Period
to 18 January 2021

The following table provides summary statistics for contract job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 18 January 2021 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISO/IEC 27001
UK
6 months to
18 Jan 2021
Same period 2020 Same period 2019
Rank 273 281 370
Rank change year-on-year +8 +89 -92
Contract jobs citing ISO/IEC 27001 383 642 679
As % of all contract jobs advertised in the UK 0.93% 0.89% 0.68%
As % of the Quality Assurance & Compliance category 8.72% 8.69% 6.31%
Number of daily rates quoted 289 460 461
Median daily rate £500 £500 £500
10th Percentile £325 £339 £338
90th Percentile £688 £725 £713
UK excluding London median daily rate £500 £475 £500
% change year-on-year +5.26% -5.00% +14.29%
Number of hourly rates quoted 3 1 1
Median hourly rate £26.96 £17.16 £72.50
Median hourly rate % change year-on-year +57.11% -76.33% +45.00%
UK excluding London median hourly rate £26.96 £17.16 -
% change year-on-year +57.11% - -

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 4,394 7,389 10,761
As % of all contract IT jobs advertised in the UK 10.72% 10.22% 10.82%
Number of daily rates quoted 2,832 4,743 6,877
Median daily rate £475 £450 £450
Median daily rate % change year-on-year +5.56% - +2.86%
10th Percentile £263 £225 £256
90th Percentile £650 £638 £638
UK excluding London median daily rate £440 £420 £425
% change year-on-year +4.76% -1.18% +6.25%
Number of hourly rates quoted 220 309 357
Median hourly rate £21.05 £20.75 £20.00
Median hourly rate % change year-on-year +1.45% +3.75% -
10th Percentile £10.75 £11.90 £11.00
90th Percentile £52.50 £53.75 £47.50
Median hourly rate £21.05 £22.10 £20.00
% change year-on-year -4.76% +10.51% -4.76%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a proportion of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing ISO/IEC 27001.

Daily rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Daily Rate Histogram

Daily rate distribution for jobs citing ISO/IEC 27001 over the 6 months to 18 January 2021.

Daily rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing ISO/IEC 27001.

Hourly rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 18 January 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +49 334 £500 - 200
UK excluding London +58 222 £500 +5.26% 158
London +58 126 £525 -4.55% 57
South East +112 88 £500 +4.17% 37
Work from Home -136 72 £503 -8.64% 26
South West +93 44 £475 - 16
North of England +60 41 £488 +4.00% 51
North West +63 29 £500 - 33
Scotland +10 19 £600 +21.21% 5
Midlands +8 14 £468 -6.50% 29
Yorkshire +23 12 £425 -5.56% 13
Wales +27 10 £588 +6.82% 7
West Midlands +12 9 £473 -14.09% 19
East of England +42 6 £613 +61.72% 9
East Midlands +27 5 £425 -5.56% 9

For the 6 months to 18 January 2021, IT contractor jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for ISO/IEC 27001.

1 224 (58.49%) Information Security
2 212 (55.35%) Cybersecurity
3 157 (40.99%) CISSP
4 136 (35.51%) NIST
5 120 (31.33%) Risk Management
6 117 (30.55%) Security Cleared
7 116 (30.29%) CISM
8 83 (21.67%) PCI DSS
9 82 (21.41%) SC Cleared
10 77 (20.10%) CESG Certified Professional
11 73 (19.06%) Security Architecture
12 72 (18.80%) Management Information System
13 70 (18.28%) NCSC
14 65 (16.97%) Security Management
15 63 (16.45%) Azure
16 57 (14.88%) SIEM
17 56 (14.62%) Microsoft
18 55 (14.36%) Risk Assessment
18 55 (14.36%) Information Assurance
19 52 (13.58%) AWS
20 50 (13.05%) HMG Security Policy Framework
21 49 (12.79%) GDPR
22 48 (12.53%) Public Sector
23 47 (12.27%) Agile Software Development
24 46 (12.01%) Data Protection
24 46 (12.01%) Degree
25 45 (11.75%) Cyber Essentials
26 44 (11.49%) Finance
26 44 (11.49%) Information Security Management
27 43 (11.23%) ITIL

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 18 (4.70%) IIS
2 11 (2.87%) Confluence
2 11 (2.87%) SharePoint
3 4 (1.04%) Blackberry Enterprise Server
3 4 (1.04%) MS Exchange
4 1 (0.26%) Apache
4 1 (0.26%) Apache Solr
4 1 (0.26%) nginx
4 1 (0.26%) Oracle SOA Suite
4 1 (0.26%) Tomcat
Applications
1 8 (2.09%) Microsoft Office
2 4 (1.04%) MS Visio
3 3 (0.78%) Microsoft Excel
3 3 (0.78%) Microsoft PowerPoint
4 1 (0.26%) Microsoft Project
Business Applications
1 2 (0.52%) SAP Oil and Gas
2 1 (0.26%) Oracle Payroll
2 1 (0.26%) ReMetrica
2 1 (0.26%) Towers Watson Igloo
Cloud Services
1 63 (16.45%) Azure
2 52 (13.58%) AWS
3 33 (8.62%) SaaS
4 18 (4.70%) Office 365
5 17 (4.44%) PaaS
6 16 (4.18%) Cloud Computing
7 15 (3.92%) IaaS
8 14 (3.66%) GCP
9 8 (2.09%) Amazon EC2
9 8 (2.09%) Amazon S3
10 7 (1.83%) Azure Active Directory
10 7 (1.83%) Serverless
11 5 (1.31%) Amazon EKS
12 4 (1.04%) Azure Functions
12 4 (1.04%) OneDrive
13 3 (0.78%) AWS CloudFormation
14 2 (0.52%) GitHub
14 2 (0.52%) IBM Cloud
14 2 (0.52%) Power Platform
15 1 (0.26%) PowerApps
Communications & Networking
1 39 (10.18%) Firewall
2 27 (7.05%) Network Security
3 16 (4.18%) Intrusion Detection
4 9 (2.35%) WAN
5 7 (1.83%) LAN
5 7 (1.83%) SSL
6 6 (1.57%) X.509
7 5 (1.31%) HTTP
7 5 (1.31%) Internet
8 4 (1.04%) TCP/IP
8 4 (1.04%) VPN
9 3 (0.78%) DNS
10 2 (0.52%) Intranet
11 1 (0.26%) HTTPS
11 1 (0.26%) IPsec
11 1 (0.26%) IPv4
11 1 (0.26%) IPv6
11 1 (0.26%) MPLS
11 1 (0.26%) SMTP
11 1 (0.26%) Wi-Fi
Database & Business Intelligence
1 11 (2.87%) SQL Server
2 4 (1.04%) SQL Server 2008
3 3 (0.78%) Azure SQL Database
4 1 (0.26%) Power BI
4 1 (0.26%) SQL Server 2016
4 1 (0.26%) SQL Server Integration Services
4 1 (0.26%) SQL Server Reporting Services
Development Applications
1 16 (4.18%) JIRA
2 12 (3.13%) Selenium
3 7 (1.83%) Jenkins
4 5 (1.31%) GitLab
5 4 (1.04%) SonarQube
6 3 (0.78%) Hudson
6 3 (0.78%) Visual Studio
7 2 (0.52%) Artifactory
7 2 (0.52%) Atlassian Bamboo
7 2 (0.52%) Git (software)
8 1 (0.26%) Appium
8 1 (0.26%) JMeter
8 1 (0.26%) JUnit
8 1 (0.26%) LoadRunner
8 1 (0.26%) Oracle Forms
8 1 (0.26%) Snyk
8 1 (0.26%) TestNG
8 1 (0.26%) WebDriver
General
1 48 (12.53%) Public Sector
2 44 (11.49%) Finance
3 34 (8.88%) Legal
4 15 (3.92%) Banking
5 13 (3.39%) Telecoms
6 11 (2.87%) Manufacturing
7 10 (2.61%) Retail
8 7 (1.83%) Electronics
8 7 (1.83%) Marketing
9 6 (1.57%) Local Government
10 2 (0.52%) Financial Institution
10 2 (0.52%) International Banking
10 2 (0.52%) Law
11 1 (0.26%) Advertising
11 1 (0.26%) Investment Banking
11 1 (0.26%) Pharmaceutical
11 1 (0.26%) Police
11 1 (0.26%) Retail Banking
Job Titles
1 109 (28.46%) Consultant
2 90 (23.50%) Security Consultant
3 51 (13.32%) Architect
4 48 (12.53%) Security Manager
5 45 (11.75%) Security Architect
6 40 (10.44%) Analyst
7 37 (9.66%) Security Engineer
8 34 (8.88%) Information Security Consultant
9 23 (6.01%) Security Analyst
10 21 (5.48%) Cybersecurity Consultant
11 19 (4.96%) Cybersecurity Manager
12 14 (3.66%) IT Manager
12 14 (3.66%) Risk Manager
13 13 (3.39%) Administrator
13 13 (3.39%) Security Specialist
14 12 (3.13%) Cybersecurity Specialist
14 12 (3.13%) Information Assurance Consultant
14 12 (3.13%) Senior Consultant
15 11 (2.87%) Cybersecurity Analyst
15 11 (2.87%) Project Manager
Libraries, Frameworks & Software Standards
1 17 (4.44%) .NET
2 14 (3.66%) SAML
3 11 (2.87%) ModSecurity
4 5 (1.31%) Node.js
4 5 (1.31%) REST
5 4 (1.04%) SOAP
6 3 (0.78%) ASP.NET
6 3 (0.78%) CSS
6 3 (0.78%) EDI
6 3 (0.78%) HTML
6 3 (0.78%) HTML5
6 3 (0.78%) jQuery
6 3 (0.78%) React
6 3 (0.78%) Web Services
6 3 (0.78%) XML
7 2 (0.52%) AngularJS
7 2 (0.52%) Kafka
7 2 (0.52%) LDAP
7 2 (0.52%) Middleware
7 2 (0.52%) OAuth
Miscellaneous
1 72 (18.80%) Management Information System
2 30 (7.83%) Analytical Skills
3 28 (7.31%) CESG
4 22 (5.74%) Cyberthreat
5 18 (4.70%) Security Operations Centre
6 13 (3.39%) Public Cloud
7 12 (3.13%) Data Centre
8 10 (2.61%) Self-Motivation
9 9 (2.35%) PKI
10 8 (2.09%) Data Protection Act
11 7 (1.83%) Cloud Native
12 6 (1.57%) Cyberattack
12 6 (1.57%) Freedom of Information
12 6 (1.57%) User Experience
13 5 (1.31%) Freedom of Information Act
13 5 (1.31%) Virtual Team
14 4 (1.04%) Clustering
14 4 (1.04%) Embedded Systems
14 4 (1.04%) Mobile Payment
14 4 (1.04%) NHS
Operating Systems
1 22 (5.74%) Windows
2 19 (4.96%) Linux
3 6 (1.57%) Windows Server
4 5 (1.31%) Unix
5 3 (0.78%) Solaris
5 3 (0.78%) Windows 10
6 2 (0.52%) Android
6 2 (0.52%) Apple iOS
6 2 (0.52%) MVS
6 2 (0.52%) Red Hat Enterprise Linux
7 1 (0.26%) CentOS
7 1 (0.26%) HPUX
7 1 (0.26%) Windows 7
7 1 (0.26%) Windows Server 2016
Processes & Methodologies
1 224 (58.49%) Information Security
2 212 (55.35%) Cybersecurity
3 120 (31.33%) Risk Management
4 73 (19.06%) Security Architecture
5 65 (16.97%) Security Management
6 57 (14.88%) SIEM
7 55 (14.36%) Information Assurance
7 55 (14.36%) Risk Assessment
8 47 (12.27%) Agile Software Development
9 46 (12.01%) Data Protection
10 44 (11.49%) Information Security Management
11 43 (11.23%) ITIL
12 41 (10.70%) Vulnerability Management
13 40 (10.44%) Security Operations
14 36 (9.40%) Security Testing
15 35 (9.14%) ISMS
16 34 (8.88%) Data Security
17 31 (8.09%) Stakeholder Management
18 30 (7.83%) DevOps
18 30 (7.83%) TOGAF
Programming Languages
1 21 (5.48%) Python
2 19 (4.96%) Java
3 16 (4.18%) C#
4 15 (3.92%) C
5 14 (3.66%) C++
6 11 (2.87%) PHP
6 11 (2.87%) VB.NET
7 7 (1.83%) SQL
8 6 (1.57%) Bash Shell
8 6 (1.57%) JavaScript
9 4 (1.04%) PowerShell
10 3 (0.78%) Perl
11 1 (0.26%) Java 8
11 1 (0.26%) PL/SQL
11 1 (0.26%) Ruby
11 1 (0.26%) T-SQL
11 1 (0.26%) TypeScript
Qualifications
1 157 (40.99%) CISSP
2 117 (30.55%) Security Cleared
3 116 (30.29%) CISM
4 82 (21.41%) SC Cleared
5 77 (20.10%) CESG Certified Professional
6 46 (12.01%) Degree
7 43 (11.23%) CRISC
8 36 (9.40%) CISA
9 29 (7.57%) Cisco Certification
10 26 (6.79%) DV Cleared
11 22 (5.74%) ISO 27001 Lead Auditor
12 21 (5.48%) CEH
12 21 (5.48%) GIAC
13 19 (4.96%) (ISC)2 CCSP
14 18 (4.70%) CCSP
15 15 (3.92%) GCIH
16 14 (3.66%) IISP
16 14 (3.66%) SANS
17 12 (3.13%) SSCP
18 10 (2.61%) Microsoft Certification
Quality Assurance & Compliance
1 136 (35.51%) NIST
2 83 (21.67%) PCI DSS
3 70 (18.28%) NCSC
4 50 (13.05%) HMG Security Policy Framework
5 49 (12.79%) GDPR
6 45 (11.75%) Cyber Essentials
7 43 (11.23%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 35 (9.14%) COBIT
9 25 (6.53%) JSP 440
9 25 (6.53%) RMADS
10 24 (6.27%) QA
11 20 (5.22%) NIST 800
12 13 (3.39%) ISO 9001
13 12 (3.13%) SLA
14 11 (2.87%) Sarbanes-Oxley
15 10 (2.61%) ISO 22301
15 10 (2.61%) ISO/IEC 20000
16 9 (2.35%) Cyber Essentials PLUS
17 8 (2.09%) ISO 31000
18 7 (1.83%) HIPAA
System Software
1 30 (7.83%) Active Directory
2 7 (1.83%) Virtual Machines
3 6 (1.57%) Docker
3 6 (1.57%) VMware Infrastructure
4 1 (0.26%) Firmware
4 1 (0.26%) Hyper-V
Systems Management
1 14 (3.66%) HP ALM
1 14 (3.66%) HP Fortify
2 11 (2.87%) Terraform
3 9 (2.35%) Kubernetes
4 8 (2.09%) QRadar
5 7 (1.83%) Ansible
6 6 (1.57%) Nexpose
7 5 (1.31%) Single Sign-On
8 4 (1.04%) Computer Emergency Response Teams
8 4 (1.04%) IBM Guardium
8 4 (1.04%) Microsoft Intune
8 4 (1.04%) Nessus
8 4 (1.04%) Network Intrusion Detection System
8 4 (1.04%) SCOM
8 4 (1.04%) Trend Micro Deep Security
9 3 (0.78%) Grafana
9 3 (0.78%) Prometheus
9 3 (0.78%) WebInspect
10 2 (0.52%) Istio
10 2 (0.52%) Rancher
Vendors
1 56 (14.62%) Microsoft
2 23 (6.01%) Qualys
3 19 (4.96%) HP
4 17 (4.44%) ArcSight
5 16 (4.18%) Cisco
5 16 (4.18%) Google
6 15 (3.92%) SAP
7 14 (3.66%) Black Duck
7 14 (3.66%) Micro Focus
7 14 (3.66%) Sonatype
8 13 (3.39%) LogRhythm
8 13 (3.39%) Splunk
9 12 (3.13%) Oracle
10 10 (2.61%) Tripwire
11 7 (1.83%) McAfee
11 7 (1.83%) VMware
12 6 (1.57%) CheckPoint
12 6 (1.57%) IBM
12 6 (1.57%) Remedy
13 5 (1.31%) Rapid7