Period
to 9 May 2021

The following table provides summary statistics for contract job vacancies advertised in England with a requirement for GRC skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited GRC over the 6 months to 9 May 2021 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Governance, Risk Management and Compliance (GRC)
UK > England
6 months to
9 May 2021
Same period 2020 Same period 2019
Rank 535 512 702
Rank change year-on-year -23 +190 +25
Contract jobs citing GRC 77 106 141
As % of all contract jobs advertised in England 0.17% 0.23% 0.17%
As % of the Quality Assurance & Compliance category 1.58% 2.25% 1.59%
Number of daily rates quoted 55 83 98
10th Percentile £364 £370 £339
25th Percentile £426 £433 £375
Median daily rate (50th Percentile) £538 £560 £475
Median % change year-on-year -4.02% +17.89% -13.64%
75th Percentile £594 £600 £572
90th Percentile £730 £650 £666
UK median daily rate £550 £555 £475
% change year-on-year -0.90% +16.84% -13.64%
Number of hourly rates quoted 0 4 0
Median hourly rate - £60.25 -
UK median hourly rate £75.00 £53.00 -
% change year-on-year +41.51% - -

GRC is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies advertised in England with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
England
Contract vacancies with a requirement for quality assurance or compliance skills 4,865 4,701 8,888
As % of all contract IT jobs advertised in England 10.94% 10.09% 10.54%
Number of daily rates quoted 3,177 3,008 5,690
10th Percentile £263 £239 £250
25th Percentile £363 £350 £353
Median daily rate (50th Percentile) £475 £450 £450
Median % change year-on-year +5.56% - -
75th Percentile £588 £563 £563
90th Percentile £675 £650 £650
UK median daily rate £475 £450 £450
% change year-on-year +5.56% - -
Number of hourly rates quoted 248 207 303
10th Percentile £11.36 £13.28 £10.58
25th Percentile £14.19 £17.26 £13.25
Median hourly rate £20.95 £22.61 £20.25
Median % change year-on-year -7.34% +11.68% -5.84%
75th Percentile £39.13 £47.50 £41.13
90th Percentile £52.50 £53.00 £50.00
UK median hourly rate £21.00 £22.50 £20.24
% change year-on-year -6.67% +11.17% -5.86%

GRC
Job Vacancy Trend in England

Job postings citing GRC as a proportion of all IT jobs advertised in England.

Job vacancy trend for GRC in England

GRC
Contractor Daily Rate Trend in England

3-month moving average daily rate quoted in jobs citing GRC in England.

Daily rate trend for GRC in England

GRC
Daily Rate Histogram in England

Daily rate distribution for jobs citing GRC in England over the 6 months to 9 May 2021.

Daily rate histogram for GRC in England

GRC
Contractor Hourly Rate Trend in England

3-month moving average hourly rates quoted in jobs citing GRC in England.

Hourly rate trend for GRC in England

GRC
Contract Job Locations in England

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing GRC within the England region over the 6 months to 9 May 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
London -28 53 £550 -8.33% 14
South East +33 7 £440 -2.22% 6
Midlands +16 7 £494 -31.90% 5
West Midlands +3 4 £525 -34.38% 5
East Midlands +22 3 £380 -30.91%
North of England +30 2 £360 -20.00% 6
East of England +26 2 £445 +14.90% 2
South West +41 1 - - 1
North West +14 1 £360 -23.40% 5
Yorkshire - 1 - - 1
GRC
UK

For the 6 months to 9 May 2021, IT contractor jobs citing GRC also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads across the England region with a requirement for GRC.

1 43 (55.84%) Information Security
2 30 (38.96%) Finance
3 29 (37.66%) Risk Management
4 28 (36.36%) Cybersecurity
5 25 (32.47%) ISO/IEC 27001
6 23 (29.87%) CISSP
7 21 (27.27%) Social Skills
8 18 (23.38%) NIST
9 16 (20.78%) CISM
9 16 (20.78%) Agile Software Development
10 14 (18.18%) PCI DSS
10 14 (18.18%) CRISC
11 13 (16.88%) Degree
11 13 (16.88%) Management Information System
11 13 (16.88%) Legal
11 13 (16.88%) Identity Access Management
12 12 (15.58%) GDPR
12 12 (15.58%) COBIT
13 11 (14.29%) Analytical Skills
13 11 (14.29%) Stakeholder Management
13 11 (14.29%) Security Management
13 11 (14.29%) CISA
14 8 (10.39%) Sarbanes-Oxley
14 8 (10.39%) SAP
14 8 (10.39%) SIEM
14 8 (10.39%) Azure
14 8 (10.39%) ISMS
15 7 (9.09%) Continuous Improvement
15 7 (9.09%) ServiceNow
15 7 (9.09%) Microsoft

GRC
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 1 (1.30%) CMS
1 1 (1.30%) Confluence
1 1 (1.30%) NetWeaver
1 1 (1.30%) SharePoint
Applications
1 2 (2.60%) Microsoft Office
2 1 (1.30%) Microsoft Excel
2 1 (1.30%) MS Visio
Business Applications
1 5 (6.49%) SAP GRC
2 2 (2.60%) Relativity
3 1 (1.30%) SAP GTS
Cloud Services
1 8 (10.39%) Azure
2 6 (7.79%) AWS
3 3 (3.90%) GCP
4 1 (1.30%) AWS Lambda
4 1 (1.30%) Cloud Computing
4 1 (1.30%) Cloud Functions
4 1 (1.30%) PaaS
4 1 (1.30%) SaaS
4 1 (1.30%) Serverless
Communications & Networking
1 4 (5.19%) Firewall
2 2 (2.60%) LAN
2 2 (2.60%) Network Security
3 1 (1.30%) HTTP
3 1 (1.30%) Internet
3 1 (1.30%) Intrusion Detection
3 1 (1.30%) Reverse Proxy
3 1 (1.30%) TCP/IP
3 1 (1.30%) WAN
3 1 (1.30%) Wireless
3 1 (1.30%) WLAN
Database & Business Intelligence
1 2 (2.60%) MySQL
2 1 (1.30%) Data Warehouse
2 1 (1.30%) DB2
2 1 (1.30%) Relational Database
Development Applications
1 2 (2.60%) JIRA
2 1 (1.30%) Cucumber
General
1 30 (38.96%) Finance
2 21 (27.27%) Social Skills
3 13 (16.88%) Legal
4 11 (14.29%) Analytical Skills
5 5 (6.49%) Banking
5 5 (6.49%) Influencing Skills
5 5 (6.49%) Presentation Skills
6 3 (3.90%) Telecoms
7 2 (2.60%) Financial Institution
7 2 (2.60%) Manufacturing
7 2 (2.60%) Marketing
7 2 (2.60%) Pharmaceutical
7 2 (2.60%) Retail
8 1 (1.30%) Automotive
8 1 (1.30%) Electronics
8 1 (1.30%) Games
8 1 (1.30%) Law
8 1 (1.30%) Public Sector
8 1 (1.30%) Spanish Language
Job Titles
1 31 (40.26%) Consultant
2 19 (24.68%) Security Consultant
3 13 (16.88%) Analyst
4 11 (14.29%) Information Security Consultant
5 6 (7.79%) Security Analyst
6 5 (6.49%) Business Analyst
6 5 (6.49%) Security Manager
7 4 (5.19%) Compliance Consultant
7 4 (5.19%) Information Analyst
7 4 (5.19%) Information Manager
7 4 (5.19%) Information Security Analyst
7 4 (5.19%) Risk Consultant
8 3 (3.90%) Data Consultant
8 3 (3.90%) Governance Consultant
8 3 (3.90%) Risk Analyst
8 3 (3.90%) Risk Manager
9 2 (2.60%) Auditor
9 2 (2.60%) Compliance Manager
9 2 (2.60%) Strategy Consultant
9 2 (2.60%) Transition Manager
Libraries, Frameworks & Software Standards
1 2 (2.60%) SAML
1 2 (2.60%) SAP Basis
1 2 (2.60%) Web Services
2 1 (1.30%) .NET
2 1 (1.30%) Ajax
2 1 (1.30%) CSS
2 1 (1.30%) Django
2 1 (1.30%) DOM
2 1 (1.30%) Flask
2 1 (1.30%) HTML
2 1 (1.30%) OAuth
2 1 (1.30%) OpenID
2 1 (1.30%) RabbitMQ
2 1 (1.30%) React
2 1 (1.30%) REST
2 1 (1.30%) SailPoint
2 1 (1.30%) SAP Fiori
2 1 (1.30%) SOAP
2 1 (1.30%) XML
Miscellaneous
1 13 (16.88%) Management Information System
2 4 (5.19%) CMDB
3 3 (3.90%) Virtual Team
4 2 (2.60%) Cyberthreat
4 2 (2.60%) Enterprise Cloud
4 2 (2.60%) FMCG
4 2 (2.60%) Mobile App
4 2 (2.60%) PMI
4 2 (2.60%) Public Cloud
4 2 (2.60%) Self-Motivation
5 1 (1.30%) CESG
5 1 (1.30%) Client/Server
5 1 (1.30%) Credit Risk
5 1 (1.30%) Cyber Kill Chain
5 1 (1.30%) Distributed Denial-of-Service
5 1 (1.30%) Enterprise Software
5 1 (1.30%) Life Science
5 1 (1.30%) Renewable Energy
5 1 (1.30%) Security Operations Centre
Operating Systems
1 4 (5.19%) Windows
2 2 (2.60%) Linux
3 1 (1.30%) Android
3 1 (1.30%) Apple iOS
3 1 (1.30%) Mac OS
3 1 (1.30%) Unix
Processes & Methodologies
1 43 (55.84%) Information Security
2 29 (37.66%) Risk Management
3 28 (36.36%) Cybersecurity
4 16 (20.78%) Agile Software Development
5 13 (16.88%) Identity Access Management
6 11 (14.29%) Security Management
6 11 (14.29%) Stakeholder Management
7 8 (10.39%) ISMS
7 8 (10.39%) SIEM
8 7 (9.09%) Business Continuity
8 7 (9.09%) Change Management
8 7 (9.09%) Continuous Improvement
8 7 (9.09%) GAP Analysis
8 7 (9.09%) Information Security Management
8 7 (9.09%) Problem-Solving
8 7 (9.09%) Security Operations
9 6 (7.79%) IT Governance
9 6 (7.79%) Project Management
9 6 (7.79%) Remediation Plan
9 6 (7.79%) Vulnerability Management
Programming Languages
1 3 (3.90%) SQL
2 2 (2.60%) JavaScript
2 2 (2.60%) PowerShell
2 2 (2.60%) Python
2 2 (2.60%) VBScript
3 1 (1.30%) C
3 1 (1.30%) Perl
3 1 (1.30%) PL/SQL
3 1 (1.30%) VB.NET
Qualifications
1 23 (29.87%) CISSP
2 16 (20.78%) CISM
3 14 (18.18%) CRISC
4 13 (16.88%) Degree
5 11 (14.29%) CISA
6 4 (5.19%) Security Cleared
7 3 (3.90%) PMI Certification
7 3 (3.90%) SC Cleared
8 2 (2.60%) CGEIT
8 2 (2.60%) GIAC
8 2 (2.60%) ISACA
9 1 (1.30%) CASP
9 1 (1.30%) CESG Certified Professional
9 1 (1.30%) Computer Science Degree
9 1 (1.30%) DV Cleared
9 1 (1.30%) FFIEC
9 1 (1.30%) PMP
9 1 (1.30%) SANS
9 1 (1.30%) TOGAF Certification
Quality Assurance & Compliance
1 25 (32.47%) ISO/IEC 27001
2 18 (23.38%) NIST
3 14 (18.18%) PCI DSS
4 12 (15.58%) COBIT
4 12 (15.58%) GDPR
5 8 (10.39%) Sarbanes-Oxley
6 4 (5.19%) ITGC
6 4 (5.19%) QA
6 4 (5.19%) SOC 2
7 3 (3.90%) Cyber Essentials
8 2 (2.60%) Data Quality
8 2 (2.60%) ISO/IEC 27005
8 2 (2.60%) PMO
9 1 (1.30%) FedRAMP
9 1 (1.30%) FISMA
9 1 (1.30%) HMG Security Policy Framework
9 1 (1.30%) ISAE 3402
9 1 (1.30%) ISO 31000
9 1 (1.30%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
9 1 (1.30%) SOC 1
System Software
1 2 (2.60%) Active Directory
Systems Management
1 3 (3.90%) RSA Archer
2 2 (2.60%) Single Sign-On
3 1 (1.30%) Ansible
3 1 (1.30%) Computer Incident Response Team
3 1 (1.30%) CSIRT
3 1 (1.30%) QRadar
Vendors
1 8 (10.39%) SAP
2 7 (9.09%) Microsoft
2 7 (9.09%) ServiceNow
3 3 (3.90%) Splunk
4 2 (2.60%) IBM
4 2 (2.60%) Oracle
4 2 (2.60%) Palo Alto
4 2 (2.60%) Snow
4 2 (2.60%) Symantec
5 1 (1.30%) Alibaba
5 1 (1.30%) ArcSight
5 1 (1.30%) BMC
5 1 (1.30%) Cadence
5 1 (1.30%) HP
5 1 (1.30%) Ivanti
5 1 (1.30%) LogRhythm
5 1 (1.30%) Salesforce.com