Period
to 22 October 2018

The following table provides summary statistics for contract job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 22 October 2018 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISO/IEC 27001
UK
6 months to
22 Oct 2018
Same period 2017 Same period 2016
Rank 380 303 308
Rank change year-on-year -77 +5 +6
Contract jobs citing ISO/IEC 27001 674 825 896
As % of all contract IT jobs advertised in the UK 0.65% 0.83% 0.85%
As % of the Quality Assurance & Compliance category 6.00% 6.72% 7.42%
Number of daily rates quoted 468 494 571
UK median daily rate £500 £475 £450
Median daily rate % change year-on-year +5.26% +5.56% -
10th Percentile £315 £313 £313
90th Percentile £675 £642 £625
UK excluding London median daily rate £500 £474 £450
% change year-on-year +5.54% +5.28% -
Number of hourly rates quoted 0 4 10
UK median hourly rate - £29.00 £46.50
Median hourly rate % change year-on-year - -37.63% -9.13%
UK excluding London median hourly rate - £33.00 £46.50
% change year-on-year - -29.03% +95.79%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 11,226 12,270 12,081
As % of all contract IT jobs advertised in the UK 10.87% 12.35% 11.46%
Number of daily rates quoted 7,102 8,047 7,801
UK median daily rate £450 £438 £415
Median daily rate % change year-on-year +2.86% +5.42% +3.75%
10th Percentile £250 £256 £225
90th Percentile £625 £630 £600
UK excluding London median daily rate £400 £400 £380
% change year-on-year - +5.26% -
Number of hourly rates quoted 402 361 445
UK median hourly rate £21.76 £20.00 £22.84
Median hourly rate % change year-on-year +8.80% -12.42% +5.96%
10th Percentile £11.12 £10.59 £10.50
90th Percentile £49.88 £47.50 £47.50
UK excluding London median hourly rate £21.88 £20.00 £25.00
% change year-on-year +9.40% -20.00% +16.01%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing ISO/IEC 27001.

Contractor daily rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 22 October 2018.

Contractor daily rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing ISO/IEC 27001.

Contractor hourly rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 17 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 22 October 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -78 620 £501 +5.37% 322
UK excluding London -95 375 £500 +5.54% 238
London -36 277 £517 +7.43% 101
South East -85 123 £525 +10.53% 59
North of England -9 94 £501 +5.37% 69
Midlands 0 58 £425 -2.86% 41
South West -30 49 £425 -15.00% 35
Yorkshire +2 42 £550 +22.22% 19
North West -15 39 £500 +5.26% 44
West Midlands -6 33 £450 - 31
Scotland -25 27 £400 +6.67% 12
East Midlands +29 25 £413 +10.74% 10
North East +8 16 £565 +13.00% 6
East of England -68 14 £450 +5.88% 17
Wales -15 8 £450 - 4
Channel Islands - 2 £525 -
Northern Ireland - 1 - -

For the 6 months to 22 October 2018, IT contractor jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for ISO/IEC 27001.

1 391 (58.01%) Information Security
2 290 (43.03%) CISSP
3 210 (31.16%) PCI DSS
4 201 (29.82%) CISM
5 187 (27.74%) Cybersecurity
6 175 (25.96%) GDPR
7 156 (23.15%) Risk Management
8 132 (19.58%) Firewall
8 132 (19.58%) CISA
9 124 (18.40%) Finance
10 119 (17.66%) Management Information System
10 119 (17.66%) Security Architecture
11 116 (17.21%) ITIL
12 97 (14.39%) Microsoft
13 89 (13.20%) Data Protection
14 81 (12.02%) Windows
15 80 (11.87%) SIEM
16 78 (11.57%) Microsoft Azure
17 74 (10.98%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
18 72 (10.68%) Vulnerability Management
18 72 (10.68%) Degree
19 70 (10.39%) Security Cleared
20 69 (10.24%) Stakeholder Management
21 66 (9.79%) Agile Software Development
22 65 (9.64%) Security Management
23 62 (9.20%) Amazon AWS
24 59 (8.75%) Legal
24 59 (8.75%) Cisco Certification
25 58 (8.61%) Security Operations
26 54 (8.01%) Linux

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 21 (3.12%) SharePoint
2 19 (2.82%) IIS
3 12 (1.78%) Apache
4 11 (1.63%) MS Exchange
5 9 (1.34%) Apache Spark
6 6 (0.89%) CMS
6 6 (0.89%) Exchange Server 2010
7 4 (0.59%) nginx
8 3 (0.45%) Confluence
8 3 (0.45%) JBoss
8 3 (0.45%) Liferay
8 3 (0.45%) Skype for Business
9 2 (0.30%) Elasticsearch
9 2 (0.30%) Tomcat
10 1 (0.15%) Exchange Server 2003
10 1 (0.15%) Exchange Server 2007
10 1 (0.15%) Exchange Server 2013
Applications
1 23 (3.41%) Microsoft Office
2 14 (2.08%) MS Visio
3 10 (1.48%) Microsoft Excel
4 8 (1.19%) Microsoft PowerPoint
5 2 (0.30%) Microsoft Project
6 1 (0.15%) AutoCAD
Business Applications
1 3 (0.45%) SAP GRC
2 2 (0.30%) Advent Portfolio Exchange
2 2 (0.30%) SAP S/4HANA
3 1 (0.15%) Dynamics AX
3 1 (0.15%) Dynamics CRM
3 1 (0.15%) Dynamics NAV
3 1 (0.15%) NetSuite
3 1 (0.15%) Northgate Housing
3 1 (0.15%) SAP IS-U
Cloud Services
1 78 (11.57%) Microsoft Azure
2 62 (9.20%) Amazon AWS
3 36 (5.34%) Office 365
4 16 (2.37%) SaaS
5 13 (1.93%) Cloud Computing
5 13 (1.93%) PaaS
6 12 (1.78%) IaaS
7 9 (1.34%) Google Cloud Platform
8 5 (0.74%) Serverless
9 3 (0.45%) AWS CloudFormation
10 2 (0.30%) AWS Lambda
10 2 (0.30%) Cloudflare
10 2 (0.30%) IBM Cloud
10 2 (0.30%) Mimecast
10 2 (0.30%) npm
10 2 (0.30%) NuGet
11 1 (0.15%) Azure Active Directory
11 1 (0.15%) GitHub
11 1 (0.15%) OneDrive
Communications & Networking
1 132 (19.58%) Firewall
2 49 (7.27%) Network Security
3 48 (7.12%) VPN
4 29 (4.30%) DNS
5 28 (4.15%) Intrusion Detection
6 22 (3.26%) TCP/IP
7 20 (2.97%) SSL
8 19 (2.82%) Wireless
9 18 (2.67%) WAN
10 17 (2.52%) IPsec
11 13 (1.93%) DHCP
11 13 (1.93%) LAN
12 12 (1.78%) Internet
13 9 (1.34%) HTTP
13 9 (1.34%) iSCSI
14 8 (1.19%) Kerberos
15 7 (1.04%) HTTPS
15 7 (1.04%) MPLS
15 7 (1.04%) VLAN
16 6 (0.89%) OSPF
Database & Business Intelligence
1 27 (4.01%) SQL Server
2 11 (1.63%) Hadoop
3 10 (1.48%) Big Data
4 8 (1.19%) Apache Hive
4 8 (1.19%) HBase
5 7 (1.04%) Pentaho
5 7 (1.04%) QlikView
5 7 (1.04%) SQL Server 2008
5 7 (1.04%) Sqoop
6 4 (0.59%) SQL Server 2005
6 4 (0.59%) SQL Server Integration Services
7 3 (0.45%) Apache Cassandra
7 3 (0.45%) SQL Server Analysis Services
7 3 (0.45%) SQL Server Reporting Services
8 2 (0.30%) InterSystems Cache
8 2 (0.30%) MySQL
8 2 (0.30%) PostgreSQL
8 2 (0.30%) Power BI
8 2 (0.30%) SQL Server 2012
8 2 (0.30%) SQL Server 2014
Development Applications
1 12 (1.78%) JIRA
2 10 (1.48%) Git (software)
2 10 (1.48%) SonarQube
2 10 (1.48%) VSS/SourceSafe
3 6 (0.89%) Visual Studio
4 4 (0.59%) Metasploit
5 3 (0.45%) Jenkins
5 3 (0.45%) Mocha
5 3 (0.45%) Octopus Deploy
5 3 (0.45%) Subversion
5 3 (0.45%) Visual Studio Team System
6 2 (0.30%) Bitbucket
6 2 (0.30%) Bower
6 2 (0.30%) Eclipse
6 2 (0.30%) gulp
6 2 (0.30%) Maven
6 2 (0.30%) Team Foundation Server
6 2 (0.30%) TeamCity
7 1 (0.15%) NUnit
7 1 (0.15%) Selenium
General
1 124 (18.40%) Finance
2 59 (8.75%) Legal
3 47 (6.97%) Retail
4 28 (4.15%) Telecoms
5 25 (3.71%) Banking
6 7 (1.04%) Law
6 7 (1.04%) Manufacturing
7 5 (0.74%) Marketing
8 4 (0.59%) Back Office
8 4 (0.59%) Financial Institution
9 3 (0.45%) Electronics
9 3 (0.45%) Pharmaceutical
10 2 (0.30%) Investment Banking
11 1 (0.15%) Digital Economy
11 1 (0.15%) Dutch Language
11 1 (0.15%) French Language
11 1 (0.15%) Games
11 1 (0.15%) Local Government
11 1 (0.15%) Publishing
11 1 (0.15%) Retail Banking
Job Titles
1 160 (23.74%) Consultant
2 139 (20.62%) Security Consultant
3 111 (16.47%) Security Manager
4 108 (16.02%) Architect
5 93 (13.80%) Security Architect
6 88 (13.06%) Analyst
7 62 (9.20%) Security Analyst
8 61 (9.05%) Information Manager
8 61 (9.05%) Information Security Manager
9 54 (8.01%) Information Security Consultant
10 30 (4.45%) Project Manager
11 29 (4.30%) Information Analyst
12 28 (4.15%) Information Security Analyst
13 26 (3.86%) Security Engineer
14 21 (3.12%) Cloud Architect
15 20 (2.97%) Risk Manager
16 19 (2.82%) Technical Leader
17 17 (2.52%) Security Project Manager
18 16 (2.37%) IT Analyst
18 16 (2.37%) Security Officer
Libraries, Frameworks & Software Standards
1 22 (3.26%) Middleware
1 22 (3.26%) Web Services
2 14 (2.08%) .NET
2 14 (2.08%) SAML
3 13 (1.93%) OAuth
4 9 (1.34%) CSS
4 9 (1.34%) LDAP
5 7 (1.04%) HTML
5 7 (1.04%) REST
6 6 (0.89%) .NET Framework
6 6 (0.89%) ASP.NET
6 6 (0.89%) ASP.NET Web API
6 6 (0.89%) Entity Framework
6 6 (0.89%) LAMP
6 6 (0.89%) Sass
7 5 (0.74%) KnockoutJS
7 5 (0.74%) LESS
7 5 (0.74%) React
8 4 (0.59%) JSON
8 4 (0.59%) OpenID
Miscellaneous
1 119 (17.66%) Management Information System
2 48 (7.12%) Analytical Skills
3 47 (6.97%) Data Centre
4 42 (6.23%) PKI
5 37 (5.49%) Cyberthreat
6 25 (3.71%) Data Protection Act
7 24 (3.56%) Computer Science
8 17 (2.52%) Public Cloud
9 16 (2.37%) Driving Licence
9 16 (2.37%) Hybrid Cloud
10 12 (1.78%) Self-Motivation
11 11 (1.63%) CESG
12 9 (1.34%) Freedom of Information
12 9 (1.34%) Smartcard
13 8 (1.19%) Freedom of Information Act
13 8 (1.19%) NHS
13 8 (1.19%) Security Operations Centre
14 7 (1.04%) Enterprise Cloud
14 7 (1.04%) Private Cloud
15 6 (0.89%) RIA
Operating Systems
1 81 (12.02%) Windows
2 54 (8.01%) Linux
3 32 (4.75%) Windows Server
4 18 (2.67%) Unix
5 14 (2.08%) Windows 10
6 12 (1.78%) Windows Server 2008
6 12 (1.78%) Windows Server 2012
7 8 (1.19%) Windows Server 2003
8 7 (1.04%) CentOS
8 7 (1.04%) Red Hat Enterprise Linux
9 5 (0.74%) Solaris
9 5 (0.74%) Windows 7
10 4 (0.59%) Android
10 4 (0.59%) Apple iOS
11 3 (0.45%) Mac OS X
12 2 (0.30%) Debian
12 2 (0.30%) Mac OS
13 1 (0.15%) AIX
13 1 (0.15%) HPUX
13 1 (0.15%) MVS
Processes & Methodologies
1 391 (58.01%) Information Security
2 187 (27.74%) Cybersecurity
3 156 (23.15%) Risk Management
4 119 (17.66%) Security Architecture
5 116 (17.21%) ITIL
6 89 (13.20%) Data Protection
7 80 (11.87%) SIEM
8 72 (10.68%) Vulnerability Management
9 69 (10.24%) Stakeholder Management
10 66 (9.79%) Agile Software Development
11 65 (9.64%) Security Management
12 58 (8.61%) Security Operations
13 54 (8.01%) Risk Assessment
14 52 (7.72%) Information Assurance
14 52 (7.72%) Project Management
15 50 (7.42%) ISMS
16 49 (7.27%) Data Security
17 46 (6.82%) TOGAF
18 45 (6.68%) Information Security Management
19 42 (6.23%) Penetration Testing
Programming Languages
1 19 (2.82%) C#
1 19 (2.82%) Python
2 16 (2.37%) Java
2 16 (2.37%) SQL
3 14 (2.08%) PowerShell
4 13 (1.93%) Bash Shell
5 11 (1.63%) JavaScript
6 9 (1.34%) C
7 6 (0.89%) Perl
8 5 (0.74%) Ruby
8 5 (0.74%) VBScript
9 4 (0.59%) Shell Script
9 4 (0.59%) T-SQL
10 3 (0.45%) C++
10 3 (0.45%) ES6
10 3 (0.45%) VB
11 2 (0.30%) CQL
11 2 (0.30%) MUMPS
12 1 (0.15%) Scala
Qualifications
1 290 (43.03%) CISSP
2 201 (29.82%) CISM
3 132 (19.58%) CISA
4 72 (10.68%) Degree
5 70 (10.39%) Security Cleared
6 59 (8.75%) Cisco Certification
7 51 (7.57%) SC Cleared
8 40 (5.93%) CESG Certified Professional
9 38 (5.64%) CRISC
10 35 (5.19%) ISO 27001 Lead Auditor
11 26 (3.86%) CISMP
12 22 (3.26%) CCNA
13 21 (3.12%) (ISC)2 CCSP
14 17 (2.52%) CCNP
15 16 (2.37%) ISSAP
15 16 (2.37%) SANS
16 14 (2.08%) CEH
16 14 (2.08%) CREST Certified
16 14 (2.08%) IISP
16 14 (2.08%) Microsoft Certification
Quality Assurance & Compliance
1 210 (31.16%) PCI DSS
2 175 (25.96%) GDPR
3 74 (10.98%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 48 (7.12%) COBIT
5 32 (4.75%) ISO/IEC 27005
6 29 (4.30%) Cyber Essentials
6 29 (4.30%) Sarbanes-Oxley
7 24 (3.56%) ISO 9001
8 22 (3.26%) HMG Security Policy Framework
8 22 (3.26%) NIST 800
9 17 (2.52%) ISAE 3402
10 15 (2.23%) HIPAA
11 14 (2.08%) SLA
12 13 (1.93%) ISO 22301
13 11 (1.63%) ISO 31000
14 7 (1.04%) Data Quality
14 7 (1.04%) QA
15 5 (0.74%) COSO
15 5 (0.74%) SSAE 16
16 4 (0.59%) Cyber Essentials PLUS
System Software
1 53 (7.86%) Active Directory
2 16 (2.37%) Docker
2 16 (2.37%) VMware Infrastructure
3 8 (1.19%) Hyper-V
4 7 (1.04%) HDFS
4 7 (1.04%) Virtual Machines
4 7 (1.04%) XenApp
5 5 (0.74%) Terminal Services
6 4 (0.59%) ISA Server
6 4 (0.59%) vSphere
7 2 (0.30%) OpenAM
7 2 (0.30%) VMware ESXi
7 2 (0.30%) XenDesktop
8 1 (0.15%) BitLocker
8 1 (0.15%) Forefront TMG
8 1 (0.15%) iptables
8 1 (0.15%) Squid
8 1 (0.15%) Virtual Servers
8 1 (0.15%) VirtualBox
8 1 (0.15%) Xen
Systems Management
1 18 (2.67%) Single Sign-On
2 14 (2.08%) Kubernetes
3 13 (1.93%) Ansible
3 13 (1.93%) Nessus
4 10 (1.48%) Trend Micro Deep Security
5 8 (1.19%) SCCM
5 8 (1.19%) Terraform
6 7 (1.04%) Ambari
6 7 (1.04%) Hadoop YARN
6 7 (1.04%) Oozie
6 7 (1.04%) QRadar
7 5 (0.74%) Norton AntiVirus
8 4 (0.59%) Suricata
8 4 (0.59%) WSUS
9 3 (0.45%) CASB
9 3 (0.45%) McAfee ePO
9 3 (0.45%) Microsoft Intune
10 2 (0.30%) Cisco CUCM
10 2 (0.30%) Opscode Chef
10 2 (0.30%) Puppet
Vendors
1 97 (14.39%) Microsoft
2 50 (7.42%) Cisco
3 37 (5.49%) Splunk
4 31 (4.60%) VMware
5 30 (4.45%) McAfee
6 23 (3.41%) CheckPoint
7 20 (2.97%) Barracuda Networks
8 19 (2.82%) CyberArk
8 19 (2.82%) IBM
8 19 (2.82%) Qualys
9 18 (2.67%) HP
9 18 (2.67%) Oracle
10 17 (2.52%) Forcepoint
10 17 (2.52%) Trend Micro
11 15 (2.23%) Citrix
12 14 (2.08%) ForeScout
12 14 (2.08%) SAP
13 12 (1.78%) Juniper
13 12 (1.78%) Tripwire
14 11 (1.63%) ArcSight