Period
to 21 November 2019

The following table provides summary statistics for contract job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 21 November 2019 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISO/IEC 27001
UK
6 months to
21 Nov 2019
Same period 2018 Same period 2017
Rank 313 384 295
Rank change year-on-year +71 -89 +26
Contract jobs citing ISO/IEC 27001 692 684 916
As % of all contract IT jobs advertised in the UK 0.83% 0.66% 0.89%
As % of the Quality Assurance & Compliance category 7.87% 6.05% 6.97%
Number of daily rates quoted 470 479 536
UK median daily rate £500 £513 £475
Median daily rate % change year-on-year -2.44% +7.89% +5.56%
10th Percentile £325 £325 £312
90th Percentile £725 £688 £650
UK excluding London median daily rate £475 £500 £450
% change year-on-year -5.00% +11.11% -
Number of hourly rates quoted 3 1 6
UK median hourly rate £45.00 £72.50 £42.50
Median hourly rate % change year-on-year -37.93% +70.59% -12.28%
10th Percentile £21.92 £71.25 £17.75
90th Percentile £47.50 £73.75 £53.75
UK excluding London median hourly rate £17.16 - £42.50

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 8,797 11,305 13,134
As % of all contract IT jobs advertised in the UK 10.57% 10.86% 12.73%
Number of daily rates quoted 5,496 7,164 8,567
UK median daily rate £450 £450 £438
Median daily rate % change year-on-year - +2.86% +2.94%
10th Percentile £225 £250 £255
90th Percentile £638 £625 £638
UK excluding London median daily rate £424 £405 £400
% change year-on-year +4.69% +1.25% +1.27%
Number of hourly rates quoted 390 387 377
UK median hourly rate £21.00 £21.76 £20.00
Median hourly rate % change year-on-year -3.49% +8.80% -12.42%
10th Percentile £11.24 £11.00 £11.25
90th Percentile £55.00 £48.75 £49.85
UK excluding London median hourly rate £22.00 £20.25 £20.00
% change year-on-year +8.67% +1.23% -20.00%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing ISO/IEC 27001.

Contractor daily rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 21 November 2019.

Contractor daily rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing ISO/IEC 27001.

Contractor hourly rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Hourly Rate Histogram

The hourly rate distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 21 November 2019.

Contractor hourly rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 17 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 21 November 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +64 603 £513 -0.87% 340
UK excluding London +70 425 £475 -5.00% 271
London +52 243 £550 +4.51% 85
South East +14 109 £484 -7.86% 60
North of England +30 93 £475 -5.94% 58
Midlands +64 64 £550 +21.55% 65
South West +19 59 £450 +7.78% 35
Scotland +52 49 £450 +11.80% 9
West Midlands +67 48 £550 +4.76% 54
Yorkshire +38 46 £408 -22.38% 20
North West +16 40 £500 -0.10% 37
East of England +40 31 £400 -5.88% 38
Wales +38 19 £413 -29.49% 5
East Midlands +16 15 £488 +16.42% 11
North East +13 6 £450 -10.89% 1
Northern Ireland +3 2 £140 -67.06% 2
Channel Islands -5 1 £513 -2.38%

For the 6 months to 21 November 2019, IT contractor jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for ISO/IEC 27001.

1 346 (50.00%) Information Security
2 239 (34.54%) CISSP
3 184 (26.59%) NIST
4 175 (25.29%) CISM
5 173 (25.00%) Cybersecurity
6 157 (22.69%) ITIL
7 145 (20.95%) Finance
8 143 (20.66%) AWS
9 142 (20.52%) PCI DSS
10 135 (19.51%) Firewall
11 134 (19.36%) Risk Management
12 114 (16.47%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
13 113 (16.33%) GDPR
14 110 (15.90%) SIEM
15 106 (15.32%) Security Architecture
16 105 (15.17%) Security Cleared
17 101 (14.60%) Security Management
18 100 (14.45%) Azure
19 98 (14.16%) Stakeholder Management
20 97 (14.02%) Microsoft
21 95 (13.73%) Management Information System
22 87 (12.57%) Windows
23 85 (12.28%) Linux
24 83 (11.99%) CISA
24 83 (11.99%) Agile Software Development
25 82 (11.85%) COBIT
26 79 (11.42%) ISMS
27 77 (11.13%) Security Operations
28 75 (10.84%) Vulnerability Management
29 70 (10.12%) DevOps

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 15 (2.17%) SharePoint
2 12 (1.73%) IIS
2 12 (1.73%) MS Exchange
3 10 (1.45%) OpenStack
4 7 (1.01%) Exchange Server 2010
4 7 (1.01%) Skype for Business
5 6 (0.87%) Exchange Server 2013
6 5 (0.72%) Apache
7 2 (0.29%) ColdFusion
7 2 (0.29%) Commerce Server
7 2 (0.29%) nginx
8 1 (0.14%) Apache Spark
8 1 (0.14%) Confluence
8 1 (0.14%) Elasticsearch
8 1 (0.14%) SAS
8 1 (0.14%) SharePoint 2010
Applications
1 27 (3.90%) Microsoft Office
2 7 (1.01%) Microsoft Excel
2 7 (1.01%) MS Visio
3 4 (0.58%) Microsoft Project
4 3 (0.43%) Microsoft PowerPoint
5 2 (0.29%) AutoCAD
6 1 (0.14%) Stata
Business Applications
1 3 (0.43%) Dynamics CRM
2 2 (0.29%) Carpe Diem
2 2 (0.29%) Dynamics GP
2 2 (0.29%) Elite 3E
2 2 (0.29%) SAP Oil and Gas
3 1 (0.14%) Dynamics NAV
Cloud Services
1 143 (20.66%) AWS
2 100 (14.45%) Azure
3 65 (9.39%) SaaS
4 49 (7.08%) Office 365
5 43 (6.21%) GCP
6 32 (4.62%) IaaS
7 25 (3.61%) PaaS
8 14 (2.02%) GitHub
9 11 (1.59%) Serverless
10 9 (1.30%) AWS Lambda
10 9 (1.30%) Cloud Computing
11 7 (1.01%) Amazon Cognito
12 6 (0.87%) AWS CloudFormation
12 6 (0.87%) Dynamics 365
13 5 (0.72%) G Suite
13 5 (0.72%) Mimecast
14 4 (0.58%) Akamai
14 4 (0.58%) Amazon EC2
14 4 (0.58%) Amazon S3
14 4 (0.58%) OpenShift
Communications & Networking
1 135 (19.51%) Firewall
2 70 (10.12%) Network Security
3 32 (4.62%) VPN
4 29 (4.19%) WAN
5 25 (3.61%) DNS
5 25 (3.61%) TCP/IP
6 24 (3.47%) Internet
7 21 (3.03%) Intrusion Detection
8 19 (2.75%) LAN
9 16 (2.31%) Wireless
10 14 (2.02%) SNMP
11 13 (1.88%) SAN
12 12 (1.73%) X.509
13 10 (1.45%) Cisco Firepower
13 10 (1.45%) ICMP
13 10 (1.45%) Telnet
14 9 (1.30%) VLAN
14 9 (1.30%) VoIP
15 8 (1.16%) Cisco ASA
15 8 (1.16%) OSPF
Database & Business Intelligence
1 27 (3.90%) SQL Server
2 11 (1.59%) Relational Database
3 9 (1.30%) MySQL
4 8 (1.16%) Big Data
5 7 (1.01%) Data Warehouse
5 7 (1.01%) SQL Server Reporting Services
6 6 (0.87%) Hadoop
6 6 (0.87%) RDBMS
7 5 (0.72%) SQL Server 2008
7 5 (0.72%) SQL Server 2012
8 4 (0.58%) BigQuery
8 4 (0.58%) Bigtable
8 4 (0.58%) Oracle Reports
8 4 (0.58%) QlikView
8 4 (0.58%) SQL Server Analysis Services
9 3 (0.43%) Azure SQL Data Warehouse
9 3 (0.43%) Azure SQL Database
9 3 (0.43%) MariaDB
9 3 (0.43%) MongoDB
9 3 (0.43%) Oracle Database
Development Applications
1 17 (2.46%) Jenkins
2 15 (2.17%) Burp Suite
3 13 (1.88%) JIRA
4 7 (1.01%) Visual Studio Team System
5 5 (0.72%) SonarQube
6 4 (0.58%) Balsamiq
6 4 (0.58%) Bitbucket
6 4 (0.58%) git-flow
7 3 (0.43%) WinDbg
8 2 (0.29%) GitLab
8 2 (0.29%) Metasploit
9 1 (0.14%) Snyk
General
1 145 (20.95%) Finance
2 61 (8.82%) Legal
3 44 (6.36%) Public Sector
4 39 (5.64%) Telecoms
5 32 (4.62%) Banking
5 32 (4.62%) Retail
6 11 (1.59%) Police
7 7 (1.01%) Law
8 6 (0.87%) Manufacturing
9 5 (0.72%) Automotive
9 5 (0.72%) Marketing
10 4 (0.58%) Electronics
11 3 (0.43%) French Language
11 3 (0.43%) Games
11 3 (0.43%) Investment Banking
11 3 (0.43%) Retail Banking
12 2 (0.29%) Czech Language
12 2 (0.29%) Local Government
12 2 (0.29%) Military
12 2 (0.29%) Pharmaceutical
Job Titles
1 137 (19.80%) Architect
2 114 (16.47%) Analyst
3 100 (14.45%) Security Architect
4 90 (13.01%) Consultant
5 76 (10.98%) Security Analyst
6 75 (10.84%) Security Consultant
7 61 (8.82%) Security Manager
8 57 (8.24%) Security Engineer
9 49 (7.08%) Information Manager
10 39 (5.64%) Information Security Consultant
11 38 (5.49%) Information Security Manager
12 36 (5.20%) Cloud Architect
13 32 (4.62%) Cloud Engineer
14 26 (3.76%) Head of Security
15 22 (3.18%) Business Analyst
15 22 (3.18%) Information Analyst
15 22 (3.18%) Information Security Analyst
16 21 (3.03%) Security Officer
17 20 (2.89%) Project Manager
18 17 (2.46%) Information Security Officer
Libraries, Frameworks & Software Standards
1 41 (5.92%) Web Services
2 29 (4.19%) JSON
3 16 (2.31%) Node.js
3 16 (2.31%) SAML
4 12 (1.73%) XML
5 10 (1.45%) OpenID
6 8 (1.16%) REST
7 7 (1.01%) OAuth
8 6 (0.87%) J2EE
8 6 (0.87%) SOAP
9 5 (0.72%) Elastic Stack
9 5 (0.72%) OAuth2
10 4 (0.58%) Spring
11 3 (0.43%) Kafka
12 2 (0.29%) .NET
12 2 (0.29%) .NET Framework
12 2 (0.29%) EJB
12 2 (0.29%) LDAP
12 2 (0.29%) RESTful
12 2 (0.29%) YAML
Miscellaneous
1 95 (13.73%) Management Information System
2 49 (7.08%) Data Centre
3 44 (6.36%) Analytical Skills
4 29 (4.19%) Cyberthreat
5 21 (3.03%) CESG
6 18 (2.60%) PKI
7 15 (2.17%) Enterprise Cloud
8 14 (2.02%) User Experience
9 13 (1.88%) Public Cloud
10 12 (1.73%) Data Protection Act
10 12 (1.73%) Greenfield Project
11 11 (1.59%) Clustering
11 11 (1.59%) Virtual Team
12 10 (1.45%) CCTV
12 10 (1.45%) PMI
12 10 (1.45%) Security Operations Centre
13 9 (1.30%) Hybrid Cloud
13 9 (1.30%) SCADA
13 9 (1.30%) Self-Motivation
14 8 (1.16%) Distributed Denial-of-Service
Operating Systems
1 87 (12.57%) Windows
2 85 (12.28%) Linux
3 40 (5.78%) Red Hat Enterprise Linux
4 37 (5.35%) Windows Server
5 19 (2.75%) Unix
6 15 (2.17%) Debian
7 14 (2.02%) Ubuntu
8 13 (1.88%) openSUSE
8 13 (1.88%) Windows Server 2012
9 10 (1.45%) Mac OS X
10 9 (1.30%) Windows 10
11 7 (1.01%) Windows Server 2008
12 5 (0.72%) CentOS
13 3 (0.43%) VMS
14 2 (0.29%) Android
14 2 (0.29%) Solaris
14 2 (0.29%) Windows 7
15 1 (0.14%) Mac OS
Processes & Methodologies
1 346 (50.00%) Information Security
2 173 (25.00%) Cybersecurity
3 157 (22.69%) ITIL
4 134 (19.36%) Risk Management
5 110 (15.90%) SIEM
6 106 (15.32%) Security Architecture
7 101 (14.60%) Security Management
8 98 (14.16%) Stakeholder Management
9 83 (11.99%) Agile Software Development
10 79 (11.42%) ISMS
11 77 (11.13%) Security Operations
12 75 (10.84%) Vulnerability Management
13 70 (10.12%) DevOps
14 64 (9.25%) Data Protection
15 61 (8.82%) Information Security Management
16 58 (8.38%) Project Management
17 51 (7.37%) Identity Access Management
17 51 (7.37%) OWASP
18 49 (7.08%) Penetration Testing
18 49 (7.08%) Risk Assessment
Programming Languages
1 49 (7.08%) Python
2 33 (4.77%) Java
3 32 (4.62%) SQL
4 31 (4.48%) Ruby
5 30 (4.34%) Bash Shell
6 24 (3.47%) PowerShell
7 22 (3.18%) C
8 20 (2.89%) Perl
9 19 (2.75%) JavaScript
10 10 (1.45%) VBA
11 7 (1.01%) C#
12 6 (0.87%) PHP
12 6 (0.87%) VBScript
13 3 (0.43%) C++
13 3 (0.43%) Go
14 2 (0.29%) Shell Script
15 1 (0.14%) R
15 1 (0.14%) VB.NET
Qualifications
1 239 (34.54%) CISSP
2 175 (25.29%) CISM
3 105 (15.17%) Security Cleared
4 83 (11.99%) CISA
5 58 (8.38%) Cisco Certification
6 57 (8.24%) SC Cleared
7 54 (7.80%) Degree
8 42 (6.07%) CRISC
9 35 (5.06%) SANS
10 34 (4.91%) CESG Certified Professional
11 30 (4.34%) (ISC)2 CCSP
11 30 (4.34%) GIAC
12 28 (4.05%) ISO 27001 Lead Auditor
13 26 (3.76%) CISMP
13 26 (3.76%) ISO 27001 Lead Implementer
14 21 (3.03%) CCSP
15 19 (2.75%) PMI Certification
16 18 (2.60%) DV Cleared
17 14 (2.02%) ITIL Certification
17 14 (2.02%) TOGAF Certification
Quality Assurance & Compliance
1 184 (26.59%) NIST
2 142 (20.52%) PCI DSS
3 114 (16.47%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 113 (16.33%) GDPR
5 82 (11.85%) COBIT
6 46 (6.65%) NCSC
6 46 (6.65%) Sarbanes-Oxley
7 38 (5.49%) Cyber Essentials
8 22 (3.18%) ISO 9001
8 22 (3.18%) ISO/IEC 20000
9 18 (2.60%) ISO 22301
9 18 (2.60%) SLA
10 16 (2.31%) HMG Security Policy Framework
11 15 (2.17%) NIST 800
12 13 (1.88%) ISO/IEC 27005
13 11 (1.59%) Cyber Essentials PLUS
13 11 (1.59%) HIPAA
14 8 (1.16%) COSO
14 8 (1.16%) JSP 440
14 8 (1.16%) RMADS
System Software
1 67 (9.68%) Active Directory
2 32 (4.62%) VMware Infrastructure
3 28 (4.05%) Docker
4 12 (1.73%) Hyper-V
5 8 (1.16%) VMware NSX
5 8 (1.16%) vSphere
6 7 (1.01%) Virtual Machines
7 6 (0.87%) XenApp
8 4 (0.58%) Firmware
8 4 (0.58%) Snort
8 4 (0.58%) XenDesktop
9 3 (0.43%) ISA Server
10 2 (0.29%) OpenAM
10 2 (0.29%) OpenDJ
10 2 (0.29%) Virtual Desktop
11 1 (0.14%) Citrix Hypervisor
11 1 (0.14%) Microsoft App-V
11 1 (0.14%) VMware ESXi
Systems Management
1 40 (5.78%) Nessus
2 21 (3.03%) Puppet
3 17 (2.46%) Opscode Chef
4 15 (2.17%) Suricata
5 13 (1.88%) Ansible
5 13 (1.88%) Kubernetes
5 13 (1.88%) Single Sign-On
6 11 (1.59%) CASB
7 10 (1.45%) HP Fortify
7 10 (1.45%) Terraform
7 10 (1.45%) WMI
8 9 (1.30%) SELinux
9 8 (1.16%) vCenter Server
9 8 (1.16%) vRealize
10 7 (1.01%) QRadar
10 7 (1.01%) SCCM
11 6 (0.87%) Network Intrusion Detection System
12 5 (0.72%) FortiGate
12 5 (0.72%) McAfee ePO
13 4 (0.58%) Microsoft Intune
Vendors
1 97 (14.02%) Microsoft
2 53 (7.66%) Splunk
3 49 (7.08%) Cisco
3 49 (7.08%) Qualys
4 45 (6.50%) VMware
5 25 (3.61%) Google
6 18 (2.60%) McAfee
7 17 (2.46%) Citrix
7 17 (2.46%) Symantec
8 16 (2.31%) Red Hat
9 15 (2.17%) Adobe
9 15 (2.17%) Oracle
10 14 (2.02%) Salesforce.com
11 11 (1.59%) Fortinet
12 10 (1.45%) Palo Alto
13 9 (1.30%) HP
13 9 (1.30%) Ping Identity
14 8 (1.16%) Alibaba
14 8 (1.16%) Imperva
14 8 (1.16%) SAP