Period
to

The following table provides summary statistics for contract job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 9 August 2022 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISO/IEC 27001
UK
6 months to
9 Aug 2022
Same period 2021 Same period 2020
Rank 288 321 256
Rank change year-on-year +33 -65 +92
Contract jobs citing ISO/IEC 27001 804 592 362
As % of all contract jobs advertised in the UK 0.91% 0.81% 1.03%
As % of the Quality Assurance & Compliance category 7.08% 6.55% 9.01%
Number of daily rates quoted 582 424 229
10th Percentile £405 £355 £308
25th Percentile £484 £413 £413
Median daily rate (50th Percentile) £575 £518 £513
Median % change year-on-year +11.11% +0.98% -1.91%
75th Percentile £682 £638 £600
90th Percentile £761 £690 £700
UK excluding London median daily rate £550 £463 £513
% change year-on-year +18.92% -9.76% +7.89%
Number of hourly rates quoted 6 13 1
10th Percentile £18.75 £9.75 -
25th Percentile £32.19 £34.70 £18.13
Median hourly rate £65.79 £46.35 £18.25
Median % change year-on-year +41.94% +153.97% -27.72%
75th Percentile £70.77 £64.75 £18.38
90th Percentile £85.54 £75.25 -
UK excluding London median hourly rate £65.79 £53.18 £18.25
% change year-on-year +23.72% +191.37% -27.72%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 11,355 9,037 4,019
As % of all contract IT jobs advertised in the UK 12.86% 12.35% 11.41%
Number of daily rates quoted 7,776 6,052 2,518
10th Percentile £300 £270 £263
25th Percentile £413 £375 £356
Median daily rate (50th Percentile) £525 £478 £473
Median % change year-on-year +9.95% +1.06% +5.00%
75th Percentile £638 £588 £575
90th Percentile £738 £675 £646
UK excluding London median daily rate £475 £425 £428
% change year-on-year +11.76% -0.64% +0.65%
Number of hourly rates quoted 266 350 186
10th Percentile £12.58 £11.36 £11.55
25th Percentile £16.25 £14.00 £17.00
Median hourly rate £25.00 £20.37 £24.67
Median % change year-on-year +22.74% -17.42% +17.20%
75th Percentile £53.94 £40.13 £45.00
90th Percentile £71.79 £61.95 £53.75
UK excluding London median hourly rate £21.59 £19.00 £22.55
% change year-on-year +13.61% -15.72% +0.85%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a proportion of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing ISO/IEC 27001.

Daily rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Daily Rate Histogram

Daily rate distribution for jobs citing ISO/IEC 27001 over the 6 months to 9 August 2022.

Daily rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing ISO/IEC 27001.

Hourly rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Hourly Rate Histogram

Hourly rate distribution of jobs citing ISO/IEC 27001 over the 6 months to 9 August 2022.

Hourly rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 9 August 2022. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Jobs
England +23 631 £575 +9.52% 280
Work from Home +40 415 £600 +17.07% 107
London -10 324 £600 +9.09% 97
UK excluding London +1 292 £550 +18.92% 201
South East +5 84 £550 +15.79% 47
Midlands -6 50 £550 +34.15% 35
North of England -25 49 £525 +40.47% 60
South West -4 48 £600 +21.70% 19
West Midlands -25 35 £550 +24.29% 21
Scotland -38 31 £571 +26.94% 11
North West -20 28 £550 +52.78% 35
Yorkshire -15 21 £413 -19.12% 22
East of England -8 16 £656 +64.06% 21
Wales - 16 £600 - 8
East Midlands +8 14 £550 +100.00% 13

For the 6 months to 9 August 2022, IT contractor jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for ISO/IEC 27001.

1 366 (45.52%) Information Security
2 341 (42.41%) NIST
3 329 (40.92%) Cybersecurity
4 264 (32.84%) CISSP
5 262 (32.59%) Risk Management
6 216 (26.87%) Finance
7 205 (25.50%) Social Skills
8 196 (24.38%) CISM
9 182 (22.64%) GDPR
10 170 (21.14%) Azure
11 145 (18.03%) Management Information System
12 144 (17.91%) Firewall
13 124 (15.42%) PCI DSS
14 123 (15.30%) Security Cleared
14 123 (15.30%) Security Management
15 120 (14.93%) Security Architecture
16 119 (14.80%) Degree
17 116 (14.43%) Microsoft
18 115 (14.30%) Agile
19 109 (13.56%) SIEM
20 107 (13.31%) CISA
21 106 (13.18%) Stakeholder Management
22 98 (12.19%) ITIL
23 96 (11.94%) ISMS
24 94 (11.69%) Data Loss Prevention
25 93 (11.57%) AWS
26 92 (11.44%) CRISC
27 86 (10.70%) Vulnerability Management
27 86 (10.70%) Network Security
28 82 (10.20%) SC Cleared

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 12 (1.49%) SharePoint
2 6 (0.75%) IIS
3 5 (0.62%) Tomcat
4 3 (0.37%) Apache
4 3 (0.37%) Confluence
5 1 (0.12%) Exchange Server 2010
5 1 (0.12%) MS Exchange
5 1 (0.12%) Skype for Business
Applications
1 19 (2.36%) Microsoft PowerPoint
2 14 (1.74%) Microsoft Excel
2 14 (1.74%) Microsoft Office
3 7 (0.87%) Microsoft Project
4 3 (0.37%) MS Visio
Business Applications
1 1 (0.12%) Sparx Enterprise Architect
Cloud Services
1 170 (21.14%) Azure
2 93 (11.57%) AWS
3 82 (10.20%) SaaS
4 55 (6.84%) Microsoft 365
5 46 (5.72%) GCP
6 41 (5.10%) IaaS
7 31 (3.86%) PaaS
8 29 (3.61%) Azure Active Directory
9 11 (1.37%) Azure Sentinel
10 10 (1.24%) Cloud Computing
10 10 (1.24%) Mimecast
11 9 (1.12%) Azure DevOps
12 7 (0.87%) OneDrive
13 6 (0.75%) GitHub
13 6 (0.75%) Power Platform
14 5 (0.62%) Amazon CloudWatch
14 5 (0.62%) Datadog
14 5 (0.62%) Dynamics 365
15 4 (0.50%) Amazon GuardDuty
15 4 (0.50%) Azure ExpressRoute
Communications & Networking
1 144 (17.91%) Firewall
2 86 (10.70%) Network Security
3 35 (4.35%) DNS
4 28 (3.48%) VPN
5 26 (3.23%) WAN
6 22 (2.74%) Wi-Fi
7 19 (2.36%) Internet
8 18 (2.24%) TCP/IP
9 17 (2.11%) IPsec
10 13 (1.62%) LAN
10 13 (1.62%) MPLS
11 11 (1.37%) NGFW
11 11 (1.37%) SD-WAN
11 11 (1.37%) X.509
12 10 (1.24%) Intrusion Detection
12 10 (1.24%) MQTT
12 10 (1.24%) VLAN
13 8 (1.00%) BGP
13 8 (1.00%) Cisco IOS
13 8 (1.00%) SAN
Database & Business Intelligence
1 11 (1.37%) SQL Server
2 8 (1.00%) Big Data
3 6 (0.75%) MySQL
3 6 (0.75%) Power BI
4 5 (0.62%) Tableau
5 3 (0.37%) Data Warehouse
6 2 (0.25%) Informix
6 2 (0.25%) PostgreSQL
6 2 (0.25%) Redis
6 2 (0.25%) Relational Database
7 1 (0.12%) Amazon RDS
7 1 (0.12%) MS Access
7 1 (0.12%) phpMyAdmin
7 1 (0.12%) SQL Server Integration Services
Development Applications
1 14 (1.74%) Jenkins
2 10 (1.24%) JIRA
3 8 (1.00%) Git (software)
4 5 (0.62%) CircleCI
5 3 (0.37%) Sonatype Nexus
6 1 (0.12%) Bitbucket
6 1 (0.12%) C++Builder
6 1 (0.12%) Octopus Deploy
6 1 (0.12%) Team Foundation Server
General
1 216 (26.87%) Finance
2 205 (25.50%) Social Skills
3 79 (9.83%) Public Sector
4 64 (7.96%) Legal
5 54 (6.72%) Analytical Skills
6 52 (6.47%) Banking
7 41 (5.10%) Presentation Skills
8 35 (4.35%) Telecoms
9 22 (2.74%) Manufacturing
10 18 (2.24%) Automotive
11 17 (2.11%) Retail
12 15 (1.87%) Influencing Skills
12 15 (1.87%) Organisational Skills
13 12 (1.49%) Marketing
13 12 (1.49%) Police
14 11 (1.37%) Law
14 11 (1.37%) Local Government
15 10 (1.24%) Documentation Skills
16 9 (1.12%) Electronics
16 9 (1.12%) Financial Institution
Job Titles
1 150 (18.66%) Architect
2 141 (17.54%) Consultant
3 101 (12.56%) Security Manager
4 99 (12.31%) Security Consultant
5 95 (11.82%) Security Architect
6 94 (11.69%) Analyst
7 58 (7.21%) Security Engineer
8 49 (6.09%) Security Analyst
9 41 (5.10%) Solutions Architect
10 37 (4.60%) Risk Consultant
11 36 (4.48%) Information Security Manager
12 32 (3.98%) Information Security Consultant
13 31 (3.86%) Information Manager
13 31 (3.86%) Security Specialist
14 30 (3.73%) Project Manager
15 25 (3.11%) Cybersecurity Manager
16 24 (2.99%) IT Manager
16 24 (2.99%) Risk Manager
17 19 (2.36%) Cybersecurity Analyst
17 19 (2.36%) Security Project Manager
Libraries, Frameworks & Software Standards
1 32 (3.98%) LDAP
2 26 (3.23%) SAML
3 14 (1.74%) Web Services
4 10 (1.24%) OAuth
5 9 (1.12%) JSON
5 9 (1.12%) OpenID
6 8 (1.00%) XML
7 7 (0.87%) YAML
8 6 (0.75%) SailPoint
9 5 (0.62%) .NET
10 4 (0.50%) Middleware
11 3 (0.37%) 802.1X
11 3 (0.37%) HTML
11 3 (0.37%) Keycloak
11 3 (0.37%) REST
12 2 (0.25%) ARM Templates
12 2 (0.25%) CSS
12 2 (0.25%) Elastic Stack
12 2 (0.25%) RabbitMQ
12 2 (0.25%) Regular Expression
Miscellaneous
1 145 (18.03%) Management Information System
2 41 (5.10%) Data Centre
3 29 (3.61%) CESG
4 26 (3.23%) PKI
5 20 (2.49%) IoT
6 18 (2.24%) Data Protection Act
7 16 (1.99%) Cyberthreat
8 14 (1.74%) Freedom of Information
8 14 (1.74%) Security Operations Centre
9 13 (1.62%) NHS
10 12 (1.49%) Self-Motivation
11 11 (1.37%) Cloud Native
11 11 (1.37%) Enterprise Software
12 10 (1.24%) Public Cloud
13 8 (1.00%) Distributed Denial-of-Service
13 8 (1.00%) Robotics
14 7 (0.87%) Cyber Defence
14 7 (0.87%) Enterprise Storage
14 7 (0.87%) Freedom of Information Act
14 7 (0.87%) Linux Command Line
Operating Systems
1 69 (8.58%) Windows
2 54 (6.72%) Linux
3 27 (3.36%) Unix
4 20 (2.49%) Windows Server
5 13 (1.62%) Windows 10
6 10 (1.24%) HPUX
6 10 (1.24%) Red Hat Enterprise Linux
7 9 (1.12%) AIX
8 5 (0.62%) CentOS
9 3 (0.37%) Solaris
9 3 (0.37%) Windows Server 2019
10 2 (0.25%) VMS
10 2 (0.25%) Windows 7
10 2 (0.25%) Windows Server 2012
10 2 (0.25%) Windows Server 2016
11 1 (0.12%) Mac OS X
11 1 (0.12%) Windows Server 2008
Processes & Methodologies
1 366 (45.52%) Information Security
2 329 (40.92%) Cybersecurity
3 262 (32.59%) Risk Management
4 123 (15.30%) Security Management
5 120 (14.93%) Security Architecture
6 115 (14.30%) Agile
7 109 (13.56%) SIEM
8 106 (13.18%) Stakeholder Management
9 98 (12.19%) ITIL
10 96 (11.94%) ISMS
11 94 (11.69%) Data Loss Prevention
12 86 (10.70%) Vulnerability Management
13 82 (10.20%) Security Operations
14 80 (9.95%) Project Management
15 79 (9.83%) Information Security Management
16 74 (9.20%) Identity Access Management
17 70 (8.71%) Data Protection
17 70 (8.71%) Incident Management
18 65 (8.08%) Risk Assessment
19 59 (7.34%) Application Security
Programming Languages
1 23 (2.86%) PowerShell
2 20 (2.49%) SQL
3 17 (2.11%) C
4 15 (1.87%) Python
5 11 (1.37%) Bash
6 4 (0.50%) C++
7 3 (0.37%) C#
7 3 (0.37%) Java
7 3 (0.37%) Shell Script
8 2 (0.25%) PL/SQL
8 2 (0.25%) VBScript
9 1 (0.12%) JavaScript
9 1 (0.12%) PHP
9 1 (0.12%) T-SQL
9 1 (0.12%) TypeScript
9 1 (0.12%) VB
9 1 (0.12%) VB.NET
Qualifications
1 264 (32.84%) CISSP
2 196 (24.38%) CISM
3 123 (15.30%) Security Cleared
4 119 (14.80%) Degree
5 107 (13.31%) CISA
6 92 (11.44%) CRISC
7 82 (10.20%) SC Cleared
8 63 (7.84%) Cisco Certification
9 50 (6.22%) (ISC)2 CCSP
10 46 (5.72%) CESG Certified Professional
11 39 (4.85%) CEH
11 39 (4.85%) DV Cleared
12 38 (4.73%) SANS
13 35 (4.35%) GIAC
14 27 (3.36%) FFIEC
14 27 (3.36%) Microsoft Certification
15 20 (2.49%) CCSK
16 17 (2.11%) ISACA
16 17 (2.11%) ISO 27001 Lead Auditor
17 13 (1.62%) CCNA
Quality Assurance & Compliance
1 341 (42.41%) NIST
2 182 (22.64%) GDPR
3 124 (15.42%) PCI DSS
4 76 (9.45%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 67 (8.33%) NCSC
6 59 (7.34%) GRC
7 55 (6.84%) Cyber Essentials
8 44 (5.47%) NIST 800
9 40 (4.98%) COBIT
10 37 (4.60%) SOC 2
11 30 (3.73%) Sarbanes-Oxley
12 27 (3.36%) HMG Security Policy Framework
13 26 (3.23%) ISO 9001
14 23 (2.86%) ISO/IEC 27005
15 21 (2.61%) Cyber Essentials PLUS
16 18 (2.24%) JSP 440
16 18 (2.24%) RMADS
17 14 (1.74%) ISO 31000
17 14 (1.74%) ISO/IEC 20000
17 14 (1.74%) SOC 1
System Software
1 82 (10.20%) Active Directory
2 35 (4.35%) VMware Infrastructure
3 15 (1.87%) Firmware
4 13 (1.62%) Docker
4 13 (1.62%) Virtual Machines
5 5 (0.62%) VMware NSX
6 4 (0.50%) Hyper-V
6 4 (0.50%) Virtual Desktop
6 4 (0.50%) vSphere
7 3 (0.37%) PowerHA
7 3 (0.37%) Veritas Cluster Server
8 2 (0.25%) VMware ESXi
9 1 (0.12%) Microsoft Virtual Server
9 1 (0.12%) Virtual Servers
9 1 (0.12%) XenApp
9 1 (0.12%) XenDesktop
Systems Management
1 20 (2.49%) CASB
2 17 (2.11%) Active Directory Federation Services
3 15 (1.87%) SCCM
3 15 (1.87%) Terraform
4 12 (1.49%) Ansible
5 11 (1.37%) Single Sign-On
6 10 (1.24%) Microsoft Intune
7 9 (1.12%) SCOM
8 8 (1.00%) Kubernetes
8 8 (1.00%) Nessus
8 8 (1.00%) Puppet
9 7 (0.87%) CSIRT
10 5 (0.62%) Tivoli
11 4 (0.50%) FortiGate
11 4 (0.50%) McAfee ePO
11 4 (0.50%) Nexpose
11 4 (0.50%) RSA Archer
12 3 (0.37%) Network Intrusion Detection System
12 3 (0.37%) RANCID
12 3 (0.37%) vRealize
Vendors
1 116 (14.43%) Microsoft
2 48 (5.97%) Cisco
3 43 (5.35%) VMware
4 35 (4.35%) Google
5 33 (4.10%) Oracle
6 28 (3.48%) ServiceNow
7 27 (3.36%) LogRhythm
8 24 (2.99%) Qualys
9 21 (2.61%) McAfee
9 21 (2.61%) Splunk
10 20 (2.49%) Palo Alto
11 19 (2.36%) Red Hat
12 18 (2.24%) Okta
13 17 (2.11%) CheckPoint
14 16 (1.99%) FireEye
15 15 (1.87%) Forcepoint
16 14 (1.74%) CyberArk
17 11 (1.37%) NetApp
17 11 (1.37%) Zscaler
18 10 (1.24%) HP