Incident Response Jobs

Incident Response
UK

The following table provides summary statistics for permanent job vacancies with a requirement for Incident Response skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Incident Response over the 6 months to 6 June 2024 with a comparison to the same period in the previous 2 years.

6 months to
6 Jun 2024		 Same period 2023 Same period 2022
Rank 286 376 454
Rank change year-on-year +90 +78 -29
Permanent jobs citing Incident Response 1,028 839 1,362
As % of all permanent jobs advertised in the UK 0.96% 0.89% 0.80%
As % of the Processes & Methodologies category 1.15% 0.94% 0.83%
Number of salaries quoted 766 579 836
10th Percentile £42,500 £38,750 £38,750
25th Percentile £50,000 £47,375 £48,000
Median annual salary (50th Percentile) £60,000 £62,500 £62,500
Median % change year-on-year -4.00% - +4.17%
75th Percentile £77,500 £77,500 £80,000
90th Percentile £97,500 £93,750 £92,500
UK excluding London median annual salary £55,000 £55,000 £52,500
% change year-on-year - +4.76% -

All Process and Methodology Skills
UK

Incident Response is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies with a requirement for process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills 89,168 89,599 164,158
As % of all permanent jobs advertised in the UK 83.34% 95.45% 95.91%
Number of salaries quoted 61,788 54,096 83,725
10th Percentile £29,500 £34,000 £33,500
25th Percentile £40,000 £45,000 £43,750
Median annual salary (50th Percentile) £55,000 £60,800 £60,000
Median % change year-on-year -9.54% +1.33% +9.09%
75th Percentile £72,500 £81,250 £80,000
90th Percentile £92,500 £100,000 £96,250
UK excluding London median annual salary £50,000 £55,000 £52,500
% change year-on-year -9.09% +4.76% +9.38%

Incident Response
Job Vacancy Trend

Job postings citing Incident Response as a proportion of all IT jobs advertised.

Job vacancy trend for Incident Response in the UK

Incident Response
Salary Trend

3-month moving average salary quoted in jobs citing Incident Response.

Salary trend for Incident Response in the UK

Incident Response
Salary Histogram

Salary distribution for jobs citing Incident Response over the 6 months to 6 June 2024.

Salary histogram for Incident Response in the UK

Incident Response
Top 19 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Incident Response within the UK over the 6 months to 6 June 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Permanent
IT Job Ads		 Median Salary
Past 6 Months		 Median Salary
% Change
on Same Period
Last Year		 Live
Jobs
England +91 903 £60,720 -6.59% 201
UK excluding London +68 649 £55,000 - 136
Work from Home -1 336 £70,000 +12.00% 95
London +76 326 £75,000 +4.90% 74
North of England +138 232 £52,084 -13.19% 37
North West +72 146 £52,084 -13.19% 21
Midlands -3 124 £61,439 +22.88% 31
South East -10 118 £60,000 +9.09% 29
West Midlands -3 93 £60,000 +9.09% 23
South West +24 82 £50,000 - 14
Yorkshire +109 75 £60,000 -4.00% 15
Scotland -60 50 £57,500 +15.00% 15
East Midlands -37 30 £65,000 +36.84% 8
Wales +5 17 £52,500 -4.55% 2
East of England -20 12 £50,000 +11.11% 8
North East -9 11 £50,000 -25.93% 1
Isle of Man -12 8 £46,500 +3.33%
Northern Ireland +15 5 £50,000 +8.70% 1
Channel Islands - 1 £100,000 -

Incident Response
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 17 (1.65%) Microsoft Exchange
2 11 (1.07%) SharePoint
3 8 (0.78%) IIS
4 7 (0.68%) Apache
5 1 (0.097%) CMS
5 1 (0.097%) Confluence
5 1 (0.097%) Moodle
5 1 (0.097%) nginx
5 1 (0.097%) WordPress
Applications
1 37 (3.60%) Microsoft Office
2 22 (2.14%) Microsoft Excel
3 21 (2.04%) Microsoft PowerPoint
Business Applications
1 6 (0.58%) Dynamics CRM
2 1 (0.097%) Payment Gateway
2 1 (0.097%) SAP S/4HANA
Cloud Services
1 268 (26.07%) Azure
2 150 (14.59%) Microsoft 365
3 149 (14.49%) AWS
4 66 (6.42%) SaaS
5 44 (4.28%) Azure Sentinel
6 34 (3.31%) GCP
7 29 (2.82%) Entra ID
8 22 (2.14%) Amazon CloudWatch
9 21 (2.04%) PaaS
10 20 (1.95%) Power Platform
11 19 (1.85%) Amazon GuardDuty
11 19 (1.85%) Amazon S3
11 19 (1.85%) IaaS
11 19 (1.85%) Serverless
12 18 (1.75%) AWS CloudTrail
13 17 (1.65%) AWS CloudFormation
13 17 (1.65%) Cloud Computing
14 15 (1.46%) Amazon EC2
15 14 (1.36%) AWS Lambda
15 14 (1.36%) Virtual Private Cloud
Communications & Networking
1 246 (23.93%) Firewall
2 95 (9.24%) Intrusion Detection
3 60 (5.84%) Network Security
4 37 (3.60%) TCP/IP
5 34 (3.31%) VPN
6 29 (2.82%) Internet
7 25 (2.43%) LAN
7 25 (2.43%) WAN
8 20 (1.95%) DNS
9 14 (1.36%) Wireshark
10 11 (1.07%) SAN
10 11 (1.07%) VoIP
11 9 (0.88%) SSL
12 8 (0.78%) DHCP
12 8 (0.78%) HTTP
12 8 (0.78%) SMTP
13 5 (0.49%) VLAN
14 4 (0.39%) NetScaler
15 3 (0.29%) tcpdump
15 3 (0.29%) Wireless
Database & Business Intelligence
1 35 (3.40%) SQL Server
2 22 (2.14%) MySQL
3 16 (1.56%) RDBMS
3 16 (1.56%) Relational Database
4 15 (1.46%) Amazon RDS
5 13 (1.26%) Power BI
6 12 (1.17%) BigQuery
6 12 (1.17%) Data Hub
6 12 (1.17%) DB2
6 12 (1.17%) Enterprise Data Warehouse
6 12 (1.17%) MongoDB
7 6 (0.58%) Azure SQL Database
7 6 (0.58%) SQL Server Reporting Services
8 4 (0.39%) PostgreSQL
9 2 (0.19%) Metabase
9 2 (0.19%) Oracle Database
9 2 (0.19%) Redis
10 1 (0.097%) Hadoop
10 1 (0.097%) MariaDB
Development Applications
1 8 (0.78%) Git
2 6 (0.58%) Visual Studio
3 4 (0.39%) Burp Suite
3 4 (0.39%) Metasploit
4 3 (0.29%) Jenkins
4 3 (0.29%) JIRA
4 3 (0.29%) sqlmap
5 2 (0.19%) Snyk
6 1 (0.097%) Bitbucket
6 1 (0.097%) GitLab
General
1 308 (29.96%) Social Skills
2 216 (21.01%) Finance
3 153 (14.88%) Analytical Skills
4 76 (7.39%) Legal
5 70 (6.81%) Law
6 45 (4.38%) Banking
7 43 (4.18%) Manufacturing
8 42 (4.09%) Military
9 35 (3.40%) Public Sector
10 27 (2.63%) Marketing
11 25 (2.43%) Inclusion and Diversity
12 21 (2.04%) Games
13 20 (1.95%) Documentation Skills
14 17 (1.65%) Financial Institution
14 17 (1.65%) Retail
15 15 (1.46%) Presentation Skills
16 14 (1.36%) Influencing Skills
17 13 (1.26%) Spanish Language
18 8 (0.78%) French Language
18 8 (0.78%) Pharmaceutical
Job Titles
1 290 (28.21%) Analyst
2 167 (16.25%) Security Analyst
3 147 (14.30%) Senior
4 125 (12.16%) Lead
5 97 (9.44%) Security Engineer
6 91 (8.85%) Cybersecurity Analyst
7 87 (8.46%) Senior Analyst
8 65 (6.32%) Security Manager
9 57 (5.54%) SOC Analyst
10 54 (5.25%) Senior Security Analyst
11 53 (5.16%) Consultant
12 47 (4.57%) IT Analyst
13 46 (4.47%) Security Consultant
14 45 (4.38%) Architect
15 41 (3.99%) IT Security Analyst
16 39 (3.79%) Incident Response Lead
17 38 (3.70%) Security Architect
18 37 (3.60%) Incident Manager
19 34 (3.31%) Cybersecurity Consultant
20 32 (3.11%) Service Manager
Libraries, Frameworks & Software Standards
1 15 (1.46%) .NET
2 11 (1.07%) Web Services
3 8 (0.78%) Laravel
3 8 (0.78%) XML
4 7 (0.68%) ARM Templates
4 7 (0.68%) YAML
5 6 (0.58%) .NET Framework
6 5 (0.49%) Node.js
7 4 (0.39%) EDI
7 4 (0.39%) Elastic Stack
7 4 (0.39%) Kafka
8 3 (0.29%) HTML
8 3 (0.29%) Sass
8 3 (0.29%) web3js
9 2 (0.19%) CSS
9 2 (0.19%) D3.js
9 2 (0.19%) React
9 2 (0.19%) Vue
9 2 (0.19%) XSLT
10 1 (0.097%) SOAP
Miscellaneous
1 171 (16.63%) Cyber Threat
2 156 (15.18%) Management Information System
3 100 (9.73%) Cyberattack
3 100 (9.73%) Security Operations Centre
4 99 (9.63%) Security Posture
5 60 (5.84%) Operational Technology
6 50 (4.86%) Cyber Kill Chain
7 34 (3.31%) Cyber Defence
8 33 (3.21%) Industrial Internet of Things
9 27 (2.63%) Public Cloud
10 23 (2.24%) Driving Licence
11 22 (2.14%) Analytical Mindset
12 19 (1.85%) Client/Server
12 19 (1.85%) Data Centre
13 16 (1.56%) SCADA
14 12 (1.17%) Data Fabric
14 12 (1.17%) Data Protection Act
15 11 (1.07%) Cloud Security Posture
15 11 (1.07%) PropTech
16 10 (0.97%) Onboarding
Operating Systems
1 200 (19.46%) Windows
2 125 (12.16%) Linux
3 58 (5.64%) Unix
4 40 (3.89%) Windows Server
5 18 (1.75%) Mac OS X
6 16 (1.56%) zOS
7 9 (0.88%) Kali Linux
8 8 (0.78%) Ubuntu
9 5 (0.49%) Windows 10
10 4 (0.39%) CentOS
10 4 (0.39%) Solaris
10 4 (0.39%) Windows Server 2012
10 4 (0.39%) Windows Server 2016
10 4 (0.39%) Windows XP
11 3 (0.29%) Mac OS
12 2 (0.19%) AIX
12 2 (0.19%) Windows 7
13 1 (0.097%) Apple iOS
Processes & Methodologies
1 667 (64.88%) Cybersecurity
2 329 (32.00%) Security Operations
3 299 (29.09%) Information Security
4 280 (27.24%) SIEM
5 201 (19.55%) Incident Management
6 194 (18.87%) Problem-Solving
7 178 (17.32%) Threat Intelligence
8 172 (16.73%) Cyber Threat Intelligence
9 168 (16.34%) Risk Management
10 153 (14.88%) Vulnerability Management
11 105 (10.21%) Computer Science
12 104 (10.12%) Penetration Testing
13 99 (9.63%) Disaster Recovery
14 98 (9.53%) Cloud Security
15 91 (8.85%) Change Management
16 88 (8.56%) ITIL
17 87 (8.46%) Service Delivery
18 83 (8.07%) Security Architecture
19 76 (7.39%) Security Management
19 76 (7.39%) Vulnerability Assessment
Programming Languages
1 74 (7.20%) PowerShell
2 67 (6.52%) Python
3 28 (2.72%) SQL
4 22 (2.14%) Bash
5 13 (1.26%) Java
6 10 (0.97%) C#
6 10 (0.97%) Kusto Query Language
6 10 (0.97%) PHP
7 8 (0.78%) JavaScript
7 8 (0.78%) Rust
8 7 (0.68%) Bicep
9 6 (0.58%) T-SQL
10 5 (0.49%) C++
11 3 (0.29%) Go
12 2 (0.19%) Lisp
13 1 (0.097%) Perl
13 1 (0.097%) Ruby
13 1 (0.097%) Shell Script
13 1 (0.097%) TypeScript
Qualifications
1 274 (26.65%) CISSP
2 256 (24.90%) Degree
3 167 (16.25%) CISM
4 102 (9.92%) Security Cleared
5 56 (5.45%) Cisco Certification
6 55 (5.35%) CISA
7 54 (5.25%) SC Cleared
8 52 (5.06%) CEH
8 52 (5.06%) Computer Science Degree
9 47 (4.57%) CompTIA Security+
10 45 (4.38%) GIAC
11 37 (3.60%) (ISC)2 CCSP
12 34 (3.31%) CCSP
13 33 (3.21%) Master's Degree
14 32 (3.11%) AWS Certification
15 25 (2.43%) CompTIA CySA+
15 25 (2.43%) CREST Certified
15 25 (2.43%) GCIH
15 25 (2.43%) OSCP
16 22 (2.14%) GCIA
Quality Assurance & Compliance
1 246 (23.93%) ISO/IEC 27001
2 164 (15.95%) NIST
3 82 (7.98%) Cyber Essentials
4 78 (7.59%) GDPR
5 66 (6.42%) PCI DSS
6 41 (3.99%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 34 (3.31%) NCSC
8 31 (3.02%) GRC
9 25 (2.43%) ISO 9001
10 22 (2.14%) ISO/IEC 17025
11 20 (1.95%) Cyber Essentials PLUS
11 20 (1.95%) JSP 440
12 13 (1.26%) COBIT
13 12 (1.17%) SLA
14 10 (0.97%) NIST 800
15 8 (0.78%) Accessibility
15 8 (0.78%) HIPAA
15 8 (0.78%) Sarbanes-Oxley
16 7 (0.68%) QA
16 7 (0.68%) SOC 2
System Software
1 80 (7.78%) Active Directory
2 28 (2.72%) VMware Infrastructure
3 13 (1.26%) Hyper-V
4 11 (1.07%) Virtual Machines
5 8 (0.78%) Docker
5 8 (0.78%) Virtual Desktop
6 6 (0.58%) Terminal Services
7 5 (0.49%) VMware NSX
8 2 (0.19%) Virtual Servers
8 2 (0.19%) VMware ESXi
9 1 (0.097%) XenApp
Systems Management
1 27 (2.63%) Terraform
2 25 (2.43%) QRadar
3 20 (1.95%) EnCase
4 17 (1.65%) Microsoft Intune
5 15 (1.46%) CSIRT
6 13 (1.26%) Kubernetes
7 9 (0.88%) SCCM
7 9 (0.88%) Single Sign-On
8 7 (0.68%) Ansible
9 5 (0.49%) Suricata
10 4 (0.39%) Cacti
10 4 (0.39%) CASB
10 4 (0.39%) Computer Emergency Response Teams
10 4 (0.39%) Prometheus
11 3 (0.29%) Grafana
11 3 (0.29%) Nessus
11 3 (0.29%) SELinux
12 2 (0.19%) Data Guard
12 2 (0.19%) FortiGate
12 2 (0.19%) Host Intrusion Detection System
Vendors
1 290 (28.21%) Microsoft
2 57 (5.54%) VMware
3 38 (3.70%) Splunk
4 37 (3.60%) Dell
5 34 (3.31%) Oracle
6 30 (2.92%) Cisco
7 29 (2.82%) Qualys
8 24 (2.33%) CrowdStrike
9 20 (1.95%) IBM
10 15 (1.46%) Google
11 14 (1.36%) Darktrace
12 13 (1.26%) Citrix
12 13 (1.26%) Databricks
12 13 (1.26%) ServiceNow
13 12 (1.17%) F5
14 10 (0.97%) BT
15 9 (0.88%) CyberArk
15 9 (0.88%) Datto
15 9 (0.88%) Juniper
15 9 (0.88%) Sun
248 Incident Response jobs Nationwide