Period
to 26 September 2018

The following table provides summary statistics for permanent job vacancies with a requirement for Vulnerability Management skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Vulnerability Management over the 6 months to 26 September 2018 with a comparison to the same period in the previous 2 years.

Vulnerability Management
UK
6 months to
26 Sep 2018
Same period 2017 Same period 2016
Rank 438 627 623
Rank change year-on-year +189 -4 +178
Permanent jobs citing Vulnerability Management 1,140 662 771
As % of all permanent IT jobs advertised in the UK 0.68% 0.37% 0.40%
As % of the Processes & Methodologies category 0.75% 0.41% 0.44%
Number of salaries quoted 895 529 639
UK median annual salary £60,000 £60,000 £60,000
10th Percentile £40,000 £37,500 £42,000
90th Percentile £82,500 £85,000 £82,500
UK excluding London median annual salary £55,000 £50,000 £52,500
% change year-on-year +10.00% -4.76% +7.14%

Vulnerability Management is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 152,403 162,668 175,194
As % of all permanent IT jobs advertised in the UK 91.04% 91.56% 90.88%
Number of salaries quoted 121,268 128,305 146,204
UK median annual salary £50,000 £50,000 £48,000
Median salary % change year-on-year - +4.17% +1.05%
10th Percentile £29,000 £28,250 £27,500
90th Percentile £82,500 £80,000 £78,750
UK excluding London median annual salary £45,000 £42,500 £42,500
% change year-on-year +5.88% - -

Vulnerability Management
Job Vacancy Trend

Job postings citing Vulnerability Management as a percentage of all IT jobs advertised.

Job vacancy trend for Vulnerability Management in the UK

Vulnerability Management
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Vulnerability Management.

Salary trend for Vulnerability Management in the UK

Vulnerability Management
Salary Histogram

The salary distribution of IT jobs citing Vulnerability Management over the 6 months to 26 September 2018.

Salary histogram for Vulnerability Management in the UK

Vulnerability Management
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Vulnerability Management within the UK over the 6 months to 26 September 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +178 1,081 £60,000 - 93
UK excluding London +287 609 £55,000 +10.00% 54
London +96 521 £65,000 - 43
North of England +148 180 £52,500 -4.55% 7
East of England +152 151 £54,000 +8.00% 15
South East +38 130 £55,000 +10.00% 18
North West +117 124 £56,250 -10.00% 1
Midlands +77 73 £63,000 +48.24% 7
Scotland +47 57 £65,000 +49.43% 4
Yorkshire +58 53 £47,500 -11.63% 5
West Midlands +46 38 £67,500 +35.00% 5
East Midlands +35 35 £57,500 +90.08% 2
South West +29 29 £55,000 +31.00% 4
North East - 3 £25,000 - 1
Wales +7 2 £36,500 +9.45%

For the 6 months to 26 September 2018, IT jobs citing Vulnerability Management also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for Vulnerability Management.

1 607 (53.25%) SIEM
2 593 (52.02%) Information Security
3 580 (50.88%) Cybersecurity
4 498 (43.68%) Firewall
5 448 (39.30%) CISSP
6 355 (31.14%) ISO/IEC 27001
7 320 (28.07%) Network Security
8 315 (27.63%) Windows
9 306 (26.84%) Security Operations
10 264 (23.16%) Linux
11 234 (20.53%) Finance
11 234 (20.53%) Qualys
12 208 (18.25%) Management Information System
13 200 (17.54%) Data Protection
14 199 (17.46%) Risk Management
15 195 (17.11%) Penetration Testing
16 189 (16.58%) Splunk
17 183 (16.05%) CISM
18 177 (15.53%) GDPR
19 174 (15.26%) PCI DSS
20 168 (14.74%) Cisco
21 158 (13.86%) Data Loss Prevention
22 154 (13.51%) Incident Management
23 149 (13.07%) Distributed Denial-of-Service
24 139 (12.19%) Vulnerability Scanning
24 139 (12.19%) Security Operations Centre
25 136 (11.93%) CEH
26 132 (11.58%) Business Continuity
26 132 (11.58%) ITIL
27 131 (11.49%) Microsoft

Vulnerability Management
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 23 (2.02%) IIS
2 17 (1.49%) MS Exchange
3 12 (1.05%) Apache
4 7 (0.61%) SharePoint
4 7 (0.61%) Tomcat
5 5 (0.44%) JBoss
6 4 (0.35%) WebLogic
7 3 (0.26%) Exchange Server 2007
8 2 (0.18%) Apache Spark
8 2 (0.18%) Confluence
8 2 (0.18%) Elasticsearch
8 2 (0.18%) Skype for Business
9 1 (0.088%) OpenStack
Applications
1 58 (5.09%) Microsoft PowerPoint
2 34 (2.98%) Microsoft Office
3 15 (1.32%) MS Visio
4 8 (0.70%) Microsoft Project
5 1 (0.088%) Microsoft Excel
Cloud Services
1 113 (9.91%) Amazon AWS
2 97 (8.51%) Microsoft Azure
3 37 (3.25%) PaaS
3 37 (3.25%) SaaS
4 26 (2.28%) Office 365
5 17 (1.49%) IaaS
6 14 (1.23%) Cloud Computing
7 11 (0.96%) Virtual Private Cloud
8 9 (0.79%) Amazon EC2
8 9 (0.79%) Amazon S3
8 9 (0.79%) AWS CloudTrail
8 9 (0.79%) AWS Lambda
8 9 (0.79%) Google Cloud Platform
8 9 (0.79%) Serverless
9 4 (0.35%) Mimecast
9 4 (0.35%) Route 53
10 3 (0.26%) OpenDNS
11 2 (0.18%) G Suite
11 2 (0.18%) OneDrive
12 1 (0.088%) Dropbox
Communications & Networking
1 498 (43.68%) Firewall
2 320 (28.07%) Network Security
3 127 (11.14%) TCP/IP
4 126 (11.05%) VPN
5 94 (8.25%) WAN
6 91 (7.98%) LAN
7 79 (6.93%) Intrusion Detection
8 69 (6.05%) Wi-Fi
9 58 (5.09%) SSL
10 44 (3.86%) DNS
11 43 (3.77%) WLAN
12 42 (3.68%) Cisco ASA
13 39 (3.42%) IPsec
14 34 (2.98%) VoIP
15 29 (2.54%) VLAN
16 28 (2.46%) Wireless
17 27 (2.37%) MPLS
18 21 (1.84%) Cisco IOS
19 20 (1.75%) BGP
19 20 (1.75%) OSPF
Database & Business Intelligence
1 20 (1.75%) Big Data
2 9 (0.79%) Amazon RDS
3 7 (0.61%) Geospatial Data
4 4 (0.35%) Amazon DynamoDB
4 4 (0.35%) SQL Server
5 3 (0.26%) GIS
5 3 (0.26%) Hadoop
6 2 (0.18%) Apache Hive
6 2 (0.18%) InfluxDB
6 2 (0.18%) MongoDB
6 2 (0.18%) MySQL
6 2 (0.18%) PostgreSQL
6 2 (0.18%) Power BI
6 2 (0.18%) Relational Database
6 2 (0.18%) SQL Server 2008
6 2 (0.18%) SQL Server 2014
Development Applications
1 24 (2.11%) Metasploit
2 3 (0.26%) JIRA
3 2 (0.18%) Git (software)
4 1 (0.088%) Bitbucket
4 1 (0.088%) Burp Suite
4 1 (0.088%) Jenkins
4 1 (0.088%) TeamCity
General
1 234 (20.53%) Finance
2 110 (9.65%) Banking
3 85 (7.46%) Investment Banking
4 79 (6.93%) Legal
5 53 (4.65%) Retail
6 23 (2.02%) Telecoms
7 19 (1.67%) Law
8 14 (1.23%) Advertising
9 12 (1.05%) Financial Institution
10 10 (0.88%) Games
11 8 (0.70%) Electronics
11 8 (0.70%) German Language
12 5 (0.44%) Billing
13 4 (0.35%) French Language
13 4 (0.35%) Italian Language
13 4 (0.35%) Spanish Language
14 3 (0.26%) International Banking
14 3 (0.26%) Marketing
15 2 (0.18%) Mandarin Language
15 2 (0.18%) Russian Language
Job Titles
1 252 (22.11%) Analyst
2 193 (16.93%) Security Analyst
3 170 (14.91%) Security Engineer
4 145 (12.72%) Consultant
5 143 (12.54%) Security Consultant
6 120 (10.53%) Security Manager
7 113 (9.91%) Architect
8 100 (8.77%) Security Architect
9 83 (7.28%) IT Analyst
9 83 (7.28%) IT Security Analyst
10 75 (6.58%) Senior Analyst
11 68 (5.96%) Senior Security Analyst
12 67 (5.88%) IT Consultant
12 67 (5.88%) IT Security Consultant
13 58 (5.09%) IT Manager
14 52 (4.56%) Senior IT Security Analyst
15 48 (4.21%) Information Security Architect
16 46 (4.04%) Cybersecurity Consultant
16 46 (4.04%) IT Security Manager
17 44 (3.86%) Cybersecurity Analyst
Libraries, Frameworks & Software Standards
1 27 (2.37%) Web Services
2 8 (0.70%) Middleware
3 7 (0.61%) SAML
4 6 (0.53%) Regular Expression
5 5 (0.44%) LDAP
5 5 (0.44%) OAuth
6 4 (0.35%) Elastic Stack
6 4 (0.35%) LAMP
7 3 (0.26%) REST
8 2 (0.18%) Java EE
8 2 (0.18%) SOAP
8 2 (0.18%) Spring Boot
8 2 (0.18%) Zuul
9 1 (0.088%) .NET
Miscellaneous
1 208 (18.25%) Management Information System
2 149 (13.07%) Distributed Denial-of-Service
3 139 (12.19%) Security Operations Centre
4 117 (10.26%) PKI
5 111 (9.74%) Analytical Skills
6 96 (8.42%) Data Protection Act
7 87 (7.63%) Data Centre
8 66 (5.79%) Cyberthreat
9 65 (5.70%) Cyber Kill Chain
10 50 (4.39%) Computer Science
11 33 (2.89%) Self-Motivation
12 24 (2.11%) Fintech
13 14 (1.23%) Public Cloud
14 13 (1.14%) CESG
14 13 (1.14%) Cyberattack
14 13 (1.14%) Enterprise Software
15 12 (1.05%) Enterprise Cloud
15 12 (1.05%) Virtual Team
16 11 (0.96%) NHS
17 6 (0.53%) Cyber Defence
Operating Systems
1 315 (27.63%) Windows
2 264 (23.16%) Linux
3 106 (9.30%) Windows Server
4 39 (3.42%) Unix
5 37 (3.25%) Windows Server 2008
6 36 (3.16%) Mac OS X
7 31 (2.72%) Apple iOS
8 27 (2.37%) Kali Linux
9 19 (1.67%) Windows 7
9 19 (1.67%) Windows Server 2012
10 13 (1.14%) Windows 10
11 6 (0.53%) AIX
11 6 (0.53%) VMS
12 5 (0.44%) CentOS
13 3 (0.26%) Debian
13 3 (0.26%) Red Hat Enterprise Linux
14 1 (0.088%) Mac OS
14 1 (0.088%) Solaris
14 1 (0.088%) Ubuntu
Processes & Methodologies
1 607 (53.25%) SIEM
2 593 (52.02%) Information Security
3 580 (50.88%) Cybersecurity
4 306 (26.84%) Security Operations
5 200 (17.54%) Data Protection
6 199 (17.46%) Risk Management
7 195 (17.11%) Penetration Testing
8 158 (13.86%) Data Loss Prevention
9 154 (13.51%) Incident Management
10 139 (12.19%) Vulnerability Scanning
11 132 (11.58%) Business Continuity
11 132 (11.58%) ITIL
12 130 (11.40%) Security Architecture
13 122 (10.70%) Identity Access Management
14 117 (10.26%) Problem-Solving
15 115 (10.09%) Threat Management
16 113 (9.91%) Continuous Improvement
17 108 (9.47%) Disaster Recovery
18 101 (8.86%) Agile Software Development
18 101 (8.86%) Security Management
Programming Languages
1 54 (4.74%) SQL
2 41 (3.60%) Python
3 27 (2.37%) PowerShell
4 22 (1.93%) Perl
5 18 (1.58%) Bash Shell
6 12 (1.05%) Java
6 12 (1.05%) Ruby
7 10 (0.88%) PHP
8 9 (0.79%) Go
9 7 (0.61%) C
10 4 (0.35%) JavaScript
11 3 (0.26%) C++
12 2 (0.18%) C#
Qualifications
1 448 (39.30%) CISSP
2 183 (16.05%) CISM
3 136 (11.93%) CEH
4 111 (9.74%) SANS
5 109 (9.56%) Cisco Certification
6 108 (9.47%) Degree
7 97 (8.51%) GIAC
8 89 (7.81%) CISA
9 87 (7.63%) CompTIA Security+
10 79 (6.93%) Security Cleared
11 73 (6.40%) CISMP
12 71 (6.23%) CREST Certified
12 71 (6.23%) SC Cleared
13 67 (5.88%) CCNP
14 50 (4.39%) CCDP
15 48 (4.21%) SSCP
16 34 (2.98%) GCIH
17 32 (2.81%) Computer Science Degree
18 25 (2.19%) CCNA
19 24 (2.11%) GPEN
Quality Assurance & Compliance
1 355 (31.14%) ISO/IEC 27001
2 177 (15.53%) GDPR
3 174 (15.26%) PCI DSS
4 97 (8.51%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 49 (4.30%) Cyber Essentials
6 33 (2.89%) COBIT
7 22 (1.93%) SLA
8 14 (1.23%) Sarbanes-Oxley
9 11 (0.96%) Cyber Essentials PLUS
10 4 (0.35%) Government Security Classifications
10 4 (0.35%) HIPAA
10 4 (0.35%) HMG Security Policy Framework
10 4 (0.35%) ISO 9001
10 4 (0.35%) PMO
11 2 (0.18%) GPG13
11 2 (0.18%) ISAE 3402
11 2 (0.18%) QA
12 1 (0.088%) ISO/IEC 27005
System Software
1 101 (8.86%) Active Directory
2 77 (6.75%) VMware Infrastructure
3 34 (2.98%) Virtual Machines
4 13 (1.14%) Snort
5 11 (0.96%) Firmware
5 11 (0.96%) Hyper-V
5 11 (0.96%) ProxySG
6 9 (0.79%) vSphere
6 9 (0.79%) XenDesktop
7 8 (0.70%) BitLocker
7 8 (0.70%) Microsoft App-V
7 8 (0.70%) VMware ESXi
8 5 (0.44%) VMware Workstation
9 4 (0.35%) Virtual Servers
10 3 (0.26%) XenServer
11 2 (0.18%) Docker
12 1 (0.088%) PowerHA
12 1 (0.088%) Veritas Cluster Server
Systems Management
1 119 (10.44%) QRadar
2 91 (7.98%) Nessus
3 33 (2.89%) SCCM
4 30 (2.63%) McAfee ePO
4 30 (2.63%) WSUS
5 28 (2.46%) Nmap
6 19 (1.67%) IBM BigFix
7 13 (1.14%) CASB
8 11 (0.96%) Cisco CUCM
8 11 (0.96%) Cisco UCCX
8 11 (0.96%) Host Intrusion Detection System
8 11 (0.96%) Symantec Endpoint Protection
8 11 (0.96%) TrustSec
9 10 (0.88%) CSIRT
9 10 (0.88%) Network Intrusion Detection System
9 10 (0.88%) Opscode Chef
9 10 (0.88%) Puppet
9 10 (0.88%) SCOM
10 9 (0.79%) Single Sign-On
11 8 (0.70%) PowerCLI
Vendors
1 234 (20.53%) Qualys
2 189 (16.58%) Splunk
3 168 (14.74%) Cisco
4 131 (11.49%) Microsoft
5 84 (7.37%) VMware
6 77 (6.75%) CheckPoint
7 59 (5.18%) Juniper
8 57 (5.00%) Forcepoint
9 56 (4.91%) LogRhythm
10 54 (4.74%) ArcSight
11 52 (4.56%) Oracle
12 48 (4.21%) McAfee
13 45 (3.95%) Fortinet
14 39 (3.42%) Tufin
15 33 (2.89%) Apple
16 29 (2.54%) Citrix
17 27 (2.37%) F5
18 26 (2.28%) Symantec
19 25 (2.19%) Dell
19 25 (2.19%) IBM