SIEM Contracts

Security Information and Event Management (SIEM)
UK

The following table provides summary statistics for contract job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited SIEM over the 6 months to 4 May 2024 with a comparison to the same period in the previous 2 years.

6 months to
4 May 2024		 Same period 2023 Same period 2022
Rank 155 176 333
Rank change year-on-year +21 +157 -43
Contract jobs citing SIEM 668 897 702
As % of all contract jobs advertised in the UK 1.55% 1.52% 0.79%
As % of the Processes & Methodologies category 1.79% 1.69% 0.87%
Number of daily rates quoted 486 619 474
10th Percentile £425 £438 £406
25th Percentile £513 £500 £488
Median daily rate (50th Percentile) £600 £600 £590
Median % change year-on-year - +1.69% +12.38%
75th Percentile £709 £688 £688
90th Percentile £825 £775 £784
UK excluding London median daily rate £595 £558 £575
% change year-on-year +6.73% -3.04% +15.00%
Number of hourly rates quoted 6 11 5
10th Percentile - - -
25th Percentile - £62.75 £56.25
Median hourly rate £40.00 £75.00 £65.80
Median % change year-on-year -46.67% +13.98% +19.64%
75th Percentile £63.44 £77.63 £68.75
90th Percentile £74.63 £80.00 £74.00
UK excluding London median hourly rate £40.00 £72.90 £65.80
% change year-on-year -45.13% +10.79% +31.60%

All Process and Methodology Skills
UK

SIEM is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 37,262 53,150 80,380
As % of all contract IT jobs advertised in the UK 86.35% 89.86% 90.59%
Number of daily rates quoted 24,013 36,862 56,431
10th Percentile £300 £325 £341
25th Percentile £413 £438 £425
Median daily rate (50th Percentile) £525 £550 £530
Median % change year-on-year -4.55% +3.77% +8.72%
75th Percentile £638 £650 £638
90th Percentile £750 £750 £738
UK excluding London median daily rate £500 £500 £475
% change year-on-year - +5.26% +8.57%
Number of hourly rates quoted 2,440 1,756 1,916
10th Percentile £12.75 £11.00 £12.50
25th Percentile £16.00 £16.25 £15.50
Median hourly rate £35.95 £36.00 £25.00
Median % change year-on-year -0.14% +44.00% +2.04%
75th Percentile £60.00 £65.00 £49.25
90th Percentile £72.50 £75.00 £64.88
UK excluding London median hourly rate £37.50 £35.00 £20.00
% change year-on-year +7.14% +75.00% -6.98%

SIEM
Job Vacancy Trend

Job postings citing SIEM as a proportion of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing SIEM.

Daily rate trend for SIEM in the UK

SIEM
Daily Rate Histogram

Daily rate distribution for jobs citing SIEM over the 6 months to 4 May 2024.

Daily rate histogram for SIEM in the UK

SIEM
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing SIEM.

Hourly rate trend for SIEM in the UK

SIEM
Hourly Rate Histogram

Hourly rate distribution of jobs citing SIEM over the 6 months to 4 May 2024.

Hourly rate histogram for SIEM in the UK

SIEM
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing SIEM within the UK over the 6 months to 4 May 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England +29 617 £600 - 178
UK excluding London +38 410 £595 +6.73% 105
London -1 197 £600 -6.25% 82
South West +58 167 £570 +8.57% 19
Work from Home -33 147 £600 -3.61% 89
South East +33 128 £625 +7.53% 28
Midlands +51 89 £600 - 9
West Midlands +53 87 £600 - 6
North of England -56 31 £700 +24.38% 29
Yorkshire -14 21 £800 +39.13% 13
Scotland +38 15 £515 -10.43% 8
North West -41 10 £625 +13.64% 15
East of England +12 6 £600 +41.18% 5
East Midlands +9 2 £596 -1.65% 3
Wales +2 2 £298 -30.00% 7

SIEM
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 11 (1.65%) Confluence
2 6 (0.90%) SharePoint
3 4 (0.60%) Microsoft Exchange
4 1 (0.15%) IBM Notes
Applications
1 3 (0.45%) Microsoft Office
1 3 (0.45%) Microsoft PowerPoint
2 2 (0.30%) Microsoft Project
2 2 (0.30%) Spreadsheet
3 1 (0.15%) Microsoft Excel
Cloud Services
1 119 (17.81%) Azure
2 48 (7.19%) AWS
3 43 (6.44%) Azure Sentinel
4 19 (2.84%) Microsoft 365
5 17 (2.54%) SaaS
6 14 (2.10%) Entra ID
6 14 (2.10%) IaaS
7 9 (1.35%) Azure DevOps
7 9 (1.35%) GCP
8 8 (1.20%) Amazon CloudWatch
8 8 (1.20%) Azure Monitor
9 7 (1.05%) AWS CloudTrail
10 4 (0.60%) Amazon GuardDuty
10 4 (0.60%) Amazon S3
10 4 (0.60%) PaaS
11 3 (0.45%) AWS KMS
11 3 (0.45%) Azure ExpressRoute
11 3 (0.45%) Mimecast
11 3 (0.45%) Serverless
12 2 (0.30%) Virtual Private Cloud
Communications & Networking
1 130 (19.46%) Firewall
2 75 (11.23%) Network Security
3 34 (5.09%) TCP/IP
4 29 (4.34%) Intrusion Detection
5 26 (3.89%) SD-WAN
6 21 (3.14%) DNS
7 19 (2.84%) WAN
8 15 (2.25%) DHCP
9 12 (1.80%) Cisco ISE
10 11 (1.65%) VPN
10 11 (1.65%) Wireshark
11 10 (1.50%) HTTP
12 7 (1.05%) Cisco ASA
12 7 (1.05%) LAN
13 5 (0.75%) FTP
13 5 (0.75%) SMTP
13 5 (0.75%) tcpdump
14 4 (0.60%) HTTPS
14 4 (0.60%) POP3
14 4 (0.60%) SNMP
Database & Business Intelligence
1 63 (9.43%) Elasticsearch
2 15 (2.25%) Big Data
3 6 (0.90%) SQL Server
4 4 (0.60%) Amazon RDS
4 4 (0.60%) Apache Hive
4 4 (0.60%) Hadoop
4 4 (0.60%) NonStop SQL
4 4 (0.60%) Tableau
5 2 (0.30%) Amazon Redshift
5 2 (0.30%) Power BI
5 2 (0.30%) SQL Server Integration Services
5 2 (0.30%) SQL Server Reporting Services
6 1 (0.15%) Data Lake
6 1 (0.15%) MySQL
Development Applications
1 20 (2.99%) JIRA
2 4 (0.60%) IDA Disassembler
3 3 (0.45%) Git
3 3 (0.45%) Jenkins
4 2 (0.30%) Artifactory
General
1 146 (21.86%) Social Skills
2 98 (14.67%) Analytical Skills
3 96 (14.37%) Finance
4 50 (7.49%) Public Sector
5 41 (6.14%) Banking
6 19 (2.84%) Manufacturing
6 19 (2.84%) Telecoms
7 18 (2.69%) Legal
8 12 (1.80%) Military
9 4 (0.60%) Presentation Skills
10 3 (0.45%) Inclusion and Diversity
11 2 (0.30%) Documentation Skills
11 2 (0.30%) Financial Institution
11 2 (0.30%) Fire and Rescue
11 2 (0.30%) Influencing Skills
11 2 (0.30%) Law
11 2 (0.30%) Police
11 2 (0.30%) Retail
12 1 (0.15%) Aerospace
12 1 (0.15%) Electronics
Job Titles
1 195 (29.19%) Analyst
2 92 (13.77%) SOC Analyst
3 83 (12.43%) Architect
4 78 (11.68%) Security Engineer
5 69 (10.33%) SIEM Engineer
6 49 (7.34%) Security Analyst
7 48 (7.19%) Senior
8 44 (6.59%) SOC Engineer
9 42 (6.29%) Lead
10 40 (5.99%) Network Architect
11 39 (5.84%) Consultant
12 31 (4.64%) Threat Intelligence Analyst
13 30 (4.49%) Cybersecurity Analyst
14 29 (4.34%) Security Architect
15 26 (3.89%) Security Consultant
16 22 (3.29%) ArcSight Engineer
17 20 (2.99%) Cyber Threat Analyst
17 20 (2.99%) Cyber Threat Intelligence Analyst
18 19 (2.84%) Cyber Defence Analyst
18 19 (2.84%) Cybersecurity Engineer
Libraries, Frameworks & Software Standards
1 31 (4.64%) Elastic Stack
2 15 (2.25%) Apache NiFi
3 8 (1.20%) SAML
4 6 (0.90%) OAuth
5 5 (0.75%) JSON
5 5 (0.75%) Regular Expression
6 4 (0.60%) Kafka
6 4 (0.60%) OLE
6 4 (0.60%) OpenID
6 4 (0.60%) XML
7 3 (0.45%) Ajax
7 3 (0.45%) AngularJS
7 3 (0.45%) CSS
7 3 (0.45%) HTML
8 2 (0.30%) AWS SAM
8 2 (0.30%) REST
8 2 (0.30%) RESTful
8 2 (0.30%) SOAP
8 2 (0.30%) Web Services
8 2 (0.30%) YAML
Miscellaneous
1 121 (18.11%) Cyber Threat
2 106 (15.87%) Management Information System
3 103 (15.42%) Cyber Defence
4 95 (14.22%) Security Operations Centre
5 87 (13.02%) Cyber Kill Chain
6 43 (6.44%) Security Posture
7 27 (4.04%) CSOC
7 27 (4.04%) PKI
8 21 (3.14%) Distributed Applications
9 17 (2.54%) Cloud Native
10 12 (1.80%) Linux Command Line
10 12 (1.80%) Onboarding
11 10 (1.50%) Public Cloud
12 9 (1.35%) Analytical Mindset
12 9 (1.35%) Hybrid Cloud
12 9 (1.35%) Operational Technology
13 8 (1.20%) Cyberattack
13 8 (1.20%) Data Centre
13 8 (1.20%) Private Cloud
14 6 (0.90%) Distributed Denial-of-Service
Operating Systems
1 91 (13.62%) Linux
2 88 (13.17%) Windows
3 29 (4.34%) Unix
4 21 (3.14%) Red Hat Enterprise Linux
5 19 (2.84%) Windows Server
6 13 (1.95%) Android
6 13 (1.95%) Apple iOS
6 13 (1.95%) Mac OS X
6 13 (1.95%) Ubuntu
7 3 (0.45%) zOS
8 2 (0.30%) CentOS
8 2 (0.30%) Windows Server 2012
9 1 (0.15%) Mac OS
9 1 (0.15%) Oracle Linux
9 1 (0.15%) Windows 10
Processes & Methodologies
1 352 (52.69%) Cybersecurity
2 205 (30.69%) Security Operations
3 201 (30.09%) Incident Response
4 140 (20.96%) Information Security
5 129 (19.31%) Use Case
6 118 (17.66%) MITRE ATT&CK
7 112 (16.77%) Threat Intelligence
8 111 (16.62%) Vulnerability Management
9 107 (16.02%) Incident Management
10 105 (15.72%) SOAR
11 99 (14.82%) Cyber Threat Intelligence
12 74 (11.08%) Security Architecture
13 73 (10.93%) Cloud Security
14 72 (10.78%) Analytics
14 72 (10.78%) Mentoring
15 68 (10.18%) Protective Monitoring
16 63 (9.43%) Problem-Solving
17 59 (8.83%) Root Cause Analysis
18 54 (8.08%) Threat Detection
19 53 (7.93%) Data Loss Prevention
Programming Languages
1 43 (6.44%) PowerShell
2 31 (4.64%) Python
3 24 (3.59%) Kusto Query Language
4 12 (1.80%) C#
5 9 (1.35%) Bash
6 8 (1.20%) R
7 7 (1.05%) Java
8 6 (0.90%) JavaScript
9 5 (0.75%) SQL
10 3 (0.45%) VBScript
11 2 (0.30%) Go
12 1 (0.15%) Perl
12 1 (0.15%) Ruby
12 1 (0.15%) Shell Script
Qualifications
1 363 (54.34%) Security Cleared
2 255 (38.17%) DV Cleared
3 93 (13.92%) SC Cleared
4 86 (12.87%) CISSP
4 86 (12.87%) Degree
5 39 (5.84%) Computer Science Degree
6 31 (4.64%) SANS
7 30 (4.49%) CISM
8 27 (4.04%) CompTIA Security+
9 24 (3.59%) CEH
10 20 (2.99%) Cisco Certification
11 15 (2.25%) Microsoft Certification
12 13 (1.95%) Azure Certification
12 13 (1.95%) GIAC
13 10 (1.50%) CCNA
14 9 (1.35%) CCNP
15 6 (0.90%) CCSP
15 6 (0.90%) PMP
16 5 (0.75%) GCIA
16 5 (0.75%) GCIH
Quality Assurance & Compliance
1 142 (21.26%) NIST
2 77 (11.53%) ISO/IEC 27001
3 59 (8.83%) NIST 800
4 24 (3.59%) GDPR
5 19 (2.84%) PCI DSS
6 17 (2.54%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 15 (2.25%) Actionable Recommendations
7 15 (2.25%) HIPAA
8 11 (1.65%) California Consumer Privacy Act
9 9 (1.35%) HMG Security Policy Framework
10 8 (1.20%) GRC
10 8 (1.20%) NCSC
11 4 (0.60%) COBIT
11 4 (0.60%) Cyber Essentials
11 4 (0.60%) ISO 9001
11 4 (0.60%) QA
12 3 (0.45%) Cyber Essentials PLUS
13 2 (0.30%) Disclosure Scotland
13 2 (0.30%) ISO 22301
14 1 (0.15%) GPG13
System Software
1 40 (5.99%) Active Directory
2 12 (1.80%) VMware Infrastructure
3 9 (1.35%) iptables
4 7 (1.05%) Virtual Machines
4 7 (1.05%) VMware ESXi
4 7 (1.05%) VMware NSX
5 6 (0.90%) Docker
6 5 (0.75%) Snort
7 2 (0.30%) XenApp
Systems Management
1 30 (4.49%) Kibana
2 26 (3.89%) logstash
3 18 (2.69%) Terraform
4 16 (2.40%) QRadar
5 10 (1.50%) Nessus
5 10 (1.50%) SCCM
6 9 (1.35%) Ansible
7 7 (1.05%) ArcSight ESM
7 7 (1.05%) Kubernetes
7 7 (1.05%) Microsoft Intune
7 7 (1.05%) vCenter Server
8 6 (0.90%) Single Sign-On
9 5 (0.75%) FortiGate
10 4 (0.60%) Computer Emergency Response Teams
10 4 (0.60%) Nagios
10 4 (0.60%) OpenView
10 4 (0.60%) Trend Micro Deep Security
11 3 (0.45%) CASB
11 3 (0.45%) CSIRT
11 3 (0.45%) Nmap
Vendors
1 178 (26.65%) Microsoft
2 67 (10.03%) Splunk
3 38 (5.69%) ArcSight
4 37 (5.54%) LogRhythm
5 35 (5.24%) Cisco
6 24 (3.59%) Qualys
7 18 (2.69%) Varonis
8 17 (2.54%) Forcepoint
9 14 (2.10%) Red Hat
10 12 (1.80%) Palo Alto
10 12 (1.80%) Rapid7
10 12 (1.80%) VMware
11 11 (1.65%) CrowdStrike
12 9 (1.35%) Fortinet
12 9 (1.35%) Google
13 8 (1.20%) AlienVault
13 8 (1.20%) SolarWinds
14 7 (1.05%) Sophos
14 7 (1.05%) Veeam
14 7 (1.05%) Zscaler
205 SIEM jobs Nationwide