Period
to 25 January 2022

The following table provides summary statistics for contract job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 25 January 2022 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISO/IEC 27001
UK
6 months to
25 Jan 2022
Same period 2021 Same period 2020
Rank 298 275 304
Rank change year-on-year -23 +29 +83
Contract jobs citing ISO/IEC 27001 781 389 612
As % of all contract jobs advertised in the UK 0.89% 0.93% 0.85%
As % of the Quality Assurance & Compliance category 6.80% 7.69% 7.67%
Number of daily rates quoted 579 250 427
10th Percentile £392 £325 £331
25th Percentile £456 £413 £405
Median daily rate (50th Percentile) £550 £500 £500
Median % change year-on-year +10.00% - -
75th Percentile £630 £600 £600
90th Percentile £726 £688 £725
UK excluding London median daily rate £538 £500 £475
% change year-on-year +7.50% +5.26% -5.00%
Number of hourly rates quoted 13 2 1
10th Percentile - £26.56 -
25th Percentile £9.75 £26.62 £16.77
Median hourly rate £43.95 £26.74 £17.16
Median % change year-on-year +64.39% +55.80% -76.33%
75th Percentile £55.65 £26.85 £17.55
90th Percentile £57.91 £26.92 -
UK excluding London median hourly rate £42.73 £26.74 £17.16
% change year-on-year +59.81% +55.80% -

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 11,483 5,060 7,980
As % of all contract IT jobs advertised in the UK 13.08% 12.10% 11.14%
Number of daily rates quoted 7,798 3,339 5,074
10th Percentile £275 £263 £240
25th Percentile £400 £363 £350
Median daily rate (50th Percentile) £500 £475 £450
Median % change year-on-year +5.26% +5.56% -
75th Percentile £600 £575 £550
90th Percentile £700 £650 £630
UK excluding London median daily rate £450 £450 £420
% change year-on-year - +7.14% -1.18%
Number of hourly rates quoted 277 221 303
10th Percentile £11.12 £10.75 £12.50
25th Percentile £14.13 £13.95 £16.25
Median hourly rate £23.00 £21.05 £20.75
Median % change year-on-year +9.26% +1.45% +2.49%
75th Percentile £49.25 £42.50 £47.50
90th Percentile £58.75 £52.50 £53.00
UK excluding London median hourly rate £18.50 £21.05 £21.42
% change year-on-year -12.11% -1.70% +5.78%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a proportion of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing ISO/IEC 27001.

Daily rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Daily Rate Histogram

Daily rate distribution for jobs citing ISO/IEC 27001 over the 6 months to 25 January 2022.

Daily rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing ISO/IEC 27001.

Hourly rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Hourly Rate Histogram

Hourly rate distribution of jobs citing ISO/IEC 27001 over the 6 months to 25 January 2022.

Hourly rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 16 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 25 January 2022. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Jobs
England -49 601 £550 +10.00% 342
UK excluding London -46 320 £538 +7.50% 252
London -52 307 £550 - 120
Work from Home -36 199 £550 +8.91% 48
South East -67 92 £525 +5.00% 52
Scotland -3 63 £550 -8.33% 17
South West -41 61 £575 +21.05% 20
North of England -48 54 £487 -0.21% 81
North West -44 36 £540 +7.46% 45
Midlands -56 21 £588 +24.01% 41
West Midlands -44 19 £613 +29.63% 23
East of England -26 18 £500 -18.37% 28
Yorkshire -40 14 £323 -26.29% 31
Wales -31 7 £520 -9.57% 11
North East - 4 £488 - 5
Northern Ireland - 4 - - 2

For the 6 months to 25 January 2022, IT contractor jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for ISO/IEC 27001.

1 327 (41.87%) Information Security
2 290 (37.13%) Cybersecurity
3 238 (30.47%) CISSP
4 225 (28.81%) NIST
5 211 (27.02%) Azure
6 201 (25.74%) Risk Management
7 174 (22.28%) Finance
8 171 (21.90%) Social Skills
9 163 (20.87%) CISM
10 144 (18.44%) Firewall
11 141 (18.05%) GDPR
12 130 (16.65%) AWS
13 128 (16.39%) Security Cleared
14 126 (16.13%) Agile Software Development
15 123 (15.75%) SIEM
16 122 (15.62%) Security Management
17 116 (14.85%) PCI DSS
18 111 (14.21%) SC Cleared
19 110 (14.08%) Microsoft
19 110 (14.08%) ITIL
20 108 (13.83%) Security Architecture
21 107 (13.70%) Windows
22 100 (12.80%) Management Information System
23 96 (12.29%) Active Directory
24 94 (12.04%) ISMS
25 86 (11.01%) Information Security Management
25 86 (11.01%) Stakeholder Management
26 84 (10.76%) Public Sector
27 82 (10.50%) Network Security
28 76 (9.73%) Microsoft 365

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 10 (1.28%) SharePoint
2 4 (0.51%) Apache Airflow
3 2 (0.26%) Apache
3 2 (0.26%) Confluence
3 2 (0.26%) Exchange Server 2013
3 2 (0.26%) MS Exchange
4 1 (0.13%) Exchange Server 2010
4 1 (0.13%) IBM HTTP Server
4 1 (0.13%) IIS
4 1 (0.13%) JBoss
4 1 (0.13%) SharePoint 2010
4 1 (0.13%) SharePoint Server
4 1 (0.13%) Skype for Business
4 1 (0.13%) WebLogic
4 1 (0.13%) WebSphere
Applications
1 23 (2.94%) Microsoft Excel
2 12 (1.54%) Microsoft Office
3 11 (1.41%) Microsoft PowerPoint
4 4 (0.51%) MS Visio
5 2 (0.26%) Microsoft Project
Business Applications
1 5 (0.64%) Sparx Enterprise Architect
2 3 (0.38%) Sentinel
2 3 (0.38%) SmartPlant
3 2 (0.26%) Maximo
Cloud Services
1 211 (27.02%) Azure
2 130 (16.65%) AWS
3 76 (9.73%) Microsoft 365
4 61 (7.81%) GCP
5 60 (7.68%) SaaS
6 31 (3.97%) Azure Active Directory
7 26 (3.33%) IaaS
8 17 (2.18%) PaaS
9 16 (2.05%) Azure Sentinel
10 9 (1.15%) Amazon EC2
10 9 (1.15%) Amazon S3
10 9 (1.15%) Serverless
11 8 (1.02%) Amazon CloudWatch
12 7 (0.90%) Amazon Kinesis
12 7 (0.90%) AWS CloudFormation
12 7 (0.90%) AWS Lambda
12 7 (0.90%) Cloud Computing
12 7 (0.90%) OpenShift
13 6 (0.77%) Datadog
14 5 (0.64%) Virtual Private Cloud
Communications & Networking
1 144 (18.44%) Firewall
2 82 (10.50%) Network Security
3 30 (3.84%) DNS
4 26 (3.33%) DHCP
5 23 (2.94%) X.509
6 21 (2.69%) VPN
7 20 (2.56%) TCP/IP
8 15 (1.92%) Radio Access Network
9 13 (1.66%) Internet
9 13 (1.66%) WAN
10 11 (1.41%) VLAN
11 9 (1.15%) HTTP
11 9 (1.15%) LAN
12 8 (1.02%) Intrusion Detection
12 8 (1.02%) SSL
13 6 (0.77%) 5G
13 6 (0.77%) SAN
13 6 (0.77%) Wireless
14 5 (0.64%) IPsec
14 5 (0.64%) Wi-Fi
Database & Business Intelligence
1 28 (3.59%) SQL Server
2 11 (1.41%) RDBMS
2 11 (1.41%) Relational Database
3 6 (0.77%) Data Lake
3 6 (0.77%) Data Warehouse
3 6 (0.77%) Oracle Database
4 5 (0.64%) Amazon Athena
4 5 (0.64%) Amazon RDS
4 5 (0.64%) MySQL
4 5 (0.64%) Tableau
5 4 (0.51%) Amazon Redshift
5 4 (0.51%) Big Data
5 4 (0.51%) BigQuery
5 4 (0.51%) Hadoop
5 4 (0.51%) Looker
5 4 (0.51%) Oracle Reports
5 4 (0.51%) QlikView
5 4 (0.51%) SQL Server Analysis Services
5 4 (0.51%) SQL Server Integration Services
5 4 (0.51%) SQL Server Reporting Services
Development Applications
1 9 (1.15%) JIRA
2 7 (0.90%) Jenkins
3 5 (0.64%) SoapUI
4 4 (0.51%) Git (software)
5 3 (0.38%) Visual Studio
6 2 (0.26%) CircleCI
6 2 (0.26%) GitLab
6 2 (0.26%) Octopus Deploy
6 2 (0.26%) Oracle APEX
6 2 (0.26%) Snyk
7 1 (0.13%) Atlassian Bamboo
7 1 (0.13%) JMeter
7 1 (0.13%) Mercurial
7 1 (0.13%) Selenium
7 1 (0.13%) Serenity BDD
7 1 (0.13%) SonarQube
7 1 (0.13%) Sonatype Nexus
7 1 (0.13%) Subversion
7 1 (0.13%) Team Foundation Server
7 1 (0.13%) TeamCity
General
1 174 (22.28%) Finance
2 171 (21.90%) Social Skills
3 84 (10.76%) Public Sector
4 66 (8.45%) Analytical Skills
5 43 (5.51%) Telecoms
6 40 (5.12%) Banking
7 34 (4.35%) Legal
8 24 (3.07%) Presentation Skills
9 22 (2.82%) Law
10 21 (2.69%) Manufacturing
10 21 (2.69%) Marketing
11 19 (2.43%) Influencing Skills
12 18 (2.30%) Electronics
13 14 (1.79%) Organisational Skills
14 12 (1.54%) Documentation Skills
15 11 (1.41%) Financial Institution
16 9 (1.15%) Back Office
17 8 (1.02%) Local Government
18 7 (0.90%) Games
19 6 (0.77%) Retail
Job Titles
1 137 (17.54%) Architect
2 131 (16.77%) Consultant
3 106 (13.57%) Security Consultant
4 105 (13.44%) Analyst
5 103 (13.19%) Security Engineer
6 84 (10.76%) Security Architect
7 66 (8.45%) Security Analyst
8 59 (7.55%) Security Manager
9 39 (4.99%) Project Manager
10 38 (4.87%) Cloud Engineer
11 28 (3.59%) Information Security Consultant
11 28 (3.59%) Security Project Manager
12 27 (3.46%) Business Analyst
13 23 (2.94%) Cybersecurity Consultant
13 23 (2.94%) Design Engineer
14 22 (2.82%) IT Manager
14 22 (2.82%) Security Specialist
15 21 (2.69%) Technical Consultant
16 20 (2.56%) Security Technical Consultant
16 20 (2.56%) Technical Security Consultant
Libraries, Frameworks & Software Standards
1 27 (3.46%) SAML
2 22 (2.82%) Middleware
3 14 (1.79%) Web Services
4 7 (0.90%) REST
5 6 (0.77%) ARM Templates
6 5 (0.64%) .NET
6 5 (0.64%) Elastic Stack
6 5 (0.64%) OAuth
6 5 (0.64%) OpenID
6 5 (0.64%) SOAP
7 3 (0.38%) ASP.NET
7 3 (0.38%) JSON
7 3 (0.38%) SailPoint
8 2 (0.26%) Kafka
8 2 (0.26%) Node.js
8 2 (0.26%) Spring
9 1 (0.13%) .NET Framework
9 1 (0.13%) HTML5
9 1 (0.13%) RESTful
9 1 (0.13%) STL
Miscellaneous
1 100 (12.80%) Management Information System
2 27 (3.46%) Public Cloud
3 19 (2.43%) Data Centre
4 16 (2.05%) PKI
4 16 (2.05%) Security Operations Centre
5 14 (1.79%) Cloud Native
6 13 (1.66%) Hybrid Cloud
7 12 (1.54%) CESG
7 12 (1.54%) Virtual Team
8 11 (1.41%) Self-Motivation
9 10 (1.28%) Data Protection Act
10 9 (1.15%) Cyberthreat
11 7 (0.90%) Mobile App
11 7 (0.90%) Private Cloud
11 7 (0.90%) User Experience
12 6 (0.77%) Enterprise Software
13 5 (0.64%) Cyber Defence
13 5 (0.64%) Legacy Systems
14 4 (0.51%) Digital Media
14 4 (0.51%) SWIFT
Operating Systems
1 107 (13.70%) Windows
2 45 (5.76%) Linux
3 41 (5.25%) Windows Server
4 18 (2.30%) Windows 10
5 11 (1.41%) Windows Server 2003
6 10 (1.28%) Unix
6 10 (1.28%) VMS
7 9 (1.15%) Android
8 7 (0.90%) Mac OS
9 5 (0.64%) Red Hat Enterprise Linux
9 5 (0.64%) Solaris
9 5 (0.64%) Windows Server 2019
10 4 (0.51%) Windows 7
10 4 (0.51%) Windows Server 2008
11 3 (0.38%) HPUX
11 3 (0.38%) Windows Server 2012
11 3 (0.38%) Windows Server 2016
12 2 (0.26%) CoreOS
13 1 (0.13%) Apple iOS
Processes & Methodologies
1 327 (41.87%) Information Security
2 290 (37.13%) Cybersecurity
3 201 (25.74%) Risk Management
4 126 (16.13%) Agile Software Development
5 123 (15.75%) SIEM
6 122 (15.62%) Security Management
7 110 (14.08%) ITIL
8 108 (13.83%) Security Architecture
9 94 (12.04%) ISMS
10 86 (11.01%) Information Security Management
10 86 (11.01%) Stakeholder Management
11 72 (9.22%) Vulnerability Management
12 70 (8.96%) Application Security
13 67 (8.58%) Incident Management
14 66 (8.45%) Data Protection
15 64 (8.19%) Service Management
16 63 (8.07%) Risk Assessment
16 63 (8.07%) Threat Modelling
17 58 (7.43%) Security Operations
18 55 (7.04%) Problem-Solving
Programming Languages
1 24 (3.07%) PowerShell
2 18 (2.30%) Python
3 16 (2.05%) SQL
4 14 (1.79%) C
4 14 (1.79%) Java
5 10 (1.28%) Bash
6 6 (0.77%) C#
7 4 (0.51%) Go
8 2 (0.26%) Assembly Language
8 2 (0.26%) Perl
8 2 (0.26%) VB.NET
8 2 (0.26%) VBA
9 1 (0.13%) C++
9 1 (0.13%) JavaScript
9 1 (0.13%) Ruby
9 1 (0.13%) Scala
9 1 (0.13%) VB
Qualifications
1 238 (30.47%) CISSP
2 163 (20.87%) CISM
3 128 (16.39%) Security Cleared
4 111 (14.21%) SC Cleared
5 71 (9.09%) CISA
6 70 (8.96%) Degree
7 50 (6.40%) CRISC
8 48 (6.15%) Cisco Certification
9 41 (5.25%) CESG Certified Professional
10 33 (4.23%) ISO 27001 Lead Auditor
11 27 (3.46%) Microsoft Certification
12 26 (3.33%) SANS
13 25 (3.20%) (ISC)2 CCSP
13 25 (3.20%) GIAC
14 24 (3.07%) DV Cleared
15 19 (2.43%) CEH
15 19 (2.43%) ITIL Certification
16 17 (2.18%) CISMP
17 16 (2.05%) BPSS Clearance
17 16 (2.05%) CLAS
Quality Assurance & Compliance
1 225 (28.81%) NIST
2 141 (18.05%) GDPR
3 116 (14.85%) PCI DSS
4 67 (8.58%) NCSC
5 61 (7.81%) Cyber Essentials
6 54 (6.91%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 51 (6.53%) COBIT
7 51 (6.53%) GRC
8 31 (3.97%) NIST 800
9 30 (3.84%) Sarbanes-Oxley
10 29 (3.71%) HMG Security Policy Framework
10 29 (3.71%) SOC 2
11 28 (3.59%) JSP 440
12 25 (3.20%) ISO 9001
13 24 (3.07%) SLA
14 21 (2.69%) Cyber Essentials PLUS
15 20 (2.56%) RMADS
16 16 (2.05%) QA
17 15 (1.92%) ISO 22301
18 10 (1.28%) HIPAA
System Software
1 96 (12.29%) Active Directory
2 32 (4.10%) VMware Infrastructure
3 25 (3.20%) Hyper-V
4 13 (1.66%) Docker
5 8 (1.02%) Firmware
5 8 (1.02%) Virtual Machines
6 6 (0.77%) Virtual Desktop
7 5 (0.64%) XenDesktop
8 2 (0.26%) Squid
8 2 (0.26%) Virtual Servers
8 2 (0.26%) XenApp
9 1 (0.13%) Microsoft Virtual Server
9 1 (0.13%) VMware ESXi
Systems Management
1 30 (3.84%) Terraform
2 26 (3.33%) Active Directory Federation Services
3 22 (2.82%) Microsoft Intune
4 21 (2.69%) Kubernetes
5 17 (2.18%) QRadar
5 17 (2.18%) Single Sign-On
6 8 (1.02%) Ansible
7 7 (0.90%) CASB
7 7 (0.90%) Nexpose
8 6 (0.77%) HP Fortify
9 5 (0.64%) Host Intrusion Detection System
9 5 (0.64%) HP ALM
9 5 (0.64%) Network Intrusion Detection System
9 5 (0.64%) Opscode Chef
9 5 (0.64%) Opsgenie
9 5 (0.64%) Puppet
9 5 (0.64%) SCCM
9 5 (0.64%) WebInspect
10 4 (0.51%) FortiGate
10 4 (0.51%) WSUS
Vendors
1 110 (14.08%) Microsoft
2 49 (6.27%) VMware
3 31 (3.97%) Cisco
4 27 (3.46%) Google
5 24 (3.07%) Splunk
6 18 (2.30%) Oracle
7 17 (2.18%) SAP
8 16 (2.05%) CheckPoint
9 15 (1.92%) Qualys
10 14 (1.79%) CyberArk
10 14 (1.79%) IBM
11 11 (1.41%) McAfee
12 10 (1.28%) Citrix
12 10 (1.28%) HP
13 9 (1.15%) LogRhythm
13 9 (1.15%) Tripwire
14 8 (1.02%) Juniper
14 8 (1.02%) ServiceNow
15 6 (0.77%) Meraki
15 6 (0.77%) Palo Alto