Period
to

The following table provides summary statistics for contract job vacancies advertised in the City of London with a requirement for OWASP skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited OWASP over the 6 months to 27 June 2022 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Open Web Application Security Project (OWASP)
Central London > City of London
6 months to
27 Jun 2022
Same period 2021 Same period 2020
Rank 183 135 134
Rank change year-on-year -48 -1 +71
Contract jobs citing OWASP 6 28 9
As % of all contract jobs advertised in the City of London 0.14% 0.91% 0.33%
As % of the Processes & Methodologies category 0.15% 0.99% 0.38%
Number of daily rates quoted 3 12 6
10th Percentile £538 £451 £494
25th Percentile £558 £463 £534
Median daily rate (50th Percentile) £590 £488 £600
Median % change year-on-year +21.03% -18.75% +2.56%
75th Percentile £645 £525 £666
90th Percentile £678 £645 £700
Central London median daily rate £590 £488 £563
% change year-on-year +21.03% -13.33% -3.85%

OWASP is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies advertised in the City of London with a requirement for process or methodology skills.

All Process and Methodology Skills
City of London
Contract vacancies with a requirement for process or methodology skills 3,900 2,824 2,385
As % of all contract IT jobs advertised in the City of London 91.55% 91.48% 88.24%
Number of daily rates quoted 2,877 2,071 1,774
10th Percentile £388 £358 £338
25th Percentile £475 £450 £417
Median daily rate (50th Percentile) £575 £550 £520
Median % change year-on-year +4.55% +5.77% -0.95%
75th Percentile £690 £638 £603
90th Percentile £788 £719 £675
Central London median daily rate £575 £545 £506
% change year-on-year +5.50% +7.65% -3.57%
Number of hourly rates quoted 44 31 40
10th Percentile £18.50 £8.00 £12.42
25th Percentile £26.00 £12.38 £14.28
Median hourly rate £42.75 £23.45 £25.00
Median % change year-on-year +82.30% -6.20% +29.03%
75th Percentile £54.13 £32.70 £39.25
90th Percentile £62.28 £42.25 £52.90
Central London median hourly rate £42.00 £22.25 £26.44
% change year-on-year +88.76% -15.85% +32.20%

OWASP
Job Vacancy Trend in the City of London

Job postings citing OWASP as a proportion of all IT jobs advertised in the City of London.

Job vacancy trend for OWASP in the City of London

OWASP
Contractor Daily Rate Trend in the City of London

3-month moving average daily rate quoted in jobs citing OWASP in the City of London.

Daily rate trend for OWASP in the City of London

OWASP
Daily Rate Histogram in the City of London

Daily rate distribution for jobs citing OWASP in the City of London over the 6 months to 27 June 2022.

Daily rate histogram for OWASP in the City of London

For the 6 months to 27 June 2022, IT contractor jobs citing OWASP also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads across the City of London region with a requirement for OWASP.

1 6 (100.00%) SQL
2 5 (83.33%) Java
3 4 (66.67%) C#
3 4 (66.67%) .NET
3 4 (66.67%) Finance
3 4 (66.67%) Agile
4 3 (50.00%) Penetration Testing
4 3 (50.00%) Legal
4 3 (50.00%) GIAC
4 3 (50.00%) AOP
4 3 (50.00%) Data Protection
4 3 (50.00%) SQL Server
4 3 (50.00%) ASP.NET
4 3 (50.00%) Microsoft
4 3 (50.00%) CISSP
4 3 (50.00%) Financial Institution
4 3 (50.00%) AWS
4 3 (50.00%) Hedge funds
4 3 (50.00%) GDPR
4 3 (50.00%) Application Security
4 3 (50.00%) CI/CD
5 2 (33.33%) JMeter
5 2 (33.33%) Checkmarx
5 2 (33.33%) Static Application Security Testing
5 2 (33.33%) Dynamic Application Security Testing
5 2 (33.33%) Architectural Design
5 2 (33.33%) REST Assured
5 2 (33.33%) Event-Driven
5 2 (33.33%) REST
5 2 (33.33%) Confluence

OWASP
Co-occurring IT Skills in the City of London by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 2 (33.33%) Confluence
1 2 (33.33%) GlassFish
Cloud Services
1 3 (50.00%) AWS
2 1 (16.67%) Amazon EKS
2 1 (16.67%) Azure
2 1 (16.67%) Cloud Computing
2 1 (16.67%) Google Kubernetes Engine
2 1 (16.67%) IaaS
2 1 (16.67%) OpenShift
2 1 (16.67%) PaaS
2 1 (16.67%) SaaS
Communications & Networking
1 2 (33.33%) HTTP
1 2 (33.33%) SAN
2 1 (16.67%) DNS
2 1 (16.67%) Firewall
2 1 (16.67%) Network Security
2 1 (16.67%) Wireless
Database & Business Intelligence
1 3 (50.00%) SQL Server
2 2 (33.33%) PostgreSQL
Development Applications
1 2 (33.33%) AppScan
1 2 (33.33%) Burp Suite
1 2 (33.33%) Checkstyle
1 2 (33.33%) Jenkins
1 2 (33.33%) JIRA
1 2 (33.33%) JMeter
1 2 (33.33%) JUnit
1 2 (33.33%) REST Assured
1 2 (33.33%) SonarQube
General
1 4 (66.67%) Finance
2 3 (50.00%) Financial Institution
2 3 (50.00%) Legal
Job Titles
1 3 (50.00%) Architect
1 3 (50.00%) Developer
2 2 (33.33%) Backend Developer
2 2 (33.33%) Security Architect
2 2 (33.33%) Software Developer
3 1 (16.67%) .NET Developer
3 1 (16.67%) Firewall Architect
3 1 (16.67%) Network Architect
3 1 (16.67%) Senior .NET Developer
3 1 (16.67%) Senior Developer
Libraries, Frameworks & Software Standards
1 4 (66.67%) .NET
2 3 (50.00%) ASP.NET
3 2 (33.33%) AngularJS
3 2 (33.33%) JSON
3 2 (33.33%) REST
3 2 (33.33%) SOAP
3 2 (33.33%) XML
4 1 (16.67%) .NET Core
4 1 (16.67%) .NET Framework
4 1 (16.67%) Angular 2
4 1 (16.67%) LDAP
4 1 (16.67%) Node.js
4 1 (16.67%) OAuth
4 1 (16.67%) SAML
Miscellaneous
1 3 (50.00%) Hedge funds
2 1 (16.67%) Cloud Native
2 1 (16.67%) Distributed Denial-of-Service
2 1 (16.67%) Fixed Income
2 1 (16.67%) PKI
Operating Systems
1 1 (16.67%) Linux
1 1 (16.67%) Ubuntu
1 1 (16.67%) Unix
1 1 (16.67%) Windows
Processes & Methodologies
1 4 (66.67%) Agile
2 3 (50.00%) AOP
2 3 (50.00%) Application Security
2 3 (50.00%) CI/CD
2 3 (50.00%) Data Protection
2 3 (50.00%) Penetration Testing
3 2 (33.33%) Actionable Insight
3 2 (33.33%) Architectural Design
3 2 (33.33%) Critical Thinking
3 2 (33.33%) Dynamic Application Security Testing
3 2 (33.33%) Event-Driven
3 2 (33.33%) Infrastructure as Code
3 2 (33.33%) Microservices
3 2 (33.33%) Performance Tuning
3 2 (33.33%) Secure Coding
3 2 (33.33%) Security Architecture
3 2 (33.33%) Static Application Security Testing
3 2 (33.33%) Test Automation
3 2 (33.33%) Vulnerability Assessment
3 2 (33.33%) Web Application Development
Programming Languages
1 6 (100.00%) SQL
2 5 (83.33%) Java
3 4 (66.67%) C#
4 2 (33.33%) PHP
5 1 (16.67%) C++
5 1 (16.67%) JavaScript
5 1 (16.67%) Perl
5 1 (16.67%) Python
5 1 (16.67%) TypeScript
Qualifications
1 3 (50.00%) CISSP
1 3 (50.00%) GIAC
2 2 (33.33%) CEH
2 2 (33.33%) CSSLP
2 2 (33.33%) SC Cleared
2 2 (33.33%) Security Cleared
3 1 (16.67%) OSCP
Quality Assurance & Compliance
1 3 (50.00%) GDPR
2 2 (33.33%) Actionable Recommendations
System Software
1 2 (33.33%) Virtual Machines
2 1 (16.67%) Active Directory
2 1 (16.67%) Docker
Systems Management
1 2 (33.33%) HP Fortify
1 2 (33.33%) Nessus
1 2 (33.33%) WebInspect
2 1 (16.67%) Kubernetes
Vendors
1 3 (50.00%) Microsoft
2 2 (33.33%) Checkmarx
2 2 (33.33%) HP
2 2 (33.33%) IBM
2 2 (33.33%) Qualys