Application Security Contracts

Application Security (AppSec)
UK

The following table provides summary statistics for contract job vacancies with a requirement for Application Security skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited Application Security over the 6 months to 6 May 2024 with a comparison to the same period in the previous 2 years.

6 months to
6 May 2024		 Same period 2023 Same period 2022
Rank 366 282 348
Rank change year-on-year -84 +66 +24
Contract jobs citing Application Security 218 579 679
As % of all contract jobs advertised in the UK 0.50% 0.98% 0.77%
As % of the Processes & Methodologies category 0.58% 1.09% 0.84%
Number of daily rates quoted 154 422 489
10th Percentile £475 £488 £425
25th Percentile £540 £540 £513
Median daily rate (50th Percentile) £600 £640 £600
Median % change year-on-year -6.25% +6.67% +9.09%
75th Percentile £689 £750 £688
90th Percentile £780 £838 £800
UK excluding London median daily rate £623 £610 £575
% change year-on-year +2.05% +6.09% +9.52%
Number of hourly rates quoted 0 2 3
10th Percentile - £40.63 £42.00
25th Percentile - £49.06 £45.00
Median hourly rate - £66.25 £50.00
Median % change year-on-year - +32.50% +62.60%
75th Percentile - £86.56 £63.50
90th Percentile - £96.88 £71.60
UK excluding London median hourly rate - - £77.00
% change year-on-year - - +258.14%

All Process and Methodology Skills
UK

Application Security is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 37,480 53,073 80,381
As % of all contract IT jobs advertised in the UK 86.37% 89.85% 90.59%
Number of daily rates quoted 24,166 36,804 56,457
10th Percentile £300 £325 £340
25th Percentile £413 £438 £425
Median daily rate (50th Percentile) £525 £550 £530
Median % change year-on-year -4.55% +3.77% +8.72%
75th Percentile £638 £650 £638
90th Percentile £750 £750 £738
UK excluding London median daily rate £500 £500 £475
% change year-on-year - +5.26% +8.57%
Number of hourly rates quoted 2,447 1,751 1,910
10th Percentile £12.75 £11.00 £12.50
25th Percentile £16.00 £16.25 £15.50
Median hourly rate £35.96 £36.00 £25.00
Median % change year-on-year -0.11% +44.00% +2.04%
75th Percentile £60.00 £65.00 £49.25
90th Percentile £72.50 £75.00 £65.00
UK excluding London median hourly rate £37.50 £35.00 £20.00
% change year-on-year +7.14% +75.00% -6.98%

Application Security
Job Vacancy Trend

Job postings citing Application Security as a proportion of all IT jobs advertised.

Job vacancy trend for Application Security in the UK

Application Security
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing Application Security.

Daily rate trend for Application Security in the UK

Application Security
Daily Rate Histogram

Daily rate distribution for jobs citing Application Security over the 6 months to 6 May 2024.

Daily rate histogram for Application Security in the UK

Application Security
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing Application Security.

Hourly rate trend for Application Security in the UK

Application Security
Top 16 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Application Security within the UK over the 6 months to 6 May 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England -97 179 £600 -7.69% 99
London -63 110 £600 -14.29% 49
Work from Home -6 86 £600 -8.71% 60
UK excluding London -14 73 £623 +2.05% 44
South East +12 26 £513 -26.79% 16
North of England +9 26 £650 +7.26% 12
Yorkshire +22 12 £615 +6.96% 5
North West +14 12 £676 +11.55% 6
Midlands -10 8 £650 +9.24% 5
West Midlands -11 7 £650 +9.24% 5
Scotland +37 6 £623 +24.50% 1
South West +24 5 £400 -38.46% 6
Wales +13 2 £666 +40.26% 2
North East +10 2 £625 -26.23% 1
East of England +5 2 £850 +61.90% 4
East Midlands +13 1 £567 -6.44%

Application Security
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 3 (1.38%) Microsoft Exchange
2 2 (0.92%) SharePoint
3 1 (0.46%) Confluence
3 1 (0.46%) IBM Notes
3 1 (0.46%) nginx
3 1 (0.46%) SAS
Applications
1 11 (5.05%) Microsoft Office
2 4 (1.83%) Microsoft Project
Business Applications
1 1 (0.46%) Oracle EBS
1 1 (0.46%) SAP S/4HANA
Cloud Services
1 61 (27.98%) Azure
2 60 (27.52%) AWS
3 35 (16.06%) GCP
4 20 (9.17%) SaaS
5 18 (8.26%) Serverless
6 15 (6.88%) AWS CloudFormation
7 14 (6.42%) PaaS
8 13 (5.96%) IaaS
9 9 (4.13%) Entra ID
9 9 (4.13%) GitHub
10 7 (3.21%) Azure DevOps
10 7 (3.21%) OpenShift
11 6 (2.75%) Amazon EKS
11 6 (2.75%) Virtual Private Cloud
12 5 (2.29%) Azure API Management
12 5 (2.29%) Azure Data Factory
12 5 (2.29%) Azure Functions
12 5 (2.29%) Azure Key Vault
12 5 (2.29%) Azure Logic Apps
12 5 (2.29%) Azure Monitor
Communications & Networking
1 36 (16.51%) Firewall
2 26 (11.93%) Network Security
3 10 (4.59%) DNS
3 10 (4.59%) HTTPS
3 10 (4.59%) Wireless
4 6 (2.75%) Intrusion Detection
4 6 (2.75%) VPN
5 5 (2.29%) DHCP
5 5 (2.29%) SD-WAN
5 5 (2.29%) WAN
6 4 (1.83%) Cisco ISE
6 4 (1.83%) IPv4
7 3 (1.38%) Internet
7 3 (1.38%) NGFW
8 2 (0.92%) BIG-IP
8 2 (0.92%) Cisco Nexus
8 2 (0.92%) HTTP
8 2 (0.92%) TCP/IP
9 1 (0.46%) tcpdump
9 1 (0.46%) Wireshark
Database & Business Intelligence
1 13 (5.96%) SQL Server
2 8 (3.67%) MySQL
3 5 (2.29%) Azure SQL Database
4 4 (1.83%) Metadata
4 4 (1.83%) RDBMS
4 4 (1.83%) Relational Database
5 3 (1.38%) Data Warehouse
5 3 (1.38%) NoSQL
5 3 (1.38%) SQL Server Integration Services
6 2 (0.92%) Data Vault
7 1 (0.46%) Data Lake
7 1 (0.46%) DB2
7 1 (0.46%) Oracle Reports
7 1 (0.46%) SAP HANA
Development Applications
1 12 (5.50%) Jenkins
2 11 (5.05%) Git
3 10 (4.59%) Sonatype Nexus
4 9 (4.13%) Burp Suite
4 9 (4.13%) GitLab
5 8 (3.67%) Robot Framework
6 7 (3.21%) JIRA
7 6 (2.75%) Gradle
7 6 (2.75%) Maven
7 6 (2.75%) Visual Studio
8 4 (1.83%) Browser DevTools
9 3 (1.38%) SonarQube
10 2 (0.92%) Appium
10 2 (0.92%) AppScan
10 2 (0.92%) git-flow
10 2 (0.92%) Subversion
10 2 (0.92%) XCTest
10 2 (0.92%) XCUITest
11 1 (0.46%) MSI
11 1 (0.46%) rollup.js
General
1 45 (20.64%) Finance
2 37 (16.97%) Social Skills
3 22 (10.09%) Analytical Skills
4 21 (9.63%) Banking
5 13 (5.96%) Public Sector
6 12 (5.50%) Documentation Skills
7 8 (3.67%) Retail
8 5 (2.29%) Legal
9 4 (1.83%) Automotive
9 4 (1.83%) Financial Institution
9 4 (1.83%) Presentation Skills
10 3 (1.38%) Electronics
10 3 (1.38%) Telecoms
11 2 (0.92%) Front Office
11 2 (0.92%) Publishing
12 1 (0.46%) Arabic Language
12 1 (0.46%) Back Office
12 1 (0.46%) Health Technology
12 1 (0.46%) Retail Banking
Job Titles
1 64 (29.36%) Architect
2 45 (20.64%) Security Architect
3 33 (15.14%) Consultant
4 32 (14.68%) Security Consultant
5 30 (13.76%) Security Engineer
6 21 (9.63%) Applications Engineer
7 20 (9.17%) Senior
8 17 (7.80%) Solutions Architect
9 14 (6.42%) Cloud Engineer
10 13 (5.96%) Analyst
11 12 (5.50%) Senior Architect
12 11 (5.05%) Senior Security Architect
13 10 (4.59%) Applications Architect
13 10 (4.59%) Security Manager
14 9 (4.13%) Cloud Architect
14 9 (4.13%) Cybersecurity Consultant
14 9 (4.13%) Penetration Tester
14 9 (4.13%) Project Manager
14 9 (4.13%) Tester
15 8 (3.67%) Cloud Security Architect
Libraries, Frameworks & Software Standards
1 19 (8.72%) SailPoint
2 11 (5.05%) OAuth
3 8 (3.67%) SAML
4 6 (2.75%) CSS
4 6 (2.75%) OpenID
5 5 (2.29%) .NET
5 5 (2.29%) ARM Templates
5 5 (2.29%) HTML
5 5 (2.29%) OAuth2
5 5 (2.29%) REST
6 4 (1.83%) FIX Protocol
6 4 (1.83%) HTML5
6 4 (1.83%) JSON
6 4 (1.83%) RESTful
7 3 (1.38%) Elastic Stack
7 3 (1.38%) SOAP
7 3 (1.38%) XML
8 2 (0.92%) React Native
8 2 (0.92%) SwiftUI
8 2 (0.92%) UIKit
Miscellaneous
1 25 (11.47%) Mobile App
2 16 (7.34%) PKI
3 15 (6.88%) Cloud Native
3 15 (6.88%) Security Posture
4 14 (6.42%) Data Centre
4 14 (6.42%) IoT
5 8 (3.67%) Operational Technology
6 6 (2.75%) Cyber Threat
6 6 (2.75%) Management Information System
7 5 (2.29%) Security Operations Centre
8 4 (1.83%) Public Cloud
9 3 (1.38%) Cyberattack
9 3 (1.38%) Hedge funds
10 2 (0.92%) Cyber Security Posture
10 2 (0.92%) Data Protection Act
10 2 (0.92%) Hybrid Cloud
11 1 (0.46%) Onboarding
11 1 (0.46%) Product Ownership
11 1 (0.46%) Team-Oriented Environment
11 1 (0.46%) Web3
Operating Systems
1 41 (18.81%) Windows
2 28 (12.84%) Linux
3 15 (6.88%) Windows Server
4 12 (5.50%) Unix
4 12 (5.50%) Windows Server 2019
5 4 (1.83%) CentOS
5 4 (1.83%) Windows Server 2016
6 2 (0.92%) Android
6 2 (0.92%) Apple iOS
7 1 (0.46%) Windows 10
Processes & Methodologies
1 70 (32.11%) Cloud Security
2 68 (31.19%) Cybersecurity
3 60 (27.52%) CI/CD
4 53 (24.31%) DevOps
5 49 (22.48%) Information Security
5 49 (22.48%) Security Testing
6 44 (20.18%) DevSecOps
6 44 (20.18%) Identity Access Management
7 41 (18.81%) Agile
8 40 (18.35%) Deployment Automation
8 40 (18.35%) Static Application Security Testing
8 40 (18.35%) Vulnerability Management
9 38 (17.43%) Penetration Testing
10 36 (16.51%) Security Architecture
11 35 (16.06%) SDLC
12 33 (15.14%) Threat Modelling
13 32 (14.68%) Dynamic Application Security Testing
14 31 (14.22%) Infrastructure as Code
15 30 (13.76%) OWASP
16 25 (11.47%) Containerisation
Programming Languages
1 38 (17.43%) Python
2 27 (12.39%) PowerShell
3 14 (6.42%) C++
4 13 (5.96%) JavaScript
4 13 (5.96%) Shell Script
5 12 (5.50%) Bash
5 12 (5.50%) SQL
6 8 (3.67%) Ruby
7 7 (3.21%) Java
8 6 (2.75%) C#
8 6 (2.75%) Groovy
8 6 (2.75%) PHP
9 4 (1.83%) C
9 4 (1.83%) Go
9 4 (1.83%) T-SQL
9 4 (1.83%) VBScript
10 3 (1.38%) Perl
11 2 (0.92%) Swift
12 1 (0.46%) PL/SQL
Qualifications
1 25 (11.47%) Security Cleared
2 24 (11.01%) CISSP
3 18 (8.26%) CISM
4 17 (7.80%) SC Cleared
5 15 (6.88%) Degree
6 11 (5.05%) CEH
6 11 (5.05%) OSCP
7 10 (4.59%) AWS Certification
7 10 (4.59%) CISA
7 10 (4.59%) GIAC
8 9 (4.13%) CREST Certified
9 8 (3.67%) GPEN
10 7 (3.21%) ISACA
10 7 (3.21%) Master's Degree
10 7 (3.21%) MBA
11 5 (2.29%) DV Cleared
12 4 (1.83%) SANS
13 3 (1.38%) Cisco Certification
13 3 (1.38%) Computer Science Degree
13 3 (1.38%) CRISC
Quality Assurance & Compliance
1 44 (20.18%) NIST
2 11 (5.05%) ISO/IEC 27001
3 10 (4.59%) COBIT
3 10 (4.59%) GDPR
4 8 (3.67%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 7 (3.21%) QA
5 7 (3.21%) RMADS
6 3 (1.38%) Accessibility
6 3 (1.38%) PCI DSS
7 2 (0.92%) Automotive SPICE
7 2 (0.92%) AUTOSAR
8 1 (0.46%) GLBA
8 1 (0.46%) GRC
8 1 (0.46%) HIPAA
8 1 (0.46%) HMG Security Policy Framework
8 1 (0.46%) ISAE 3402
8 1 (0.46%) ISO 31000
8 1 (0.46%) ISO 9001
8 1 (0.46%) NCSC
8 1 (0.46%) Sarbanes-Oxley
System Software
1 25 (11.47%) Active Directory
2 17 (7.80%) Docker
3 8 (3.67%) VMware Infrastructure
4 2 (0.92%) Virtual Desktop
5 1 (0.46%) Virtual Machines
Systems Management
1 38 (17.43%) Terraform
2 25 (11.47%) Ansible
3 16 (7.34%) Kubernetes
4 4 (1.83%) Nessus
4 4 (1.83%) Puppet
5 3 (1.38%) Grafana
5 3 (1.38%) Graylog
5 3 (1.38%) HP Fortify
5 3 (1.38%) Nagios
5 3 (1.38%) Prometheus
5 3 (1.38%) Single Sign-On
6 2 (0.92%) Progress Chef
6 2 (0.92%) SCCM
6 2 (0.92%) Thomson Reuters DACS
6 2 (0.92%) WebInspect
7 1 (0.46%) CSIRT
7 1 (0.46%) McAfee ePO
7 1 (0.46%) Nmap
7 1 (0.46%) Trend Micro Deep Security
7 1 (0.46%) WMI
Vendors
1 26 (11.93%) Microsoft
2 19 (8.72%) CyberArk
3 18 (8.26%) BeyondTrust
3 18 (8.26%) ServiceNow
4 9 (4.13%) Splunk
4 9 (4.13%) VMware
5 8 (3.67%) Cisco
6 6 (2.75%) Checkmarx
6 6 (2.75%) Veracode
7 5 (2.29%) Red Hat
8 4 (1.83%) CheckPoint
8 4 (1.83%) F5
9 3 (1.38%) Oracle
9 3 (1.38%) Qualys
9 3 (1.38%) SAP
9 3 (1.38%) Tufin
9 3 (1.38%) Zscaler
10 2 (0.92%) CrowdStrike
10 2 (0.92%) Okta
10 2 (0.92%) Refinitiv
117 Application Security jobs Nationwide