Period
to 27 October 2021

The following table provides summary statistics for contract job vacancies advertised in England with a requirement for GRC skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited GRC over the 6 months to 27 October 2021 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Governance, Risk Management and Compliance (GRC)
UK > England
6 months to
27 Oct 2021
Same period 2020 Same period 2019
Rank 564 467 653
Rank change year-on-year -97 +186 +56
Contract jobs citing GRC 183 37 118
As % of all contract jobs advertised in England 0.27% 0.13% 0.15%
As % of the Quality Assurance & Compliance category 2.12% 1.14% 1.36%
Number of daily rates quoted 112 23 80
10th Percentile £421 £319 £366
25th Percentile £463 £366 £407
Median daily rate (50th Percentile) £538 £450 £500
Median % change year-on-year +19.50% -10.00% -4.76%
75th Percentile £638 £534 £600
90th Percentile £741 £610 £700
UK median daily rate £543 £450 £475
% change year-on-year +20.56% -5.26% -6.86%

GRC is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies advertised in England with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
England
Contract vacancies with a requirement for quality assurance or compliance skills 8,638 3,259 8,661
As % of all contract IT jobs advertised in England 12.66% 11.75% 11.25%
Number of daily rates quoted 5,839 2,096 5,578
10th Percentile £263 £281 £250
25th Percentile £388 £363 £350
Median daily rate (50th Percentile) £500 £475 £450
Median % change year-on-year +5.26% +5.56% -
75th Percentile £600 £575 £550
90th Percentile £689 £650 £638
UK median daily rate £500 £475 £450
% change year-on-year +5.26% +5.56% -
Number of hourly rates quoted 267 145 355
10th Percentile £11.25 £10.64 £10.99
25th Percentile £13.00 £13.99 £14.18
Median hourly rate £20.19 £22.50 £20.50
Median % change year-on-year -10.29% +9.76% -5.79%
75th Percentile £45.25 £45.00 £47.50
90th Percentile £63.00 £56.50 £56.15
UK median hourly rate £20.00 £21.50 £20.50
% change year-on-year -6.98% +4.88% -1.43%

GRC
Job Vacancy Trend in England

Job postings citing GRC as a proportion of all IT jobs advertised in England.

Job vacancy trend for GRC in England

GRC
Contractor Daily Rate Trend in England

3-month moving average daily rate quoted in jobs citing GRC in England.

Daily rate trend for GRC in England

GRC
Daily Rate Histogram in England

Daily rate distribution for jobs citing GRC in England over the 6 months to 27 October 2021.

Daily rate histogram for GRC in England

GRC
Contractor Hourly Rate Trend in England

3-month moving average hourly rates quoted in jobs citing GRC in England.

Hourly rate trend for GRC in England

GRC
Contract Job Locations in England

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing GRC within the England region over the 6 months to 27 October 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
London -117 114 £533 +18.44% 28
Midlands - 20 £563 - 14
South West -35 15 £463 +15.63% 5
South East -69 15 £525 +64.06% 12
East Midlands - 11 £380 - 4
North of England -65 10 £594 +39.71% 6
West Midlands - 9 £575 - 10
Yorkshire - 5 £475 -
East of England -52 4 £675 +33.00% 2
North West -53 4 £613 +22.50% 6
North East -7 1 £800 +128.57%
GRC
UK

For the 6 months to 27 October 2021, IT contractor jobs citing GRC also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads across the England region with a requirement for GRC.

1 84 (45.90%) Risk Management
2 79 (43.17%) Information Security
3 74 (40.44%) Cybersecurity
4 71 (38.80%) Social Skills
5 63 (34.43%) Finance
6 48 (26.23%) ISO/IEC 27001
7 46 (25.14%) Azure
8 44 (24.04%) Continuous Improvement
9 42 (22.95%) Stakeholder Management
10 41 (22.40%) AWS
11 38 (20.77%) GCP
12 37 (20.22%) CISA
12 37 (20.22%) CISSP
13 35 (19.13%) Degree
14 33 (18.03%) Agile Software Development
15 32 (17.49%) Analytical Skills
16 31 (16.94%) NIST
17 29 (15.85%) Management Information System
18 28 (15.30%) Mentoring
19 27 (14.75%) Project Management
20 26 (14.21%) SDLC
21 24 (13.11%) Vulnerability Management
21 24 (13.11%) Legal
22 23 (12.57%) Change Management
22 23 (12.57%) SAP
22 23 (12.57%) Microservices
23 21 (11.48%) Public Cloud
23 21 (11.48%) Windows
23 21 (11.48%) PCI DSS
24 20 (10.93%) Test Automation

GRC
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 3 (1.64%) SharePoint
2 2 (1.09%) IIS
Applications
1 7 (3.83%) Microsoft PowerPoint
2 6 (3.28%) Microsoft Excel
3 2 (1.09%) Microsoft Project
4 1 (0.55%) Microsoft Office
4 1 (0.55%) MS Visio
Business Applications
1 2 (1.09%) SAP GRC
Cloud Services
1 46 (25.14%) Azure
2 41 (22.40%) AWS
3 38 (20.77%) GCP
4 14 (7.65%) AWS Lambda
4 14 (7.65%) Cloud Functions
4 14 (7.65%) Serverless
5 8 (4.37%) SaaS
6 7 (3.83%) GitHub
7 4 (2.19%) Microsoft 365
7 4 (2.19%) PaaS
8 3 (1.64%) Cloud Computing
8 3 (1.64%) IaaS
9 1 (0.55%) Dynamics 365
Communications & Networking
1 16 (8.74%) Firewall
2 4 (2.19%) Intranet
2 4 (2.19%) Network Security
3 3 (1.64%) Intrusion Detection
3 3 (1.64%) Unified Communications
3 3 (1.64%) WAN
4 2 (1.09%) Broadband
4 2 (1.09%) LAN
5 1 (0.55%) 3G
5 1 (0.55%) 4G
5 1 (0.55%) DMZ
5 1 (0.55%) LTE
5 1 (0.55%) SD-WAN
5 1 (0.55%) Wireless
5 1 (0.55%) WLAN
Database & Business Intelligence
1 14 (7.65%) DB2
1 14 (7.65%) MySQL
2 2 (1.09%) Data Warehouse
Development Applications
1 7 (3.83%) Jenkins
1 7 (3.83%) Sonatype Nexus
2 2 (1.09%) JIRA
3 1 (0.55%) Cucumber
General
1 71 (38.80%) Social Skills
2 63 (34.43%) Finance
3 32 (17.49%) Analytical Skills
4 24 (13.11%) Legal
5 19 (10.38%) Banking
6 14 (7.65%) Inclusion and Diversity
7 12 (6.56%) Public Sector
8 11 (6.01%) Manufacturing
9 10 (5.46%) Influencing Skills
9 10 (5.46%) Telecoms
10 8 (4.37%) Presentation Skills
11 7 (3.83%) Marketing
12 5 (2.73%) Electronics
12 5 (2.73%) Financial Institution
12 5 (2.73%) Retail
13 4 (2.19%) Pharmaceutical
14 3 (1.64%) Organisational Skills
15 2 (1.09%) Documentation Skills
16 1 (0.55%) Front Office
16 1 (0.55%) Local Government
Job Titles
1 27 (14.75%) Consultant
2 26 (14.21%) Analyst
3 20 (10.93%) Security Consultant
4 13 (7.10%) IT Manager
4 13 (7.10%) Operations Manager
4 13 (7.10%) Project Manager
5 12 (6.56%) Architect
5 12 (6.56%) HR Manager
5 12 (6.56%) Security Analyst
6 10 (5.46%) Developer
7 9 (4.92%) Information Security Consultant
7 9 (4.92%) Risk Analyst
8 8 (4.37%) Security Manager
9 7 (3.83%) Business Analyst
9 7 (3.83%) Security Architect
10 6 (3.28%) Information Analyst
10 6 (3.28%) Information Security Analyst
10 6 (3.28%) Risk Manager
10 6 (3.28%) Senior Consultant
10 6 (3.28%) Senior Security Consultant
Libraries, Frameworks & Software Standards
1 14 (7.65%) Django
1 14 (7.65%) FastAPI
1 14 (7.65%) Flask
1 14 (7.65%) RabbitMQ
1 14 (7.65%) React
2 8 (4.37%) REST
2 8 (4.37%) SOAP
3 2 (1.09%) ModSecurity
Miscellaneous
1 29 (15.85%) Management Information System
2 21 (11.48%) Public Cloud
3 8 (4.37%) Data Protection Act
3 8 (4.37%) Mobile App
4 6 (3.28%) Data Centre
5 5 (2.73%) Taxonomies
6 4 (2.19%) Client/Server
6 4 (2.19%) Cyberthreat
6 4 (2.19%) Mainframe
6 4 (2.19%) Self-Motivation
6 4 (2.19%) Virtual Team
7 3 (1.64%) CESG
7 3 (1.64%) Distributed Denial-of-Service
8 2 (1.09%) Credit Risk
8 2 (1.09%) Cyberattack
8 2 (1.09%) Enterprise Cloud
8 2 (1.09%) FMCG
8 2 (1.09%) Hedge funds
8 2 (1.09%) PMI
8 2 (1.09%) Private Cloud
Operating Systems
1 21 (11.48%) Windows
2 20 (10.93%) Linux
3 3 (1.64%) Unix
4 1 (0.55%) Windows Server
Processes & Methodologies
1 84 (45.90%) Risk Management
2 79 (43.17%) Information Security
3 74 (40.44%) Cybersecurity
4 44 (24.04%) Continuous Improvement
5 42 (22.95%) Stakeholder Management
6 33 (18.03%) Agile Software Development
7 28 (15.30%) Mentoring
8 27 (14.75%) Project Management
9 26 (14.21%) SDLC
10 24 (13.11%) Vulnerability Management
11 23 (12.57%) Change Management
11 23 (12.57%) Microservices
12 20 (10.93%) Incident Management
12 20 (10.93%) Internal Audit
12 20 (10.93%) Security Architecture
12 20 (10.93%) Test Automation
13 18 (9.84%) Service Design
13 18 (9.84%) Service Management
14 17 (9.29%) Risk Assessment
14 17 (9.29%) Security Management
Programming Languages
1 15 (8.20%) JavaScript
1 15 (8.20%) Python
2 14 (7.65%) SQL
3 3 (1.64%) C
4 2 (1.09%) PowerShell
5 1 (0.55%) Bash Shell
Qualifications
1 37 (20.22%) CISA
1 37 (20.22%) CISSP
2 35 (19.13%) Degree
3 19 (10.38%) CISM
4 15 (8.20%) Computer Science Degree
5 14 (7.65%) CRISC
6 13 (7.10%) Security Cleared
7 12 (6.56%) SC Cleared
8 9 (4.92%) CEH
9 4 (2.19%) DV Cleared
9 4 (2.19%) ISO 27001 Lead Auditor
9 4 (2.19%) ISO 27001 Lead Implementer
9 4 (2.19%) Master's Degree
9 4 (2.19%) PMI Certification
9 4 (2.19%) PRINCE2 Certification
10 3 (1.64%) CESG Certified Professional
10 3 (1.64%) Cisco Certification
10 3 (1.64%) FFIEC
10 3 (1.64%) ISACA
11 2 (1.09%) PMP
Quality Assurance & Compliance
1 48 (26.23%) ISO/IEC 27001
2 31 (16.94%) NIST
3 21 (11.48%) PCI DSS
4 20 (10.93%) GDPR
5 15 (8.20%) Sarbanes-Oxley
6 13 (7.10%) QA
7 11 (6.01%) COBIT
8 8 (4.37%) Cyber Essentials
9 7 (3.83%) NCSC
9 7 (3.83%) NIST 800
9 7 (3.83%) SLA
9 7 (3.83%) SOC 2
10 6 (3.28%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 6 (3.28%) PMO
11 5 (2.73%) JSP 440
12 4 (2.19%) HMG Security Policy Framework
12 4 (2.19%) ISO 22301
13 2 (1.09%) ISO/IEC 27005
13 2 (1.09%) ITGC
14 1 (0.55%) ISO 31000
System Software
1 2 (1.09%) Active Directory
Systems Management
1 20 (10.93%) Ansible
2 15 (8.20%) RSA Archer
3 7 (3.83%) Opscode Chef
4 1 (0.55%) Computer Emergency Response Teams
Vendors
1 23 (12.57%) SAP
2 14 (7.65%) Alibaba
2 14 (7.65%) Oracle
2 14 (7.65%) Qualys
3 10 (5.46%) Microsoft
4 6 (3.28%) ServiceNow
5 4 (2.19%) Remedy
5 4 (2.19%) VMware
6 2 (1.09%) CyberArk
6 2 (1.09%) Splunk
7 1 (0.55%) BMC
7 1 (0.55%) Cisco
7 1 (0.55%) Dell
7 1 (0.55%) McAfee
7 1 (0.55%) OneTrust
7 1 (0.55%) Sparx
7 1 (0.55%) Tripwire