MITRE ATT&CK Jobs, Co-occurring Skills & Salary Benchmarking

MITRE ATT&CK
UK

The following table provides summary statistics for permanent job vacancies with a requirement for MITRE ATT&CK skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited MITRE ATT&CK over the 6 months to 1 June 2024 with a comparison to the same period in the previous 2 years.

Location	6 months to 1 Jun 2024	Same period 2023	Same period 2022
Rank	765	715	990
Rank change year-on-year	-50	+275	-155
Permanent jobs citing MITRE ATT&CK	142	235	273
As % of all permanent jobs advertised in the UK	0.14%	0.25%	0.16%
As % of the Processes & Methodologies category	0.16%	0.26%	0.17%
Number of salaries quoted	105	148	209
10^th Percentile	£47,000	£40,033	£48,500
25^th Percentile	£50,000	£55,000	£53,750
Median annual salary (50^th Percentile)	£65,000	£65,000	£65,000
Median % change year-on-year	-	-	+4.00%
75^th Percentile	£71,250	£83,750	£85,000
90^th Percentile	£92,296	£103,750	£100,000
UK excluding London median annual salary	£47,000	£60,000	£65,000
% change year-on-year	-21.67%	-7.69%	+4.00%

All Process and Methodology Skills
UK

MITRE ATT&CK is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills	87,829	90,354	161,874
As % of all permanent jobs advertised in the UK	83.68%	95.46%	95.93%
Number of salaries quoted	61,251	54,292	82,971
10^th Percentile	£29,250	£34,000	£33,500
25^th Percentile	£40,000	£45,000	£43,750
Median annual salary (50^th Percentile)	£55,000	£60,800	£60,000
Median % change year-on-year	-9.54%	+1.33%	+9.09%
75^th Percentile	£72,500	£81,250	£80,000
90^th Percentile	£92,500	£100,000	£96,250
UK excluding London median annual salary	£50,000	£55,000	£52,500
% change year-on-year	-9.09%	+4.76%	+9.38%

MITRE ATT&CK
Job Vacancy Trend

Job postings citing MITRE ATT&CK as a proportion of all IT jobs advertised.

Job vacancy trend for MITRE ATT&amp;CK in the UK

MITRE ATT&CK
Salary Trend

3-month moving average salary quoted in jobs citing MITRE ATT&CK.

Salary trend for MITRE ATT&amp;CK in the UK

MITRE ATT&CK
Salary Histogram

Salary distribution for jobs citing MITRE ATT&CK over the 6 months to 1 June 2024.

Salary histogram for MITRE ATT&amp;CK in the UK

MITRE ATT&CK
Top 12 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing MITRE ATT&CK within the UK over the 6 months to 1 June 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location	Rank Change on Same Period Last Year	Matching Permanent IT Job Ads	Median Salary Past 6 Months	Median Salary % Change on Same Period Last Year	Live Jobs
England	-46	118	£65,000	-	40
Work from Home	+36	70	£57,500	-15.44%	11
UK excluding London	-28	69	£47,000	-21.67%	24
London	+31	63	£67,500	-14.29%	14
South East	+7	20	£48,500	-13.78%	6
Scotland	-55	18	£47,000	+4.03%	1
North of England	+21	17	£47,000	-21.67%	9
North West	-16	15	£47,000	-21.67%	8
South West	-18	11	£78,750	+95.14%	5
Midlands	-19	3	£70,000	+2.94%	3
Yorkshire	+63	2	£62,500	+4.17%	1
West Midlands	-21	2	£70,000	+2.94%	2

MITRE ATT&CK
Top 30 Co-occurring Skills and Capabilities

For the 6 months to 1 June 2024, job vacancies citing MITRE ATT&CK also mentioned the following skills and capabilities in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads with a requirement for MITRE ATT&CK.

1	83 (58.45%)	Cybersecurity
2	78 (54.93%)	SIEM
3	75 (52.82%)	Azure
4	66 (46.48%)	NIST
5	63 (44.37%)	Information Security
6	61 (42.96%)	Incident Response
7	51 (35.92%)	Security Operations
8	50 (35.21%)	Cloud Security
8	50 (35.21%)	Cyberattack
9	45 (31.69%)	SOAR
9	45 (31.69%)	Cyber Threat Intelligence
9	45 (31.69%)	Threat Intelligence
10	42 (29.58%)	Finance
11	41 (28.87%)	Microsoft 365
11	41 (28.87%)	Social Skills

12	37 (26.06%)	Cyber Kill Chain
12	37 (26.06%)	Vulnerability Management
13	36 (25.35%)	Firewall
14	35 (24.65%)	CISSP
15	33 (23.24%)	Cyber Threat
16	31 (21.83%)	Vulnerability Remediation
17	30 (21.13%)	ISO/IEC 27001
17	30 (21.13%)	Microsoft
18	28 (19.72%)	Application Security
19	27 (19.01%)	CISM
20	25 (17.61%)	Internet
20	25 (17.61%)	DNS
20	25 (17.61%)	Threat Modelling
20	25 (17.61%)	CASB
20	25 (17.61%)	DKIM

MITRE ATT&CK
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
Applications
Cloud Services
Communications & Networking
Database & Business Intelligence
Development Applications
General
Job Titles
Libraries, Frameworks & Software Standards
Miscellaneous
Operating Systems
Processes & Methodologies
Programming Languages
Qualifications
Quality Assurance & Compliance
System Software
Systems Management
Vendors

Application Platforms
1	6 (4.23%)	Microsoft Exchange
2	1 (0.70%)	SharePoint

Applications
1	7 (4.93%)	Microsoft Office
2	1 (0.70%)	Microsoft Excel
2	1 (0.70%)	MS Visio

Cloud Services
1	75 (52.82%)	Azure
2	41 (28.87%)	Microsoft 365
3	17 (11.97%)	AWS
4	16 (11.27%)	IaaS
4	16 (11.27%)	SaaS
5	14 (9.86%)	PaaS
6	12 (8.45%)	GCP
7	11 (7.75%)	Entra ID
8	7 (4.93%)	Azure Sentinel
9	6 (4.23%)	Azure AKS
9	6 (4.23%)	Azure Service Fabric
9	6 (4.23%)	Google Kubernetes Engine
10	4 (2.82%)	Amazon S3
11	2 (1.41%)	Power Platform
12	1 (0.70%)	Cloud Computing

Communications & Networking
1	36 (25.35%)	Firewall
2	25 (17.61%)	DKIM
2	25 (17.61%)	DMARC
2	25 (17.61%)	DNS
2	25 (17.61%)	Internet
3	10 (7.04%)	Wireshark
4	9 (6.34%)	Intrusion Detection
5	7 (4.93%)	Network Security
6	5 (3.52%)	LAN
6	5 (3.52%)	WAN
7	4 (2.82%)	HTTP
7	4 (2.82%)	SMTP
7	4 (2.82%)	SSL
7	4 (2.82%)	TCP/IP
8	2 (1.41%)	802.11
8	2 (1.41%)	Bluetooth
8	2 (1.41%)	ZigBee
9	1 (0.70%)	Cisco IPT
9	1 (0.70%)	tcpdump

Database & Business Intelligence
1	6 (4.23%)	Azure SQL Database
2	4 (2.82%)	SQL Server
3	2 (1.41%)	Power BI
4	1 (0.70%)	Hadoop

Development Applications
1	9 (6.34%)	Metasploit
2	6 (4.23%)	Burp Suite

General
1	42 (29.58%)	Finance
2	41 (28.87%)	Social Skills
3	15 (10.56%)	Banking
4	13 (9.15%)	Inclusion and Diversity
5	10 (7.04%)	Law
6	9 (6.34%)	Analytical Skills
6	9 (6.34%)	Legal
7	7 (4.93%)	Marketing
8	6 (4.23%)	Games
8	6 (4.23%)	Retail Banking
9	4 (2.82%)	Investment Banking
9	4 (2.82%)	Manufacturing
9	4 (2.82%)	Presentation Skills
10	3 (2.11%)	Public Sector
11	2 (1.41%)	Cyber-Physical System
11	2 (1.41%)	Organisational Skills
11	2 (1.41%)	Retail
12	1 (0.70%)	Automotive
12	1 (0.70%)	Financial Institution
12	1 (0.70%)	Telecoms

Job Titles
1	69 (48.59%)	Analyst
2	59 (41.55%)	Security Analyst
3	25 (17.61%)	Information Analyst
3	25 (17.61%)	Information Security Analyst
4	24 (16.90%)	Cybersecurity Analyst
5	21 (14.79%)	Senior
6	19 (13.38%)	Architect
7	14 (9.86%)	Lead
8	11 (7.75%)	Security Engineer
9	10 (7.04%)	Senior Analyst
10	9 (6.34%)	Security Manager
10	9 (6.34%)	Senior Security Analyst
11	7 (4.93%)	Cloud Architect
11	7 (4.93%)	IT Analyst
11	7 (4.93%)	IT Security Analyst
11	7 (4.93%)	Lead Architect
12	6 (4.23%)	Email Analyst
12	6 (4.23%)	SOC Engineer
12	6 (4.23%)	Vulnerability Analyst
12	6 (4.23%)	Vulnerability Management Analyst

Libraries, Frameworks & Software Standards
1	13 (9.15%)	REST
2	10 (7.04%)	OAuth
2	10 (7.04%)	SAML
3	6 (4.23%)	SOAP
3	6 (4.23%)	Web Services
4	4 (2.82%)	Kafka
5	2 (1.41%)	802.1X
6	1 (0.70%)	Elastic Stack

Miscellaneous
1	50 (35.21%)	Cyberattack
2	37 (26.06%)	Cyber Kill Chain
3	33 (23.24%)	Cyber Threat
4	22 (15.49%)	Cyber Defence
5	15 (10.56%)	Management Information System
5	15 (10.56%)	Security Operations Centre
6	11 (7.75%)	Public Cloud
7	6 (4.23%)	Cloud Native
7	6 (4.23%)	Distributed Systems
7	6 (4.23%)	Security Posture
8	4 (2.82%)	Operational Technology
8	4 (2.82%)	SCADA
9	3 (2.11%)	Self-Motivation
10	2 (1.41%)	CAN bus
10	2 (1.41%)	Insider Threat
10	2 (1.41%)	IoT
10	2 (1.41%)	NHS
11	1 (0.70%)	Cybercrime
11	1 (0.70%)	Data Centre
11	1 (0.70%)	Tandem

Operating Systems
1	14 (9.86%)	Windows
2	8 (5.63%)	Unix
3	6 (4.23%)	Linux
4	4 (2.82%)	CentOS
4	4 (2.82%)	Solaris
4	4 (2.82%)	Ubuntu
4	4 (2.82%)	Windows Server
4	4 (2.82%)	Windows XP
4	4 (2.82%)	zOS
5	1 (0.70%)	Mac OS X

Processes & Methodologies
1	83 (58.45%)	Cybersecurity
2	78 (54.93%)	SIEM
3	63 (44.37%)	Information Security
4	61 (42.96%)	Incident Response
5	51 (35.92%)	Security Operations
6	50 (35.21%)	Cloud Security
7	45 (31.69%)	Cyber Threat Intelligence
7	45 (31.69%)	SOAR
7	45 (31.69%)	Threat Intelligence
8	37 (26.06%)	Vulnerability Management
9	31 (21.83%)	Vulnerability Remediation
10	28 (19.72%)	Application Security
11	25 (17.61%)	Threat Modelling
12	23 (16.20%)	OWASP
13	19 (13.38%)	Cyber Intelligence
14	18 (12.68%)	Identity Access Management
15	17 (11.97%)	DevSecOps
15	17 (11.97%)	Problem Management
16	15 (10.56%)	Continuous Improvement
16	15 (10.56%)	Penetration Testing

Programming Languages
1	7 (4.93%)	SQL
2	3 (2.11%)	Kusto Query Language
3	2 (1.41%)	Python
4	1 (0.70%)	Bash
4	1 (0.70%)	C
4	1 (0.70%)	Java
4	1 (0.70%)	PowerShell
4	1 (0.70%)	R
4	1 (0.70%)	Scala

Qualifications
1	35 (24.65%)	CISSP
2	27 (19.01%)	CISM
3	24 (16.90%)	GIAC
4	15 (10.56%)	Security Cleared
5	12 (8.45%)	Degree
6	11 (7.75%)	SC Cleared
7	8 (5.63%)	Computer Science Degree
7	8 (5.63%)	DV Cleared
7	8 (5.63%)	SANS
8	6 (4.23%)	AWS Certification
8	6 (4.23%)	AWS Certified Cloud Practitioner
8	6 (4.23%)	CEH
8	6 (4.23%)	Master's Degree
9	5 (3.52%)	CREST Certified
9	5 (3.52%)	CRISC
9	5 (3.52%)	GPEN
10	4 (2.82%)	(ISC)2 CCSP
10	4 (2.82%)	CompTIA CySA+
10	4 (2.82%)	GCIA
10	4 (2.82%)	OSCP

Quality Assurance & Compliance
1	66 (46.48%)	NIST
2	30 (21.13%)	ISO/IEC 27001
3	20 (14.08%)	NCSC
4	17 (11.97%)	PCI DSS
5	13 (9.15%)	GDPR
6	10 (7.04%)	GRC
7	7 (4.93%)	COBIT
8	6 (4.23%)	ISO/IEC 27002 (supersedes ISO/IEC 17799)
8	6 (4.23%)	Web Application Security Consortium
9	4 (2.82%)	Cyber Essentials
9	4 (2.82%)	Cyber Essentials PLUS
9	4 (2.82%)	ISO 9001
9	4 (2.82%)	NIST 800
10	2 (1.41%)	ISO 31000
10	2 (1.41%)	SOC 2
11	1 (0.70%)	Actionable Recommendations
11	1 (0.70%)	California Consumer Privacy Act
11	1 (0.70%)	HIPAA
11	1 (0.70%)	PSD2
11	1 (0.70%)	Sarbanes-Oxley

System Software
1	6 (4.23%)	Docker
2	4 (2.82%)	Active Directory
3	2 (1.41%)	Virtual Machines
4	1 (0.70%)	Hyper-V

Systems Management
1	25 (17.61%)	CASB
2	7 (4.93%)	Terraform
3	6 (4.23%)	Computer Emergency Response Teams
3	6 (4.23%)	CSIRT
3	6 (4.23%)	Kubernetes
3	6 (4.23%)	Nmap
4	4 (2.82%)	QRadar
5	3 (2.11%)	Nessus
6	1 (0.70%)	Kibana
6	1 (0.70%)	logstash
6	1 (0.70%)	Microsoft Intune

Vendors
1	30 (21.13%)	Microsoft
2	14 (9.86%)	Qualys
3	8 (5.63%)	Splunk
4	3 (2.11%)	IBM
4	3 (2.11%)	Intel
5	1 (0.70%)	CrowdStrike
5	1 (0.70%)	Darktrace
5	1 (0.70%)	Netskope
5	1 (0.70%)	Palo Alto
5	1 (0.70%)	Tanium
5	1 (0.70%)	VMware
5	1 (0.70%)	Zscaler

MITRE ATT&CKUK

All Process and Methodology SkillsUK

MITRE ATT&CKJob Vacancy Trend

MITRE ATT&CKSalary Trend

MITRE ATT&CKSalary Histogram

MITRE ATT&CKTop 12 Job Locations

MITRE ATT&CKTop 30 Co-occurring Skills and Capabilities

MITRE ATT&CKCo-occurring Skills and Capabilities by Category