Incident Response Jobs

Incident Response
UK

The following table provides summary statistics for permanent job vacancies with a requirement for Incident Response skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Incident Response over the 6 months to 18 May 2024 with a comparison to the same period in the previous 2 years.

6 months to
18 May 2024		 Same period 2023 Same period 2022
Rank 305 375 451
Rank change year-on-year +70 +76 -18
Permanent jobs citing Incident Response 969 880 1,314
As % of all permanent jobs advertised in the UK 0.97% 0.89% 0.82%
As % of the Processes & Methodologies category 1.14% 0.93% 0.85%
Number of salaries quoted 730 602 824
10th Percentile £42,714 £38,750 £38,750
25th Percentile £51,250 £47,500 £48,000
Median annual salary (50th Percentile) £65,000 £65,000 £62,500
Median % change year-on-year - +4.00% +4.17%
75th Percentile £80,000 £77,500 £80,000
90th Percentile £97,500 £93,625 £92,500
UK excluding London median annual salary £55,000 £52,500 £53,112
% change year-on-year +4.76% -1.15% +1.17%

All Process and Methodology Skills
UK

Incident Response is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills 85,135 94,784 153,905
As % of all permanent jobs advertised in the UK 85.22% 95.58% 95.76%
Number of salaries quoted 59,872 55,911 82,488
10th Percentile £29,089 £34,000 £33,635
25th Percentile £40,000 £45,000 £43,750
Median annual salary (50th Percentile) £55,000 £61,180 £60,000
Median % change year-on-year -10.10% +1.97% +9.09%
75th Percentile £72,500 £81,250 £80,000
90th Percentile £92,500 £100,000 £96,250
UK excluding London median annual salary £50,000 £55,000 £52,500
% change year-on-year -9.09% +4.76% +9.38%

Incident Response
Job Vacancy Trend

Job postings citing Incident Response as a proportion of all IT jobs advertised.

Job vacancy trend for Incident Response in the UK

Incident Response
Salary Trend

3-month moving average salary quoted in jobs citing Incident Response.

Salary trend for Incident Response in the UK

Incident Response
Salary Histogram

Salary distribution for jobs citing Incident Response over the 6 months to 18 May 2024.

Salary histogram for Incident Response in the UK

Incident Response
Top 19 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Incident Response within the UK over the 6 months to 18 May 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Permanent
IT Job Ads		 Median Salary
Past 6 Months		 Median Salary
% Change
on Same Period
Last Year		 Live
Jobs
England +101 861 £65,000 - 249
UK excluding London +56 600 £55,000 +4.76% 164
Work from Home -5 323 £70,000 +12.00% 126
London +86 322 £75,000 +4.13% 97
North of England +154 199 £52,084 -13.19% 43
North West +83 132 £52,084 -13.19% 19
Midlands +5 122 £60,000 +20.00% 35
South East -22 114 £60,000 +9.09% 48
West Midlands +31 90 £60,000 +9.09% 27
South West +28 79 £50,000 - 13
Yorkshire +113 59 £60,000 - 20
Scotland -56 45 £63,750 +27.50% 11
East Midlands -18 31 £65,000 +36.84% 8
East of England +4 16 £52,500 +16.67% 12
Wales -4 14 £62,500 +13.64% 2
North East -1 8 £70,000 +3.70% 4
Isle of Man -14 8 £46,500 +3.33% 2
Northern Ireland +12 2 - - 1
Channel Islands - 1 £100,000 -

Incident Response
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 18 (1.86%) Microsoft Exchange
2 14 (1.44%) SharePoint
3 9 (0.93%) IIS
4 7 (0.72%) Apache
5 1 (0.10%) CMS
5 1 (0.10%) Confluence
5 1 (0.10%) Moodle
5 1 (0.10%) nginx
5 1 (0.10%) WordPress
Applications
1 44 (4.54%) Microsoft Office
2 28 (2.89%) Microsoft Excel
3 27 (2.79%) Microsoft PowerPoint
4 3 (0.31%) Microsoft Project
4 3 (0.31%) MS Visio
Business Applications
1 6 (0.62%) Dynamics CRM
2 1 (0.10%) Payment Gateway
2 1 (0.10%) SAP S/4HANA
Cloud Services
1 260 (26.83%) Azure
2 149 (15.38%) Microsoft 365
3 137 (14.14%) AWS
4 66 (6.81%) SaaS
5 39 (4.02%) Azure Sentinel
6 34 (3.51%) GCP
7 23 (2.37%) Entra ID
8 20 (2.06%) PaaS
9 19 (1.96%) IaaS
10 18 (1.86%) Cloud Computing
11 17 (1.75%) Amazon CloudWatch
12 15 (1.55%) Amazon S3
13 14 (1.44%) Amazon GuardDuty
13 14 (1.44%) AWS CloudTrail
13 14 (1.44%) Serverless
14 12 (1.24%) AWS CloudFormation
15 11 (1.14%) Power Platform
16 10 (1.03%) Amazon EC2
16 10 (1.03%) Virtual Private Cloud
17 9 (0.93%) Amazon ECS
Communications & Networking
1 241 (24.87%) Firewall
2 85 (8.77%) Intrusion Detection
3 62 (6.40%) Network Security
4 40 (4.13%) TCP/IP
5 34 (3.51%) VPN
6 29 (2.99%) Internet
7 22 (2.27%) LAN
8 21 (2.17%) WAN
9 19 (1.96%) DNS
10 14 (1.44%) Wireshark
11 11 (1.14%) SAN
12 7 (0.72%) DHCP
12 7 (0.72%) HTTP
12 7 (0.72%) SMTP
12 7 (0.72%) SSL
13 5 (0.52%) VLAN
14 4 (0.41%) NetScaler
15 3 (0.31%) DMZ
15 3 (0.31%) tcpdump
15 3 (0.31%) Wireless
Database & Business Intelligence
1 36 (3.72%) SQL Server
2 22 (2.27%) MySQL
3 16 (1.65%) RDBMS
3 16 (1.65%) Relational Database
4 13 (1.34%) MongoDB
5 12 (1.24%) BigQuery
5 12 (1.24%) Data Hub
5 12 (1.24%) DB2
5 12 (1.24%) Enterprise Data Warehouse
6 11 (1.14%) Amazon RDS
7 6 (0.62%) Azure SQL Database
7 6 (0.62%) SQL Server Reporting Services
8 4 (0.41%) PostgreSQL
8 4 (0.41%) Power BI
9 2 (0.21%) Metabase
9 2 (0.21%) Oracle Database
9 2 (0.21%) Redis
10 1 (0.10%) Hadoop
10 1 (0.10%) MariaDB
Development Applications
1 6 (0.62%) Visual Studio
2 5 (0.52%) Burp Suite
2 5 (0.52%) Metasploit
3 3 (0.31%) Jenkins
3 3 (0.31%) sqlmap
4 2 (0.21%) Git
4 2 (0.21%) GitLab
4 2 (0.21%) JIRA
4 2 (0.21%) Snyk
5 1 (0.10%) Bitbucket
5 1 (0.10%) TeamCity
General
1 312 (32.20%) Social Skills
2 206 (21.26%) Finance
3 147 (15.17%) Analytical Skills
4 76 (7.84%) Legal
5 69 (7.12%) Law
6 43 (4.44%) Military
7 42 (4.33%) Banking
8 41 (4.23%) Manufacturing
9 40 (4.13%) Public Sector
10 29 (2.99%) Marketing
11 24 (2.48%) Inclusion and Diversity
12 21 (2.17%) Games
13 20 (2.06%) Documentation Skills
14 18 (1.86%) Presentation Skills
15 17 (1.75%) Financial Institution
16 16 (1.65%) Retail
16 16 (1.65%) Spanish Language
17 13 (1.34%) Influencing Skills
18 11 (1.14%) French Language
19 8 (0.83%) Pharmaceutical
Job Titles
1 274 (28.28%) Analyst
2 157 (16.20%) Security Analyst
3 142 (14.65%) Senior
4 91 (9.39%) Cybersecurity Analyst
5 88 (9.08%) Security Engineer
6 87 (8.98%) Lead
7 82 (8.46%) Senior Analyst
8 73 (7.53%) Security Manager
9 55 (5.68%) SOC Analyst
10 50 (5.16%) Consultant
11 49 (5.06%) Senior Security Analyst
12 46 (4.75%) Architect
12 46 (4.75%) IT Analyst
13 43 (4.44%) Security Consultant
14 40 (4.13%) IT Security Analyst
15 39 (4.02%) Security Architect
16 35 (3.61%) Incident Manager
17 33 (3.41%) Security Specialist
18 32 (3.30%) Cybersecurity Consultant
18 32 (3.30%) Service Manager
Libraries, Frameworks & Software Standards
1 15 (1.55%) .NET
2 11 (1.14%) Web Services
3 8 (0.83%) Laravel
4 7 (0.72%) XML
5 6 (0.62%) .NET Framework
6 5 (0.52%) Node.js
7 4 (0.41%) EDI
7 4 (0.41%) Kafka
8 3 (0.31%) HTML
8 3 (0.31%) Sass
8 3 (0.31%) Vue
8 3 (0.31%) web3js
9 2 (0.21%) CSS
9 2 (0.21%) D3.js
9 2 (0.21%) Elastic Stack
9 2 (0.21%) React
10 1 (0.10%) OAuth
10 1 (0.10%) REST
10 1 (0.10%) Symfony
10 1 (0.10%) YAML
Miscellaneous
1 171 (17.65%) Cyber Threat
2 149 (15.38%) Management Information System
3 100 (10.32%) Cyberattack
4 98 (10.11%) Security Posture
5 83 (8.57%) Security Operations Centre
6 60 (6.19%) Operational Technology
7 44 (4.54%) Cyber Kill Chain
8 33 (3.41%) Industrial Internet of Things
9 28 (2.89%) Driving Licence
10 26 (2.68%) Public Cloud
11 25 (2.58%) Cyber Defence
12 23 (2.37%) Analytical Mindset
13 21 (2.17%) Data Centre
14 19 (1.96%) Client/Server
15 16 (1.65%) SCADA
16 12 (1.24%) Cloud Security Posture
16 12 (1.24%) Data Fabric
17 11 (1.14%) Data Protection Act
18 10 (1.03%) Cloud Native
19 8 (0.83%) Self-Motivation
Operating Systems
1 199 (20.54%) Windows
2 122 (12.59%) Linux
3 57 (5.88%) Unix
4 43 (4.44%) Windows Server
5 18 (1.86%) Mac OS X
6 16 (1.65%) zOS
7 10 (1.03%) Kali Linux
8 8 (0.83%) Ubuntu
9 7 (0.72%) Windows Server 2012
10 5 (0.52%) Windows 10
11 4 (0.41%) CentOS
11 4 (0.41%) Solaris
11 4 (0.41%) Windows Server 2016
12 3 (0.31%) Mac OS
13 2 (0.21%) Apple iOS
13 2 (0.21%) Windows 7
13 2 (0.21%) Windows XP
14 1 (0.10%) AIX
14 1 (0.10%) Amazon Linux
14 1 (0.10%) Android
Processes & Methodologies
1 668 (68.94%) Cybersecurity
2 291 (30.03%) Information Security
3 284 (29.31%) Security Operations
4 262 (27.04%) SIEM
5 193 (19.92%) Problem-Solving
6 181 (18.68%) Incident Management
7 173 (17.85%) Threat Intelligence
8 168 (17.34%) Cyber Threat Intelligence
9 164 (16.92%) Risk Management
10 151 (15.58%) Vulnerability Management
11 108 (11.15%) Computer Science
12 105 (10.84%) Penetration Testing
13 100 (10.32%) Disaster Recovery
14 95 (9.80%) Cloud Security
15 86 (8.88%) ITIL
16 85 (8.77%) Security Architecture
17 84 (8.67%) Change Management
18 79 (8.15%) Service Delivery
19 78 (8.05%) Vulnerability Assessment
20 74 (7.64%) Security Management
Programming Languages
1 70 (7.22%) PowerShell
2 66 (6.81%) Python
3 28 (2.89%) SQL
4 24 (2.48%) Bash
5 13 (1.34%) Java
6 11 (1.14%) C#
6 11 (1.14%) PHP
7 9 (0.93%) JavaScript
8 8 (0.83%) Rust
9 6 (0.62%) T-SQL
10 5 (0.52%) C++
11 4 (0.41%) Kusto Query Language
12 3 (0.31%) Go
13 2 (0.21%) Lisp
13 2 (0.21%) Shell Script
14 1 (0.10%) Bicep
14 1 (0.10%) Perl
14 1 (0.10%) Ruby
14 1 (0.10%) TypeScript
Qualifications
1 267 (27.55%) CISSP
2 265 (27.35%) Degree
3 150 (15.48%) CISM
4 104 (10.73%) Security Cleared
5 59 (6.09%) Cisco Certification
6 56 (5.78%) Computer Science Degree
7 55 (5.68%) CEH
8 54 (5.57%) SC Cleared
9 48 (4.95%) CompTIA Security+
10 47 (4.85%) GIAC
11 42 (4.33%) CISA
12 40 (4.13%) (ISC)2 CCSP
13 36 (3.72%) CCSP
14 33 (3.41%) Master's Degree
15 27 (2.79%) AWS Certification
16 25 (2.58%) CREST Certified
16 25 (2.58%) GCIH
16 25 (2.58%) OSCP
17 21 (2.17%) GCIA
18 19 (1.96%) CRISC
Quality Assurance & Compliance
1 240 (24.77%) ISO/IEC 27001
2 150 (15.48%) NIST
3 84 (8.67%) Cyber Essentials
4 75 (7.74%) GDPR
5 67 (6.91%) PCI DSS
6 41 (4.23%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 35 (3.61%) GRC
8 34 (3.51%) NCSC
9 31 (3.20%) ISO 9001
10 28 (2.89%) ISO/IEC 17025
11 20 (2.06%) JSP 440
12 17 (1.75%) Cyber Essentials PLUS
13 11 (1.14%) COBIT
13 11 (1.14%) SLA
14 8 (0.83%) Accessibility
14 8 (0.83%) Sarbanes-Oxley
14 8 (0.83%) SOC 2
15 7 (0.72%) HIPAA
15 7 (0.72%) NIST 800
15 7 (0.72%) QA
System Software
1 74 (7.64%) Active Directory
2 28 (2.89%) VMware Infrastructure
3 13 (1.34%) Hyper-V
4 9 (0.93%) Docker
5 5 (0.52%) Virtual Machines
5 5 (0.52%) VMware NSX
6 4 (0.41%) Terminal Services
7 3 (0.31%) Virtual Desktop
7 3 (0.31%) VMware ESXi
8 2 (0.21%) Virtual Servers
9 1 (0.10%) XenApp
Systems Management
1 26 (2.68%) EnCase
2 25 (2.58%) QRadar
3 21 (2.17%) Terraform
4 17 (1.75%) Microsoft Intune
5 16 (1.65%) CSIRT
6 14 (1.44%) Kubernetes
7 9 (0.93%) Single Sign-On
8 8 (0.83%) SCCM
9 7 (0.72%) Ansible
10 5 (0.52%) Prometheus
10 5 (0.52%) Suricata
11 4 (0.41%) Cacti
11 4 (0.41%) CASB
11 4 (0.41%) Computer Emergency Response Teams
11 4 (0.41%) Grafana
12 3 (0.31%) Nessus
12 3 (0.31%) Nmap
12 3 (0.31%) SELinux
13 2 (0.21%) Data Guard
13 2 (0.21%) Host Intrusion Detection System
Vendors
1 284 (29.31%) Microsoft
2 55 (5.68%) VMware
3 41 (4.23%) Splunk
4 38 (3.92%) Dell
5 33 (3.41%) Oracle
6 32 (3.30%) Qualys
7 30 (3.10%) Cisco
8 24 (2.48%) CrowdStrike
9 20 (2.06%) IBM
10 15 (1.55%) Google
11 14 (1.44%) Darktrace
12 13 (1.34%) Citrix
12 13 (1.34%) Databricks
12 13 (1.34%) ServiceNow
13 12 (1.24%) F5
14 9 (0.93%) CyberArk
14 9 (0.93%) Datto
14 9 (0.93%) Juniper
14 9 (0.93%) Sun
15 8 (0.83%) Veeam
297 Incident Response jobs Nationwide