Incident Response Jobs

Incident Response
UK

The following table provides summary statistics for permanent job vacancies with a requirement for Incident Response skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Incident Response over the 6 months to 9 June 2024 with a comparison to the same period in the previous 2 years.

6 months to
9 Jun 2024		 Same period 2023 Same period 2022
Rank 288 374 454
Rank change year-on-year +86 +80 -13
Permanent jobs citing Incident Response 1,037 829 1,369
As % of all permanent jobs advertised in the UK 0.96% 0.89% 0.80%
As % of the Processes & Methodologies category 1.15% 0.93% 0.83%
Number of salaries quoted 770 575 839
10th Percentile £42,500 £38,750 £38,750
25th Percentile £50,000 £46,750 £48,000
Median annual salary (50th Percentile) £60,000 £62,500 £62,500
Median % change year-on-year -4.00% - +4.17%
75th Percentile £77,500 £77,500 £80,000
90th Percentile £97,500 £93,750 £95,000
UK excluding London median annual salary £55,000 £53,750 £52,500
% change year-on-year +2.33% +2.38% -

All Process and Methodology Skills
UK

Incident Response is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills 89,994 88,841 164,871
As % of all permanent jobs advertised in the UK 82.98% 95.43% 95.92%
Number of salaries quoted 62,089 53,798 83,455
10th Percentile £29,500 £33,848 £33,500
25th Percentile £40,000 £45,000 £43,750
Median annual salary (50th Percentile) £55,000 £60,800 £60,000
Median % change year-on-year -9.54% +1.33% +9.09%
75th Percentile £72,500 £81,250 £80,000
90th Percentile £92,500 £100,000 £96,250
UK excluding London median annual salary £50,000 £55,000 £52,500
% change year-on-year -9.09% +4.76% +9.38%

Incident Response
Job Vacancy Trend

Job postings citing Incident Response as a proportion of all IT jobs advertised.

Job vacancy trend for Incident Response in the UK

Incident Response
Salary Trend

3-month moving average salary quoted in jobs citing Incident Response.

Salary trend for Incident Response in the UK

Incident Response
Salary Histogram

Salary distribution for jobs citing Incident Response over the 6 months to 9 June 2024.

Salary histogram for Incident Response in the UK

Incident Response
Top 19 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Incident Response within the UK over the 6 months to 9 June 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Permanent
IT Job Ads		 Median Salary
Past 6 Months		 Median Salary
% Change
on Same Period
Last Year		 Live
Jobs
England +98 912 £60,720 -6.59% 191
UK excluding London +60 655 £55,000 +2.33% 131
Work from Home +12 338 £70,000 +12.00% 95
London +71 328 £75,000 +4.90% 68
North of England +150 235 £52,084 -13.19% 35
North West +80 147 £52,084 -7.41% 21
Midlands -23 125 £61,439 +22.88% 27
South East -19 118 £59,000 +7.27% 27
West Midlands +7 94 £60,000 +9.09% 20
South West +31 85 £50,000 - 16
Yorkshire +108 77 £60,000 -4.00% 13
Scotland -50 49 £57,500 +15.00% 15
East Midlands -47 30 £65,000 +36.84% 7
Wales +8 17 £52,500 -4.55% 2
East of England -16 12 £50,000 +11.11% 8
North East -7 11 £50,000 -25.93% 1
Isle of Man -11 8 £46,500 +3.33%
Northern Ireland +12 5 £50,000 +8.70% 2
Channel Islands - 1 £100,000 -

Incident Response
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 18 (1.74%) Microsoft Exchange
2 11 (1.06%) SharePoint
3 8 (0.77%) IIS
4 7 (0.68%) Apache
5 1 (0.096%) CMS
5 1 (0.096%) Confluence
5 1 (0.096%) Moodle
5 1 (0.096%) nginx
5 1 (0.096%) WordPress
Applications
1 38 (3.66%) Microsoft Office
2 22 (2.12%) Microsoft Excel
3 21 (2.03%) Microsoft PowerPoint
Business Applications
1 6 (0.58%) Dynamics CRM
2 1 (0.096%) Payment Gateway
2 1 (0.096%) SAP S/4HANA
Cloud Services
1 271 (26.13%) Azure
2 152 (14.66%) AWS
2 152 (14.66%) Microsoft 365
3 65 (6.27%) SaaS
4 45 (4.34%) Azure Sentinel
5 34 (3.28%) GCP
6 29 (2.80%) Entra ID
7 23 (2.22%) Amazon CloudWatch
8 22 (2.12%) PaaS
9 20 (1.93%) Amazon GuardDuty
9 20 (1.93%) Amazon S3
9 20 (1.93%) IaaS
9 20 (1.93%) Power Platform
9 20 (1.93%) Serverless
10 19 (1.83%) AWS CloudTrail
11 18 (1.74%) AWS CloudFormation
12 17 (1.64%) Cloud Computing
13 16 (1.54%) Amazon EC2
14 15 (1.45%) AWS Lambda
14 15 (1.45%) Virtual Private Cloud
Communications & Networking
1 249 (24.01%) Firewall
2 96 (9.26%) Intrusion Detection
3 60 (5.79%) Network Security
4 37 (3.57%) TCP/IP
5 34 (3.28%) VPN
6 29 (2.80%) Internet
7 27 (2.60%) LAN
7 27 (2.60%) WAN
8 20 (1.93%) DNS
9 15 (1.45%) Wireshark
10 11 (1.06%) SAN
10 11 (1.06%) VoIP
11 10 (0.96%) SSL
12 8 (0.77%) DHCP
12 8 (0.77%) HTTP
12 8 (0.77%) SMTP
13 5 (0.48%) VLAN
14 4 (0.39%) NetScaler
15 3 (0.29%) Broadband
15 3 (0.29%) tcpdump
Database & Business Intelligence
1 35 (3.38%) SQL Server
2 22 (2.12%) MySQL
3 16 (1.54%) Amazon RDS
3 16 (1.54%) RDBMS
3 16 (1.54%) Relational Database
4 13 (1.25%) Power BI
5 12 (1.16%) BigQuery
5 12 (1.16%) Data Hub
5 12 (1.16%) DB2
5 12 (1.16%) Enterprise Data Warehouse
5 12 (1.16%) MongoDB
6 6 (0.58%) Azure SQL Database
6 6 (0.58%) SQL Server Reporting Services
7 4 (0.39%) PostgreSQL
8 2 (0.19%) Metabase
8 2 (0.19%) Oracle Database
8 2 (0.19%) Redis
9 1 (0.096%) Hadoop
9 1 (0.096%) MariaDB
Development Applications
1 8 (0.77%) Git
2 6 (0.58%) Visual Studio
3 4 (0.39%) Burp Suite
3 4 (0.39%) Metasploit
4 3 (0.29%) Jenkins
4 3 (0.29%) JIRA
4 3 (0.29%) sqlmap
5 2 (0.19%) Snyk
6 1 (0.096%) Bitbucket
6 1 (0.096%) GitLab
General
1 307 (29.60%) Social Skills
2 218 (21.02%) Finance
3 156 (15.04%) Analytical Skills
4 75 (7.23%) Legal
5 69 (6.65%) Law
6 45 (4.34%) Banking
7 44 (4.24%) Manufacturing
8 41 (3.95%) Military
9 35 (3.38%) Public Sector
10 26 (2.51%) Marketing
11 25 (2.41%) Inclusion and Diversity
12 21 (2.03%) Games
13 20 (1.93%) Documentation Skills
14 17 (1.64%) Financial Institution
14 17 (1.64%) Retail
15 15 (1.45%) Presentation Skills
16 14 (1.35%) Influencing Skills
17 13 (1.25%) Spanish Language
18 8 (0.77%) French Language
18 8 (0.77%) Pharmaceutical
Job Titles
1 293 (28.25%) Analyst
2 170 (16.39%) Security Analyst
3 149 (14.37%) Senior
4 127 (12.25%) Lead
5 98 (9.45%) Security Engineer
6 92 (8.87%) Cybersecurity Analyst
7 87 (8.39%) Senior Analyst
8 63 (6.08%) Security Manager
9 58 (5.59%) SOC Analyst
10 54 (5.21%) Consultant
10 54 (5.21%) Senior Security Analyst
11 48 (4.63%) IT Analyst
12 47 (4.53%) Security Consultant
13 45 (4.34%) Architect
14 42 (4.05%) IT Security Analyst
15 40 (3.86%) Incident Response Lead
16 38 (3.66%) Security Architect
17 37 (3.57%) Incident Manager
18 34 (3.28%) Cybersecurity Consultant
19 32 (3.09%) Security Specialist
Libraries, Frameworks & Software Standards
1 15 (1.45%) .NET
2 11 (1.06%) Web Services
3 8 (0.77%) Laravel
3 8 (0.77%) XML
4 7 (0.68%) ARM Templates
4 7 (0.68%) YAML
5 6 (0.58%) .NET Framework
6 5 (0.48%) Node.js
7 4 (0.39%) EDI
7 4 (0.39%) Elastic Stack
7 4 (0.39%) Kafka
8 3 (0.29%) HTML
8 3 (0.29%) Sass
8 3 (0.29%) web3js
9 2 (0.19%) CSS
9 2 (0.19%) D3.js
9 2 (0.19%) REST
9 2 (0.19%) SOAP
9 2 (0.19%) Vue
9 2 (0.19%) XSLT
Miscellaneous
1 173 (16.68%) Cyber Threat
2 157 (15.14%) Management Information System
3 102 (9.84%) Cyberattack
3 102 (9.84%) Security Operations Centre
4 100 (9.64%) Security Posture
5 60 (5.79%) Operational Technology
6 51 (4.92%) Cyber Kill Chain
7 34 (3.28%) Cyber Defence
8 33 (3.18%) Industrial Internet of Things
9 27 (2.60%) Public Cloud
10 22 (2.12%) Analytical Mindset
10 22 (2.12%) Driving Licence
11 19 (1.83%) Client/Server
11 19 (1.83%) Data Centre
12 16 (1.54%) SCADA
13 13 (1.25%) Data Protection Act
14 12 (1.16%) Data Fabric
14 12 (1.16%) PropTech
15 11 (1.06%) Cloud Security Posture
16 10 (0.96%) Onboarding
Operating Systems
1 201 (19.38%) Windows
2 126 (12.15%) Linux
3 58 (5.59%) Unix
4 41 (3.95%) Windows Server
5 17 (1.64%) Mac OS X
6 16 (1.54%) zOS
7 9 (0.87%) Kali Linux
8 8 (0.77%) Ubuntu
9 5 (0.48%) Windows 10
10 4 (0.39%) CentOS
10 4 (0.39%) Solaris
10 4 (0.39%) Windows Server 2012
10 4 (0.39%) Windows Server 2016
10 4 (0.39%) Windows XP
11 3 (0.29%) Mac OS
12 2 (0.19%) AIX
12 2 (0.19%) Windows 7
13 1 (0.096%) Apple iOS
Processes & Methodologies
1 671 (64.71%) Cybersecurity
2 330 (31.82%) Security Operations
3 302 (29.12%) Information Security
4 284 (27.39%) SIEM
5 203 (19.58%) Incident Management
6 198 (19.09%) Problem-Solving
7 182 (17.55%) Threat Intelligence
8 176 (16.97%) Cyber Threat Intelligence
9 169 (16.30%) Risk Management
10 154 (14.85%) Vulnerability Management
11 106 (10.22%) Computer Science
11 106 (10.22%) Penetration Testing
12 102 (9.84%) Disaster Recovery
13 98 (9.45%) Cloud Security
14 91 (8.78%) Change Management
15 90 (8.68%) ITIL
16 87 (8.39%) Service Delivery
17 85 (8.20%) Security Architecture
18 76 (7.33%) Vulnerability Assessment
19 75 (7.23%) Security Management
Programming Languages
1 74 (7.14%) PowerShell
2 68 (6.56%) Python
3 28 (2.70%) SQL
4 22 (2.12%) Bash
5 13 (1.25%) Java
6 10 (0.96%) C#
6 10 (0.96%) Kusto Query Language
6 10 (0.96%) PHP
7 8 (0.77%) JavaScript
7 8 (0.77%) Rust
8 7 (0.68%) Bicep
9 6 (0.58%) T-SQL
10 5 (0.48%) C++
11 3 (0.29%) Go
12 2 (0.19%) Lisp
13 1 (0.096%) Perl
13 1 (0.096%) Ruby
13 1 (0.096%) Shell Script
13 1 (0.096%) TypeScript
Qualifications
1 275 (26.52%) CISSP
2 256 (24.69%) Degree
3 168 (16.20%) CISM
4 102 (9.84%) Security Cleared
5 56 (5.40%) Cisco Certification
6 54 (5.21%) CISA
6 54 (5.21%) SC Cleared
7 53 (5.11%) CEH
8 52 (5.01%) Computer Science Degree
9 48 (4.63%) GIAC
10 47 (4.53%) CompTIA Security+
11 37 (3.57%) (ISC)2 CCSP
12 34 (3.28%) CCSP
13 33 (3.18%) AWS Certification
13 33 (3.18%) Master's Degree
14 27 (2.60%) CREST Certified
15 25 (2.41%) CompTIA CySA+
15 25 (2.41%) GCIH
15 25 (2.41%) OSCP
16 22 (2.12%) GCIA
Quality Assurance & Compliance
1 253 (24.40%) ISO/IEC 27001
2 167 (16.10%) NIST
3 86 (8.29%) Cyber Essentials
4 80 (7.71%) GDPR
5 66 (6.36%) PCI DSS
6 42 (4.05%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 34 (3.28%) NCSC
8 31 (2.99%) GRC
9 25 (2.41%) ISO 9001
10 22 (2.12%) Cyber Essentials PLUS
10 22 (2.12%) ISO/IEC 17025
11 20 (1.93%) JSP 440
12 14 (1.35%) COBIT
13 12 (1.16%) SLA
14 10 (0.96%) NIST 800
15 8 (0.77%) Accessibility
15 8 (0.77%) HIPAA
15 8 (0.77%) Sarbanes-Oxley
16 7 (0.68%) QA
16 7 (0.68%) SOC 2
System Software
1 83 (8.00%) Active Directory
2 29 (2.80%) VMware Infrastructure
3 13 (1.25%) Hyper-V
4 11 (1.06%) Virtual Machines
5 8 (0.77%) Docker
5 8 (0.77%) Virtual Desktop
6 6 (0.58%) Terminal Services
7 5 (0.48%) VMware NSX
8 2 (0.19%) Virtual Servers
8 2 (0.19%) VMware ESXi
9 1 (0.096%) XenApp
Systems Management
1 27 (2.60%) Terraform
2 25 (2.41%) QRadar
3 20 (1.93%) EnCase
4 19 (1.83%) Microsoft Intune
5 15 (1.45%) CSIRT
6 13 (1.25%) Kubernetes
7 10 (0.96%) SCCM
8 9 (0.87%) Single Sign-On
9 7 (0.68%) Ansible
10 5 (0.48%) Suricata
11 4 (0.39%) Cacti
11 4 (0.39%) CASB
11 4 (0.39%) Computer Emergency Response Teams
11 4 (0.39%) Prometheus
12 3 (0.29%) Grafana
12 3 (0.29%) Nessus
12 3 (0.29%) SELinux
13 2 (0.19%) Active Directory Federation Services
13 2 (0.19%) Argo
13 2 (0.19%) Host Intrusion Detection System
Vendors
1 293 (28.25%) Microsoft
2 59 (5.69%) VMware
3 38 (3.66%) Splunk
4 35 (3.38%) Dell
5 34 (3.28%) Oracle
6 31 (2.99%) Cisco
7 29 (2.80%) Qualys
8 24 (2.31%) CrowdStrike
9 20 (1.93%) IBM
10 15 (1.45%) Google
11 14 (1.35%) Darktrace
11 14 (1.35%) ServiceNow
12 13 (1.25%) Citrix
12 13 (1.25%) Databricks
13 12 (1.16%) F5
14 10 (0.96%) BT
15 9 (0.87%) CyberArk
15 9 (0.87%) Juniper
15 9 (0.87%) Palo Alto
15 9 (0.87%) Sun
240 Incident Response jobs Nationwide