Application Security Contracts

Application Security (AppSec)
UK

The following table provides summary statistics for contract job vacancies with a requirement for Application Security skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited Application Security over the 6 months to 1 June 2024 with a comparison to the same period in the previous 2 years.

6 months to
1 Jun 2024		 Same period 2023 Same period 2022
Rank 331 269 346
Rank change year-on-year -62 +77 +17
Contract jobs citing Application Security 260 542 676
As % of all contract jobs advertised in the UK 0.60% 0.97% 0.77%
As % of the Processes & Methodologies category 0.71% 1.08% 0.85%
Number of daily rates quoted 181 405 473
10th Percentile £475 £479 £425
25th Percentile £543 £540 £513
Median daily rate (50th Percentile) £615 £640 £600
Median % change year-on-year -3.91% +6.67% +4.35%
75th Percentile £725 £750 £688
90th Percentile £793 £836 £786
UK excluding London median daily rate £625 £644 £588
% change year-on-year -2.95% +9.52% +12.00%
Number of hourly rates quoted 0 1 3
10th Percentile - - £42.00
25th Percentile - £91.25 £45.00
Median hourly rate - £97.50 £50.00
Median % change year-on-year - +95.00% +62.60%
75th Percentile - £103.75 £63.50
90th Percentile - - £71.60
UK excluding London median hourly rate - - £77.00
% change year-on-year - - +258.14%

All Process and Methodology Skills
UK

Application Security is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 36,802 50,277 79,372
As % of all contract IT jobs advertised in the UK 85.47% 89.69% 90.61%
Number of daily rates quoted 23,632 34,811 55,790
10th Percentile £300 £325 £345
25th Percentile £413 £438 £431
Median daily rate (50th Percentile) £525 £550 £538
Median % change year-on-year -4.55% +2.33% +7.50%
75th Percentile £638 £650 £644
90th Percentile £750 £750 £738
UK excluding London median daily rate £500 £500 £488
% change year-on-year - +2.56% +9.18%
Number of hourly rates quoted 2,530 1,673 1,868
10th Percentile £12.75 £10.63 £12.50
25th Percentile £16.00 £15.72 £15.63
Median hourly rate £36.50 £36.25 £25.68
Median % change year-on-year +0.69% +41.16% +9.74%
75th Percentile £60.75 £65.00 £50.00
90th Percentile £72.50 £75.00 £65.00
UK excluding London median hourly rate £38.12 £35.00 £20.00
% change year-on-year +8.91% +75.00% -4.76%

Application Security
Job Vacancy Trend

Job postings citing Application Security as a proportion of all IT jobs advertised.

Job vacancy trend for Application Security in the UK

Application Security
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing Application Security.

Daily rate trend for Application Security in the UK

Application Security
Daily Rate Histogram

Daily rate distribution for jobs citing Application Security over the 6 months to 1 June 2024.

Daily rate histogram for Application Security in the UK

Application Security
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing Application Security.

Hourly rate trend for Application Security in the UK

Application Security
Top 16 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Application Security within the UK over the 6 months to 1 June 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England -61 223 £624 -4.08% 103
London -43 140 £600 -14.29% 47
Work from Home +7 89 £600 -7.69% 84
UK excluding London -22 83 £625 -2.95% 54
North of England +14 32 £625 +3.14% 18
South East 0 24 £600 -14.29% 17
Yorkshire +23 16 £624 +8.43% 5
South West +16 13 £600 -14.29% 5
North West +13 13 £663 +9.41% 13
Midlands -19 8 £650 +8.24% 11
West Midlands -20 7 £650 +9.24% 10
Scotland +32 6 £623 +42.29% 2
Wales +18 2 £666 +40.26%
North East +5 2 £625 -26.23%
East Midlands +6 1 £567 -6.44% 1
East of England -1 1 - - 2

Application Security
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 4 (1.54%) Confluence
2 3 (1.15%) Microsoft Exchange
3 2 (0.77%) SharePoint
4 1 (0.38%) IBM Notes
4 1 (0.38%) nginx
4 1 (0.38%) SAS
Applications
1 10 (3.85%) Microsoft Office
2 3 (1.15%) Microsoft Project
Cloud Services
1 82 (31.54%) AWS
2 70 (26.92%) Azure
3 44 (16.92%) GCP
4 19 (7.31%) SaaS
5 16 (6.15%) Serverless
6 15 (5.77%) AWS CloudFormation
7 13 (5.00%) IaaS
7 13 (5.00%) PaaS
8 12 (4.62%) GitHub
9 10 (3.85%) Entra ID
9 10 (3.85%) Virtual Private Cloud
10 6 (2.31%) Amazon EKS
10 6 (2.31%) OpenShift
11 5 (1.92%) Azure DevOps
11 5 (1.92%) CloudFront
11 5 (1.92%) Microsoft 365
11 5 (1.92%) WhatsApp
12 4 (1.54%) Amazon S3
12 4 (1.54%) Slack
13 3 (1.15%) Azure Logic Apps
Communications & Networking
1 42 (16.15%) Firewall
2 30 (11.54%) Network Security
3 12 (4.62%) DNS
4 11 (4.23%) HTTPS
4 11 (4.23%) VPN
5 10 (3.85%) Wireless
6 7 (2.69%) Internet
7 6 (2.31%) BIG-IP
7 6 (2.31%) Cisco Nexus
8 5 (1.92%) HTTP
8 5 (1.92%) Intrusion Detection
8 5 (1.92%) SD-WAN
8 5 (1.92%) TCP/IP
8 5 (1.92%) WAN
9 4 (1.54%) Cisco ISE
9 4 (1.54%) DHCP
10 3 (1.15%) F5 BIG-IP GTM
10 3 (1.15%) IPv4
10 3 (1.15%) Reverse Proxy
10 3 (1.15%) SSL
Database & Business Intelligence
1 12 (4.62%) SQL Server
2 9 (3.46%) MySQL
3 4 (1.54%) Data Warehouse
3 4 (1.54%) Metadata
3 4 (1.54%) RDBMS
3 4 (1.54%) Relational Database
4 3 (1.15%) Azure SQL Database
4 3 (1.15%) Data Vault
4 3 (1.15%) Elasticsearch
5 2 (0.77%) Data Lake
6 1 (0.38%) DB2
6 1 (0.38%) NoSQL
6 1 (0.38%) Oracle Reports
6 1 (0.38%) SQL Server Integration Services
Development Applications
1 15 (5.77%) Jenkins
2 14 (5.38%) Git
2 14 (5.38%) Sonatype Nexus
3 11 (4.23%) Burp Suite
4 10 (3.85%) GitLab
4 10 (3.85%) JIRA
5 8 (3.08%) Robot Framework
6 6 (2.31%) Gradle
6 6 (2.31%) Maven
7 4 (1.54%) Browser DevTools
8 3 (1.15%) Atlassian Bamboo
8 3 (1.15%) CircleCI
8 3 (1.15%) SonarQube
8 3 (1.15%) Travis CI
8 3 (1.15%) Visual Studio
9 2 (0.77%) Appium
9 2 (0.77%) AppScan
9 2 (0.77%) git-flow
9 2 (0.77%) Subversion
9 2 (0.77%) XCUITest
General
1 75 (28.85%) Finance
2 45 (17.31%) Social Skills
3 33 (12.69%) Banking
4 27 (10.38%) Analytical Skills
5 13 (5.00%) Public Sector
6 12 (4.62%) Retail
7 11 (4.23%) Documentation Skills
7 11 (4.23%) Telecoms
8 6 (2.31%) Financial Institution
8 6 (2.31%) Front Office
9 5 (1.92%) Legal
10 4 (1.54%) Presentation Skills
11 2 (0.77%) Automotive
11 2 (0.77%) Publishing
12 1 (0.38%) Arabic Language
12 1 (0.38%) Back Office
12 1 (0.38%) Electronics
12 1 (0.38%) Health Technology
12 1 (0.38%) Retail Banking
Job Titles
1 98 (37.69%) Architect
2 65 (25.00%) Security Architect
3 34 (13.08%) Consultant
3 34 (13.08%) Security Engineer
4 33 (12.69%) Security Consultant
5 31 (11.92%) Solutions Architect
6 21 (8.08%) Applications Engineer
7 20 (7.69%) Applications Architect
8 19 (7.31%) Senior
9 14 (5.38%) Cloud Engineer
9 14 (5.38%) DevSecOps Architect
10 13 (5.00%) Analyst
11 10 (3.85%) Cybersecurity Consultant
11 10 (3.85%) Penetration Tester
11 10 (3.85%) Security Manager
11 10 (3.85%) Senior Architect
11 10 (3.85%) Tester
12 9 (3.46%) Cloud Architect
12 9 (3.46%) Senior Security Architect
13 8 (3.08%) Automation Engineer
Libraries, Frameworks & Software Standards
1 19 (7.31%) SailPoint
2 10 (3.85%) OAuth
3 8 (3.08%) SAML
4 6 (2.31%) .NET
4 6 (2.31%) CSS
4 6 (2.31%) Elastic Stack
4 6 (2.31%) HTML
5 5 (1.92%) FIX Protocol
5 5 (1.92%) HTML5
5 5 (1.92%) JSON
5 5 (1.92%) Kafka
5 5 (1.92%) OAuth2
6 4 (1.54%) OpenID
6 4 (1.54%) RESTful
6 4 (1.54%) XML
6 4 (1.54%) YAML
7 3 (1.15%) ARM Templates
7 3 (1.15%) REST
7 3 (1.15%) Web Services
8 2 (0.77%) SwiftUI
Miscellaneous
1 25 (9.62%) Mobile App
2 16 (6.15%) PKI
3 15 (5.77%) IoT
4 14 (5.38%) Cloud Native
5 13 (5.00%) Data Centre
6 12 (4.62%) Security Posture
7 10 (3.85%) Product Ownership
8 8 (3.08%) Hedge funds
8 8 (3.08%) Operational Technology
9 6 (2.31%) Management Information System
10 5 (1.92%) Security Operations Centre
11 3 (1.15%) Cyberattack
11 3 (1.15%) Data Structures
11 3 (1.15%) Public Cloud
12 2 (0.77%) Cyber Threat
12 2 (0.77%) Data Protection Act
12 2 (0.77%) Distributed Denial-of-Service
12 2 (0.77%) Hybrid Cloud
13 1 (0.38%) Blockchain
13 1 (0.38%) Reinsurance
Operating Systems
1 39 (15.00%) Windows
2 31 (11.92%) Linux
3 16 (6.15%) Windows Server
4 14 (5.38%) Unix
5 13 (5.00%) Windows Server 2019
6 5 (1.92%) CentOS
6 5 (1.92%) Windows Server 2016
7 2 (0.77%) Android
7 2 (0.77%) Apple iOS
8 1 (0.38%) Windows 10
Processes & Methodologies
1 83 (31.92%) CI/CD
1 83 (31.92%) Cloud Security
2 73 (28.08%) Cybersecurity
2 73 (28.08%) DevOps
3 67 (25.77%) DevSecOps
4 63 (24.23%) Agile
5 59 (22.69%) Information Security
6 50 (19.23%) SDLC
7 49 (18.85%) Security Testing
8 47 (18.08%) Identity Access Management
9 46 (17.69%) Deployment Automation
9 46 (17.69%) Static Application Security Testing
10 42 (16.15%) Threat Modelling
11 41 (15.77%) Dynamic Application Security Testing
11 41 (15.77%) Security Architecture
12 40 (15.38%) Penetration Testing
13 39 (15.00%) OWASP
13 39 (15.00%) Vulnerability Management
14 32 (12.31%) Problem-Solving
15 31 (11.92%) Infrastructure as Code
Programming Languages
1 46 (17.69%) Python
2 29 (11.15%) PowerShell
3 18 (6.92%) C++
4 16 (6.15%) Bash
5 14 (5.38%) Shell Script
6 13 (5.00%) JavaScript
7 11 (4.23%) Java
8 9 (3.46%) SQL
9 8 (3.08%) Ruby
10 7 (2.69%) PHP
11 6 (2.31%) Groovy
12 5 (1.92%) C#
12 5 (1.92%) T-SQL
13 4 (1.54%) C
13 4 (1.54%) Go
14 3 (1.15%) ActionScript
14 3 (1.15%) Perl
14 3 (1.15%) VBScript
15 2 (0.77%) Swift
16 1 (0.38%) PL/SQL
Qualifications
1 31 (11.92%) CISSP
2 26 (10.00%) CISM
3 25 (9.62%) Security Cleared
4 20 (7.69%) Degree
5 18 (6.92%) AWS Certification
6 17 (6.54%) SC Cleared
7 16 (6.15%) CISA
8 12 (4.62%) CEH
9 11 (4.23%) GIAC
9 11 (4.23%) OSCP
10 9 (3.46%) CREST Certified
11 8 (3.08%) GPEN
12 7 (2.69%) ISACA
12 7 (2.69%) Master's Degree
12 7 (2.69%) MBA
13 5 (1.92%) Cisco Certification
13 5 (1.92%) Computer Science Degree
13 5 (1.92%) DV Cleared
13 5 (1.92%) SANS
14 4 (1.54%) CRISC
Quality Assurance & Compliance
1 45 (17.31%) NIST
2 17 (6.54%) ISO/IEC 27001
3 14 (5.38%) GDPR
3 14 (5.38%) QA
4 11 (4.23%) COBIT
5 8 (3.08%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 7 (2.69%) PCI DSS
6 7 (2.69%) RMADS
7 4 (1.54%) HIPAA
8 2 (0.77%) Accessibility
8 2 (0.77%) GRC
8 2 (0.77%) ISO 9001
9 1 (0.38%) Data Quality
9 1 (0.38%) GLBA
9 1 (0.38%) HMG Security Policy Framework
9 1 (0.38%) ISAE 3402
9 1 (0.38%) ISO 31000
9 1 (0.38%) NCSC
9 1 (0.38%) Sarbanes-Oxley
System Software
1 25 (9.62%) Active Directory
2 21 (8.08%) Docker
3 8 (3.08%) VMware Infrastructure
4 2 (0.77%) Virtual Desktop
Systems Management
1 41 (15.77%) Terraform
2 32 (12.31%) Ansible
3 19 (7.31%) Kubernetes
4 11 (4.23%) Puppet
5 6 (2.31%) Grafana
5 6 (2.31%) Prometheus
6 5 (1.92%) Progress Chef
7 3 (1.15%) Docker Swarm
7 3 (1.15%) Graylog
7 3 (1.15%) HP Fortify
7 3 (1.15%) Kibana
7 3 (1.15%) logstash
7 3 (1.15%) Nagios
7 3 (1.15%) Nessus
7 3 (1.15%) Thomson Reuters DACS
8 2 (0.77%) SCCM
8 2 (0.77%) Single Sign-On
8 2 (0.77%) WebInspect
9 1 (0.38%) CASB
9 1 (0.38%) WMI
Vendors
1 29 (11.15%) Microsoft
2 19 (7.31%) CyberArk
3 18 (6.92%) BeyondTrust
3 18 (6.92%) ServiceNow
4 12 (4.62%) Cisco
4 12 (4.62%) F5
4 12 (4.62%) Splunk
5 8 (3.08%) Checkmarx
5 8 (3.08%) Veracode
5 8 (3.08%) VMware
6 7 (2.69%) Fortinet
7 6 (2.31%) Juniper
7 6 (2.31%) Palo Alto
7 6 (2.31%) Qualys
7 6 (2.31%) SAP
8 5 (1.92%) Red Hat
9 4 (1.54%) CheckPoint
9 4 (1.54%) Unisys
10 3 (1.15%) Bloomberg
10 3 (1.15%) Tufin
114 Application Security jobs Nationwide