Period
to 21 January 2018

The following table provides summary statistics for contract job vacancies with a requirement for OWASP skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited OWASP over the 6 months to 21 January 2018 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Open Web Application Security Project (OWASP)
UK
6 months to
21 Jan 2018
Same period 2017 Same period 2016
Rank 588 552 725
Rank change year-on-year -36 +173 +55
Contract jobs citing OWASP 300 310 156
As % of all contract IT jobs advertised in the UK 0.30% 0.32% 0.14%
As % of the Processes & Methodologies category 0.36% 0.39% 0.18%
Number of daily rates quoted 190 180 98
UK median daily rate £500 £475 £428
Median daily rate % change year-on-year +5.21% +11.11% -10.00%
10th Percentile £350 £363 £320
90th Percentile £675 £589 £550
UK excluding London median daily rate £425 £475 £430
% change year-on-year -10.53% +10.47% -9.47%
Number of hourly rates quoted 4 1 0
UK median hourly rate £48.75 £35.00 -
Median hourly rate % change year-on-year +39.29% - -
UK excluding London median hourly rate £48.75 £35.00 -
% change year-on-year +39.29% - -

OWASP is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Contract vacancies with a requirement for process or methodology skills 83,462 80,467 89,057
As % of all contract IT jobs advertised in the UK 84.53% 83.78% 82.48%
Number of daily rates quoted 55,891 53,304 57,800
UK median daily rate £450 £425 £425
Median daily rate % change year-on-year +5.88% - +6.25%
10th Percentile £285 £263 £263
90th Percentile £638 £613 £600
UK excluding London median daily rate £410 £400 £390
% change year-on-year +2.50% +2.56% +4.00%
Number of hourly rates quoted 1,947 2,244 2,718
UK median hourly rate £23.50 £24.50 £23.75
Median hourly rate % change year-on-year -4.08% +3.16% +18.75%
10th Percentile £11.31 £11.25 £11.25
90th Percentile £50.00 £48.75 £50.00
UK excluding London median hourly rate £24.02 £24.50 £25.00
% change year-on-year -1.96% -2.00% +25.00%

OWASP
Job Vacancy Trend

Job postings citing OWASP as a percentage of all IT jobs advertised.

Job vacancy trend for OWASP in the UK

OWASP
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing OWASP.

Contractor daily rate trend for OWASP in the UK

OWASP
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing OWASP over the 6 months to 21 January 2018.

Contractor daily rate histogram for OWASP in the UK

OWASP
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing OWASP.

Contractor hourly rate trend for OWASP in the UK

OWASP
Top 13 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing OWASP within the UK over the 6 months to 21 January 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +18 293 £488 +7.14% 93
UK excluding London -15 173 £425 -10.53% 60
London -20 120 £525 +6.33% 39
North of England +77 74 £475 +5.56% 25
South East -25 61 £350 -19.54% 20
North West +31 32 £410 -18.00% 18
Yorkshire +20 27 £525 - 6
North East +50 16 £550 +29.41% 1
Midlands +12 16 £425 -5.56% 3
South West +3 16 £562 +24.89% 2
West Midlands +19 8 £425 -15.00% 2
East Midlands +3 8 £375 +36.36% 1
East of England -16 6 - - 4

For the 6 months to 21 January 2018, IT contractor jobs citing OWASP also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all contract ads with a requirement for OWASP.

1 132 (44.00%) Agile Software Development
2 88 (29.33%) Linux
3 85 (28.33%) REST
4 84 (28.00%) CSS
5 83 (27.67%) C#
6 82 (27.33%) Jenkins
7 77 (25.67%) Git (software)
8 73 (24.33%) JavaScript
9 70 (23.33%) .NET
10 69 (23.00%) Test Automation
11 68 (22.67%) Java
11 68 (22.67%) TDD
12 66 (22.00%) HTML
13 65 (21.67%) Continuous Integration
14 61 (20.33%) MVC
15 53 (17.67%) Windows
15 53 (17.67%) JIRA
16 52 (17.33%) Amazon AWS
17 51 (17.00%) Confluence
17 51 (17.00%) AngularJS
18 49 (16.33%) Penetration Testing
19 47 (15.67%) Web Development
19 47 (15.67%) Information Security
20 46 (15.33%) JMeter
20 46 (15.33%) Scrum
20 46 (15.33%) DevOps
21 45 (15.00%) Open Source
21 45 (15.00%) Web Services
22 43 (14.33%) RESTful
22 43 (14.33%) SDLC

OWASP
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 51 (17.00%) Confluence
2 18 (6.00%) Elasticsearch
3 17 (5.67%) IIS
4 14 (4.67%) nginx
5 13 (4.33%) CMS
5 13 (4.33%) Sitecore CMS
6 6 (2.00%) ArcGIS
7 4 (1.33%) Adobe Experience Manager
7 4 (1.33%) Drupal
7 4 (1.33%) WordPress
8 2 (0.67%) Oracle SOA Suite
9 1 (0.33%) Apache
9 1 (0.33%) Cloud Foundry
9 1 (0.33%) SAS
9 1 (0.33%) SharePoint
9 1 (0.33%) Tomcat
9 1 (0.33%) WebSphere
Applications
1 5 (1.67%) Microsoft Excel
2 2 (0.67%) Microsoft Office
Business Applications
1 10 (3.33%) SAP Hybris
Cloud Services
1 52 (17.33%) Amazon AWS
2 18 (6.00%) Microsoft Azure
3 12 (4.00%) Slack
4 11 (3.67%) Heroku
5 5 (1.67%) IaaS
5 5 (1.67%) PaaS
6 4 (1.33%) Office 365
6 4 (1.33%) SaaS
7 3 (1.00%) GitHub
8 2 (0.67%) Amazon EC2
8 2 (0.67%) Amazon S3
8 2 (0.67%) BlazeMeter
8 2 (0.67%) BrowserStack
8 2 (0.67%) Google Cloud Platform
9 1 (0.33%) AWS CloudFormation
9 1 (0.33%) Azure Active Directory
9 1 (0.33%) npm
9 1 (0.33%) Virtual Private Cloud
Communications & Networking
1 35 (11.67%) HTTP
2 32 (10.67%) TCP/IP
3 29 (9.67%) Firewall
4 21 (7.00%) Network Security
5 12 (4.00%) SSL
6 11 (3.67%) CTI
7 10 (3.33%) DNS
7 10 (3.33%) FTP
8 9 (3.00%) Reverse Proxy
9 4 (1.33%) LAN
9 4 (1.33%) MPLS
9 4 (1.33%) OSPF
9 4 (1.33%) SAN
9 4 (1.33%) VPN
9 4 (1.33%) WAN
9 4 (1.33%) WLAN
10 3 (1.00%) Internet
11 2 (0.67%) Intrusion Detection
11 2 (0.67%) Kerberos
11 2 (0.67%) SMS
Database & Business Intelligence
1 41 (13.67%) MongoDB
1 41 (13.67%) SQL Server
2 35 (11.67%) Relational Database
3 29 (9.67%) PostgreSQL
4 26 (8.67%) NoSQL
5 22 (7.33%) SQL Server 2012
6 13 (4.33%) MySQL
7 11 (3.67%) Endeca
8 9 (3.00%) SAP Data Services
9 8 (2.67%) Apache Hive
9 8 (2.67%) Big Data
10 6 (2.00%) GIS
10 6 (2.00%) Hadoop
10 6 (2.00%) RDBMS
11 5 (1.67%) Apache Cassandra
12 4 (1.33%) Oracle Database
13 1 (0.33%) Amazon DynamoDB
13 1 (0.33%) CouchDB
13 1 (0.33%) Redis
13 1 (0.33%) ZAP BI
Development Applications
1 82 (27.33%) Jenkins
2 77 (25.67%) Git (software)
3 53 (17.67%) JIRA
4 46 (15.33%) JMeter
5 30 (10.00%) Selenium
6 29 (9.67%) JUnit
6 29 (9.67%) Protractor
7 24 (8.00%) Burp Suite
7 24 (8.00%) Subversion
8 17 (5.67%) Sonatype Nexus
9 15 (5.00%) Visual Studio
10 13 (4.33%) Gatling
10 13 (4.33%) Gradle
10 13 (4.33%) ReSharper
10 13 (4.33%) WiX
11 12 (4.00%) HP UFT
11 12 (4.00%) LoadRunner
11 12 (4.00%) Maven
12 10 (3.33%) gulp
13 9 (3.00%) GitLab
General
1 25 (8.33%) Finance
2 12 (4.00%) Law
2 12 (4.00%) Retail
3 11 (3.67%) Marketing
4 10 (3.33%) Banking
4 10 (3.33%) Telecoms
5 9 (3.00%) Legal
5 9 (3.00%) Manufacturing
6 8 (2.67%) Electronics
7 4 (1.33%) Games
8 1 (0.33%) Publishing
8 1 (0.33%) Retail Banking
8 1 (0.33%) Retail Finance
Job Titles
1 106 (35.33%) Developer
2 33 (11.00%) .NET Developer
2 33 (11.00%) C# Developer
3 32 (10.67%) Analyst
4 30 (10.00%) C# .NET Developer
4 30 (10.00%) Security Engineer
5 29 (9.67%) Consultant
6 27 (9.00%) Security Consultant
6 27 (9.00%) Tester
7 26 (8.67%) Architect
8 20 (6.67%) Scala Developer
9 19 (6.33%) Java Developer
9 19 (6.33%) Security Architect
10 18 (6.00%) Test Engineer
11 16 (5.33%) Penetration Tester
11 16 (5.33%) React Developer
12 15 (5.00%) Security Analyst
13 14 (4.67%) Test Analyst
14 13 (4.33%) Web Developer
15 11 (3.67%) Software Developer
Libraries, Frameworks & Software Standards
1 85 (28.33%) REST
2 84 (28.00%) CSS
3 70 (23.33%) .NET
4 66 (22.00%) HTML
5 51 (17.00%) AngularJS
6 45 (15.00%) Web Services
7 43 (14.33%) RESTful
8 37 (12.33%) ASP.NET Web API
8 37 (12.33%) HTML5
9 36 (12.00%) Spring
10 33 (11.00%) Guice
11 28 (9.33%) CSS3
11 28 (9.33%) JSON
12 26 (8.67%) .NET Framework
12 26 (8.67%) Django
13 25 (8.33%) Ajax
14 24 (8.00%) RESTEasy
14 24 (8.00%) SOAP
15 22 (7.33%) KnockoutJS
15 22 (7.33%) Play Framework
Miscellaneous
1 16 (5.33%) PKI
2 12 (4.00%) Data Centre
3 11 (3.67%) Cyberthreat
4 9 (3.00%) Analytical Skills
4 9 (3.00%) Linux Command Line
5 8 (2.67%) Management Information System
6 7 (2.33%) BYOD
7 6 (2.00%) User Experience
8 5 (1.67%) Algorithms
8 5 (1.67%) CESG
8 5 (1.67%) Fintech
8 5 (1.67%) Greenfield Project
8 5 (1.67%) Mobile App
8 5 (1.67%) Public Cloud
9 4 (1.33%) Computer Science
9 4 (1.33%) Smartphone
10 3 (1.00%) Hybrid Cloud
11 2 (0.67%) Credit Risk
11 2 (0.67%) Mainframe
11 2 (0.67%) W3C
Operating Systems
1 88 (29.33%) Linux
2 53 (17.67%) Windows
3 31 (10.33%) Unix
4 15 (5.00%) Windows Server
5 10 (3.33%) CentOS
6 3 (1.00%) Kali Linux
7 2 (0.67%) Android
7 2 (0.67%) Apple iOS
8 1 (0.33%) CoreOS
8 1 (0.33%) Mac OS
8 1 (0.33%) Ubuntu
Processes & Methodologies
1 132 (44.00%) Agile Software Development
2 69 (23.00%) Test Automation
3 68 (22.67%) TDD
4 65 (21.67%) Continuous Integration
5 61 (20.33%) MVC
6 49 (16.33%) Penetration Testing
7 47 (15.67%) Information Security
7 47 (15.67%) Web Development
8 46 (15.33%) DevOps
8 46 (15.33%) Scrum
9 45 (15.00%) Open Source
10 43 (14.33%) SDLC
11 39 (13.00%) Vulnerability Management
12 36 (12.00%) BDD
13 33 (11.00%) Cybersecurity
14 31 (10.33%) Security Testing
14 31 (10.33%) SIEM
15 29 (9.67%) E-Commerce
16 28 (9.33%) Vulnerability Assessment
17 27 (9.00%) Prototyping
Programming Languages
1 83 (27.67%) C#
2 73 (24.33%) JavaScript
3 68 (22.67%) Java
4 42 (14.00%) Python
5 37 (12.33%) Ruby
6 35 (11.67%) Scala
7 20 (6.67%) C++
7 20 (6.67%) SQL
8 14 (4.67%) Groovy
9 13 (4.33%) PHP
10 12 (4.00%) ES6
11 9 (3.00%) TypeScript
11 9 (3.00%) VB.NET
12 8 (2.67%) Dart
13 5 (1.67%) Bash Shell
13 5 (1.67%) PowerShell
14 4 (1.33%) Perl
15 2 (0.67%) C
15 2 (0.67%) Shell Script
16 1 (0.33%) ES7
Qualifications
1 37 (12.33%) CISSP
2 25 (8.33%) Security Cleared
3 20 (6.67%) SANS
4 19 (6.33%) Degree
5 14 (4.67%) SC Cleared
6 13 (4.33%) CREST Certified
7 12 (4.00%) Cisco Certification
8 9 (3.00%) CGEIT
8 9 (3.00%) CISA
8 9 (3.00%) CLAS
9 8 (2.67%) CCSP
9 8 (2.67%) CESG Certified Professional
9 8 (2.67%) CRISC
10 7 (2.33%) CISM
10 7 (2.33%) DV Cleared
11 6 (2.00%) BPSS Clearance
12 5 (1.67%) CEH
12 5 (1.67%) CHECK Team Member
13 4 (1.33%) CCSE
13 4 (1.33%) CISMP
Quality Assurance & Compliance
1 26 (8.67%) ISO/IEC 27001
2 23 (7.67%) PCI DSS
3 18 (6.00%) GDPR
4 13 (4.33%) WCAG
5 11 (3.67%) QA
6 6 (2.00%) COBIT
6 6 (2.00%) JSP 440
6 6 (2.00%) RMADS
7 5 (1.67%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 4 (1.33%) NIST 800
9 3 (1.00%) COSO
9 3 (1.00%) Data Quality
10 2 (0.67%) Sarbanes-Oxley
11 1 (0.33%) ISO 22301
11 1 (0.33%) WAI
System Software
1 28 (9.33%) Docker
2 11 (3.67%) Active Directory
3 4 (1.33%) Hyper-V
3 4 (1.33%) LXC
3 4 (1.33%) VMware Infrastructure
4 2 (0.67%) IAG
4 2 (0.67%) Virtual Machines
Systems Management
1 30 (10.00%) Nessus
2 16 (5.33%) Ansible
3 13 (4.33%) Opscode Chef
4 11 (3.67%) Docker Swarm
5 10 (3.33%) Kubernetes
6 8 (2.67%) logstash
6 8 (2.67%) Terraform
7 6 (2.00%) Puppet
8 5 (1.67%) Nmap
9 4 (1.33%) Kibana
9 4 (1.33%) Microsoft Data Protection Manager
9 4 (1.33%) SCCM
9 4 (1.33%) SCOM
10 2 (0.67%) WMI
11 1 (0.33%) CA Single Sign-On
11 1 (0.33%) HP Fortify
Vendors
1 35 (11.67%) Microsoft
2 26 (8.67%) Google
3 19 (6.33%) SAP
4 17 (5.67%) Sitecore
5 16 (5.33%) Oracle
5 16 (5.33%) Splunk
6 13 (4.33%) Citrix
7 12 (4.00%) Qualys
8 11 (3.67%) hybris
9 8 (2.67%) AlienVault
10 6 (2.00%) Acunetix
10 6 (2.00%) ESRI
10 6 (2.00%) Red Hat
11 5 (1.67%) Zend
12 4 (1.33%) Cloudera
12 4 (1.33%) CommVault
12 4 (1.33%) EqualLogic
12 4 (1.33%) SolarWinds
12 4 (1.33%) Trustwave
12 4 (1.33%) Veeam