SIEM Contracts

Security Information and Event Management (SIEM)
UK

The following table provides summary statistics for contract job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited SIEM over the 6 months to 28 April 2024 with a comparison to the same period in the previous 2 years.

6 months to
28 Apr 2024		 Same period 2023 Same period 2022
Rank 159 175 338
Rank change year-on-year +16 +163 -64
Contract jobs citing SIEM 665 901 701
As % of all contract jobs advertised in the UK 1.54% 1.51% 0.79%
As % of the Processes & Methodologies category 1.78% 1.68% 0.87%
Number of daily rates quoted 485 621 477
10th Percentile £425 £438 £406
25th Percentile £513 £500 £475
Median daily rate (50th Percentile) £600 £600 £575
Median % change year-on-year - +4.35% +9.52%
75th Percentile £700 £688 £688
90th Percentile £825 £775 £780
UK excluding London median daily rate £590 £550 £575
% change year-on-year +7.27% -4.35% +15.00%
Number of hourly rates quoted 6 12 5
10th Percentile - - -
25th Percentile - £62.75 £56.25
Median hourly rate £40.00 £75.00 £65.80
Median % change year-on-year -46.67% +13.98% +19.64%
75th Percentile £63.44 £78.31 £68.75
90th Percentile £74.63 £85.40 £74.00
UK excluding London median hourly rate £40.00 £75.00 £65.80
% change year-on-year -46.67% +13.98% +31.60%

All Process and Methodology Skills
UK

SIEM is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 37,383 53,667 80,409
As % of all contract IT jobs advertised in the UK 86.31% 89.90% 90.57%
Number of daily rates quoted 24,097 37,244 56,431
10th Percentile £300 £325 £340
25th Percentile £413 £438 £425
Median daily rate (50th Percentile) £525 £550 £525
Median % change year-on-year -4.55% +4.76% +8.25%
75th Percentile £638 £650 £638
90th Percentile £750 £750 £738
UK excluding London median daily rate £500 £500 £475
% change year-on-year - +5.26% +9.20%
Number of hourly rates quoted 2,426 1,746 1,925
10th Percentile £12.75 £11.00 £12.50
25th Percentile £16.00 £16.25 £15.25
Median hourly rate £35.00 £37.30 £25.00
Median % change year-on-year -6.17% +49.20% -
75th Percentile £59.44 £65.00 £49.25
90th Percentile £72.50 £75.00 £63.75
UK excluding London median hourly rate £36.05 £36.00 £20.00
% change year-on-year +0.13% +80.00% -8.51%

SIEM
Job Vacancy Trend

Job postings citing SIEM as a proportion of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing SIEM.

Daily rate trend for SIEM in the UK

SIEM
Daily Rate Histogram

Daily rate distribution for jobs citing SIEM over the 6 months to 28 April 2024.

Daily rate histogram for SIEM in the UK

SIEM
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing SIEM.

Hourly rate trend for SIEM in the UK

SIEM
Hourly Rate Histogram

Hourly rate distribution of jobs citing SIEM over the 6 months to 28 April 2024.

Hourly rate histogram for SIEM in the UK

SIEM
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing SIEM within the UK over the 6 months to 28 April 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England +35 612 £600 - 191
UK excluding London +42 410 £590 +7.27% 118
London +2 195 £613 -4.97% 85
South West +56 167 £570 +8.57% 21
Work from Home -39 151 £600 -3.81% 88
South East +34 129 £625 +7.53% 36
Midlands +54 89 £600 - 10
West Midlands +60 87 £600 - 8
North of England -55 28 £650 +18.18% 31
Yorkshire -16 19 £800 +39.74% 12
Scotland +33 17 £520 -9.57% 8
North West -34 9 £638 +15.91% 17
East of England +11 6 £600 +41.18% 5
East Midlands +9 2 £596 +9.86% 2
Wales +1 2 £298 -30.00% 6

SIEM
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 11 (1.65%) Confluence
2 6 (0.90%) SharePoint
3 4 (0.60%) Microsoft Exchange
4 1 (0.15%) IBM Notes
Applications
1 3 (0.45%) Microsoft PowerPoint
2 2 (0.30%) Microsoft Office
2 2 (0.30%) Spreadsheet
3 1 (0.15%) Microsoft Excel
3 1 (0.15%) Microsoft Project
Cloud Services
1 120 (18.05%) Azure
2 49 (7.37%) AWS
3 44 (6.62%) Azure Sentinel
4 19 (2.86%) Microsoft 365
5 16 (2.41%) SaaS
6 14 (2.11%) Entra ID
7 12 (1.80%) IaaS
8 9 (1.35%) Amazon CloudWatch
8 9 (1.35%) Azure DevOps
8 9 (1.35%) GCP
9 8 (1.20%) AWS CloudTrail
9 8 (1.20%) Azure Monitor
10 5 (0.75%) Amazon S3
11 4 (0.60%) Amazon GuardDuty
11 4 (0.60%) AWS KMS
11 4 (0.60%) Serverless
12 3 (0.45%) Amazon EC2
12 3 (0.45%) Azure ExpressRoute
12 3 (0.45%) Google Workspace
12 3 (0.45%) PaaS
Communications & Networking
1 133 (20.00%) Firewall
2 77 (11.58%) Network Security
3 34 (5.11%) TCP/IP
4 30 (4.51%) Intrusion Detection
5 25 (3.76%) SD-WAN
6 22 (3.31%) DNS
6 22 (3.31%) WAN
7 15 (2.26%) DHCP
8 12 (1.80%) VPN
9 11 (1.65%) Cisco ISE
9 11 (1.65%) HTTP
9 11 (1.65%) Wireshark
10 7 (1.05%) LAN
11 6 (0.90%) Cisco ASA
12 5 (0.75%) FTP
12 5 (0.75%) HTTPS
12 5 (0.75%) ICMP
12 5 (0.75%) SMTP
12 5 (0.75%) tcpdump
12 5 (0.75%) Unified Communications
Database & Business Intelligence
1 67 (10.08%) Elasticsearch
2 15 (2.26%) Big Data
3 6 (0.90%) SQL Server
4 5 (0.75%) Amazon RDS
5 4 (0.60%) Apache Hive
5 4 (0.60%) Hadoop
5 4 (0.60%) Tableau
6 3 (0.45%) NonStop SQL
6 3 (0.45%) SQL Server Integration Services
6 3 (0.45%) SQL Server Reporting Services
7 2 (0.30%) Amazon Redshift
7 2 (0.30%) Power BI
8 1 (0.15%) Data Lake
8 1 (0.15%) MySQL
Development Applications
1 20 (3.01%) JIRA
2 4 (0.60%) IDA Disassembler
3 3 (0.45%) Git
3 3 (0.45%) Jenkins
4 2 (0.30%) Artifactory
5 1 (0.15%) Fiddler
General
1 143 (21.50%) Social Skills
2 99 (14.89%) Analytical Skills
3 92 (13.83%) Finance
4 50 (7.52%) Public Sector
5 36 (5.41%) Banking
6 19 (2.86%) Manufacturing
7 17 (2.56%) Legal
8 15 (2.26%) Telecoms
9 12 (1.80%) Military
10 4 (0.60%) Presentation Skills
11 3 (0.45%) Inclusion and Diversity
12 2 (0.30%) Financial Institution
12 2 (0.30%) Fire and Rescue
12 2 (0.30%) Law
12 2 (0.30%) Police
12 2 (0.30%) Retail
13 1 (0.15%) Aerospace
13 1 (0.15%) Automotive
13 1 (0.15%) Electronics
13 1 (0.15%) Publishing
Job Titles
1 190 (28.57%) Analyst
2 89 (13.38%) Architect
3 88 (13.23%) SOC Analyst
4 76 (11.43%) Security Engineer
5 70 (10.53%) SIEM Engineer
6 47 (7.07%) Security Analyst
7 46 (6.92%) SOC Engineer
8 45 (6.77%) Senior
9 43 (6.47%) Network Architect
10 41 (6.17%) Lead
11 38 (5.71%) Consultant
12 31 (4.66%) Threat Intelligence Analyst
13 29 (4.36%) Cybersecurity Analyst
13 29 (4.36%) Security Architect
14 26 (3.91%) Security Consultant
15 22 (3.31%) ArcSight Engineer
16 20 (3.01%) Cyber Threat Analyst
16 20 (3.01%) Cyber Threat Intelligence Analyst
17 19 (2.86%) Cyber Defence Analyst
17 19 (2.86%) Cybersecurity Engineer
Libraries, Frameworks & Software Standards
1 30 (4.51%) Elastic Stack
2 15 (2.26%) Apache NiFi
3 8 (1.20%) SAML
4 6 (0.90%) OAuth
5 5 (0.75%) Regular Expression
6 4 (0.60%) OLE
6 4 (0.60%) OpenID
7 3 (0.45%) JSON
8 2 (0.30%) AWS SAM
8 2 (0.30%) Kafka
8 2 (0.30%) REST
8 2 (0.30%) RESTful
8 2 (0.30%) YAML
9 1 (0.15%) EDI
9 1 (0.15%) OAuth2
9 1 (0.15%) XML
Miscellaneous
1 117 (17.59%) Cyber Threat
2 108 (16.24%) Management Information System
3 99 (14.89%) Cyber Defence
4 96 (14.44%) Security Operations Centre
5 81 (12.18%) Cyber Kill Chain
6 45 (6.77%) Security Posture
7 28 (4.21%) PKI
8 27 (4.06%) CSOC
9 21 (3.16%) Distributed Applications
10 17 (2.56%) Cloud Native
11 12 (1.80%) Linux Command Line
11 12 (1.80%) Onboarding
12 11 (1.65%) Operational Technology
13 10 (1.50%) Public Cloud
14 9 (1.35%) Analytical Mindset
14 9 (1.35%) Data Centre
14 9 (1.35%) Hybrid Cloud
14 9 (1.35%) Private Cloud
15 8 (1.20%) Cyberattack
16 6 (0.90%) Distributed Denial-of-Service
Operating Systems
1 88 (13.23%) Linux
2 87 (13.08%) Windows
3 28 (4.21%) Unix
4 22 (3.31%) Red Hat Enterprise Linux
5 19 (2.86%) Windows Server
6 13 (1.95%) Android
6 13 (1.95%) Apple iOS
6 13 (1.95%) Ubuntu
7 12 (1.80%) Mac OS X
8 2 (0.30%) CentOS
8 2 (0.30%) Windows Server 2012
8 2 (0.30%) zOS
9 1 (0.15%) Mac OS
9 1 (0.15%) Oracle Linux
9 1 (0.15%) Windows 10
Processes & Methodologies
1 350 (52.63%) Cybersecurity
2 205 (30.83%) Security Operations
3 195 (29.32%) Incident Response
4 138 (20.75%) Information Security
5 128 (19.25%) Use Case
6 113 (16.99%) MITRE ATT&CK
7 112 (16.84%) Threat Intelligence
8 109 (16.39%) Vulnerability Management
9 105 (15.79%) SOAR
10 102 (15.34%) Incident Management
11 101 (15.19%) Cyber Threat Intelligence
12 73 (10.98%) Cloud Security
13 72 (10.83%) Analytics
14 70 (10.53%) Security Architecture
15 67 (10.08%) Mentoring
16 66 (9.92%) Problem-Solving
17 64 (9.62%) Protective Monitoring
18 59 (8.87%) Root Cause Analysis
19 56 (8.42%) Threat Detection
20 53 (7.97%) Data Loss Prevention
Programming Languages
1 43 (6.47%) PowerShell
2 32 (4.81%) Python
3 26 (3.91%) Kusto Query Language
4 12 (1.80%) C#
5 9 (1.35%) Bash
6 8 (1.20%) R
7 7 (1.05%) Java
8 6 (0.90%) SQL
9 4 (0.60%) JavaScript
10 3 (0.45%) VBScript
11 2 (0.30%) Go
12 1 (0.15%) Perl
12 1 (0.15%) Ruby
12 1 (0.15%) Shell Script
Qualifications
1 364 (54.74%) Security Cleared
2 256 (38.50%) DV Cleared
3 95 (14.29%) SC Cleared
4 87 (13.08%) Degree
5 86 (12.93%) CISSP
6 43 (6.47%) Computer Science Degree
7 31 (4.66%) SANS
8 30 (4.51%) CISM
9 29 (4.36%) CompTIA Security+
10 24 (3.61%) CEH
11 18 (2.71%) Cisco Certification
12 17 (2.56%) Microsoft Certification
13 15 (2.26%) Azure Certification
14 13 (1.95%) GIAC
15 9 (1.35%) CCNP
16 8 (1.20%) CCNA
17 6 (0.90%) PMP
18 5 (0.75%) CCSP
18 5 (0.75%) GCIA
18 5 (0.75%) GCIH
Quality Assurance & Compliance
1 140 (21.05%) NIST
2 74 (11.13%) ISO/IEC 27001
3 59 (8.87%) NIST 800
4 24 (3.61%) GDPR
5 19 (2.86%) PCI DSS
6 16 (2.41%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 15 (2.26%) Actionable Recommendations
7 15 (2.26%) HIPAA
8 10 (1.50%) California Consumer Privacy Act
9 9 (1.35%) HMG Security Policy Framework
10 8 (1.20%) GRC
10 8 (1.20%) NCSC
11 4 (0.60%) COBIT
11 4 (0.60%) Cyber Essentials
11 4 (0.60%) ISO 9001
11 4 (0.60%) QA
12 3 (0.45%) Cyber Essentials PLUS
13 2 (0.30%) Disclosure Scotland
13 2 (0.30%) ISO 22301
14 1 (0.15%) GPG13
System Software
1 40 (6.02%) Active Directory
2 12 (1.80%) VMware Infrastructure
3 9 (1.35%) iptables
4 7 (1.05%) Docker
4 7 (1.05%) VMware ESXi
4 7 (1.05%) VMware NSX
5 6 (0.90%) Virtual Machines
6 5 (0.75%) Snort
7 2 (0.30%) XenApp
Systems Management
1 31 (4.66%) Kibana
2 26 (3.91%) logstash
3 19 (2.86%) Terraform
4 15 (2.26%) QRadar
5 10 (1.50%) Nessus
6 9 (1.35%) Ansible
6 9 (1.35%) SCCM
7 8 (1.20%) Kubernetes
8 7 (1.05%) ArcSight ESM
8 7 (1.05%) vCenter Server
9 6 (0.90%) Microsoft Intune
9 6 (0.90%) Single Sign-On
10 5 (0.75%) FortiGate
11 4 (0.60%) Computer Emergency Response Teams
11 4 (0.60%) Trend Micro Deep Security
12 3 (0.45%) CASB
12 3 (0.45%) CSIRT
12 3 (0.45%) Grafana
12 3 (0.45%) Nmap
12 3 (0.45%) Puppet
Vendors
1 175 (26.32%) Microsoft
2 64 (9.62%) Splunk
3 39 (5.86%) ArcSight
4 37 (5.56%) LogRhythm
5 36 (5.41%) Cisco
6 22 (3.31%) Qualys
7 18 (2.71%) Varonis
8 17 (2.56%) Forcepoint
9 14 (2.11%) Red Hat
10 13 (1.95%) Palo Alto
11 12 (1.80%) VMware
12 11 (1.65%) CrowdStrike
12 11 (1.65%) Rapid7
13 9 (1.35%) Google
14 8 (1.20%) Fortinet
14 8 (1.20%) Zscaler
15 7 (1.05%) AlienVault
15 7 (1.05%) SolarWinds
15 7 (1.05%) Veeam
16 6 (0.90%) Citrix
216 SIEM jobs Nationwide