP
17 19 (2.96%) SC Cleared
18 18 (2.80%) CCNA
18 18 (2.80%) CISMP
Quality Assurance & Compliance
1 214 (33.33%) ISO/IEC 27001
2 120 (18.69%) PCI DSS
3 117 (18.22%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 34 (5.30%) GDPR
5 12 (1.87%) Cyber Essentials
6 10 (1.56%) SLA
7 8 (1.25%) Cyber Essentials PLUS
7 8 (1.25%) ISO 22301
8 7 (1.09%) ISO/IEC 27005
9 5 (0.78%) Sarbanes-Oxley
10 4 (0.62%) COBIT
11 3 (0.47%) BS25999
11 3 (0.47%) NIST 800
12 2 (0.31%) PMO
13 1 (0.16%) FIPS 140-2
13 1 (0.16%) HIPAA
13 1 (0.16%) HMG Security Policy Framework
13 1 (0.16%) SSAE 16
System Software
1 135 (21.03%) Active Directory
2 33 (5.14%) VMware Infrastructure
3 19 (2.96%) Snort
4 17 (2.65%) Virtual Machines
5 8 (1.25%) Hyper-V
5 8 (1.25%) pfSense
6 7 (1.09%) XenApp
7 5 (0.78%) Virtual Desktop
7 5 (0.78%) vSphere
8 4 (0.62%) BitLocker
9 3 (0.47%) Virtual Servers
9 3 (0.47%) XenDesktop
10 2 (0.31%) Docker
11 1 (0.16%) Firmware
11 1 (0.16%) LXC
11 1 (0.16%) NFS
11 1 (0.16%) Samba
11 1 (0.16%) VirtualBox
11 1 (0.16%) VMware NSX
11 1 (0.16%) Xen
Systems Management
1 68 (10.59%) Nessus
2 39 (6.07%) Nexpose
3 37 (5.76%) QRadar
4 32 (4.98%) SCCM
5 31 (4.83%) WSUS
6 27 (4.21%) Core Impact
6 27 (4.21%) McAfee ePO
7 26 (4.05%) OpenVAS
8 25 (3.89%) CSIRT
9 23 (3.58%) PowerBroker
9 23 (3.58%) RSA Security Analytics
10 19 (2.96%) FortiGate
11 17 (2.65%) EnCase
12 16 (2.49%) Nmap
13 11 (1.71%) Norton AntiVirus
13 11 (1.71%) Suricata
14 7 (1.09%) Host Intrusion Detection System
15 6 (0.93%) Computer Emergency Response Teams
16 3 (0.47%) Network Intrusion Detection System
16 3 (0.47%) OSSEC
Vendors
1 85 (13.24%) Cisco
2 80 (12.46%) LogRhythm
3 75 (11.68%) Palo Alto
4 65 (10.12%) Microsoft
5 62 (9.66%) Qualys
6 54 (8.41%) Symantec
7 48 (7.48%) CheckPoint
7 48 (7.48%) Splunk
8 46 (7.17%) VMware
9 41 (6.39%) ArcSight
10 40 (6.23%) Apple
11 39 (6.07%) CyberArk
11 39 (6.07%) McAfee
12 36 (5.61%) AlienVault
13 29 (4.52%) Fortinet
14 27 (4.21%) SolarWinds
15 23 (3.58%) Aveksa
15 23 (3.58%) Bomgar
16 21 (3.27%) Juniper
17 20 (3.12%) Oracle