Period
to 12 December 2018

The following table provides summary statistics for contract job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 12 December 2018 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISO/IEC 27001
UK
6 months to
12 Dec 2018
Same period 2017 Same period 2016
Rank 377 289 327
Rank change year-on-year -88 +38 -3
Contract jobs citing ISO/IEC 27001 697 944 790
As % of all contract IT jobs advertised in the UK 0.66% 0.91% 0.76%
As % of the Quality Assurance & Compliance category 6.18% 7.19% 6.69%
Number of daily rates quoted 486 554 520
UK median daily rate £505 £475 £450
Median daily rate % change year-on-year +6.32% +5.56% -3.23%
10th Percentile £325 £313 £312
90th Percentile £688 £650 £626
UK excluding London median daily rate £500 £450 £450
% change year-on-year +11.11% - -
Number of hourly rates quoted 1 9 7
UK median hourly rate £72.50 £35.00 £55.00
Median hourly rate % change year-on-year +107.14% -36.36% +18.28%
10th Percentile £71.25 £18.86 £38.64
90th Percentile £73.75 £57.50 £74.00
UK excluding London median hourly rate - £28.40 £55.00
% change year-on-year - -48.37% +27.91%

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 11,270 13,131 11,816
As % of all contract IT jobs advertised in the UK 10.70% 12.71% 11.43%
Number of daily rates quoted 7,130 8,607 7,679
UK median daily rate £450 £438 £425
Median daily rate % change year-on-year +2.86% +2.94% +4.94%
10th Percentile £250 £256 £225
90th Percentile £625 £638 £600
UK excluding London median daily rate £410 £400 £395
% change year-on-year +2.50% +1.20% +2.00%
Number of hourly rates quoted 391 365 423
UK median hourly rate £20.00 £20.60 £22.50
Median hourly rate % change year-on-year -2.91% -8.44% -
10th Percentile £11.00 £11.10 £10.50
90th Percentile £47.50 £49.90 £46.60
UK excluding London median hourly rate £18.50 £21.35 £25.00
% change year-on-year -13.36% -14.59% +11.11%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a percentage of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing ISO/IEC 27001.

Contractor daily rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing ISO/IEC 27001 over the 6 months to 12 December 2018.

Contractor daily rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing ISO/IEC 27001.

Contractor hourly rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 16 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 12 December 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -82 653 £525 +10.53% 322
UK excluding London -91 404 £500 +11.11% 241
London -65 269 £543 +8.50% 98
South East -65 144 £525 +16.67% 54
North of England -26 113 £500 +5.26% 79
Yorkshire -16 52 £500 +11.11% 22
Midlands 0 49 £525 +23.53% 43
North West -26 45 £501 +0.10% 54
South West -55 41 £430 -14.00% 25
East of England -62 27 £413 -2.94% 23
West Midlands -18 26 £600 +41.18% 30
East Midlands +21 22 £413 +10.00% 12
North East +1 17 £500 - 3
Scotland -28 17 £438 +14.75% 11
Wales -4 10 £585 - 4
Northern Ireland - 4 £425 - 2

For the 6 months to 12 December 2018, IT contractor jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for ISO/IEC 27001.

1 403 (57.82%) Information Security
2 266 (38.16%) CISSP
3 210 (30.13%) Cybersecurity
4 207 (29.70%) PCI DSS
5 192 (27.55%) CISM
6 167 (23.96%) GDPR
7 163 (23.39%) Risk Management
8 136 (19.51%) Finance
9 123 (17.65%) CISA
10 122 (17.50%) Management Information System
11 120 (17.22%) Firewall
12 108 (15.49%) Security Architecture
13 104 (14.92%) ITIL
14 92 (13.20%) Microsoft
15 87 (12.48%) SIEM
16 86 (12.34%) Amazon AWS
17 83 (11.91%) Security Cleared
18 82 (11.76%) Microsoft Azure
19 81 (11.62%) Vulnerability Management
19 81 (11.62%) Windows
20 77 (11.05%) Linux
20 77 (11.05%) Data Protection
21 76 (10.90%) Security Management
22 71 (10.19%) Degree
23 70 (10.04%) ISMS
24 67 (9.61%) Stakeholder Management
24 67 (9.61%) Security Operations
25 66 (9.47%) Penetration Testing
25 66 (9.47%) Agile Software Development
26 65 (9.33%) ISO/IEC 27002 (supersedes ISO/IEC 17799)

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 17 (2.44%) SharePoint
2 12 (1.72%) IIS
3 9 (1.29%) Apache
3 9 (1.29%) MS Exchange
4 8 (1.15%) Apache Spark
5 4 (0.57%) Confluence
5 4 (0.57%) Exchange Server 2010
5 4 (0.57%) nginx
6 2 (0.29%) Elasticsearch
6 2 (0.29%) JBoss
6 2 (0.29%) Liferay
6 2 (0.29%) Tomcat
7 1 (0.14%) Exchange Server 2003
7 1 (0.14%) Exchange Server 2007
7 1 (0.14%) Exchange Server 2013
7 1 (0.14%) Skype for Business
Applications
1 17 (2.44%) Microsoft Office
2 10 (1.43%) MS Visio
3 6 (0.86%) Microsoft Excel
4 5 (0.72%) Microsoft PowerPoint
5 4 (0.57%) Microsoft Project
6 1 (0.14%) AutoCAD
Business Applications
1 3 (0.43%) SAP GRC
2 2 (0.29%) SAP S/4HANA
3 1 (0.14%) Dynamics AX
3 1 (0.14%) Dynamics CRM
3 1 (0.14%) Dynamics NAV
3 1 (0.14%) NetSuite
3 1 (0.14%) Northgate Housing
3 1 (0.14%) SAP IS-U
Cloud Services
1 86 (12.34%) Amazon AWS
2 82 (11.76%) Microsoft Azure
3 37 (5.31%) Office 365
4 25 (3.59%) SaaS
5 21 (3.01%) IaaS
5 21 (3.01%) PaaS
6 13 (1.87%) Google Cloud Platform
7 12 (1.72%) Cloud Computing
8 7 (1.00%) Serverless
9 6 (0.86%) G Suite
10 4 (0.57%) AWS Lambda
11 3 (0.43%) Amazon EC2
11 3 (0.43%) Amazon Kinesis
11 3 (0.43%) Amazon S3
11 3 (0.43%) AWS CloudFormation
11 3 (0.43%) Route 53
12 2 (0.29%) Cloudflare
12 2 (0.29%) npm
13 1 (0.14%) Azure Active Directory
13 1 (0.14%) OneDrive
Communications & Networking
1 120 (17.22%) Firewall
2 60 (8.61%) VPN
3 50 (7.17%) Network Security
4 25 (3.59%) TCP/IP
5 23 (3.30%) Intrusion Detection
6 20 (2.87%) DNS
7 17 (2.44%) WAN
8 16 (2.30%) SSL
8 16 (2.30%) Wireless
9 15 (2.15%) Internet
9 15 (2.15%) IPsec
10 14 (2.01%) HTTP
11 13 (1.87%) MPLS
12 12 (1.72%) LAN
13 9 (1.29%) NFC
13 9 (1.29%) VoIP
14 7 (1.00%) BGP
14 7 (1.00%) DHCP
14 7 (1.00%) HTTPS
14 7 (1.00%) SSH
Database & Business Intelligence
1 29 (4.16%) SQL Server
2 10 (1.43%) Hadoop
3 8 (1.15%) Big Data
4 7 (1.00%) Apache Hive
4 7 (1.00%) HBase
4 7 (1.00%) Pentaho
4 7 (1.00%) QlikView
4 7 (1.00%) Sqoop
5 6 (0.86%) Oracle Database
5 6 (0.86%) SQL Server 2008
6 5 (0.72%) MongoDB
6 5 (0.72%) SQL Server 2005
7 4 (0.57%) SQL Server Integration Services
8 3 (0.43%) SQL Server Analysis Services
8 3 (0.43%) SQL Server Reporting Services
9 2 (0.29%) InterSystems Cache
9 2 (0.29%) MySQL
9 2 (0.29%) Oracle Reports
9 2 (0.29%) PostgreSQL
9 2 (0.29%) RDBMS
Development Applications
1 16 (2.30%) JIRA
2 11 (1.58%) SonarQube
2 11 (1.58%) Visual Studio
3 9 (1.29%) Git (software)
4 6 (0.86%) Metasploit
4 6 (0.86%) Visual Studio Team System
4 6 (0.86%) VSS/SourceSafe
5 3 (0.43%) Jenkins
5 3 (0.43%) Mocha
5 3 (0.43%) Team Foundation Server
6 2 (0.29%) AppScan
6 2 (0.29%) Bitbucket
6 2 (0.29%) Bower
6 2 (0.29%) gulp
6 2 (0.29%) Oracle APEX
6 2 (0.29%) Oracle Forms
7 1 (0.14%) git-flow
7 1 (0.14%) Grunt
7 1 (0.14%) NUnit
7 1 (0.14%) Selenium
General
1 136 (19.51%) Finance
2 57 (8.18%) Legal
3 41 (5.88%) Retail
4 29 (4.16%) Telecoms
5 27 (3.87%) Banking
6 13 (1.87%) Law
7 10 (1.43%) Financial Institution
7 10 (1.43%) Marketing
8 9 (1.29%) Back Office
9 8 (1.15%) Manufacturing
10 5 (0.72%) Billing
10 5 (0.72%) Electronics
11 4 (0.57%) Investment Banking
12 3 (0.43%) Pharmaceutical
12 3 (0.43%) Retail Banking
13 2 (0.29%) Advertising
14 1 (0.14%) Dutch Language
14 1 (0.14%) Front Office
14 1 (0.14%) Games
14 1 (0.14%) Publishing
Job Titles
1 163 (23.39%) Consultant
2 143 (20.52%) Security Consultant
3 114 (16.36%) Architect
4 95 (13.63%) Security Architect
4 95 (13.63%) Security Manager
5 92 (13.20%) Analyst
6 67 (9.61%) Security Analyst
7 48 (6.89%) Information Security Consultant
8 43 (6.17%) Information Manager
8 43 (6.17%) Information Security Manager
9 36 (5.16%) Information Analyst
10 35 (5.02%) Project Manager
11 34 (4.88%) Information Security Analyst
12 33 (4.73%) Security Specialist
13 26 (3.73%) Cloud Architect
13 26 (3.73%) Cybersecurity Consultant
14 25 (3.59%) Security Engineer
15 21 (3.01%) Risk Manager
16 18 (2.58%) Network Engineer
17 17 (2.44%) Security Project Manager
Libraries, Frameworks & Software Standards
1 26 (3.73%) Web Services
2 20 (2.87%) Middleware
3 13 (1.87%) .NET
4 11 (1.58%) CSS
5 10 (1.43%) OAuth
6 9 (1.29%) HTML
6 9 (1.29%) JSON
7 8 (1.15%) SAML
8 7 (1.00%) LDAP
8 7 (1.00%) Sass
9 6 (0.86%) .NET Framework
9 6 (0.86%) ASP.NET
9 6 (0.86%) ASP.NET Web API
9 6 (0.86%) Entity Framework
9 6 (0.86%) LAMP
10 5 (0.72%) KnockoutJS
10 5 (0.72%) LESS
10 5 (0.72%) React
10 5 (0.72%) REST
11 4 (0.57%) OpenID
Miscellaneous
1 122 (17.50%) Management Information System
2 46 (6.60%) Analytical Skills
3 44 (6.31%) Data Centre
4 35 (5.02%) PKI
5 33 (4.73%) Cyberthreat
6 20 (2.87%) Public Cloud
7 16 (2.30%) Data Protection Act
8 14 (2.01%) Enterprise Cloud
8 14 (2.01%) Self-Motivation
9 12 (1.72%) Driving Licence
9 12 (1.72%) Hybrid Cloud
10 11 (1.58%) NHS
11 10 (1.43%) Security Operations Centre
12 9 (1.29%) Freedom of Information
13 8 (1.15%) CESG
13 8 (1.15%) Freedom of Information Act
13 8 (1.15%) Mobile App
14 7 (1.00%) Distributed Denial-of-Service
15 6 (0.86%) Cybercrime
15 6 (0.86%) RIA
Operating Systems
1 81 (11.62%) Windows
2 77 (11.05%) Linux
3 33 (4.73%) Windows Server
4 15 (2.15%) Unix
5 14 (2.01%) Windows 10
6 12 (1.72%) Windows Server 2012
7 11 (1.58%) Solaris
8 9 (1.29%) Windows Server 2008
9 7 (1.00%) Windows Server 2003
10 5 (0.72%) Android
10 5 (0.72%) Apple iOS
10 5 (0.72%) Red Hat Enterprise Linux
10 5 (0.72%) Windows 7
11 3 (0.43%) CentOS
11 3 (0.43%) Mac OS X
12 2 (0.29%) Debian
12 2 (0.29%) Mac OS
13 1 (0.14%) AIX
13 1 (0.14%) MVS
13 1 (0.14%) Ubuntu
Processes & Methodologies
1 403 (57.82%) Information Security
2 210 (30.13%) Cybersecurity
3 163 (23.39%) Risk Management
4 108 (15.49%) Security Architecture
5 104 (14.92%) ITIL
6 87 (12.48%) SIEM
7 81 (11.62%) Vulnerability Management
8 77 (11.05%) Data Protection
9 76 (10.90%) Security Management
10 70 (10.04%) ISMS
11 67 (9.61%) Security Operations
11 67 (9.61%) Stakeholder Management
12 66 (9.47%) Agile Software Development
12 66 (9.47%) Penetration Testing
13 58 (8.32%) Project Management
14 55 (7.89%) Risk Assessment
15 53 (7.60%) Information Security Management
16 52 (7.46%) TOGAF
17 45 (6.46%) DevOps
18 44 (6.31%) Information Assurance
Programming Languages
1 29 (4.16%) SQL
2 24 (3.44%) C#
2 24 (3.44%) Python
3 22 (3.16%) Java
4 15 (2.15%) Bash Shell
5 13 (1.87%) JavaScript
6 12 (1.72%) PowerShell
7 10 (1.43%) Ruby
8 8 (1.15%) C
8 8 (1.15%) Perl
9 5 (0.72%) VBScript
10 4 (0.57%) T-SQL
11 3 (0.43%) ES6
12 2 (0.29%) C++
12 2 (0.29%) MUMPS
12 2 (0.29%) PHP
12 2 (0.29%) Shell Script
12 2 (0.29%) VB
13 1 (0.14%) PL/SQL
13 1 (0.14%) Scala
Qualifications
1 266 (38.16%) CISSP
2 192 (27.55%) CISM
3 123 (17.65%) CISA
4 83 (11.91%) Security Cleared
5 71 (10.19%) Degree
6 61 (8.75%) SC Cleared
7 57 (8.18%) Cisco Certification
8 47 (6.74%) CRISC
9 39 (5.60%) ISO 27001 Lead Auditor
10 34 (4.88%) CESG Certified Professional
11 26 (3.73%) SANS
12 22 (3.16%) (ISC)2 CCSP
13 21 (3.01%) CCNA
14 19 (2.73%) DV Cleared
15 17 (2.44%) ISSAP
16 14 (2.01%) CREST Certified
16 14 (2.01%) Microsoft Certification
17 13 (1.87%) CCSP
17 13 (1.87%) SSCP
18 12 (1.72%) CCNP
Quality Assurance & Compliance
1 207 (29.70%) PCI DSS
2 167 (23.96%) GDPR
3 65 (9.33%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 43 (6.17%) COBIT
5 38 (5.45%) Sarbanes-Oxley
6 31 (4.45%) ISO/IEC 27005
7 30 (4.30%) Cyber Essentials
8 29 (4.16%) ISO 9001
9 22 (3.16%) HMG Security Policy Framework
10 15 (2.15%) ISAE 3402
11 14 (2.01%) NIST 800
12 13 (1.87%) ISO 22301
12 13 (1.87%) QA
13 12 (1.72%) SLA
14 11 (1.58%) HIPAA
15 9 (1.29%) ISO 31000
16 7 (1.00%) Cyber Essentials PLUS
16 7 (1.00%) Data Quality
17 5 (0.72%) COSO
17 5 (0.72%) ISO/IEC 20000
System Software
1 38 (5.45%) Active Directory
2 16 (2.30%) VMware Infrastructure
3 14 (2.01%) Docker
4 8 (1.15%) ISA Server
5 7 (1.00%) HDFS
5 7 (1.00%) Hyper-V
5 7 (1.00%) Virtual Machines
5 7 (1.00%) XenApp
6 6 (0.86%) vSphere
7 4 (0.57%) Terminal Services
8 3 (0.43%) Virtual Servers
9 2 (0.29%) Firmware
9 2 (0.29%) VMware ESXi
9 2 (0.29%) XenDesktop
10 1 (0.14%) BitLocker
10 1 (0.14%) Microsoft Virtual Server
10 1 (0.14%) ProxySG
10 1 (0.14%) VirtualBox
10 1 (0.14%) Xen
Systems Management
1 17 (2.44%) Nessus
2 14 (2.01%) Kubernetes
3 13 (1.87%) Ansible
3 13 (1.87%) Single Sign-On
4 11 (1.58%) Suricata
5 10 (1.43%) QRadar
6 9 (1.29%) SCCM
6 9 (1.29%) Trend Micro Deep Security
7 8 (1.15%) Computer Emergency Response Teams
7 8 (1.15%) Terraform
8 7 (1.00%) Ambari
8 7 (1.00%) Hadoop YARN
8 7 (1.00%) Oozie
9 5 (0.72%) Norton AntiVirus
10 4 (0.57%) EnCase
10 4 (0.57%) FTK
10 4 (0.57%) Mesos
11 3 (0.43%) CASB
11 3 (0.43%) Host Intrusion Detection System
11 3 (0.43%) Prometheus
Vendors
1 92 (13.20%) Microsoft
2 48 (6.89%) Cisco
3 40 (5.74%) Splunk
4 29 (4.16%) VMware
5 28 (4.02%) Qualys
6 26 (3.73%) Oracle
7 25 (3.59%) McAfee
8 22 (3.16%) SAP
9 18 (2.58%) CheckPoint
10 17 (2.44%) IBM
11 16 (2.30%) Google
12 15 (2.15%) Barracuda Networks
12 15 (2.15%) Citrix
13 14 (2.01%) HP
14 13 (1.87%) Trend Micro
15 12 (1.72%) Forcepoint
15 12 (1.72%) Tripwire
16 11 (1.58%) Juniper
17 10 (1.43%) ArcSight
18 9 (1.29%) CyberArk