Hybrid/Remote SIEM Job Trends

Security Information and Event Management (SIEM)
UK > Work from Home

The table below provides summary statistics and salary benchmarking for remote or hybrid work requiring SIEM skills. It covers permanent job vacancies from the 6 months leading up to 14 March 2026, with comparisons to the same periods in the previous two years.

 6 months to
14 Mar 2026		 Same period 2025 Same period 2024
Rank 242 257 256
Rank change year-on-year +15 -1 +67
Permanent jobs citing SIEM 142 165 335
As % of all permanent jobs with remote/hybrid work options 0.84% 1.19% 1.12%
As % of the Processes & Methodologies category 0.99% 1.25% 1.22%
Number of salaries quoted 106 129 301
10th Percentile £43,000 £41,975 £41,250
25th Percentile £51,250 £52,500 £47,500
Median annual salary (50th Percentile) £69,559 £62,500 £57,500
Median % change year-on-year +11.29% +8.70% -11.54%
75th Percentile £82,500 £77,500 £68,750
90th Percentile £95,500 £83,350 £80,000
UK median annual salary £67,500 £62,500 £62,783
% change year-on-year +8.00% -0.45% -3.41%

All Process & Methodology Skills
Work from Home

SIEM falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies with remote or hybrid options requiring process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills 14,330 13,188 27,572
As % of all permanent jobs with a WFH option 85.21% 95.33% 92.07%
Number of salaries quoted 9,436 8,773 22,841
10th Percentile £31,250 £34,281 £34,000
25th Percentile £42,500 £46,250 £42,500
Median annual salary (50th Percentile) £60,000 £62,500 £57,500
Median % change year-on-year -4.00% +8.70% -8.00%
75th Percentile £80,000 £81,250 £75,772
90th Percentile £100,000 £103,750 £95,000
UK median annual salary £55,000 £60,000 £55,000
% change year-on-year -8.33% +9.09% -11.86%

SIEM
Job Vacancy Trend for Remote/Hybrid Jobs

Historical trend showing the proportion of permanent IT job postings citing SIEM and offering remote or hybrid work options relative to all permanent IT jobs advertised.

SIEM job vacancy trend for remote/hybrid jobs

SIEM
Salary Trend for Remote/Hybrid Jobs

Salary distribution trend for jobs with remote/hybrid work options citing SIEM.

Salary distribution trend for jobs with remote/hybrid work options citing SIEM

SIEM
Salary Histogram for Remote/Hybrid Jobs

Salary distribution for jobs with remote/hybrid work options citing SIEM over the 6 months to 14 March 2026.

SIEM salary histogram for jobs with remote/hybrid work options

SIEM
Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1 5 (3.52%) Microsoft Exchange
2 4 (2.82%) SharePoint
Cloud Services
1 64 (45.07%) Azure
2 36 (25.35%) AWS
3 19 (13.38%) Microsoft 365
4 13 (9.15%) Azure Sentinel
4 13 (9.15%) Entra ID
5 12 (8.45%) GCP
6 9 (6.34%) SaaS
7 7 (4.93%) Mimecast
8 4 (2.82%) Amazon GuardDuty
8 4 (2.82%) Azure Logic Apps
8 4 (2.82%) IaaS
9 3 (2.11%) AWS CloudFormation
9 3 (2.11%) Microsoft Purview
9 3 (2.11%) PaaS
9 3 (2.11%) Serverless
10 2 (1.41%) Amazon EKS
10 2 (1.41%) AWS Lambda
10 2 (1.41%) Azure DevOps
10 2 (1.41%) IBM Cloud
10 2 (1.41%) Tessian
Communications & Networking
1 50 (35.21%) Firewall
2 43 (30.28%) Network Security
3 23 (16.20%) VPN
4 11 (7.75%) Intrusion Detection
5 9 (6.34%) SMTP
6 8 (5.63%) DNS
6 8 (5.63%) WAN
7 5 (3.52%) LAN
7 5 (3.52%) Wireshark
8 4 (2.82%) Cisco Nexus
8 4 (2.82%) SD-WAN
8 4 (2.82%) SSL
8 4 (2.82%) TCP/IP
8 4 (2.82%) VLAN
9 3 (2.11%) Cisco ISE
9 3 (2.11%) DHCP
10 2 (1.41%) VSAN
10 2 (1.41%) Wi-Fi
11 1 (0.70%) Cisco Firepower
11 1 (0.70%) IPsec
Database & Business Intelligence
1 1 (0.70%) Power BI
Development Applications
1 3 (2.11%) Jenkins
2 1 (0.70%) GitLab
General
1 54 (38.03%) Social Skills
2 30 (21.13%) Finance
3 22 (15.49%) Legal
4 21 (14.79%) Analytical Skills
5 17 (11.97%) Inclusion and Diversity
6 11 (7.75%) Public Sector
7 8 (5.63%) Documentation Skills
7 8 (5.63%) Retail
8 6 (4.23%) Law
9 5 (3.52%) Banking
10 4 (2.82%) Influencing Skills
11 2 (1.41%) Presentation Skills
12 1 (0.70%) Local Government
12 1 (0.70%) Manufacturing
12 1 (0.70%) Organisational Skills
Job Titles
1 28 (19.72%) Analyst
2 26 (18.31%) Security Engineer
3 21 (14.79%) Lead
4 20 (14.08%) Security Manager
5 19 (13.38%) Senior
6 18 (12.68%) Security Analyst
7 11 (7.75%) Consultant
8 10 (7.04%) Cybersecurity Manager
8 10 (7.04%) SOC Analyst
9 9 (6.34%) CyberArk Consultant
10 8 (5.63%) Cybersecurity Analyst
10 8 (5.63%) Infrastructure Engineer
10 8 (5.63%) Professional Services Consultant
10 8 (5.63%) Senior Manager
11 7 (4.93%) Cybersecurity Engineer
11 7 (4.93%) Information Security Engineer
11 7 (4.93%) Infrastructure Manager
11 7 (4.93%) Security Specialist
12 6 (4.23%) Architect
12 6 (4.23%) Infrastructure Security Engineer
Libraries, Frameworks & Software Standards
1 10 (7.04%) REST
1 10 (7.04%) SAML
2 2 (1.41%) AWS SAM
2 2 (1.41%) Elastic Stack
3 1 (0.70%) OAuth
3 1 (0.70%) OpenID
Miscellaneous
1 30 (21.13%) Security Posture
2 17 (11.97%) Security Operations Centre
3 14 (9.86%) Cyber Threat
4 12 (8.45%) Cyber Defence
5 10 (7.04%) Cloud Native
6 8 (5.63%) Cyber Kill Chain
6 8 (5.63%) Management Information System
7 7 (4.93%) Enterprise Software
8 6 (4.23%) Onboarding
9 5 (3.52%) Blog
10 4 (2.82%) Analytical Mindset
10 4 (2.82%) Data Centre
10 4 (2.82%) Digital Media
10 4 (2.82%) Product Ownership
11 3 (2.11%) Hybrid Cloud
11 3 (2.11%) Operational Technology
12 2 (1.41%) Cloud Security Posture
12 2 (1.41%) Cyber Security Posture
12 2 (1.41%) Cyberattack
12 2 (1.41%) Distributed Denial-of-Service
Operating Systems
1 27 (19.01%) Windows
2 13 (9.15%) Linux
3 7 (4.93%) Windows Server
4 5 (3.52%) Mac OS
5 2 (1.41%) Unix
6 1 (0.70%) Windows 10
6 1 (0.70%) Windows Server 2019
Processes & Methodologies
1 86 (60.56%) Incident Response
2 66 (46.48%) Cybersecurity
2 66 (46.48%) Security Operations
3 38 (26.76%) Information Security
4 33 (23.24%) Vulnerability Management
5 31 (21.83%) Cloud Security
6 30 (21.13%) Threat Intelligence
7 29 (20.42%) Continuous Improvement
8 26 (18.31%) Problem-Solving
8 26 (18.31%) Threat Detection
9 20 (14.08%) Cyber Threat Intelligence
10 19 (13.38%) Data Loss Prevention
10 19 (13.38%) Security Architecture
11 18 (12.68%) Data Protection
12 17 (11.97%) Business Continuity
12 17 (11.97%) Mentoring
12 17 (11.97%) Risk Management
12 17 (11.97%) Security Monitoring
13 16 (11.27%) Disaster Recovery
14 15 (10.56%) Stakeholder Management
Programming Languages
1 22 (15.49%) PowerShell
2 19 (13.38%) Python
3 8 (5.63%) Kusto Query Language
4 6 (4.23%) Go
4 6 (4.23%) JavaScript
4 6 (4.23%) SQL
5 4 (2.82%) Bash
5 4 (2.82%) Bicep
Qualifications
1 43 (30.28%) CISSP
2 33 (23.24%) Security Cleared
3 27 (19.01%) SC Cleared
4 25 (17.61%) Degree
5 24 (16.90%) CEH
6 22 (15.49%) CISM
7 13 (9.15%) CompTIA Security+
8 11 (7.75%) Cisco Certification
9 9 (6.34%) DV Cleared
10 8 (5.63%) GCIA
11 7 (4.93%) CCNP
11 7 (4.93%) CompTIA CySA+
11 7 (4.93%) Computer Science Degree
11 7 (4.93%) GIAC
11 7 (4.93%) GSEC
11 7 (4.93%) Microsoft Certification
12 6 (4.23%) Network+ Certification
12 6 (4.23%) OSCP
13 5 (3.52%) CRISC
13 5 (3.52%) GCIH
Quality Assurance & Compliance
1 58 (40.85%) ISO/IEC 27001
2 45 (31.69%) NIST
3 31 (21.83%) Cyber Essentials
4 15 (10.56%) GDPR
5 10 (7.04%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 9 (6.34%) GRC
7 8 (5.63%) Cyber Essentials PLUS
7 8 (5.63%) PCI DSS
8 7 (4.93%) SOC 2
9 6 (4.23%) NCSC
10 5 (3.52%) Government Security Classifications
10 5 (3.52%) HMG Security Policy Framework
10 5 (3.52%) JSP 440
11 3 (2.11%) Data Quality
12 1 (0.70%) Basel III
12 1 (0.70%) MiFID
12 1 (0.70%) Sarbanes-Oxley
12 1 (0.70%) SLA
System Software
1 16 (11.27%) Active Directory
2 9 (6.34%) Docker
3 7 (4.93%) VMware Infrastructure
4 3 (2.11%) VMware ESXi
5 1 (0.70%) Firmware
5 1 (0.70%) Slurm Workload Manager
5 1 (0.70%) Virtual Machines
5 1 (0.70%) vSphere
Systems Management
1 14 (9.86%) Terraform
2 10 (7.04%) Kubernetes
2 10 (7.04%) Microsoft Intune
3 6 (4.23%) QRadar
4 4 (2.82%) Ansible
4 4 (2.82%) Computer Incident Response Team
4 4 (2.82%) Single Sign-On
5 3 (2.11%) CSIRT
5 3 (2.11%) Nessus
6 2 (1.41%) Computer Emergency Response Teams
6 2 (1.41%) Grafana
6 2 (1.41%) Proxmox
6 2 (1.41%) WSUS
7 1 (0.70%) Dell DRAC
7 1 (0.70%) Ganglia
7 1 (0.70%) Host Intrusion Detection System
Vendors
1 43 (30.28%) Microsoft
2 15 (10.56%) Splunk
3 11 (7.75%) CyberArk
4 10 (7.04%) CrowdStrike
5 9 (6.34%) VMware
6 7 (4.93%) Cisco
7 6 (4.23%) Google
7 6 (4.23%) iManage
7 6 (4.23%) Okta
7 6 (4.23%) Palo Alto
8 5 (3.52%) Fortinet
8 5 (3.52%) Zscaler
9 4 (2.82%) CheckPoint
9 4 (2.82%) Sophos
9 4 (2.82%) Tenable
10 3 (2.11%) IBM
10 3 (2.11%) LogRhythm
11 2 (1.41%) Juniper
11 2 (1.41%) Oracle
12 1 (0.70%) Dell
109 hybrid/remote SIEM jobs