Period
to 18 October 2021

The following table provides summary statistics for contract job vacancies with a requirement for ISO/IEC 27001 skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited ISO/IEC 27001 over the 6 months to 18 October 2021 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

ISO/IEC 27001
UK
6 months to
18 Oct 2021
Same period 2020 Same period 2019
Rank 326 257 330
Rank change year-on-year -69 +73 +69
Contract jobs citing ISO/IEC 27001 672 315 663
As % of all contract jobs advertised in the UK 0.80% 1.02% 0.78%
As % of the Quality Assurance & Compliance category 6.35% 8.61% 6.90%
Number of daily rates quoted 495 206 469
10th Percentile £361 £315 £338
25th Percentile £433 £413 £406
Median daily rate (50th Percentile) £545 £500 £525
Median % change year-on-year +9.00% -4.76% +5.00%
75th Percentile £638 £594 £625
90th Percentile £731 £675 £738
UK excluding London median daily rate £515 £481 £475
% change year-on-year +7.12% +1.21% -5.00%
Number of hourly rates quoted 14 1 0
Median hourly rate £44.68 £18.25 -
Median % change year-on-year +144.79% - -
UK excluding London median hourly rate £44.68 £18.25 -
% change year-on-year +144.79% - -

ISO/IEC 27001 is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 10,581 3,659 9,612
As % of all contract IT jobs advertised in the UK 12.62% 11.86% 11.30%
Number of daily rates quoted 7,130 2,331 6,135
10th Percentile £263 £274 £249
25th Percentile £388 £363 £350
Median daily rate (50th Percentile) £500 £473 £450
Median % change year-on-year +5.82% +5.00% -
75th Percentile £600 £573 £550
90th Percentile £688 £645 £631
UK excluding London median daily rate £440 £435 £425
% change year-on-year +1.15% +2.35% +3.66%
Number of hourly rates quoted 314 150 394
10th Percentile £11.17 £10.73 £11.04
25th Percentile £12.63 £13.99 £15.00
Median hourly rate £20.00 £21.05 £20.95
Median % change year-on-year -4.99% +0.50% +4.73%
75th Percentile £40.23 £44.88 £46.89
90th Percentile £62.15 £54.72 £55.00
UK excluding London median hourly rate £17.50 £21.05 £22.18
% change year-on-year -16.86% -5.08% +9.95%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a proportion of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing ISO/IEC 27001.

Daily rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Daily Rate Histogram

Daily rate distribution for jobs citing ISO/IEC 27001 over the 6 months to 18 October 2021.

Daily rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing ISO/IEC 27001.

Hourly rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Hourly Rate Histogram

Hourly rate distribution of jobs citing ISO/IEC 27001 over the 6 months to 18 October 2021.

Hourly rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 16 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 18 October 2021. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -91 526 £550 +10.00% 349
UK excluding London -78 292 £515 +7.12% 249
London -76 273 £550 +4.76% 124
Work from Home -117 178 £550 +10.00% 56
South East -70 76 £511 -1.80% 57
Scotland -30 62 £488 -18.75% 12
North of England -51 58 £444 +7.58% 80
South West -36 52 £575 +21.05% 33
North West -42 30 £444 -22.83% 37
Yorkshire -42 26 £245 -38.75% 24
West Midlands -58 20 £575 +21.05% 39
Midlands -76 20 £575 +21.37% 45
East of England -40 19 £450 +27.21% 10
Northern Ireland - 4 - - 2
Wales -27 2 £518 -23.33% 10
North East - 2 £625 - 19

For the 6 months to 18 October 2021, IT contractor jobs citing ISO/IEC 27001 also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for ISO/IEC 27001.

1 333 (49.55%) Information Security
2 254 (37.80%) Cybersecurity
3 234 (34.82%) CISSP
4 213 (31.70%) NIST
5 186 (27.68%) Risk Management
6 162 (24.11%) Finance
6 162 (24.11%) Azure
7 146 (21.73%) Social Skills
8 141 (20.98%) CISM
9 130 (19.35%) GDPR
10 122 (18.15%) Firewall
11 119 (17.71%) Security Architecture
12 105 (15.63%) Security Management
13 101 (15.03%) ITIL
13 101 (15.03%) PCI DSS
14 100 (14.88%) Agile Software Development
15 97 (14.43%) AWS
15 97 (14.43%) SIEM
16 95 (14.14%) Security Cleared
16 95 (14.14%) Management Information System
16 95 (14.14%) Microsoft
17 88 (13.10%) Information Security Management
18 84 (12.50%) ISMS
19 80 (11.90%) SC Cleared
20 72 (10.71%) Active Directory
21 71 (10.57%) Windows
22 70 (10.42%) Microsoft 365
23 69 (10.27%) Risk Assessment
23 69 (10.27%) Degree
24 67 (9.97%) Stakeholder Management

ISO/IEC 27001
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 7 (1.04%) SharePoint
2 4 (0.60%) Apache
3 3 (0.45%) Confluence
3 3 (0.45%) IIS
3 3 (0.45%) OpenStack
4 2 (0.30%) Apache Pig
4 2 (0.30%) Apache Spark
4 2 (0.30%) Skype for Business
5 1 (0.15%) Exchange Server 2013
5 1 (0.15%) nginx
5 1 (0.15%) SharePoint Server
5 1 (0.15%) WebLogic
Applications
1 12 (1.79%) Microsoft Office
2 10 (1.49%) Microsoft Excel
2 10 (1.49%) Microsoft PowerPoint
3 6 (0.89%) MS Visio
4 3 (0.45%) Microsoft Project
5 2 (0.30%) Spreadsheet
Business Applications
1 3 (0.45%) Cloudability
1 3 (0.45%) Primavera
1 3 (0.45%) Sparx Enterprise Architect
2 2 (0.30%) Maximo
2 2 (0.30%) Sentinel
Cloud Services
1 162 (24.11%) Azure
2 97 (14.43%) AWS
3 70 (10.42%) Microsoft 365
4 59 (8.78%) SaaS
5 50 (7.44%) GCP
6 35 (5.21%) IaaS
7 23 (3.42%) PaaS
8 17 (2.53%) Azure Sentinel
9 14 (2.08%) Azure Active Directory
10 9 (1.34%) Serverless
11 6 (0.89%) Amazon CloudWatch
11 6 (0.89%) AWS Lambda
11 6 (0.89%) Cloud Computing
11 6 (0.89%) Datadog
12 5 (0.74%) Azure Functions
13 4 (0.60%) Amazon Kinesis
13 4 (0.60%) Mimecast
14 3 (0.45%) AWS CloudTrail
14 3 (0.45%) Route 53
14 3 (0.45%) Virtual Private Cloud
Communications & Networking
1 122 (18.15%) Firewall
2 59 (8.78%) Network Security
3 20 (2.98%) DNS
4 19 (2.83%) VPN
5 17 (2.53%) DHCP
6 14 (2.08%) WAN
7 13 (1.93%) X.509
8 12 (1.79%) SAN
8 12 (1.79%) TCP/IP
9 10 (1.49%) Intranet
9 10 (1.49%) Intrusion Detection
10 9 (1.34%) Internet
10 9 (1.34%) LAN
11 8 (1.19%) Wi-Fi
12 7 (1.04%) VoIP
13 6 (0.89%) Wireless
14 5 (0.74%) Cisco IOS
14 5 (0.74%) DMZ
14 5 (0.74%) NAS
14 5 (0.74%) WLAN
Database & Business Intelligence
1 14 (2.08%) SQL Server
2 7 (1.04%) Relational Database
3 4 (0.60%) Oracle Database
3 4 (0.60%) RDBMS
4 3 (0.45%) Amazon Athena
4 3 (0.45%) Amazon RDS
4 3 (0.45%) Big Data
5 2 (0.30%) Apache Hive
5 2 (0.30%) Azure SQL Database
5 2 (0.30%) BigQuery
5 2 (0.30%) Data Lake
5 2 (0.30%) GIS
5 2 (0.30%) Hadoop
5 2 (0.30%) PostgreSQL
5 2 (0.30%) SQL Server 2012
6 1 (0.15%) Amazon DynamoDB
6 1 (0.15%) Apache Ignite
6 1 (0.15%) Flink
6 1 (0.15%) Power BI
Development Applications
1 9 (1.34%) Git (software)
2 8 (1.19%) JIRA
3 3 (0.45%) SoapUI
4 2 (0.30%) GitLab
4 2 (0.30%) Jenkins
4 2 (0.30%) JMeter
4 2 (0.30%) Serenity BDD
5 1 (0.15%) Atlassian Bamboo
5 1 (0.15%) CircleCI
5 1 (0.15%) Cucumber
5 1 (0.15%) Mercurial
5 1 (0.15%) Octopus Deploy
5 1 (0.15%) Oracle APEX
5 1 (0.15%) Postman
5 1 (0.15%) REST Assured
5 1 (0.15%) Snyk
5 1 (0.15%) SonarQube
5 1 (0.15%) Sonatype Nexus
5 1 (0.15%) Subversion
5 1 (0.15%) TeamCity
General
1 162 (24.11%) Finance
2 146 (21.73%) Social Skills
3 62 (9.23%) Public Sector
4 46 (6.85%) Analytical Skills
5 42 (6.25%) Legal
6 34 (5.06%) Banking
7 24 (3.57%) Telecoms
8 21 (3.13%) Law
8 21 (3.13%) Marketing
9 19 (2.83%) Manufacturing
9 19 (2.83%) Organisational Skills
10 17 (2.53%) Influencing Skills
10 17 (2.53%) Presentation Skills
11 14 (2.08%) Electronics
12 8 (1.19%) Documentation Skills
12 8 (1.19%) Financial Institution
13 5 (0.74%) Local Government
14 4 (0.60%) Retail
15 3 (0.45%) Automotive
15 3 (0.45%) Billing
Job Titles
1 126 (18.75%) Consultant
2 125 (18.60%) Architect
3 108 (16.07%) Security Consultant
4 100 (14.88%) Security Architect
5 89 (13.24%) Analyst
6 69 (10.27%) Security Engineer
7 55 (8.18%) Security Analyst
8 48 (7.14%) Security Manager
9 35 (5.21%) Project Manager
10 30 (4.46%) Information Security Consultant
11 22 (3.27%) Business Analyst
11 22 (3.27%) Information Analyst
12 21 (3.13%) Information Security Manager
13 20 (2.98%) Cloud Architect
13 20 (2.98%) Cybersecurity Consultant
14 19 (2.83%) Cloud Consultant
14 19 (2.83%) Coordinator
14 19 (2.83%) Information Manager
14 19 (2.83%) Information Security Analyst
14 19 (2.83%) Technical Consultant
Libraries, Frameworks & Software Standards
1 19 (2.83%) SAML
2 12 (1.79%) Middleware
3 10 (1.49%) Web Services
4 7 (1.04%) REST
5 6 (0.89%) OpenID
6 5 (0.74%) OAuth
7 4 (0.60%) 802.1X
8 3 (0.45%) .NET
8 3 (0.45%) SOAP
9 2 (0.30%) ASP.NET
9 2 (0.30%) JSON
9 2 (0.30%) Spring
10 1 (0.15%) CSS
10 1 (0.15%) Drools
10 1 (0.15%) EJB
10 1 (0.15%) EJB 3.0
10 1 (0.15%) HTML5
10 1 (0.15%) jQuery
10 1 (0.15%) RESTful
10 1 (0.15%) Ruby on Rails
Miscellaneous
1 95 (14.14%) Management Information System
2 23 (3.42%) Data Centre
3 17 (2.53%) CESG
4 12 (1.79%) Data Protection Act
4 12 (1.79%) Self-Motivation
5 9 (1.34%) Virtual Team
6 8 (1.19%) CESG CLAS
6 8 (1.19%) Cloud Native
6 8 (1.19%) Cyberthreat
6 8 (1.19%) Hybrid Cloud
6 8 (1.19%) PKI
6 8 (1.19%) Public Cloud
6 8 (1.19%) Security Operations Centre
7 7 (1.04%) NHS
8 6 (0.89%) Cyber Defence
8 6 (0.89%) Mobile App
9 5 (0.74%) Clustering
9 5 (0.74%) Enterprise Software
10 4 (0.60%) Distributed Denial-of-Service
10 4 (0.60%) Taxonomies
Operating Systems
1 71 (10.57%) Windows
2 45 (6.70%) Linux
3 23 (3.42%) Windows Server
4 22 (3.27%) Windows 10
5 14 (2.08%) VMS
6 6 (0.89%) Unix
6 6 (0.89%) Windows Server 2019
7 5 (0.74%) Windows Server 2012
8 4 (0.60%) Android
8 4 (0.60%) Red Hat Enterprise Linux
8 4 (0.60%) Solaris
9 3 (0.45%) HPUX
10 2 (0.30%) Windows 7
10 2 (0.30%) Windows Server 2003
10 2 (0.30%) Windows Server 2016
11 1 (0.15%) Apple iOS
11 1 (0.15%) CoreOS
Processes & Methodologies
1 333 (49.55%) Information Security
2 254 (37.80%) Cybersecurity
3 186 (27.68%) Risk Management
4 119 (17.71%) Security Architecture
5 105 (15.63%) Security Management
6 101 (15.03%) ITIL
7 100 (14.88%) Agile Software Development
8 97 (14.43%) SIEM
9 88 (13.10%) Information Security Management
10 84 (12.50%) ISMS
11 69 (10.27%) Risk Assessment
12 67 (9.97%) Stakeholder Management
13 56 (8.33%) Vulnerability Management
14 55 (8.18%) Project Management
15 50 (7.44%) Data Protection
16 47 (6.99%) Threat Modelling
17 45 (6.70%) Incident Management
18 43 (6.40%) TOGAF
19 42 (6.25%) Identity Access Management
19 42 (6.25%) PRINCE2
Programming Languages
1 15 (2.23%) Java
2 13 (1.93%) Python
3 12 (1.79%) SQL
4 10 (1.49%) PowerShell
5 8 (1.19%) Bash Shell
6 4 (0.60%) C
6 4 (0.60%) Go
7 2 (0.30%) C#
7 2 (0.30%) JavaScript
7 2 (0.30%) R
8 1 (0.15%) C++
8 1 (0.15%) Java 11
8 1 (0.15%) Perl
8 1 (0.15%) PHP
8 1 (0.15%) Ruby
8 1 (0.15%) Scala
8 1 (0.15%) VB.NET
Qualifications
1 234 (34.82%) CISSP
2 141 (20.98%) CISM
3 95 (14.14%) Security Cleared
4 80 (11.90%) SC Cleared
5 69 (10.27%) Degree
6 61 (9.08%) CRISC
7 59 (8.78%) CISA
8 43 (6.40%) Cisco Certification
9 36 (5.36%) Microsoft Certification
10 33 (4.91%) GIAC
11 29 (4.32%) CESG Certified Professional
12 20 (2.98%) DV Cleared
12 20 (2.98%) SANS
13 19 (2.83%) ISO 27001 Lead Auditor
14 18 (2.68%) (ISC)2 CCSP
14 18 (2.68%) BPSS Clearance
14 18 (2.68%) CCNA
14 18 (2.68%) PMI Certification
14 18 (2.68%) PMP
15 17 (2.53%) ISO 27001 Lead Implementer
Quality Assurance & Compliance
1 213 (31.70%) NIST
2 130 (19.35%) GDPR
3 101 (15.03%) PCI DSS
4 63 (9.38%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 57 (8.48%) Cyber Essentials
6 49 (7.29%) COBIT
7 48 (7.14%) GRC
8 36 (5.36%) NIST 800
8 36 (5.36%) Sarbanes-Oxley
9 34 (5.06%) NCSC
10 29 (4.32%) ISO 9001
10 29 (4.32%) SOC 2
11 25 (3.72%) HMG Security Policy Framework
12 18 (2.68%) Cyber Essentials PLUS
13 17 (2.53%) JSP 440
14 15 (2.23%) SLA
15 14 (2.08%) RMADS
16 12 (1.79%) ISO/IEC 20000
17 9 (1.34%) ISO 22301
17 9 (1.34%) QA
System Software
1 72 (10.71%) Active Directory
2 28 (4.17%) VMware Infrastructure
3 20 (2.98%) Hyper-V
4 5 (0.74%) Docker
5 3 (0.45%) Firmware
5 3 (0.45%) VMware ESXi
6 2 (0.30%) Microsoft Virtual Server
6 2 (0.30%) Squid
6 2 (0.30%) Virtual Machines
6 2 (0.30%) Virtual Servers
6 2 (0.30%) XenApp
6 2 (0.30%) XenDesktop
7 1 (0.15%) BitLocker
7 1 (0.15%) ProxySG
Systems Management
1 17 (2.53%) Active Directory Federation Services
2 16 (2.38%) Microsoft Intune
3 14 (2.08%) SCCM
4 13 (1.93%) Kubernetes
5 12 (1.79%) QRadar
5 12 (1.79%) Single Sign-On
6 8 (1.19%) Network Intrusion Detection System
6 8 (1.19%) Terraform
7 7 (1.04%) Ansible
7 7 (1.04%) WSUS
8 5 (0.74%) CASB
8 5 (0.74%) Opsgenie
9 4 (0.60%) Nexpose
9 4 (0.60%) RSA Archer
10 3 (0.45%) CSIRT
10 3 (0.45%) HP ALM
10 3 (0.45%) HP Fortify
10 3 (0.45%) Salt
10 3 (0.45%) TrustSec
10 3 (0.45%) WebInspect
Vendors
1 95 (14.14%) Microsoft
2 44 (6.55%) VMware
3 33 (4.91%) Cisco
4 24 (3.57%) Google
5 19 (2.83%) Splunk
6 16 (2.38%) CheckPoint
7 15 (2.23%) CyberArk
8 14 (2.08%) SAP
9 13 (1.93%) IBM
9 13 (1.93%) Oracle
10 11 (1.64%) HP
10 11 (1.64%) Meraki
11 10 (1.49%) Qualys
12 9 (1.34%) ServiceNow
13 8 (1.19%) Darktrace
13 8 (1.19%) McAfee
14 7 (1.04%) Veeam
15 5 (0.74%) Citrix
15 5 (0.74%) CrowdStrike
15 5 (0.74%) Fortinet