Period
to 15 September 2019

The following table provides summary statistics for contract job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 15 September 2019 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISO/IEC 27001
UK
6 months to
15 Sep 2019
Same period 2018 Same period 2017
Rank 334 382 319
Rank change year-on-year +48 -63 -20
Contract jobs citing ISO/IEC 27001 678 670 771
As % of all contract IT jobs advertised in the UK 0.77% 0.66% 0.78%
As % of the Quality Assurance & Compliance category 7.46% 5.87% 6.45%
Number of daily rates quoted 443 474 469
UK median daily rate £525 £500 £475
Median daily rate % change year-on-year +5.00% +5.26% +5.56%
10th Percentile £328 £315 £313
90th Percentile £725 £680 £650
UK excluding London median daily rate £475 £500 £475
% change year-on-year -5.00% +5.26% +6.38%
Number of hourly rates quoted 2 0 8
UK median hourly rate £36.25 - £34.00
10th Percentile £27.88 - £20.65
90th Percentile £45.63 - £46.15
UK excluding London median hourly rate £27.50 - £35.00

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 9,087 11,411 11,951
As % of all contract IT jobs advertised in the UK 10.31% 11.18% 12.14%
Number of daily rates quoted 5,572 7,260 7,761
UK median daily rate £450 £450 £440
Median daily rate % change year-on-year - +2.27% +6.67%
10th Percentile £225 £250 £256
90th Percentile £638 £625 £638
UK excluding London median daily rate £420 £410 £400
% change year-on-year +2.44% +2.50% +6.67%
Number of hourly rates quoted 409 388 367
UK median hourly rate £21.42 £21.62 £21.90
Median hourly rate % change year-on-year -0.93% -1.30% -7.79%
10th Percentile £10.86 £11.25 £10.86
90th Percentile £54.00 £50.00 £48.35
UK excluding London median hourly rate £23.59 £20.00 £21.09
% change year-on-year +17.95% -5.15% -15.66%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing ISO/IEC 27001.

Contractor daily rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 15 September 2019.

Contractor daily rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing ISO/IEC 27001.

Contractor hourly rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Hourly Rate Histogram

The hourly rate distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 15 September 2019.

Contractor hourly rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 17 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 15 September 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +35 595 £535 +7.00% 266
UK excluding London +70 434 £475 -5.00% 222
London +3 223 £585 +14.99% 66
South East +35 129 £490 -8.84% 56
North of England +4 81 £491 -1.75% 51
Midlands +48 75 £500 +14.29% 38
West Midlands +51 60 £525 +20.00% 28
South West -1 56 £450 +5.88% 35
Scotland +51 48 £425 +5.52% 7
Yorkshire +8 39 £468 -10.95% 24
North West +16 35 £495 +4.21% 25
East of England +37 25 £425 -11.23% 20
Wales +35 20 £393 -12.78% 15
East Midlands +15 14 £475 +5.56% 10
North East +13 7 £441 -29.44% 2
Northern Ireland +4 2 - -
Channel Islands -8 1 £513 -2.38%

For the 6 months to 15 September 2019, IT contractor jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for ISO/IEC 27001.

1 351 (51.77%) Information Security
2 204 (30.09%) CISSP
3 182 (26.84%) Cybersecurity
4 172 (25.37%) NIST
5 161 (23.75%) CISM
6 148 (21.83%) PCI DSS
7 141 (20.80%) ITIL
8 139 (20.50%) Finance
9 126 (18.58%) AWS
10 123 (18.14%) Firewall
11 122 (17.99%) GDPR
12 121 (17.85%) SIEM
13 115 (16.96%) Risk Management
14 113 (16.67%) Azure
15 111 (16.37%) Microsoft
16 107 (15.78%) Security Cleared
17 106 (15.63%) Security Architecture
18 100 (14.75%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
19 97 (14.31%) Stakeholder Management
20 94 (13.86%) Management Information System
20 94 (13.86%) Windows
21 91 (13.42%) Security Operations
22 90 (13.27%) Linux
23 89 (13.13%) Security Management
24 82 (12.09%) Agile Software Development
25 80 (11.80%) Vulnerability Management
26 77 (11.36%) COBIT
27 73 (10.77%) DevOps
28 72 (10.62%) Active Directory
29 69 (10.18%) Legal

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 13 (1.92%) MS Exchange
2 12 (1.77%) IIS
2 12 (1.77%) SharePoint
3 10 (1.47%) OpenStack
4 8 (1.18%) Exchange Server 2010
5 7 (1.03%) Exchange Server 2013
6 2 (0.29%) SAS
6 2 (0.29%) Skype for Business
7 1 (0.15%) Apache
7 1 (0.15%) Apache Spark
7 1 (0.15%) Commerce Server
7 1 (0.15%) Elasticsearch
Applications
1 36 (5.31%) Microsoft Office
2 12 (1.77%) MS Visio
3 11 (1.62%) Microsoft Excel
4 5 (0.74%) Microsoft PowerPoint
5 4 (0.59%) Microsoft Project
6 2 (0.29%) Stata
7 1 (0.15%) AutoCAD
Business Applications
1 3 (0.44%) SAP Oil and Gas
Cloud Services
1 126 (18.58%) AWS
2 113 (16.67%) Azure
3 66 (9.73%) Office 365
4 55 (8.11%) SaaS
5 42 (6.19%) GCP
6 28 (4.13%) IaaS
7 21 (3.10%) PaaS
8 14 (2.06%) Cloud Computing
9 11 (1.62%) AWS Lambda
9 11 (1.62%) GitHub
9 11 (1.62%) Serverless
10 6 (0.88%) Azure Active Directory
11 5 (0.74%) AWS CloudFormation
11 5 (0.74%) Dynamics 365
11 5 (0.74%) G Suite
12 4 (0.59%) Azure ExpressRoute
12 4 (0.59%) OpenShift
13 3 (0.44%) Mimecast
14 2 (0.29%) Amazon EC2
14 2 (0.29%) Virtual Private Cloud
Communications & Networking
1 123 (18.14%) Firewall
2 49 (7.23%) Network Security
3 35 (5.16%) VPN
4 32 (4.72%) DNS
5 29 (4.28%) Internet
6 28 (4.13%) TCP/IP
7 22 (3.24%) WAN
8 20 (2.95%) LAN
9 18 (2.65%) Intrusion Detection
10 16 (2.36%) SNMP
11 14 (2.06%) DHCP
12 13 (1.92%) Wireless
13 10 (1.47%) Cisco ASA
13 10 (1.47%) ICMP
13 10 (1.47%) Telnet
14 9 (1.33%) SAN
14 9 (1.33%) SMTP
14 9 (1.33%) VLAN
15 8 (1.18%) HTTP
16 7 (1.03%) VoIP
Database & Business Intelligence
1 21 (3.10%) SQL Server
2 9 (1.33%) MySQL
3 8 (1.18%) Data Warehouse
3 8 (1.18%) Relational Database
4 7 (1.03%) Big Data
5 6 (0.88%) Hadoop
5 6 (0.88%) SQL Server 2008
5 6 (0.88%) SQL Server 2012
5 6 (0.88%) SQL Server Reporting Services
6 5 (0.74%) NoSQL
6 5 (0.74%) Oracle Reports
7 4 (0.59%) BigQuery
7 4 (0.59%) Bigtable
7 4 (0.59%) QlikView
7 4 (0.59%) RDBMS
7 4 (0.59%) SQL Server Analysis Services
7 4 (0.59%) SQL Server Integration Services
8 3 (0.44%) Azure SQL Data Warehouse
8 3 (0.44%) Data Lake
8 3 (0.44%) MariaDB
Development Applications
1 17 (2.51%) JIRA
2 16 (2.36%) Jenkins
3 11 (1.62%) Visual Studio Team System
4 9 (1.33%) Burp Suite
5 5 (0.74%) Git (software)
5 5 (0.74%) SonarQube
5 5 (0.74%) Sonatype Nexus
6 4 (0.59%) Balsamiq
6 4 (0.59%) git-flow
6 4 (0.59%) WinDbg
7 3 (0.44%) Bitbucket
8 1 (0.15%) Hudson
8 1 (0.15%) Metasploit
8 1 (0.15%) Snyk
8 1 (0.15%) SQL Server Management Studio (SSMS)
8 1 (0.15%) TeamCity
8 1 (0.15%) tSQLt
8 1 (0.15%) Visual Studio
General
1 139 (20.50%) Finance
2 69 (10.18%) Legal
3 41 (6.05%) Public Sector
4 39 (5.75%) Telecoms
5 26 (3.83%) Banking
6 20 (2.95%) Retail
7 12 (1.77%) Manufacturing
8 10 (1.47%) Law
9 5 (0.74%) Automotive
9 5 (0.74%) Financial Institution
9 5 (0.74%) Police
10 4 (0.59%) Marketing
10 4 (0.59%) Retail Banking
11 3 (0.44%) French Language
11 3 (0.44%) Games
11 3 (0.44%) Investment Banking
11 3 (0.44%) Military
12 2 (0.29%) Electronics
12 2 (0.29%) Pharmaceutical
13 1 (0.15%) Czech Language
Job Titles
1 126 (18.58%) Architect
2 101 (14.90%) Analyst
3 95 (14.01%) Consultant
3 95 (14.01%) Security Architect
4 82 (12.09%) Security Consultant
5 72 (10.62%) Security Analyst
6 71 (10.47%) Security Manager
7 63 (9.29%) Security Engineer
8 51 (7.52%) Information Manager
9 45 (6.64%) Information Security Consultant
10 42 (6.19%) Information Security Manager
11 35 (5.16%) Cloud Architect
12 27 (3.98%) Project Manager
13 26 (3.83%) Cloud Engineer
14 24 (3.54%) Head of Security
15 20 (2.95%) Cybersecurity Analyst
16 19 (2.80%) Security Specialist
17 18 (2.65%) Security Officer
18 17 (2.51%) Information Analyst
18 17 (2.51%) Information Security Analyst
Libraries, Frameworks & Software Standards
1 45 (6.64%) Web Services
2 27 (3.98%) JSON
3 16 (2.36%) Node.js
4 12 (1.77%) SAML
4 12 (1.77%) XML
5 8 (1.18%) OpenID
6 6 (0.88%) REST
6 6 (0.88%) SOAP
7 5 (0.74%) Kafka
7 5 (0.74%) OAuth
7 5 (0.74%) SailPoint
8 4 (0.59%) Elastic Stack
8 4 (0.59%) J2EE
8 4 (0.59%) Spring
9 3 (0.44%) OAuth2
10 2 (0.29%) 802.1X
10 2 (0.29%) ASP.NET
10 2 (0.29%) CSS
10 2 (0.29%) Microsoft Graph
10 2 (0.29%) Sass
Miscellaneous
1 94 (13.86%) Management Information System
2 46 (6.78%) Analytical Skills
3 35 (5.16%) Data Centre
4 29 (4.28%) Cyberthreat
5 28 (4.13%) CESG
6 19 (2.80%) PKI
7 14 (2.06%) User Experience
8 12 (1.77%) Enterprise Cloud
8 12 (1.77%) Security Operations Centre
8 12 (1.77%) Virtual Team
9 11 (1.62%) Cyberattack
9 11 (1.62%) Data Protection Act
9 11 (1.62%) SCADA
10 10 (1.47%) CCTV
10 10 (1.47%) Greenfield Project
10 10 (1.47%) Public Cloud
11 8 (1.18%) Clustering
11 8 (1.18%) PMI
11 8 (1.18%) Self-Motivation
12 7 (1.03%) Distributed Denial-of-Service
Operating Systems
1 94 (13.86%) Windows
2 90 (13.27%) Linux
3 46 (6.78%) Windows Server
4 37 (5.46%) Red Hat Enterprise Linux
5 19 (2.80%) Unix
6 14 (2.06%) Windows Server 2012
7 13 (1.92%) Debian
7 13 (1.92%) openSUSE
7 13 (1.92%) Ubuntu
8 10 (1.47%) Windows Server 2008
9 8 (1.18%) Mac OS X
10 7 (1.03%) Solaris
11 6 (0.88%) Windows 10
12 4 (0.59%) Windows 7
13 3 (0.44%) VMS
13 3 (0.44%) Windows Server 2003
14 2 (0.29%) CentOS
15 1 (0.15%) AIX
15 1 (0.15%) Mac OS
Processes & Methodologies
1 351 (51.77%) Information Security
2 182 (26.84%) Cybersecurity
3 141 (20.80%) ITIL
4 121 (17.85%) SIEM
5 115 (16.96%) Risk Management
6 106 (15.63%) Security Architecture
7 97 (14.31%) Stakeholder Management
8 91 (13.42%) Security Operations
9 89 (13.13%) Security Management
10 82 (12.09%) Agile Software Development
11 80 (11.80%) Vulnerability Management
12 73 (10.77%) DevOps
13 66 (9.73%) Project Management
14 65 (9.59%) Identity Access Management
15 59 (8.70%) Data Protection
16 57 (8.41%) ISMS
17 55 (8.11%) Information Security Management
18 54 (7.96%) OWASP
19 49 (7.23%) Penetration Testing
20 48 (7.08%) Risk Assessment
Programming Languages
1 45 (6.64%) Python
2 33 (4.87%) Java
3 32 (4.72%) SQL
4 28 (4.13%) Bash Shell
4 28 (4.13%) Ruby
5 25 (3.69%) PowerShell
6 20 (2.95%) C
7 18 (2.65%) JavaScript
8 15 (2.21%) Perl
9 10 (1.47%) C#
9 10 (1.47%) VBA
10 7 (1.03%) PHP
10 7 (1.03%) VBScript
11 6 (0.88%) C++
12 3 (0.44%) Go
12 3 (0.44%) R
13 2 (0.29%) T-SQL
14 1 (0.15%) Shell Script
Qualifications
1 204 (30.09%) CISSP
2 161 (23.75%) CISM
3 107 (15.78%) Security Cleared
4 69 (10.18%) CISA
5 58 (8.55%) SC Cleared
6 50 (7.37%) Cisco Certification
7 36 (5.31%) CESG Certified Professional
8 33 (4.87%) SANS
9 31 (4.57%) Degree
10 28 (4.13%) ISO 27001 Lead Auditor
11 25 (3.69%) CRISC
12 22 (3.24%) (ISC)2 CCSP
12 22 (3.24%) DV Cleared
13 19 (2.80%) CEH
13 19 (2.80%) GIAC
14 18 (2.65%) CompTIA Security+
15 17 (2.51%) CISMP
15 17 (2.51%) ISO 27001 Lead Implementer
16 15 (2.21%) ITIL Certification
17 14 (2.06%) CCNP
Quality Assurance & Compliance
1 172 (25.37%) NIST
2 148 (21.83%) PCI DSS
3 122 (17.99%) GDPR
4 100 (14.75%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 77 (11.36%) COBIT
6 40 (5.90%) Cyber Essentials
7 39 (5.75%) Sarbanes-Oxley
8 36 (5.31%) NCSC
9 20 (2.95%) HMG Security Policy Framework
10 19 (2.80%) ISO 9001
11 16 (2.36%) Cyber Essentials PLUS
12 15 (2.21%) SLA
13 12 (1.77%) ISO 22301
13 12 (1.77%) ISO/IEC 20000
13 12 (1.77%) NIST 800
14 11 (1.62%) JSP 440
15 10 (1.47%) RMADS
16 8 (1.18%) QA
17 7 (1.03%) HIPAA
18 6 (0.88%) ISO 31000
System Software
1 72 (10.62%) Active Directory
2 27 (3.98%) VMware Infrastructure
3 23 (3.39%) Docker
4 14 (2.06%) Hyper-V
5 8 (1.18%) XenApp
6 7 (1.03%) XenDesktop
7 6 (0.88%) Virtual Machines
7 6 (0.88%) vSphere
8 5 (0.74%) VMware ESXi
8 5 (0.74%) VMware NSX
9 4 (0.59%) ISA Server
10 3 (0.44%) Firmware
10 3 (0.44%) Snort
11 2 (0.29%) OpenAM
11 2 (0.29%) OpenDJ
Systems Management
1 30 (4.42%) Nessus
2 24 (3.54%) Puppet
3 18 (2.65%) Ansible
4 17 (2.51%) Opscode Chef
5 16 (2.36%) Single Sign-On
6 15 (2.21%) CASB
7 13 (1.92%) Kubernetes
8 12 (1.77%) Suricata
9 11 (1.62%) SELinux
10 10 (1.47%) WMI
11 9 (1.33%) Terraform
12 8 (1.18%) HP Fortify
13 6 (0.88%) QRadar
14 5 (0.74%) McAfee ePO
14 5 (0.74%) SCCM
14 5 (0.74%) vCenter Server
14 5 (0.74%) vRealize
15 3 (0.44%) FortiGate
15 3 (0.44%) Microsoft Intune
15 3 (0.44%) OpenVAS
Vendors
1 111 (16.37%) Microsoft
2 45 (6.64%) Splunk
3 44 (6.49%) Qualys
4 43 (6.34%) Cisco
5 41 (6.05%) VMware
6 27 (3.98%) Google
7 18 (2.65%) Red Hat
8 15 (2.21%) Citrix
8 15 (2.21%) Oracle
9 14 (2.06%) Adobe
10 12 (1.77%) Salesforce.com
10 12 (1.77%) Symantec
11 11 (1.62%) CheckPoint
11 11 (1.62%) SAP
12 10 (1.47%) Fortinet
12 10 (1.47%) McAfee
13 9 (1.33%) HP
13 9 (1.33%) ServiceNow
14 8 (1.18%) CA
14 8 (1.18%) IBM