ISO/IEC 27001 Contracts, Co-occurring Skills & Contractor Rates

ISO/IEC 27001
UK

The table below provides summary statistics for contract job vacancies requiring ISO/IEC 27001 skills. It includes a benchmarking guide to the contractor rates offered in vacancies that cited ISO/IEC 27001 over the 6 months leading up to 26 July 2024, comparing them to the same period in the previous two years.

Location	6 months to 26 Jul 2024	Same period 2023	Same period 2022
Rank	234	193	290
Rank change year-on-year	-41	+97	+51
Contract jobs citing ISO/IEC 27001	419	752	835
As % of all contract jobs advertised in the UK	1.04%	1.38%	0.93%
As % of the Quality Assurance & Compliance category	7.60%	9.99%	7.22%
Number of daily rates quoted	315	544	616
10^th Percentile	£400	£425	£400
25^th Percentile	£500	£500	£475
Median daily rate (50^th Percentile)	£578	£600	£575
Median % change year-on-year	-3.75%	+4.35%	+13.30%
75^th Percentile	£673	£700	£675
90^th Percentile	£750	£800	£756
UK excluding London median daily rate	£557	£575	£550
% change year-on-year	-3.22%	+4.55%	+22.22%
Number of hourly rates quoted	3	11	6
10^th Percentile	-	£43.75	£18.75
25^th Percentile	£26.25	£48.13	£32.19
Median hourly rate	£27.50	£64.15	£65.79
Median % change year-on-year	-57.13%	-2.50%	+9.33%
75^th Percentile	£36.40	£75.21	£70.77
90^th Percentile	£40.98	£86.66	£85.54
UK excluding London median hourly rate	£27.50	£64.15	£65.79
% change year-on-year	-57.13%	-2.50%	+9.01%

All Quality Assurance and Compliance Skills
UK

ISO/IEC 27001 falls under the Quality Assurance and Compliance category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring quality assurance or compliance skills.

Contract vacancies with a requirement for quality assurance or compliance skills	5,515	7,527	11,567
As % of all contract IT jobs advertised in the UK	13.73%	13.85%	12.95%
Number of daily rates quoted	3,409	5,117	7,942
10^th Percentile	£296	£305	£300
25^th Percentile	£400	£413	£413
Median daily rate (50^th Percentile)	£504	£525	£525
Median % change year-on-year	-4.00%	-	+10.53%
75^th Percentile	£625	£650	£631
90^th Percentile	£738	£750	£725
UK excluding London median daily rate	£475	£500	£474
% change year-on-year	-5.00%	+5.54%	+11.47%
Number of hourly rates quoted	349	250	278
10^th Percentile	£11.07	£14.00	£12.72
25^th Percentile	£14.41	£18.71	£16.25
Median hourly rate	£25.00	£38.71	£26.00
Median % change year-on-year	-35.42%	+48.88%	+23.81%
75^th Percentile	£53.75	£62.38	£53.94
90^th Percentile	£70.00	£79.25	£70.00
UK excluding London median hourly rate	£25.00	£35.00	£22.40
% change year-on-year	-28.57%	+56.28%	+17.87%

ISO/IEC 27001
Job Vacancy Trend

Job postings citing ISO/IEC 27001 as a proportion of all IT jobs advertised.

Job vacancy trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing ISO/IEC 27001.

Daily rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Daily Rate Histogram

Daily rate distribution for jobs citing ISO/IEC 27001 over the 6 months to 26 July 2024.

Daily rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing ISO/IEC 27001.

Hourly rate trend for ISO/IEC 27001 in the UK

ISO/IEC 27001
Hourly Rate Histogram

Hourly rate distribution of jobs citing ISO/IEC 27001 over the 6 months to 26 July 2024.

Hourly rate histogram for ISO/IEC 27001 in the UK

ISO/IEC 27001
Top 16 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing ISO/IEC 27001 within the UK over the 6 months to 26 July 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location	Rank Change on Same Period Last Year	Matching Contract IT Job Ads	Median Daily Rate Past 6 Months	Median Daily Rate % Change on Same Period Last Year	Live Jobs
England	-49	353	£585	-2.50%	201
UK excluding London	-43	198	£557	-3.22%	160
London	-10	184	£600	-4.76%	71
Work from Home	-27	148	£600	-	117
South East	-29	45	£500	-20.00%	30
North of England	+20	44	£575	+12.75%	39
Scotland	+40	39	£564	+2.55%	6
North West	+49	37	£600	+33.33%	16
South West	-19	33	£600	-7.69%	27
Midlands	-14	28	£500	-	26
West Midlands	-18	15	£475	-8.65%	25
East Midlands	+11	10	£500	+2.56%	1
East of England	+9	6	£261	-52.64%	16
Yorkshire	-4	5	£550	-4.35%	15
Wales	+7	3	£669	+16.30%	8
North East	-	2	£525	-	8

ISO/IEC 27001
Top 30 Co-occurring Skills and Capabilities

For the 6 months to 26 July 2024, contractor job vacancies citing ISO/IEC 27001 also mentioned the following skills and capabilities in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for ISO/IEC 27001.

1	205 (48.93%)	NIST
2	173 (41.29%)	Information Security
2	173 (41.29%)	Cybersecurity
3	127 (30.31%)	CISSP
4	109 (26.01%)	Social Skills
5	105 (25.06%)	Risk Management
6	100 (23.87%)	Finance
7	95 (22.67%)	GDPR
8	88 (21.00%)	Azure
8	88 (21.00%)	Security Cleared
9	86 (20.53%)	CISM
10	85 (20.29%)	Microsoft
11	72 (17.18%)	SC Cleared
12	71 (16.95%)	SIEM
13	67 (15.99%)	Management Information System

14	66 (15.75%)	Security Architecture
15	63 (15.04%)	Public Sector
16	60 (14.32%)	Cloud Security
17	58 (13.84%)	Firewall
18	56 (13.37%)	Penetration Testing
19	55 (13.13%)	AWS
19	55 (13.13%)	PCI DSS
20	54 (12.89%)	Risk Assessment
21	53 (12.65%)	Vulnerability Management
22	52 (12.41%)	Analytical Skills
23	50 (11.93%)	CISA
24	49 (11.69%)	Incident Response
25	48 (11.46%)	ISO/IEC 27002 (supersedes ISO/IEC 17799)
26	46 (10.98%)	Linux
27	45 (10.74%)	Identity Access Management

ISO/IEC 27001
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
Applications
Business Applications
Cloud Services
Communications & Networking
Database & Business Intelligence
Development Applications
General
Job Titles
Libraries, Frameworks & Software Standards
Miscellaneous
Operating Systems
Processes & Methodologies
Programming Languages
Qualifications
Quality Assurance & Compliance
System Software
Systems Management
Vendors

Application Platforms
1	5 (1.19%)	Microsoft Exchange
1	5 (1.19%)	nginx
1	5 (1.19%)	SharePoint
2	2 (0.48%)	Confluence
2	2 (0.48%)	OpenStack
3	1 (0.24%)	Apache
3	1 (0.24%)	Apache Solr
3	1 (0.24%)	BizTalk Server
3	1 (0.24%)	IIS
3	1 (0.24%)	SharePoint Server
3	1 (0.24%)	Tomcat

Applications
1	4 (0.95%)	Microsoft Excel
2	3 (0.72%)	Microsoft Office
3	2 (0.48%)	MS Visio
4	1 (0.24%)	AutoCAD
4	1 (0.24%)	Microsoft PowerPoint

Business Applications
1	3 (0.72%)	Sparx Enterprise Architect
2	2 (0.48%)	Remedy ITSM
3	1 (0.24%)	Exchequer
3	1 (0.24%)	Infor M3

Cloud Services
1	88 (21.00%)	Azure
2	55 (13.13%)	AWS
3	25 (5.97%)	Azure Sentinel
4	21 (5.01%)	Microsoft 365
5	15 (3.58%)	GCP
6	14 (3.34%)	Entra ID
7	9 (2.15%)	IaaS
7	9 (2.15%)	SaaS
8	7 (1.67%)	PaaS
9	6 (1.43%)	Azure Monitor
9	6 (1.43%)	Microsoft Purview
10	5 (1.19%)	AWS CloudTrail
11	4 (0.95%)	Amazon CloudWatch
12	3 (0.72%)	AWS Lambda
12	3 (0.72%)	Azure Key Vault
12	3 (0.72%)	npm
12	3 (0.72%)	Nutanix
12	3 (0.72%)	OCI
12	3 (0.72%)	Serverless
12	3 (0.72%)	Yarn

Communications & Networking
1	58 (13.84%)	Firewall
2	44 (10.50%)	Network Security
3	21 (5.01%)	WAN
4	17 (4.06%)	SD-WAN
5	9 (2.15%)	VPN
6	8 (1.91%)	DNS
7	7 (1.67%)	TCP/IP
8	6 (1.43%)	Intrusion Detection
8	6 (1.43%)	LAN
9	5 (1.19%)	Internet
10	4 (0.95%)	SCCP
11	3 (0.72%)	5G
11	3 (0.72%)	AMQP
11	3 (0.72%)	DHCP
11	3 (0.72%)	VLAN
11	3 (0.72%)	Wi-Fi
11	3 (0.72%)	Wireless
12	2 (0.48%)	4G
12	2 (0.48%)	IPsec
12	2 (0.48%)	MVNO

Database & Business Intelligence
1	7 (1.67%)	SQL Server
2	5 (1.19%)	Data Warehouse
3	3 (0.72%)	MongoDB
3	3 (0.72%)	Relational Database
4	2 (0.48%)	MySQL
5	1 (0.24%)	Couchbase
5	1 (0.24%)	NoSQL
5	1 (0.24%)	Redis

Development Applications
1	7 (1.67%)	Burp Suite
2	5 (1.19%)	Git
2	5 (1.19%)	Jenkins
3	3 (0.72%)	Cypress.io
3	3 (0.72%)	JIRA
3	3 (0.72%)	Mocha
4	1 (0.24%)	Octopus Deploy

General
1	109 (26.01%)	Social Skills
2	100 (23.87%)	Finance
3	63 (15.04%)	Public Sector
4	52 (12.41%)	Analytical Skills
5	30 (7.16%)	Legal
6	29 (6.92%)	Banking
7	21 (5.01%)	Telecoms
8	18 (4.30%)	Manufacturing
9	11 (2.63%)	Inclusion and Diversity
10	8 (1.91%)	Organisational Skills
11	7 (1.67%)	Influencing Skills
12	6 (1.43%)	Retail
13	5 (1.19%)	Automotive
13	5 (1.19%)	Electronics
13	5 (1.19%)	Marketing
14	4 (0.95%)	Financial Institution
14	4 (0.95%)	Investment Banking
14	4 (0.95%)	Local Government
15	3 (0.72%)	Documentation Skills
15	3 (0.72%)	Law

Job Titles
1	68 (16.23%)	Architect
2	67 (15.99%)	Consultant
3	61 (14.56%)	Analyst
4	50 (11.93%)	Security Consultant
5	49 (11.69%)	Security Architect
6	41 (9.79%)	Security Engineer
7	29 (6.92%)	Senior
8	27 (6.44%)	Lead
9	25 (5.97%)	Security Manager
10	23 (5.49%)	Security Analyst
11	16 (3.82%)	Cybersecurity Consultant
12	15 (3.58%)	Information Analyst
12	15 (3.58%)	Information Security Analyst
12	15 (3.58%)	Project Manager
12	15 (3.58%)	Security Officer
13	14 (3.34%)	Cybersecurity Manager
14	13 (3.10%)	Information Security Consultant
14	13 (3.10%)	SOC Analyst
15	11 (2.63%)	Security Specialist
16	10 (2.39%)	Security Advisor

Libraries, Frameworks & Software Standards
1	8 (1.91%)	Kafka
2	6 (1.43%)	OAuth
3	5 (1.19%)	.NET
3	5 (1.19%)	RabbitMQ
4	4 (0.95%)	OAuth2
4	4 (0.95%)	SailPoint
5	3 (0.72%)	AngularJS
5	3 (0.72%)	Express.js
5	3 (0.72%)	Google JAX
5	3 (0.72%)	GraphQL
5	3 (0.72%)	gRPC
5	3 (0.72%)	Jest
5	3 (0.72%)	JWT
5	3 (0.72%)	MERN Stack
5	3 (0.72%)	Mongoose
5	3 (0.72%)	NestJS
5	3 (0.72%)	Node.js
5	3 (0.72%)	OpenAPI
5	3 (0.72%)	PyTorch
5	3 (0.72%)	SAML

Miscellaneous
1	67 (15.99%)	Management Information System
2	42 (10.02%)	Security Posture
3	27 (6.44%)	Cyber Threat
4	15 (3.58%)	PKI
5	14 (3.34%)	Data Protection Act
6	9 (2.15%)	CCTV
6	9 (2.15%)	Cloud Native
7	8 (1.91%)	Cyber Security Posture
7	8 (1.91%)	Data Centre
7	8 (1.91%)	Operational Technology
7	8 (1.91%)	Public Cloud
8	7 (1.67%)	CESG
8	7 (1.67%)	Security Operations Centre
9	6 (1.43%)	Cyber Kill Chain
9	6 (1.43%)	Greenfield Project
9	6 (1.43%)	NHS
10	5 (1.19%)	Distributed Denial-of-Service
10	5 (1.19%)	Hybrid Cloud
11	4 (0.95%)	IoT
11	4 (0.95%)	Smart Energy

Operating Systems
1	46 (10.98%)	Linux
2	34 (8.11%)	Windows
3	11 (2.63%)	Windows Server
4	8 (1.91%)	Mac OS X
5	5 (1.19%)	Unix
5	5 (1.19%)	zOS
6	3 (0.72%)	Windows 10
6	3 (0.72%)	Windows Server 2016
7	2 (0.48%)	CentOS
7	2 (0.48%)	Windows Server 2019
8	1 (0.24%)	Mac OS
8	1 (0.24%)	Oracle Linux
8	1 (0.24%)	Ubuntu
8	1 (0.24%)	Windows Server 2012

Processes & Methodologies
1	173 (41.29%)	Cybersecurity
1	173 (41.29%)	Information Security
2	105 (25.06%)	Risk Management
3	71 (16.95%)	SIEM
4	66 (15.75%)	Security Architecture
5	60 (14.32%)	Cloud Security
6	56 (13.37%)	Penetration Testing
7	54 (12.89%)	Risk Assessment
8	53 (12.65%)	Vulnerability Management
9	49 (11.69%)	Incident Response
10	45 (10.74%)	Identity Access Management
11	44 (10.50%)	Data Protection
12	43 (10.26%)	Problem-Solving
13	38 (9.07%)	Security Management
13	38 (9.07%)	Stakeholder Management
14	36 (8.59%)	ISMS
15	34 (8.11%)	Information Security Management
15	34 (8.11%)	Threat Modelling
16	32 (7.64%)	ITIL
17	31 (7.40%)	Security Operations

Programming Languages
1	18 (4.30%)	PowerShell
2	17 (4.06%)	Kusto Query Language
3	12 (2.86%)	Python
4	11 (2.63%)	C++
5	8 (1.91%)	C#
5	8 (1.91%)	SQL
6	7 (1.67%)	Bash
7	6 (1.43%)	Java
8	4 (0.95%)	JavaScript
9	3 (0.72%)	C
9	3 (0.72%)	Kotlin
9	3 (0.72%)	R
9	3 (0.72%)	TypeScript
10	2 (0.48%)	Bicep
11	1 (0.24%)	PHP

Qualifications
1	127 (30.31%)	CISSP
2	88 (21.00%)	Security Cleared
3	86 (20.53%)	CISM
4	72 (17.18%)	SC Cleared
5	50 (11.93%)	CISA
6	39 (9.31%)	Degree
7	23 (5.49%)	Cisco Certification
8	20 (4.77%)	CRISC
8	20 (4.77%)	ISO 27001 Lead Auditor
9	19 (4.53%)	CompTIA Security+
9	19 (4.53%)	DV Cleared
10	16 (3.82%)	CEH
11	14 (3.34%)	(ISC)2 CCSP
11	14 (3.34%)	CISMP
12	11 (2.63%)	CESG Certified Professional
12	11 (2.63%)	ISO 27001 Lead Implementer
13	10 (2.39%)	Azure Certification
13	10 (2.39%)	CCNP
13	10 (2.39%)	CCSP
14	9 (2.15%)	Microsoft Certification

Quality Assurance & Compliance
1	205 (48.93%)	NIST
2	95 (22.67%)	GDPR
3	55 (13.13%)	PCI DSS
4	48 (11.46%)	ISO/IEC 27002 (supersedes ISO/IEC 17799)
5	35 (8.35%)	Cyber Essentials
6	30 (7.16%)	GRC
7	26 (6.21%)	HIPAA
8	23 (5.49%)	NCSC
9	21 (5.01%)	COBIT
10	19 (4.53%)	ISO 9001
11	15 (3.58%)	Sarbanes-Oxley
12	11 (2.63%)	NIST 800
13	10 (2.39%)	ISO/IEC 20000
13	10 (2.39%)	SOC 2
14	9 (2.15%)	California Consumer Privacy Act
15	7 (1.67%)	Disclosure Scotland
15	7 (1.67%)	JSP 440
16	6 (1.43%)	RMADS
17	5 (1.19%)	QA
18	3 (0.72%)	ISO 22301

System Software
1	20 (4.77%)	Active Directory
2	7 (1.67%)	Docker
2	7 (1.67%)	VMware Infrastructure
3	4 (0.95%)	Virtual Machines
4	2 (0.48%)	Firmware
4	2 (0.48%)	Hyper-V
4	2 (0.48%)	IAG
4	2 (0.48%)	Snort
5	1 (0.24%)	KVM
5	1 (0.24%)	Squid
5	1 (0.24%)	VMware ESXi
5	1 (0.24%)	VMware NSX

Systems Management
1	14 (3.34%)	Kubernetes
2	13 (3.10%)	Terraform
3	7 (1.67%)	Nessus
4	6 (1.43%)	SCCM
5	5 (1.19%)	Ansible
5	5 (1.19%)	logstash
5	5 (1.19%)	Microsoft Intune
6	4 (0.95%)	Grafana
6	4 (0.95%)	Prometheus
6	4 (0.95%)	Single Sign-On
6	4 (0.95%)	Trend Micro Deep Security
7	2 (0.48%)	CASB
7	2 (0.48%)	IBM BigFix
7	2 (0.48%)	Oracle Identity Management
7	2 (0.48%)	SCOrch
7	2 (0.48%)	Tivoli
7	2 (0.48%)	ZABBIX
8	1 (0.24%)	FortiGate
8	1 (0.24%)	HAProxy
8	1 (0.24%)	Kibana

Vendors
1	85 (20.29%)	Microsoft
2	21 (5.01%)	Cisco
3	17 (4.06%)	Qualys
4	14 (3.34%)	Splunk
5	12 (2.86%)	ServiceNow
5	12 (2.86%)	VMware
6	11 (2.63%)	Google
7	7 (1.67%)	Checkmarx
7	7 (1.67%)	Remedy
7	7 (1.67%)	Veracode
8	6 (1.43%)	CrowdStrike
8	6 (1.43%)	Okta
8	6 (1.43%)	Rapid7
8	6 (1.43%)	SAP
9	5 (1.19%)	F5
9	5 (1.19%)	Palo Alto
10	4 (0.95%)	Oracle
11	3 (0.72%)	FireEye
11	3 (0.72%)	SolarWinds
11	3 (0.72%)	Tripwire

ISO/IEC 27001UK

All Quality Assurance and Compliance SkillsUK

ISO/IEC 27001Job Vacancy Trend

ISO/IEC 27001Contractor Daily Rate Trend

ISO/IEC 27001Daily Rate Histogram

ISO/IEC 27001Contractor Hourly Rate Trend

ISO/IEC 27001Hourly Rate Histogram

ISO/IEC 27001Top 16 Contract Locations

ISO/IEC 27001Top 30 Co-occurring Skills and Capabilities

ISO/IEC 27001Co-occurring Skills and Capabilities by Category