Period
to 24 January 2022

The following table provides summary statistics for contract job vacancies with a requirement for NIST skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited NIST over the 6 months to 24 January 2022 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

National Institute of Standards and Technology (NIST)
UK
6 months to
24 Jan 2022
Same period 2021 Same period 2020
Rank 447 329 494
Rank change year-on-year -118 +165 +142
Contract jobs citing NIST 431 303 268
As % of all contract jobs advertised in the UK 0.50% 0.73% 0.37%
As % of the Quality Assurance & Compliance category 3.78% 6.06% 3.33%
Number of daily rates quoted 294 222 178
10th Percentile £439 £401 £411
25th Percentile £500 £460 £458
Median daily rate (50th Percentile) £590 £550 £550
Median % change year-on-year +7.27% - -
75th Percentile £650 £650 £675
90th Percentile £750 £725 £775
UK excluding London median daily rate £600 £540 £538
% change year-on-year +11.11% +0.47% -1.15%
Number of hourly rates quoted 4 1 0
10th Percentile £49.15 - -
25th Percentile £51.76 - -
Median hourly rate £55.22 £50.00 -
Median % change year-on-year +10.43% - -
75th Percentile £58.03 - -
90th Percentile £61.68 - -
UK excluding London median hourly rate £54.43 - -

NIST is in the Quality Assurance and Compliance category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for quality assurance or compliance skills.

All Quality Assurance and Compliance Skills
UK
Contract vacancies with a requirement for quality assurance or compliance skills 11,390 4,996 8,036
As % of all contract IT jobs advertised in the UK 13.09% 12.07% 11.12%
Number of daily rates quoted 7,733 3,298 5,112
10th Percentile £275 £263 £240
25th Percentile £400 £367 £350
Median daily rate (50th Percentile) £500 £475 £450
Median % change year-on-year +5.26% +5.56% -
75th Percentile £600 £575 £550
90th Percentile £700 £650 £630
UK excluding London median daily rate £450 £450 £424
% change year-on-year - +6.13% -0.24%
Number of hourly rates quoted 274 219 305
10th Percentile £11.23 £10.75 £12.50
25th Percentile £14.16 £13.73 £16.25
Median hourly rate £23.00 £21.05 £20.75
Median % change year-on-year +9.26% +1.45% +2.49%
75th Percentile £49.25 £43.13 £47.50
90th Percentile £58.75 £52.50 £53.00
UK excluding London median hourly rate £18.50 £21.05 £21.42
% change year-on-year -12.11% -1.70% +5.78%

NIST
Job Vacancy Trend

Job postings citing NIST as a proportion of all IT jobs advertised.

Job vacancy trend for NIST in the UK

NIST
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing NIST.

Daily rate trend for NIST in the UK

NIST
Daily Rate Histogram

Daily rate distribution for jobs citing NIST over the 6 months to 24 January 2022.

Daily rate histogram for NIST in the UK

NIST
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing NIST.

Hourly rate trend for NIST in the UK

NIST
Top 16 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing NIST within the UK over the 6 months to 24 January 2022. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Jobs
England -172 340 £600 +9.09% 135
London -120 206 £600 +4.35% 59
UK excluding London -120 135 £600 +11.11% 85
Work from Home -101 111 £563 +11.39% 15
South East -105 41 £613 +22.50% 20
South West -30 34 £550 +22.22% 12
Scotland -38 22 £625 -3.85% 6
North of England -53 22 £590 +9.77% 27
North West -43 18 £601 +15.35% 16
Midlands -67 8 £650 -3.70% 12
East of England -43 7 £600 -2.04% 5
West Midlands -55 7 £650 -3.70% 9
Yorkshire -34 5 £590 +2.61% 9
East Midlands -34 1 - - 3
North East - 1 £900 - 2
Wales - 1 £550 - 2

For the 6 months to 24 January 2022, IT contractor jobs citing NIST also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for NIST.

1 223 (51.74%) ISO/IEC 27001
2 202 (46.87%) Cybersecurity
3 174 (40.37%) Information Security
4 155 (35.96%) CISSP
5 138 (32.02%) Risk Management
6 112 (25.99%) Finance
7 109 (25.29%) CISM
8 100 (23.20%) Azure
9 89 (20.65%) OWASP
10 85 (19.72%) Security Architecture
11 76 (17.63%) AWS
12 74 (17.17%) Social Skills
13 70 (16.24%) NCSC
13 70 (16.24%) GDPR
14 66 (15.31%) Agile Software Development
15 64 (14.85%) Security Cleared
16 63 (14.62%) Firewall
17 62 (14.39%) CISA
18 60 (13.92%) Management Information System
19 59 (13.69%) SIEM
20 57 (13.23%) PCI DSS
20 57 (13.23%) Stakeholder Management
21 53 (12.30%) Windows
22 51 (11.83%) Degree
23 50 (11.60%) SC Cleared
23 50 (11.60%) Application Security
24 48 (11.14%) COBIT
24 48 (11.14%) Penetration Testing
24 48 (11.14%) Microsoft
25 47 (10.90%) Linux

NIST
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 9 (2.09%) SharePoint
2 6 (1.39%) Confluence
3 4 (0.93%) Apache Spark
4 2 (0.46%) CMS
4 2 (0.46%) IIS
5 1 (0.23%) Elasticsearch
5 1 (0.23%) Exchange Server 2007
5 1 (0.23%) IBM HTTP Server
5 1 (0.23%) JBoss
5 1 (0.23%) MS Exchange
5 1 (0.23%) nginx
5 1 (0.23%) SharePoint Server
5 1 (0.23%) WebSphere
Applications
1 14 (3.25%) Microsoft Excel
2 7 (1.62%) Microsoft Office
3 3 (0.70%) Microsoft PowerPoint
4 1 (0.23%) MS Visio
Business Applications
1 11 (2.55%) Sentinel
2 3 (0.70%) SmartPlant
3 2 (0.46%) Sparx Enterprise Architect
Cloud Services
1 100 (23.20%) Azure
2 76 (17.63%) AWS
3 35 (8.12%) Microsoft 365
4 28 (6.50%) GCP
5 20 (4.64%) Azure Sentinel
6 19 (4.41%) SaaS
7 17 (3.94%) IaaS
8 15 (3.48%) Azure Active Directory
9 13 (3.02%) PaaS
10 11 (2.55%) Serverless
11 9 (2.09%) Amazon S3
12 8 (1.86%) Amazon CloudWatch
12 8 (1.86%) Power Platform
13 7 (1.62%) Virtual Private Cloud
14 6 (1.39%) AWS CloudTrail
14 6 (1.39%) Azure Monitor
15 5 (1.16%) Amazon ELB
15 5 (1.16%) Amazon Kinesis
15 5 (1.16%) AWS Lambda
15 5 (1.16%) Google Workspace
Communications & Networking
1 63 (14.62%) Firewall
2 40 (9.28%) Network Security
3 12 (2.78%) DNS
3 12 (2.78%) HTTP
4 11 (2.55%) Internet
4 11 (2.55%) VPN
5 9 (2.09%) SSL
5 9 (2.09%) TCP/IP
6 6 (1.39%) Intrusion Detection
7 5 (1.16%) Wireshark
8 4 (0.93%) Cisco IOS
8 4 (0.93%) ICMP
9 3 (0.70%) DHCP
9 3 (0.70%) WAN
9 3 (0.70%) X.509
10 2 (0.46%) 3G
10 2 (0.46%) 4G
10 2 (0.46%) 5G
10 2 (0.46%) HTTPS
10 2 (0.46%) SNMP
Database & Business Intelligence
1 14 (3.25%) SQL Server
2 6 (1.39%) RDBMS
2 6 (1.39%) Relational Database
3 5 (1.16%) Amazon Athena
3 5 (1.16%) Amazon RDS
3 5 (1.16%) Data Lake
3 5 (1.16%) Oracle Database
3 5 (1.16%) Power BI
4 4 (0.93%) Data Warehouse
5 2 (0.46%) Metadata
6 1 (0.23%) Apache Cassandra
6 1 (0.23%) Data Mining
6 1 (0.23%) HBase
6 1 (0.23%) MySQL
6 1 (0.23%) NoSQL
6 1 (0.23%) PostgreSQL
6 1 (0.23%) Tableau
Development Applications
1 12 (2.78%) JIRA
2 11 (2.55%) Git (software)
3 6 (1.39%) Burp Suite
3 6 (1.39%) Jenkins
3 6 (1.39%) Metasploit
4 5 (1.16%) SoapUI
4 5 (1.16%) sqlmap
5 4 (0.93%) GitLab
6 3 (0.70%) Bitbucket
6 3 (0.70%) IDA Disassembler
6 3 (0.70%) Visual Studio
7 1 (0.23%) Selenium
7 1 (0.23%) Snyk
7 1 (0.23%) SonarQube
7 1 (0.23%) Sonatype Nexus
7 1 (0.23%) VersionOne
General
1 112 (25.99%) Finance
2 74 (17.17%) Social Skills
3 44 (10.21%) Public Sector
4 32 (7.42%) Analytical Skills
5 28 (6.50%) Banking
6 27 (6.26%) Legal
7 21 (4.87%) Presentation Skills
8 18 (4.18%) Documentation Skills
9 17 (3.94%) Financial Institution
9 17 (3.94%) Influencing Skills
10 12 (2.78%) Law
11 10 (2.32%) Investment Banking
11 10 (2.32%) Manufacturing
11 10 (2.32%) Telecoms
12 8 (1.86%) Retail
13 6 (1.39%) Marketing
13 6 (1.39%) Organisational Skills
14 5 (1.16%) Electronics
14 5 (1.16%) Pharmaceutical
15 4 (0.93%) Inclusion and Diversity
Job Titles
1 76 (17.63%) Architect
2 71 (16.47%) Consultant
3 65 (15.08%) Security Architect
4 59 (13.69%) Analyst
5 53 (12.30%) Security Consultant
6 52 (12.06%) Security Engineer
7 31 (7.19%) Security Analyst
8 24 (5.57%) Security Manager
9 19 (4.41%) Security Specialist
10 17 (3.94%) Cybersecurity Consultant
10 17 (3.94%) Head of Security
11 15 (3.48%) Project Manager
12 14 (3.25%) Azure Engineer
13 13 (3.02%) Design Engineer
14 12 (2.78%) Business Analyst
14 12 (2.78%) Cybersecurity Manager
14 12 (2.78%) Risk Consultant
15 11 (2.55%) Information Manager
15 11 (2.55%) Information Security Manager
15 11 (2.55%) Risk Analyst
Libraries, Frameworks & Software Standards
1 12 (2.78%) OAuth
2 10 (2.32%) SAML
3 9 (2.09%) Kafka
4 7 (1.62%) Middleware
4 7 (1.62%) OpenID
5 6 (1.39%) REST
5 6 (1.39%) SOAP
5 6 (1.39%) Web Services
6 4 (0.93%) .NET
6 4 (0.93%) OAuth2
6 4 (0.93%) Spark Streaming
7 2 (0.46%) .NET Framework
7 2 (0.46%) JSON
7 2 (0.46%) RESTful
7 2 (0.46%) Software Packaging
8 1 (0.23%) 802.1X
8 1 (0.23%) Azure Blueprints
8 1 (0.23%) J2EE
8 1 (0.23%) JSON Web Signature
8 1 (0.23%) LDAP
Miscellaneous
1 60 (13.92%) Management Information System
2 17 (3.94%) Public Cloud
3 11 (2.55%) Self-Motivation
4 10 (2.32%) Data Centre
4 10 (2.32%) Hybrid Cloud
5 7 (1.62%) Enterprise Cloud
5 7 (1.62%) Greenfield Project
5 7 (1.62%) Mobile App
6 6 (1.39%) Cyber Defence
6 6 (1.39%) Cyberthreat
6 6 (1.39%) PKI
7 5 (1.16%) CESG
7 5 (1.16%) Cloud Native
7 5 (1.16%) SCADA
8 4 (0.93%) Digital Media
8 4 (0.93%) Enterprise Software
8 4 (0.93%) Linux Command Line
9 3 (0.70%) Cyber Kill Chain
9 3 (0.70%) Private Cloud
9 3 (0.70%) Smart City
Operating Systems
1 53 (12.30%) Windows
2 47 (10.90%) Linux
3 16 (3.71%) Unix
4 5 (1.16%) Android
4 5 (1.16%) Solaris
5 4 (0.93%) Red Hat Enterprise Linux
6 3 (0.70%) Kali Linux
7 2 (0.46%) Apple iOS
7 2 (0.46%) CentOS
7 2 (0.46%) CoreOS
7 2 (0.46%) Windows Server
8 1 (0.23%) Mac OS
8 1 (0.23%) Ubuntu
8 1 (0.23%) Windows Server 2019
Processes & Methodologies
1 202 (46.87%) Cybersecurity
2 174 (40.37%) Information Security
3 138 (32.02%) Risk Management
4 89 (20.65%) OWASP
5 85 (19.72%) Security Architecture
6 66 (15.31%) Agile Software Development
7 59 (13.69%) SIEM
8 57 (13.23%) Stakeholder Management
9 50 (11.60%) Application Security
10 48 (11.14%) Penetration Testing
11 47 (10.90%) ISMS
12 43 (9.98%) SABSA
13 42 (9.74%) Security Management
14 41 (9.51%) Identity Access Management
14 41 (9.51%) Vulnerability Management
15 40 (9.28%) ITIL
16 35 (8.12%) Data Protection
16 35 (8.12%) Data Security
16 35 (8.12%) Risk Assessment
17 34 (7.89%) Information Security Management
Programming Languages
1 23 (5.34%) PowerShell
2 18 (4.18%) Python
3 10 (2.32%) Java
3 10 (2.32%) SQL
4 9 (2.09%) C#
5 7 (1.62%) Bash
6 5 (1.16%) C
7 3 (0.70%) Go
7 3 (0.70%) Perl
7 3 (0.70%) Rust
8 2 (0.46%) JavaScript
8 2 (0.46%) Shell Script
Qualifications
1 155 (35.96%) CISSP
2 109 (25.29%) CISM
3 64 (14.85%) Security Cleared
4 62 (14.39%) CISA
5 51 (11.83%) Degree
6 50 (11.60%) SC Cleared
7 37 (8.58%) CRISC
8 32 (7.42%) Cisco Certification
9 27 (6.26%) SANS
10 25 (5.80%) FFIEC
11 22 (5.10%) (ISC)2 CCSP
12 21 (4.87%) CESG Certified Professional
12 21 (4.87%) GIAC
13 17 (3.94%) CEH
14 15 (3.48%) OSCP
14 15 (3.48%) PMP
15 14 (3.25%) ISACA
15 14 (3.25%) PMI Certification
16 12 (2.78%) CLAS
16 12 (2.78%) DV Cleared
Quality Assurance & Compliance
1 223 (51.74%) ISO/IEC 27001
2 70 (16.24%) GDPR
2 70 (16.24%) NCSC
3 57 (13.23%) PCI DSS
4 48 (11.14%) COBIT
5 44 (10.21%) NIST 800
6 40 (9.28%) Cyber Essentials
7 33 (7.66%) GRC
8 26 (6.03%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 26 (6.03%) Sarbanes-Oxley
9 19 (4.41%) GLBA
10 16 (3.71%) JSP 440
11 14 (3.25%) QA
12 13 (3.02%) RMADS
13 12 (2.78%) HMG Security Policy Framework
13 12 (2.78%) SOC 2
14 9 (2.09%) Cyber Essentials PLUS
15 7 (1.62%) ISO/IEC 27005
16 6 (1.39%) Data Quality
17 5 (1.16%) HIPAA
System Software
1 30 (6.96%) Active Directory
2 12 (2.78%) Docker
3 7 (1.62%) Virtual Machines
4 5 (1.16%) Hyper-V
5 3 (0.70%) VMware Infrastructure
6 2 (0.46%) vSphere
7 1 (0.23%) Snort
7 1 (0.23%) vCloud
7 1 (0.23%) Virtual Servers
7 1 (0.23%) VMware NSX
Systems Management
1 21 (4.87%) QRadar
2 18 (4.18%) Single Sign-On
3 15 (3.48%) Terraform
4 13 (3.02%) Kubernetes
5 9 (2.09%) RSA Archer
6 8 (1.86%) Ansible
6 8 (1.86%) CASB
6 8 (1.86%) Nexpose
6 8 (1.86%) Nmap
7 7 (1.62%) Nessus
8 6 (1.39%) Host Intrusion Detection System
8 6 (1.39%) HP Fortify
9 5 (1.16%) HP ALM
9 5 (1.16%) Opsgenie
9 5 (1.16%) SCCM
9 5 (1.16%) WebInspect
10 4 (0.93%) DatAdvantage
10 4 (0.93%) Salt
11 2 (0.46%) CSIRT
11 2 (0.46%) SCOM
Vendors
1 48 (11.14%) Microsoft
2 19 (4.41%) Splunk
3 18 (4.18%) Google
4 15 (3.48%) CyberArk
5 12 (2.78%) Qualys
6 11 (2.55%) Cisco
6 11 (2.55%) IBM
7 10 (2.32%) Oracle
8 9 (2.09%) ArcSight
8 9 (2.09%) LogRhythm
9 7 (1.62%) McAfee
9 7 (1.62%) VMware
10 6 (1.39%) ForeScout
10 6 (1.39%) Salesforce.com
10 6 (1.39%) Tripwire
11 5 (1.16%) Black Duck
11 5 (1.16%) SaltStack
11 5 (1.16%) Sonatype
11 5 (1.16%) Varonis
11 5 (1.16%) Veracode