Incident Response Jobs

Incident Response
UK

The following table provides summary statistics for permanent job vacancies with a requirement for Incident Response skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Incident Response over the 6 months to 9 May 2024 with a comparison to the same period in the previous 2 years.

6 months to
9 May 2024		 Same period 2023 Same period 2022
Rank 294 372 431
Rank change year-on-year +78 +59 +13
Permanent jobs citing Incident Response 978 899 1,302
As % of all permanent jobs advertised in the UK 0.99% 0.89% 0.83%
As % of the Processes & Methodologies category 1.15% 0.93% 0.87%
Number of salaries quoted 742 618 823
10th Percentile £42,750 £38,750 £38,750
25th Percentile £51,250 £47,500 £48,750
Median annual salary (50th Percentile) £65,000 £65,000 £62,500
Median % change year-on-year - +4.00% +4.17%
75th Percentile £80,000 £77,500 £80,000
90th Percentile £97,500 £92,875 £92,500
UK excluding London median annual salary £55,000 £52,500 £53,112
% change year-on-year +4.76% -1.15% +1.17%

All Process and Methodology Skills
UK

Incident Response is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills 84,809 96,894 150,102
As % of all permanent jobs advertised in the UK 85.57% 95.61% 95.67%
Number of salaries quoted 59,843 56,945 82,179
10th Percentile £29,000 £34,000 £33,500
25th Percentile £40,000 £45,000 £43,750
Median annual salary (50th Percentile) £55,000 £61,180 £60,000
Median % change year-on-year -10.10% +1.97% +9.09%
75th Percentile £72,500 £81,250 £80,000
90th Percentile £92,500 £100,000 £96,550
UK excluding London median annual salary £50,000 £55,000 £52,500
% change year-on-year -9.09% +4.76% +9.38%

Incident Response
Job Vacancy Trend

Job postings citing Incident Response as a proportion of all IT jobs advertised.

Job vacancy trend for Incident Response in the UK

Incident Response
Salary Trend

3-month moving average salary quoted in jobs citing Incident Response.

Salary trend for Incident Response in the UK

Incident Response
Salary Histogram

Salary distribution for jobs citing Incident Response over the 6 months to 9 May 2024.

Salary histogram for Incident Response in the UK

Incident Response
Top 19 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Incident Response within the UK over the 6 months to 9 May 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Permanent
IT Job Ads		 Median Salary
Past 6 Months		 Median Salary
% Change
on Same Period
Last Year		 Live
Jobs
England +117 867 £65,000 - 238
UK excluding London +80 609 £55,000 +4.76% 147
Work from Home 0 329 £70,000 +12.00% 138
London +79 321 £75,000 +6.01% 90
North of England +156 200 £52,084 -13.19% 44
North West +89 132 £52,084 -13.19% 23
Midlands +11 132 £60,000 +20.00% 25
South East -31 113 £65,000 +18.18% 39
West Midlands +39 101 £60,000 +9.09% 20
South West +33 78 £50,000 -0.99% 15
Yorkshire +121 59 £60,000 -2.04% 16
Scotland -61 45 £63,750 +21.43% 13
East Midlands -25 31 £65,000 +36.84% 5
East of England +17 16 £52,500 +16.67% 7
Wales -7 14 £62,500 +13.64% 3
North East +2 9 £70,000 +3.70% 5
Isle of Man -14 8 £46,500 +3.33% 2
Northern Ireland +20 2 - - 1
Channel Islands - 1 £100,000 -

Incident Response
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 19 (1.94%) Microsoft Exchange
2 15 (1.53%) SharePoint
3 9 (0.92%) IIS
4 6 (0.61%) Apache
5 1 (0.10%) Confluence
5 1 (0.10%) nginx
Applications
1 54 (5.52%) Microsoft Office
2 39 (3.99%) Microsoft Excel
3 38 (3.89%) Microsoft PowerPoint
4 3 (0.31%) Microsoft Project
4 3 (0.31%) MS Visio
Business Applications
1 6 (0.61%) Dynamics CRM
2 1 (0.10%) Payment Gateway
2 1 (0.10%) SAP S/4HANA
Cloud Services
1 265 (27.10%) Azure
2 151 (15.44%) Microsoft 365
3 135 (13.80%) AWS
4 66 (6.75%) SaaS
5 40 (4.09%) Azure Sentinel
6 35 (3.58%) GCP
7 24 (2.45%) Entra ID
8 20 (2.04%) PaaS
9 19 (1.94%) IaaS
10 18 (1.84%) Cloud Computing
11 14 (1.43%) Amazon CloudWatch
12 13 (1.33%) Amazon S3
13 12 (1.23%) Amazon GuardDuty
13 12 (1.23%) AWS CloudTrail
14 11 (1.12%) Power Platform
14 11 (1.12%) Serverless
15 10 (1.02%) AWS CloudFormation
16 9 (0.92%) Amazon ECS
17 8 (0.82%) Cloudflare
17 8 (0.82%) Virtual Private Cloud
Communications & Networking
1 241 (24.64%) Firewall
2 85 (8.69%) Intrusion Detection
3 65 (6.65%) Network Security
4 43 (4.40%) TCP/IP
5 35 (3.58%) VPN
6 29 (2.97%) Internet
7 20 (2.04%) DNS
7 20 (2.04%) LAN
8 19 (1.94%) WAN
9 13 (1.33%) Wireshark
10 12 (1.23%) SAN
11 7 (0.72%) DHCP
11 7 (0.72%) HTTP
11 7 (0.72%) SMTP
12 6 (0.61%) SSL
13 5 (0.51%) VLAN
14 4 (0.41%) DMZ
14 4 (0.41%) NetScaler
15 3 (0.31%) Broadband
15 3 (0.31%) Wireless
Database & Business Intelligence
1 36 (3.68%) SQL Server
2 22 (2.25%) MySQL
3 16 (1.64%) RDBMS
3 16 (1.64%) Relational Database
4 13 (1.33%) MongoDB
5 12 (1.23%) BigQuery
5 12 (1.23%) Data Hub
5 12 (1.23%) DB2
5 12 (1.23%) Enterprise Data Warehouse
6 9 (0.92%) Amazon RDS
7 6 (0.61%) Azure SQL Database
7 6 (0.61%) SQL Server Reporting Services
8 4 (0.41%) PostgreSQL
8 4 (0.41%) Power BI
9 2 (0.20%) Metabase
9 2 (0.20%) Oracle Database
9 2 (0.20%) Redis
10 1 (0.10%) Hadoop
10 1 (0.10%) MariaDB
Development Applications
1 6 (0.61%) Visual Studio
2 4 (0.41%) Burp Suite
2 4 (0.41%) Metasploit
3 3 (0.31%) Jenkins
4 2 (0.20%) Git
4 2 (0.20%) GitLab
4 2 (0.20%) JIRA
4 2 (0.20%) Snyk
4 2 (0.20%) sqlmap
5 1 (0.10%) Bitbucket
5 1 (0.10%) TeamCity
General
1 320 (32.72%) Social Skills
2 209 (21.37%) Finance
3 145 (14.83%) Analytical Skills
4 82 (8.38%) Legal
5 73 (7.46%) Law
6 51 (5.21%) Public Sector
7 43 (4.40%) Military
8 42 (4.29%) Banking
9 41 (4.19%) Manufacturing
10 28 (2.86%) Marketing
11 24 (2.45%) Inclusion and Diversity
12 21 (2.15%) Documentation Skills
12 21 (2.15%) Games
13 18 (1.84%) Presentation Skills
14 16 (1.64%) Financial Institution
14 16 (1.64%) Spanish Language
15 15 (1.53%) Retail
16 12 (1.23%) Influencing Skills
17 11 (1.12%) French Language
18 8 (0.82%) Pharmaceutical
Job Titles
1 273 (27.91%) Analyst
2 157 (16.05%) Security Analyst
3 143 (14.62%) Senior
4 89 (9.10%) Cybersecurity Analyst
4 89 (9.10%) Security Engineer
5 88 (9.00%) Lead
6 84 (8.59%) Senior Analyst
7 74 (7.57%) Security Manager
8 57 (5.83%) SOC Analyst
9 51 (5.21%) Consultant
9 51 (5.21%) Senior Security Analyst
10 46 (4.70%) Architect
11 45 (4.60%) IT Analyst
12 44 (4.50%) Security Consultant
13 39 (3.99%) IT Security Analyst
13 39 (3.99%) Security Architect
14 36 (3.68%) Security Specialist
15 35 (3.58%) Incident Manager
16 32 (3.27%) Cybersecurity Consultant
16 32 (3.27%) Service Manager
Libraries, Frameworks & Software Standards
1 15 (1.53%) .NET
2 11 (1.12%) Web Services
3 8 (0.82%) Laravel
4 7 (0.72%) XML
5 6 (0.61%) .NET Framework
6 5 (0.51%) Node.js
7 4 (0.41%) EDI
7 4 (0.41%) Kafka
8 3 (0.31%) HTML
8 3 (0.31%) Vue
8 3 (0.31%) web3js
9 2 (0.20%) CSS
9 2 (0.20%) D3.js
9 2 (0.20%) Elastic Stack
9 2 (0.20%) React
9 2 (0.20%) Sass
10 1 (0.10%) OAuth2
10 1 (0.10%) OpenID
10 1 (0.10%) REST
10 1 (0.10%) YAML
Miscellaneous
1 172 (17.59%) Cyber Threat
2 148 (15.13%) Management Information System
3 100 (10.22%) Cyberattack
4 99 (10.12%) Security Posture
5 80 (8.18%) Security Operations Centre
6 63 (6.44%) Operational Technology
7 41 (4.19%) Cyber Kill Chain
8 39 (3.99%) Driving Licence
9 33 (3.37%) Industrial Internet of Things
10 26 (2.66%) Public Cloud
11 25 (2.56%) Cyber Defence
12 23 (2.35%) Analytical Mindset
13 22 (2.25%) Data Centre
14 19 (1.94%) Client/Server
15 16 (1.64%) SCADA
16 13 (1.33%) Cloud Security Posture
17 12 (1.23%) Data Fabric
18 11 (1.12%) Cloud Native
18 11 (1.12%) Data Protection Act
19 8 (0.82%) Self-Motivation
Operating Systems
1 196 (20.04%) Windows
2 121 (12.37%) Linux
3 54 (5.52%) Unix
4 42 (4.29%) Windows Server
5 18 (1.84%) Mac OS X
6 16 (1.64%) zOS
7 10 (1.02%) Kali Linux
8 8 (0.82%) Ubuntu
9 7 (0.72%) Windows Server 2012
10 5 (0.51%) Windows 10
11 4 (0.41%) CentOS
11 4 (0.41%) Solaris
11 4 (0.41%) Windows Server 2016
12 3 (0.31%) Mac OS
13 2 (0.20%) Apple iOS
13 2 (0.20%) Windows 7
14 1 (0.10%) AIX
14 1 (0.10%) Amazon Linux
14 1 (0.10%) Android
14 1 (0.10%) Data ONTAP
Processes & Methodologies
1 678 (69.33%) Cybersecurity
2 290 (29.65%) Information Security
3 286 (29.24%) Security Operations
4 261 (26.69%) SIEM
5 200 (20.45%) Problem-Solving
6 179 (18.30%) Incident Management
7 171 (17.48%) Threat Intelligence
8 165 (16.87%) Cyber Threat Intelligence
9 161 (16.46%) Risk Management
10 154 (15.75%) Vulnerability Management
11 106 (10.84%) Computer Science
11 106 (10.84%) Penetration Testing
12 101 (10.33%) Disaster Recovery
13 96 (9.82%) Cloud Security
14 84 (8.59%) Security Architecture
15 83 (8.49%) ITIL
16 82 (8.38%) Change Management
17 81 (8.28%) Vulnerability Assessment
18 77 (7.87%) Service Delivery
19 73 (7.46%) Security Management
Programming Languages
1 70 (7.16%) PowerShell
2 65 (6.65%) Python
3 29 (2.97%) SQL
4 25 (2.56%) Bash
5 13 (1.33%) Java
6 11 (1.12%) C#
6 11 (1.12%) PHP
7 9 (0.92%) JavaScript
8 8 (0.82%) Rust
9 6 (0.61%) T-SQL
10 5 (0.51%) C++
11 4 (0.41%) Kusto Query Language
12 3 (0.31%) Go
13 2 (0.20%) Lisp
13 2 (0.20%) Shell Script
14 1 (0.10%) Bicep
14 1 (0.10%) Perl
14 1 (0.10%) Ruby
14 1 (0.10%) TypeScript
Qualifications
1 266 (27.20%) CISSP
2 264 (26.99%) Degree
3 147 (15.03%) CISM
4 113 (11.55%) Security Cleared
5 60 (6.13%) Cisco Certification
6 56 (5.73%) CEH
6 56 (5.73%) Computer Science Degree
7 54 (5.52%) SC Cleared
8 50 (5.11%) CompTIA Security+
9 46 (4.70%) GIAC
10 43 (4.40%) CISA
11 41 (4.19%) (ISC)2 CCSP
12 36 (3.68%) CCSP
13 33 (3.37%) Master's Degree
14 26 (2.66%) AWS Certification
15 25 (2.56%) GCIH
16 24 (2.45%) CREST Certified
17 23 (2.35%) OSCP
18 21 (2.15%) GCIA
19 20 (2.04%) Azure Certification
Quality Assurance & Compliance
1 253 (25.87%) ISO/IEC 27001
2 147 (15.03%) NIST
3 96 (9.82%) Cyber Essentials
4 74 (7.57%) GDPR
5 68 (6.95%) PCI DSS
6 42 (4.29%) ISO 9001
7 41 (4.19%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 39 (3.99%) ISO/IEC 17025
9 36 (3.68%) GRC
10 35 (3.58%) NCSC
11 20 (2.04%) JSP 440
12 18 (1.84%) Cyber Essentials PLUS
13 11 (1.12%) SLA
14 10 (1.02%) COBIT
15 8 (0.82%) Accessibility
15 8 (0.82%) QA
15 8 (0.82%) Sarbanes-Oxley
15 8 (0.82%) SOC 2
16 7 (0.72%) HIPAA
16 7 (0.72%) NIST 800
System Software
1 75 (7.67%) Active Directory
2 29 (2.97%) VMware Infrastructure
3 13 (1.33%) Hyper-V
4 8 (0.82%) Docker
5 5 (0.51%) Virtual Machines
5 5 (0.51%) VMware NSX
6 3 (0.31%) Terminal Services
6 3 (0.31%) Virtual Desktop
6 3 (0.31%) VMware ESXi
7 2 (0.20%) Virtual Servers
8 1 (0.10%) XenApp
Systems Management
1 37 (3.78%) EnCase
2 25 (2.56%) QRadar
3 20 (2.04%) Terraform
4 17 (1.74%) Microsoft Intune
5 16 (1.64%) CSIRT
6 13 (1.33%) Kubernetes
7 9 (0.92%) Single Sign-On
8 8 (0.82%) SCCM
9 7 (0.72%) Ansible
10 5 (0.51%) Prometheus
10 5 (0.51%) Suricata
11 4 (0.41%) Cacti
11 4 (0.41%) CASB
11 4 (0.41%) Computer Emergency Response Teams
11 4 (0.41%) Grafana
12 3 (0.31%) Nessus
12 3 (0.31%) Nmap
12 3 (0.31%) SELinux
13 2 (0.20%) Data Guard
13 2 (0.20%) Host Intrusion Detection System
Vendors
1 297 (30.37%) Microsoft
2 55 (5.62%) VMware
3 42 (4.29%) Splunk
4 39 (3.99%) Dell
5 33 (3.37%) Oracle
5 33 (3.37%) Qualys
6 29 (2.97%) Cisco
7 24 (2.45%) CrowdStrike
8 20 (2.04%) IBM
9 15 (1.53%) Google
10 14 (1.43%) Darktrace
10 14 (1.43%) ServiceNow
11 13 (1.33%) Databricks
12 12 (1.23%) Citrix
12 12 (1.23%) F5
13 9 (0.92%) CyberArk
13 9 (0.92%) Datto
13 9 (0.92%) Juniper
13 9 (0.92%) Sun
14 8 (0.82%) Xero
285 Incident Response jobs Nationwide