Period
to 17 October 2017

The following table provides summary statistics for permanent job vacancies with a requirement for Vulnerability Management skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Vulnerability Management over the 6 months to 17 October 2017 with a comparison to the same period in the previous 2 years.

Vulnerability Management
UK
6 months to
17 Oct 2017
Same period 2016 Same period 2015
Rank 622 598 780
Rank change year-on-year -24 +182 +243
Permanent jobs citing Vulnerability Management 648 787 559
As % of all permanent IT jobs advertised in the UK 0.37% 0.41% 0.26%
As % of the Processes & Methodologies category 0.41% 0.46% 0.29%
Number of salaries quoted 525 640 476
UK median annual salary £60,000 £61,000 £55,000
Median salary % change year-on-year -1.64% +10.91% +10.00%
10th Percentile £38,250 £42,500 £36,250
90th Percentile £86,250 £82,500 £77,500
UK excluding London median annual salary £50,000 £54,250 £47,500
% change year-on-year -7.83% +14.21% +18.75%

Vulnerability Management is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Permanent vacancies with a requirement for process or methodology skills 157359 171111 192913
As % of all permanent IT jobs advertised in the UK 89.96% 89.17% 88.57%
Number of salaries quoted 123907 142468 158541
UK median annual salary £50,000 £49,000 £47,500
Median salary % change year-on-year +2.04% +3.16% +5.56%
10th Percentile £28,750 £28,000 £27,500
90th Percentile £80,000 £78,750 £76,250
UK excluding London median annual salary £43,000 £42,500 £42,500
% change year-on-year +1.18% - +6.25%

Vulnerability Management
Job Vacancy Trend

Job postings citing Vulnerability Management as a percentage of all IT jobs advertised.

Job vacancy trend for Vulnerability Management in the UK

Vulnerability Management
Salary Trend

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Vulnerability Management.

Salary trend for Vulnerability Management in the UK

Vulnerability Management
Salary Histogram

The salary distribution of IT jobs citing Vulnerability Management over the 6 months to 17 October 2017.

Salary histogram for Vulnerability Management in the UK

Vulnerability Management
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Vulnerability Management within the UK over the 6 months to 17 October 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -11 609 £60,000 -4.00% 43
London -3 418 £65,000 -3.70% 29
UK excluding London -77 203 £50,000 -7.83% 19
South East +14 94 £50,000 -9.09% 5
North of England -20 39 £55,000 +10.00% 2
Yorkshire +35 25 £52,500 +48.94% 1
East of England -12 22 £50,000 -4.76% 5
Midlands +26 18 £45,000 +20.00% 2
West Midlands +19 17 £49,250 +31.33% 1
South West +11 17 £40,735 -25.94%
North West -29 14 £62,500 +25.00% 1
Scotland -22 9 £43,500 -13.00% 5
Wales +14 3 £33,000 +65.00%
Northern Ireland - 2 £60,000 -
East Midlands +39 1 £30,250 -

For the 6 months to 17 October 2017, IT jobs citing Vulnerability Management also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads with a requirement for Vulnerability Management.

1 418 (64.51%) Information Security
2 352 (54.32%) SIEM
3 341 (52.62%) CISSP
4 332 (51.23%) Firewall
5 283 (43.67%) Cybersecurity
6 263 (40.59%) Security Operations
7 241 (37.19%) Windows
8 233 (35.96%) CISM
9 216 (33.33%) ISO/IEC 27001
10 208 (32.10%) Linux
11 194 (29.94%) Penetration Testing
12 192 (29.63%) Finance
13 156 (24.07%) Vulnerability Scanning
14 152 (23.46%) Network Security
15 141 (21.76%) Security Architecture
16 136 (20.99%) Active Directory
17 135 (20.83%) Data Protection
18 124 (19.14%) TCP/IP
19 123 (18.98%) PCI DSS
20 119 (18.36%) Banking
21 118 (18.21%) ITIL
22 116 (17.90%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
23 103 (15.90%) Windows Server
24 101 (15.59%) Data Protection Act
24 101 (15.59%) CISA
25 100 (15.43%) Management Information System
26 96 (14.81%) Data Loss Prevention
27 94 (14.51%) Agile Software Development
28 91 (14.04%) Degree
29 89 (13.73%) GIAC

Vulnerability Management
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 26 (4.01%) SharePoint
2 9 (1.39%) MS Exchange
3 8 (1.23%) Exchange Server 2007
4 4 (0.62%) IIS
5 3 (0.46%) Apache
5 3 (0.46%) IBM Notes
6 2 (0.31%) nginx
6 2 (0.31%) OpenStack
6 2 (0.31%) Skype for Business
7 1 (0.15%) Confluence
7 1 (0.15%) Exchange Server 2010
7 1 (0.15%) Exchange Server 2013
7 1 (0.15%) JBoss
7 1 (0.15%) Tomcat
Applications
1 25 (3.86%) Microsoft Office
2 9 (1.39%) Microsoft Excel
3 6 (0.93%) Microsoft PowerPoint
4 2 (0.31%) Spreadsheet
5 1 (0.15%) MS Visio
Business Applications
1 10 (1.54%) Dynamics CRM
2 3 (0.46%) Sentinel
3 1 (0.15%) SunGard APT
Cloud Services
1 67 (10.34%) Amazon AWS
2 35 (5.40%) Microsoft Azure
3 22 (3.40%) Office 365
4 18 (2.78%) OneDrive
5 14 (2.16%) Mimecast
6 8 (1.23%) OpenDNS
7 7 (1.08%) Cloud Computing
8 5 (0.77%) IaaS
9 4 (0.62%) SaaS
10 2 (0.31%) AWS Lambda
10 2 (0.31%) PaaS
10 2 (0.31%) Serverless
10 2 (0.31%) Virtual Private Cloud
11 1 (0.15%) AWS CloudFormation
11 1 (0.15%) Google Cloud Platform
Communications & Networking
1 332 (51.23%) Firewall
2 152 (23.46%) Network Security
3 124 (19.14%) TCP/IP
4 58 (8.95%) Intrusion Detection
5 45 (6.94%) VPN
6 26 (4.01%) Internet
7 25 (3.86%) WAN
7 25 (3.86%) Wireless
8 23 (3.55%) LAN
9 17 (2.62%) Cisco ASA
9 17 (2.62%) DHCP
10 15 (2.31%) DNS
11 14 (2.16%) IPsec
11 14 (2.16%) VLAN
12 10 (1.54%) SSL
13 9 (1.39%) SAN
13 9 (1.39%) VoIP
14 8 (1.23%) DMZ
14 8 (1.23%) WLAN
15 7 (1.08%) OSPF
Database & Business Intelligence
1 19 (2.93%) SQL Server
2 7 (1.08%) Big Data
3 3 (0.46%) GIS
3 3 (0.46%) MySQL
4 2 (0.31%) Apache Cassandra
4 2 (0.31%) MongoDB
4 2 (0.31%) NoSQL
4 2 (0.31%) Relational Database
5 1 (0.15%) SQL Server 2008
5 1 (0.15%) SQL Server 2012
5 1 (0.15%) SQL Server 2014
Development Applications
1 15 (2.31%) Metasploit
2 6 (0.93%) Burp Suite
3 4 (0.62%) AppScan
4 3 (0.46%) Sonatype Nexus
5 2 (0.31%) FxCop
5 2 (0.31%) SonarQube
6 1 (0.15%) GitLab
6 1 (0.15%) JIRA
6 1 (0.15%) Paros
6 1 (0.15%) sqlmap
6 1 (0.15%) WebScarab
General
1 192 (29.63%) Finance
2 119 (18.36%) Banking
3 33 (5.09%) Legal
4 25 (3.86%) Law
5 21 (3.24%) Telecoms
6 15 (2.31%) Investment Banking
7 8 (1.23%) Financial Institution
8 7 (1.08%) Retail
9 6 (0.93%) Multimedia
10 5 (0.77%) Electronics
10 5 (0.77%) Manufacturing
10 5 (0.77%) Marketing
11 4 (0.62%) Games
12 3 (0.46%) International Banking
12 3 (0.46%) Military
13 2 (0.31%) Advertising
13 2 (0.31%) Digital Economy
13 2 (0.31%) French Language
13 2 (0.31%) Retail Banking
14 1 (0.15%) Back Office
Job Titles
1 204 (31.48%) Analyst
2 161 (24.85%) Security Analyst
3 124 (19.14%) Security Engineer
4 116 (17.90%) Security Manager
5 63 (9.72%) IT Engineer
6 62 (9.57%) IT Analyst
6 62 (9.57%) IT Security Engineer
7 56 (8.64%) IT Security Analyst
8 46 (7.10%) Consultant
8 46 (7.10%) IT Manager
9 45 (6.94%) IT Security Manager
10 44 (6.79%) Operations Engineer
11 42 (6.48%) Security Consultant
12 40 (6.17%) Operations Analyst
12 40 (6.17%) Security Operations Analyst
13 38 (5.86%) Information Analyst
13 38 (5.86%) Information Security Analyst
14 37 (5.71%) Architect
14 37 (5.71%) Security Specialist
15 36 (5.56%) Security Architect
Libraries, Frameworks & Software Standards
1 23 (3.55%) SailPoint
2 18 (2.78%) Web Services
3 5 (0.77%) Middleware
4 3 (0.46%) EDI
5 2 (0.31%) .NET
5 2 (0.31%) FIX Protocol
5 2 (0.31%) RESTful
6 1 (0.15%) OLE
Miscellaneous
1 101 (15.59%) Data Protection Act
2 100 (15.43%) Management Information System
3 73 (11.27%) Analytical Skills
4 52 (8.02%) Security Operations Centre
5 43 (6.64%) Computer Science
6 37 (5.71%) Cyberthreat
7 28 (4.32%) PKI
8 18 (2.78%) Distributed Denial-of-Service
9 15 (2.31%) Data Centre
10 13 (2.01%) Cyber Attack
11 10 (1.54%) CESG
12 9 (1.39%) Linux Command Line
13 7 (1.08%) Blackberry
13 7 (1.08%) Fat Client
13 7 (1.08%) Thin Client
14 6 (0.93%) Cybercrime
14 6 (0.93%) Public Cloud
15 5 (0.77%) BYOD
16 4 (0.62%) Hedge funds
16 4 (0.62%) Virtual Team
Operating Systems
1 241 (37.19%) Windows
2 208 (32.10%) Linux
3 103 (15.90%) Windows Server
4 59 (9.10%) Unix
5 47 (7.25%) Apple iOS
6 41 (6.33%) Mac OS X
7 30 (4.63%) Kali Linux
8 13 (2.01%) Windows 10
9 12 (1.85%) Red Hat Enterprise Linux
9 12 (1.85%) VMS
10 11 (1.70%) CentOS
10 11 (1.70%) Debian
11 10 (1.54%) Ubuntu
12 9 (1.39%) Windows Server 2008
13 8 (1.23%) Windows 7
14 7 (1.08%) Android
14 7 (1.08%) Windows Server 2012
15 2 (0.31%) Solaris
Processes & Methodologies
1 418 (64.51%) Information Security
2 352 (54.32%) SIEM
3 283 (43.67%) Cybersecurity
4 263 (40.59%) Security Operations
5 194 (29.94%) Penetration Testing
6 156 (24.07%) Vulnerability Scanning
7 141 (21.76%) Security Architecture
8 135 (20.83%) Data Protection
9 118 (18.21%) ITIL
10 96 (14.81%) Data Loss Prevention
11 94 (14.51%) Agile Software Development
12 86 (13.27%) Risk Management
13 83 (12.81%) DRM
14 76 (11.73%) Incident Management
15 62 (9.57%) Analytics
15 62 (9.57%) Identity Access Management
16 60 (9.26%) Security Monitoring
17 49 (7.56%) Stakeholder Management
18 42 (6.48%) Ethical Hacking
18 42 (6.48%) Vulnerability Assessment
Programming Languages
1 46 (7.10%) Python
2 45 (6.94%) PowerShell
3 35 (5.40%) SQL
4 25 (3.86%) C#
4 25 (3.86%) Java
5 23 (3.55%) Perl
6 19 (2.93%) Ruby
7 17 (2.62%) Bash Shell
8 15 (2.31%) Korn
9 10 (1.54%) Bourne shell
10 5 (0.77%) C
10 5 (0.77%) C-shell
11 4 (0.62%) C++
12 3 (0.46%) PHP
12 3 (0.46%) VB
13 2 (0.31%) Go
13 2 (0.31%) VB.NET
Qualifications
1 341 (52.62%) CISSP
2 233 (35.96%) CISM
3 101 (15.59%) CISA
4 91 (14.04%) Degree
5 89 (13.73%) GIAC
6 70 (10.80%) CEH
7 46 (7.10%) Security Cleared
8 43 (6.64%) GSEC
9 41 (6.33%) Cisco Certification
10 33 (5.09%) CREST Certified
11 28 (4.32%) CCNP
11 28 (4.32%) Computer Science Degree
12 27 (4.17%) CRISC
12 27 (4.17%) GCIH
13 25 (3.86%) SANS
14 23 (3.55%) GISF
15 21 (3.24%) OSCP
16 20 (3.09%) SC Cleared
17 17 (2.62%) CCNA
17 17 (2.62%) CISMP
Quality Assurance & Compliance
1 216 (33.33%) ISO/IEC 27001
2 123 (18.98%) PCI DSS
3 116 (17.90%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 33 (5.09%) GDPR
5 12 (1.85%) Cyber Essentials
6 11 (1.70%) SLA
7 10 (1.54%) ISO 22301
8 9 (1.39%) ISO/IEC 27005
9 8 (1.23%) Cyber Essentials PLUS
10 6 (0.93%) COBIT
11 5 (0.77%) Sarbanes-Oxley
12 3 (0.46%) BS25999
12 3 (0.46%) NIST 800
13 2 (0.31%) PMO
13 2 (0.31%) SSAE 16
14 1 (0.15%) FIPS 140-2
14 1 (0.15%) HIPAA
14 1 (0.15%) HMG Security Policy Framework
System Software
1 136 (20.99%) Active Directory
2 33 (5.09%) VMware Infrastructure
3 21 (3.24%) Snort
4 16 (2.47%) Virtual Machines
5 10 (1.54%) pfSense
6 8 (1.23%) Hyper-V
7 7 (1.08%) XenApp
8 6 (0.93%) vSphere
9 5 (0.77%) BitLocker
9 5 (0.77%) Virtual Desktop
10 3 (0.46%) Virtual Servers
10 3 (0.46%) XenDesktop
11 2 (0.31%) Docker
12 1 (0.15%) Firmware
12 1 (0.15%) LXC
12 1 (0.15%) NFS
12 1 (0.15%) Samba
12 1 (0.15%) VirtualBox
12 1 (0.15%) VMware NSX
12 1 (0.15%) Xen
Systems Management
1 71 (10.96%) Nessus
2 39 (6.02%) Nexpose
3 38 (5.86%) QRadar
4 31 (4.78%) SCCM
4 31 (4.78%) WSUS
5 26 (4.01%) Core Impact
5 26 (4.01%) McAfee ePO
6 25 (3.86%) OpenVAS
7 24 (3.70%) CSIRT
8 23 (3.55%) PowerBroker
8 23 (3.55%) RSA Security Analytics
9 20 (3.09%) FortiGate
10 17 (2.62%) EnCase
11 16 (2.47%) Nmap
12 11 (1.70%) Norton AntiVirus
12 11 (1.70%) Suricata
13 6 (0.93%) Computer Emergency Response Teams
13 6 (0.93%) Host Intrusion Detection System
14 4 (0.62%) OSSEC
15 3 (0.46%) Network Intrusion Detection System
Vendors
1 88 (13.58%) Cisco
2 84 (12.96%) LogRhythm
3 75 (11.57%) Palo Alto
4 67 (10.34%) Microsoft
5 62 (9.57%) Qualys
6 54 (8.33%) Symantec
7 50 (7.72%) CheckPoint
8 47 (7.25%) Splunk
8 47 (7.25%) VMware
9 41 (6.33%) ArcSight
10 40 (6.17%) Apple
10 40 (6.17%) McAfee
11 38 (5.86%) AlienVault
11 38 (5.86%) CyberArk
12 30 (4.63%) Fortinet
13 27 (4.17%) SolarWinds
14 24 (3.70%) Juniper
15 23 (3.55%) Aveksa
15 23 (3.55%) Bomgar
16 21 (3.24%) F5