Period
to 9 December 2018

The following table provides summary statistics for contract job vacancies with a requirement for SANS qualifications. Included is a benchmarking guide to the contractor rates offered over the 6 months to 9 December 2018 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

SANS Institute
UK
6 months to
9 Dec 2018
Same period 2017 Same period 2016
Rank 825 765 770
Rank change year-on-year -60 +5 +66
Contract jobs citing SANS 72 121 124
As % of all contract IT jobs advertised in the UK 0.069% 0.12% 0.12%
As % of the Qualifications category 0.36% 0.63% 0.58%
Number of daily rates quoted 41 77 76
UK median daily rate £538 £500 £450
Median daily rate % change year-on-year +7.50% +11.11% -18.18%
10th Percentile £406 £413 £366
90th Percentile £675 £663 £575
UK excluding London median daily rate £500 £488 £450
% change year-on-year +2.56% +8.33% -12.62%
Number of hourly rates quoted 0 0 1
UK median hourly rate - - £35.00
UK excluding London median hourly rate - - £35.00

SANS is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Contract vacancies requiring academic qualifications or professional certifications 19,907 19,293 21,335
As % of all contract IT jobs advertised in the UK 19.08% 18.83% 20.62%
Number of daily rates quoted 11,817 11,874 13,350
UK median daily rate £450 £425 £420
Median daily rate % change year-on-year +5.88% +1.19% +5.00%
10th Percentile £256 £220 £240
90th Percentile £625 £607 £594
UK excluding London median daily rate £425 £400 £393
% change year-on-year +6.25% +1.91% +1.29%
Number of hourly rates quoted 959 884 861
UK median hourly rate £25.63 £25.31 £25.50
Median hourly rate % change year-on-year +1.24% -0.75% +2.00%
10th Percentile £13.00 £12.00 £12.19
90th Percentile £51.00 £49.06 £48.75
UK excluding London median hourly rate £26.35 £26.68 £26.58
% change year-on-year -1.24% +0.40% +6.05%

SANS
Job Vacancy Trend

Job postings citing SANS as a percentage of all IT jobs advertised.

Job vacancy trend for SANS in the UK

SANS
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing SANS.

Contractor daily rate trend for SANS in the UK

SANS
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing SANS over the 6 months to 9 December 2018.

Contractor daily rate histogram for SANS in the UK

SANS
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing SANS.

Contractor hourly rate trend for SANS in the UK

SANS
Top 14 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing SANS within the UK over the 6 months to 9 December 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England -33 70 £550 +10.00% 30
London +7 39 £600 +9.09% 10
UK excluding London -69 32 £500 +2.56% 24
Midlands -4 12 £500 +5.26% 5
South East -35 8 £437 -12.70% 2
North of England -14 7 £570 +34.12% 9
West Midlands -19 7 £525 +10.53% 5
North West -21 4 £500 +17.65% 6
Yorkshire -2 3 £675 - 3
East of England -7 2 - - 4
Scotland -32 2 £475 -13.64% 3
East Midlands - 2 £406 -
South West -36 1 - -
North East - 1 £675 -

For the 6 months to 9 December 2018, IT contractor jobs citing SANS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for SANS.

1 54 (75.00%) CISSP
2 49 (68.06%) Cybersecurity
3 38 (52.78%) Information Security
4 28 (38.89%) CISM
5 25 (34.72%) Penetration Testing
6 24 (33.33%) ISO/IEC 27001
7 23 (31.94%) SIEM
8 21 (29.17%) Security Architecture
8 21 (29.17%) Agile Software Development
9 18 (25.00%) Python
9 18 (25.00%) Degree
10 17 (23.61%) Windows
11 16 (22.22%) Linux
11 16 (22.22%) GIAC
12 15 (20.83%) Security Cleared
12 15 (20.83%) CREST Certified
13 14 (19.44%) CEH
13 14 (19.44%) C
13 14 (19.44%) Java
14 13 (18.06%) Cisco Certification
14 13 (18.06%) HTTP
14 13 (18.06%) CISA
14 13 (18.06%) OWASP
14 13 (18.06%) CRISC
14 13 (18.06%) Computer Emergency Response Teams
15 12 (16.67%) Security Operations
16 11 (15.28%) DV Cleared
16 11 (15.28%) PowerShell
16 11 (15.28%) Computer Science
16 11 (15.28%) Ruby

SANS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 5 (6.94%) OpenStack
2 3 (4.17%) Apache Pig
3 1 (1.39%) Elasticsearch
3 1 (1.39%) IBM Domino
3 1 (1.39%) MS Exchange
Applications
1 1 (1.39%) Microsoft Excel
Cloud Services
1 10 (13.89%) Microsoft Azure
2 7 (9.72%) Amazon AWS
3 2 (2.78%) Office 365
4 1 (1.39%) G Suite
4 1 (1.39%) Mimecast
Communications & Networking
1 13 (18.06%) HTTP
2 11 (15.28%) Firewall
3 10 (13.89%) Network Security
4 8 (11.11%) SAN
4 8 (11.11%) SNMP
4 8 (11.11%) SSL
5 7 (9.72%) TCP/IP
5 7 (9.72%) VPN
6 6 (8.33%) DNS
7 5 (6.94%) 802.11
7 5 (6.94%) LAN
7 5 (6.94%) VoIP
7 5 (6.94%) WAN
8 4 (5.56%) DHCP
8 4 (5.56%) FTP
9 3 (4.17%) MPLS
9 3 (4.17%) VLAN
9 3 (4.17%) Wireless
10 2 (2.78%) DKIM
10 2 (2.78%) DMARC
Database & Business Intelligence
1 8 (11.11%) Big Data
1 8 (11.11%) Hadoop
2 3 (4.17%) Apache Hive
2 3 (4.17%) MySQL
2 3 (4.17%) SQL Server
3 1 (1.39%) NoSQL
Development Applications
1 5 (6.94%) Burp Suite
1 5 (6.94%) Metasploit
2 3 (4.17%) Atlassian Bamboo
2 3 (4.17%) Bitbucket
2 3 (4.17%) CodeSonar
2 3 (4.17%) Git (software)
2 3 (4.17%) git-flow
2 3 (4.17%) JIRA
2 3 (4.17%) Robot Framework
2 3 (4.17%) Selenium
3 2 (2.78%) AppScan
3 2 (2.78%) SonarQube
General
1 11 (15.28%) Finance
2 9 (12.50%) Legal
3 6 (8.33%) Retail
4 2 (2.78%) Italian Language
4 2 (2.78%) Law
5 1 (1.39%) Banking
5 1 (1.39%) Telecoms
Job Titles
1 16 (22.22%) Architect
2 15 (20.83%) Security Architect
3 13 (18.06%) Analyst
4 8 (11.11%) Penetration Tester
4 8 (11.11%) Security Specialist
4 8 (11.11%) Tester
5 7 (9.72%) Cybersecurity Specialist
6 6 (8.33%) Project Manager
6 6 (8.33%) Security Analyst
7 5 (6.94%) Security Manager
8 4 (5.56%) Information Analyst
8 4 (5.56%) Information Security Analyst
8 4 (5.56%) Security Project Manager
8 4 (5.56%) SOC Analyst
9 3 (4.17%) Consultant
9 3 (4.17%) IAM Project Manager
9 3 (4.17%) Principal Architect
9 3 (4.17%) Principal Security Architect
9 3 (4.17%) Security Engineer
9 3 (4.17%) Software Engineer
Libraries, Frameworks & Software Standards
1 5 (6.94%) 802.1X
1 5 (6.94%) Kafka
2 4 (5.56%) ModSecurity
3 3 (4.17%) .NET
3 3 (4.17%) .NET Framework
3 3 (4.17%) ASP.NET
3 3 (4.17%) Django
3 3 (4.17%) Elastic Stack
3 3 (4.17%) Java EE
3 3 (4.17%) LAMP
3 3 (4.17%) Node.js
3 3 (4.17%) RabbitMQ
3 3 (4.17%) REST
3 3 (4.17%) SOAP
3 3 (4.17%) Spring MVC
3 3 (4.17%) STL
4 2 (2.78%) Regular Expression
4 2 (2.78%) SailPoint
5 1 (1.39%) JSON
5 1 (1.39%) Spring
Miscellaneous
1 10 (13.89%) Analytical Skills
2 9 (12.50%) Management Information System
3 8 (11.11%) Cyberattack
4 5 (6.94%) Cyberthreat
4 5 (6.94%) SCADA
4 5 (6.94%) Security Operations Centre
5 4 (5.56%) Cyber Defence
6 3 (4.17%) Cybercrime
6 3 (4.17%) Mobile App
6 3 (4.17%) Public Cloud
6 3 (4.17%) Wiki
7 1 (1.39%) Distributed Denial-of-Service
7 1 (1.39%) e-Learning
7 1 (1.39%) Linux Command Line
7 1 (1.39%) PKI
7 1 (1.39%) Smart Energy
7 1 (1.39%) Smart Meter
7 1 (1.39%) Social Media
Operating Systems
1 17 (23.61%) Windows
2 16 (22.22%) Linux
3 7 (9.72%) Unix
4 5 (6.94%) Kali Linux
5 3 (4.17%) Android
5 3 (4.17%) Apple iOS
5 3 (4.17%) Mac OS
5 3 (4.17%) Mac OS X
6 1 (1.39%) AIX
6 1 (1.39%) CentOS
6 1 (1.39%) HPUX
6 1 (1.39%) Red Hat Enterprise Linux
6 1 (1.39%) Solaris
6 1 (1.39%) Windows Server
6 1 (1.39%) Windows Server 2008
Processes & Methodologies
1 49 (68.06%) Cybersecurity
2 38 (52.78%) Information Security
3 25 (34.72%) Penetration Testing
4 23 (31.94%) SIEM
5 21 (29.17%) Agile Software Development
5 21 (29.17%) Security Architecture
6 13 (18.06%) OWASP
7 12 (16.67%) Security Operations
8 11 (15.28%) Computer Science
8 11 (15.28%) Ethical Hacking
9 9 (12.50%) Computer Forensics
9 9 (12.50%) Patch Management
9 9 (12.50%) SDLC
10 8 (11.11%) Cyber Threat Intelligence
10 8 (11.11%) ITIL
10 8 (11.11%) Open Source
10 8 (11.11%) Risk Management
10 8 (11.11%) Threat Intelligence
10 8 (11.11%) Waterfall
11 7 (9.72%) Stakeholder Management
Programming Languages
1 18 (25.00%) Python
2 14 (19.44%) C
2 14 (19.44%) Java
3 11 (15.28%) PowerShell
3 11 (15.28%) Ruby
4 10 (13.89%) Perl
5 9 (12.50%) C++
6 8 (11.11%) Bash Shell
6 8 (11.11%) C#
7 5 (6.94%) Lua
8 4 (5.56%) JavaScript
8 4 (5.56%) Shell Script
9 3 (4.17%) Objective-C
9 3 (4.17%) PHP
10 1 (1.39%) SQL
Qualifications
1 54 (75.00%) CISSP
2 28 (38.89%) CISM
3 18 (25.00%) Degree
4 16 (22.22%) GIAC
5 15 (20.83%) CREST Certified
5 15 (20.83%) Security Cleared
6 14 (19.44%) CEH
7 13 (18.06%) CISA
7 13 (18.06%) Cisco Certification
7 13 (18.06%) CRISC
8 11 (15.28%) DV Cleared
9 10 (13.89%) OSCP
10 8 (11.11%) EnCE
10 8 (11.11%) GCIH
11 7 (9.72%) ISSAP
12 6 (8.33%) CCNA
12 6 (8.33%) CompTIA Security+
12 6 (8.33%) SSCP
13 5 (6.94%) CCIE
13 5 (6.94%) Tigerscheme
Quality Assurance & Compliance
1 24 (33.33%) ISO/IEC 27001
2 10 (13.89%) COBIT
3 7 (9.72%) GDPR
4 5 (6.94%) Sarbanes-Oxley
5 4 (5.56%) HIPAA
5 4 (5.56%) Web Application Security Consortium
6 2 (2.78%) Cyber Essentials
6 2 (2.78%) NIST 800
7 1 (1.39%) HMG Security Policy Framework
7 1 (1.39%) ISAE 3402
7 1 (1.39%) ISO/IEC 27005
7 1 (1.39%) PSD2
System Software
1 3 (4.17%) Docker
1 3 (4.17%) vSphere
2 2 (2.78%) Virtual Machines
3 1 (1.39%) Active Directory
3 1 (1.39%) ProxySG
3 1 (1.39%) Snort
Systems Management
1 13 (18.06%) Computer Emergency Response Teams
2 6 (8.33%) Nessus
3 5 (6.94%) EnCase
3 5 (6.94%) FTK
3 5 (6.94%) Nmap
4 3 (4.17%) Host Intrusion Detection System
4 3 (4.17%) Puppet
4 3 (4.17%) QRadar
4 3 (4.17%) Salt
5 2 (2.78%) CASB
5 2 (2.78%) McAfee ePO
5 2 (2.78%) SCCM
6 1 (1.39%) CSIRT
6 1 (1.39%) Kibana
6 1 (1.39%) logstash
6 1 (1.39%) Network Intrusion Detection System
6 1 (1.39%) Norton AntiVirus
Vendors
1 10 (13.89%) Splunk
2 9 (12.50%) Microsoft
3 6 (8.33%) ArcSight
3 6 (8.33%) LogRhythm
4 5 (6.94%) Cisco
4 5 (6.94%) Cloudera
5 4 (5.56%) McAfee
5 4 (5.56%) Oracle
6 3 (4.17%) IBM
6 3 (4.17%) Symantec
7 2 (2.78%) AlienVault
7 2 (2.78%) Apple
7 2 (2.78%) Blue Coat
7 2 (2.78%) CheckPoint
7 2 (2.78%) CyberArk
7 2 (2.78%) Dell
7 2 (2.78%) FireEye
7 2 (2.78%) Ivanti
7 2 (2.78%) Remedy
7 2 (2.78%) Sophos