SANS Contract Job Trends, Contractor Rates & Co-Occurring Skills

SANS Institute
UK

The table below provides summary statistics for contract job vacancies with a requirement for SANS qualifications. It includes a benchmarking guide to the contractor rates offered over the 6 months leading up to 18 November 2025, comparing them to the same period in the previous two years.

	6 months to 18 Nov 2025	Same period 2024	Same period 2023
Rank	535	541	458
Rank change year-on-year	+6	-83	+289
Contract jobs citing SANS	35	16	165
As % of all contract jobs in the UK	0.099%	0.044%	0.35%
As % of the Qualifications category	0.30%	0.15%	1.22%
Number of daily rates quoted	20	7	50
10^th Percentile	£492	£225	£525
25^th Percentile	£512	£369	£564
Median daily rate (50^th Percentile)	£539	£600	£650
Median % change year-on-year	-10.25%	-7.69%	+10.64%
75^th Percentile	£680	£625	£685
90^th Percentile	£883	£685	£752
UK excluding London median daily rate	£537	£600	£629
% change year-on-year	-10.50%	-4.57%	+25.75%

All Academic and Professional Certifications
UK

SANS falls under the Academic Qualifications and Professional Certifications category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring academic qualifications or professional certifications.

Contract vacancies requiring academic qualifications or professional certifications	11,698	10,580	13,570
As % of all contract IT jobs advertised in the UK	33.05%	29.35%	29.04%
Number of daily rates quoted	7,504	6,391	8,625
10^th Percentile	£300	£310	£300
25^th Percentile	£413	£420	£425
Median daily rate (50^th Percentile)	£525	£525	£550
Median % change year-on-year	-	-4.55%	-
75^th Percentile	£625	£638	£650
90^th Percentile	£719	£725	£725
UK excluding London median daily rate	£500	£518	£534
% change year-on-year	-3.38%	-3.09%	+1.71%
Number of hourly rates quoted	1,020	501	770
10^th Percentile	£17.50	£19.30	£17.72
25^th Percentile	£19.28	£24.18	£27.00
Median hourly rate	£25.15	£45.00	£53.58
Median % change year-on-year	-44.11%	-16.02%	+19.07%
75^th Percentile	£44.81	£67.00	£68.75
90^th Percentile	£71.00	£75.00	£80.00
UK excluding London median hourly rate	£25.15	£47.50	£52.50
% change year-on-year	-47.05%	-9.52%	+16.67%

SANS
Job Vacancy Trend

Historical trend showing the proportion of contract IT job postings citing SANS relative to all contract IT jobs advertised.

SANS
Daily Rate Trend

Contractor daily rate distribution trend for jobs in the UK citing SANS.

SANS
Daily Rate Histogram

Daily rate distribution for jobs citing SANS over the 6 months to 18 November 2025.

SANS
Hourly Rate Trend

Contractor hourly rate distribution trend for jobs in the UK citing SANS.

SANS
Top 11 Contract Job Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing SANS within the UK over the 6 months to 18 November 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location	Rank Change on Same Period Last Year	Matching Contract IT Job Ads	Median Daily Rate Past 6 Months	Median Daily Rate % Change on Same Period Last Year	Live Jobs
England	-25	26	£539	-10.25%	8
Work from Home	+23	17	£625	-	5
London	+13	14	£588	+11.90%	3
UK excluding London	-12	14	£537	-10.50%	14
South West	+4	6	£537	-10.50%	1
South East	-	4	£581	-	3
East of England	-16	2	£850	-
West Midlands	-	2	-	-
Midlands	-	2	-	-
Wales	-	1	£500	-
Scotland	-	1	-	-	10

SANS
Top 30 Co-Occurring Skills & Capabilities

For the 6 months to 18 November 2025, contractor job vacancies citing SANS also mentioned the following skills and capabilities in order of popularity. The figures indicate the absolute number of co-occurrences and as a proportion of all contract job ads with a requirement for SANS.

1	25 (71.43%)	CISSP
2	20 (57.14%)	AWS
2	20 (57.14%)	Cybersecurity
3	19 (54.29%)	NIST
4	17 (48.57%)	Azure
5	14 (40.00%)	Cloud Security
5	14 (40.00%)	GIAC
5	14 (40.00%)	SIEM
6	13 (37.14%)	Incident Response
7	12 (34.29%)	Agile
7	12 (34.29%)	Degree
7	12 (34.29%)	OWASP
7	12 (34.29%)	Python
8	11 (31.43%)	ISO/IEC 27001
8	11 (31.43%)	MITRE ATT&CK

8	11 (31.43%)	Security Cleared
8	11 (31.43%)	Security Operations
9	10 (28.57%)	GCP
10	9 (25.71%)	Palo Alto
10	9 (25.71%)	Penetration Testing
10	9 (25.71%)	SC Cleared
10	9 (25.71%)	Test Automation
10	9 (25.71%)	Vulnerability Management
11	8 (22.86%)	CI/CD
11	8 (22.86%)	OSCP
11	8 (22.86%)	PCI DSS
11	8 (22.86%)	PowerShell
12	7 (20.00%)	CREST Certified
12	7 (20.00%)	DevSecOps
12	7 (20.00%)	Security Management

SANS
Co-Occurring Skills & Capabilities by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1	3 (8.57%)	SharePoint

Cloud Services
1	20 (57.14%)	AWS
2	17 (48.57%)	Azure
3	10 (28.57%)	GCP
4	3 (8.57%)	Azure Sentinel
4	3 (8.57%)	Entra ID
5	2 (5.71%)	Microsoft 365
5	2 (5.71%)	OCI
6	1 (2.86%)	Amazon ECR
6	1 (2.86%)	Amazon EKS
6	1 (2.86%)	AWS CloudFormation
6	1 (2.86%)	AWS Fargate
6	1 (2.86%)	Azure AKS
6	1 (2.86%)	GitHub
6	1 (2.86%)	Google Kubernetes Engine
6	1 (2.86%)	IaaS
6	1 (2.86%)	Microsoft Purview
6	1 (2.86%)	PaaS
6	1 (2.86%)	Power Platform
6	1 (2.86%)	SaaS
6	1 (2.86%)	Tessian

Communications & Networking
1	6 (17.14%)	Firewall
2	3 (8.57%)	SSL
3	2 (5.71%)	Network Security
3	2 (5.71%)	VLAN
3	2 (5.71%)	VPN
4	1 (2.86%)	Internet
4	1 (2.86%)	Intranet
4	1 (2.86%)	Intrusion Detection
4	1 (2.86%)	NGFW
4	1 (2.86%)	Wireless

Database & Business Intelligence
1	1 (2.86%)	Power BI

Development Applications
1	4 (11.43%)	JIRA
2	3 (8.57%)	Burp Suite
3	2 (5.71%)	Metasploit
3	2 (5.71%)	sqlmap
4	1 (2.86%)	Git
4	1 (2.86%)	Jenkins
4	1 (2.86%)	SonarQube

General
1	13 (37.14%)	Social Skills
2	7 (20.00%)	Public Sector
3	3 (8.57%)	Analytical Skills
3	3 (8.57%)	Finance
3	3 (8.57%)	Inclusion and Diversity
3	3 (8.57%)	Legal
4	1 (2.86%)	Banking
4	1 (2.86%)	Influencing Skills
4	1 (2.86%)	Law
4	1 (2.86%)	Military
4	1 (2.86%)	Organisational Skills
4	1 (2.86%)	Presentation Skills
4	1 (2.86%)	Telecoms

Job Titles
1	13 (37.14%)	Security Engineer
2	7 (20.00%)	Analyst
2	7 (20.00%)	Security Analyst
3	5 (14.29%)	Consultant
4	4 (11.43%)	Tester
5	3 (8.57%)	Penetration Tester
5	3 (8.57%)	Senior
6	2 (5.71%)	Architect
6	2 (5.71%)	Cybersecurity Specialist
6	2 (5.71%)	Head of Information Security
6	2 (5.71%)	Security Consultant
6	2 (5.71%)	Security Specialist
6	2 (5.71%)	Senior Consultant
6	2 (5.71%)	Test Engineer
7	1 (2.86%)	Enterprise Architect
7	1 (2.86%)	Principal Consultant
7	1 (2.86%)	QA Engineer
7	1 (2.86%)	Security Architect
7	1 (2.86%)	Senior Management Consultant
7	1 (2.86%)	Senior Security Engineer

Libraries, Frameworks & Software Standards
1	1 (2.86%)	.NET
1	1 (2.86%)	JWT
1	1 (2.86%)	REST
1	1 (2.86%)	Spring

Miscellaneous
1	7 (20.00%)	Security Posture
2	6 (17.14%)	Cyber Defence
3	5 (14.29%)	Management Information System
4	3 (8.57%)	PKI
4	3 (8.57%)	Security Operations Centre
5	2 (5.71%)	Algorithms
5	2 (5.71%)	CSOC
5	2 (5.71%)	Cyber Threat
5	2 (5.71%)	Enterprise Software
5	2 (5.71%)	Operational Technology
6	1 (2.86%)	Cloud Native
6	1 (2.86%)	Cloud Security Posture
6	1 (2.86%)	Cyber Kill Chain
6	1 (2.86%)	Cyber Security Posture
6	1 (2.86%)	Data Centre
6	1 (2.86%)	Hybrid Cloud
6	1 (2.86%)	SCADA
6	1 (2.86%)	YubiKey

Operating Systems
1	4 (11.43%)	Linux
2	3 (8.57%)	Windows
3	1 (2.86%)	Kali Linux

Processes & Methodologies
1	20 (57.14%)	Cybersecurity
2	14 (40.00%)	Cloud Security
2	14 (40.00%)	SIEM
3	13 (37.14%)	Incident Response
4	12 (34.29%)	Agile
4	12 (34.29%)	OWASP
5	11 (31.43%)	MITRE ATT&CK
5	11 (31.43%)	Security Operations
6	9 (25.71%)	Penetration Testing
6	9 (25.71%)	Test Automation
6	9 (25.71%)	Vulnerability Management
7	8 (22.86%)	CI/CD
8	7 (20.00%)	DevSecOps
8	7 (20.00%)	Security Management
8	7 (20.00%)	Security Testing
9	6 (17.14%)	Application Security
9	6 (17.14%)	Impact Assessments
10	5 (14.29%)	Information Security
10	5 (14.29%)	Infrastructure as Code
10	5 (14.29%)	Problem-Solving

Programming Languages
1	12 (34.29%)	Python
2	8 (22.86%)	PowerShell
3	2 (5.71%)	Bash
3	2 (5.71%)	Java
4	1 (2.86%)	Perl
4	1 (2.86%)	SQL

Qualifications
1	25 (71.43%)	CISSP
2	14 (40.00%)	GIAC
3	12 (34.29%)	Degree
4	11 (31.43%)	Security Cleared
5	9 (25.71%)	SC Cleared
6	8 (22.86%)	OSCP
7	7 (20.00%)	CREST Certified
8	6 (17.14%)	CISM
8	6 (17.14%)	CompTIA CySA+
8	6 (17.14%)	Network+ Certification
9	5 (14.29%)	DV Cleared
10	4 (11.43%)	CEH
11	3 (8.57%)	CISA
11	3 (8.57%)	ISACA
12	2 (5.71%)	CCSP
12	2 (5.71%)	Cisco Certification
12	2 (5.71%)	DBS Check
12	2 (5.71%)	GSEC
12	2 (5.71%)	OSCE
12	2 (5.71%)	SSCP

Quality Assurance & Compliance
1	19 (54.29%)	NIST
2	11 (31.43%)	ISO/IEC 27001
3	8 (22.86%)	PCI DSS
4	6 (17.14%)	HIPAA
5	4 (11.43%)	NIST 800
6	3 (8.57%)	GDPR
7	2 (5.71%)	QA
8	1 (2.86%)	GRC
8	1 (2.86%)	NCSC

System Software
1	3 (8.57%)	Active Directory
2	1 (2.86%)	Docker

Systems Management
1	3 (8.57%)	Ansible
1	3 (8.57%)	Kubernetes
1	3 (8.57%)	Nessus
1	3 (8.57%)	Nmap
1	3 (8.57%)	Terraform
2	2 (5.71%)	QRadar
3	1 (2.86%)	Computer Emergency Response Teams
3	1 (2.86%)	Istio
3	1 (2.86%)	Microsoft Intune

Vendors
1	9 (25.71%)	Palo Alto
2	5 (14.29%)	Microsoft
3	2 (5.71%)	Cisco
3	2 (5.71%)	Clearswift
3	2 (5.71%)	Rapid7
3	2 (5.71%)	ServiceNow
3	2 (5.71%)	Splunk
4	1 (2.86%)	CheckPoint
4	1 (2.86%)	CrowdStrike
4	1 (2.86%)	CyberArk
4	1 (2.86%)	Exabeam
4	1 (2.86%)	Fortinet
4	1 (2.86%)	Google
4	1 (2.86%)	Qualys
4	1 (2.86%)	Tenable
4	1 (2.86%)	Zscaler

SANS InstituteUK

All Academic and Professional CertificationsUK

SANSJob Vacancy Trend

SANSDaily Rate Trend

SANSDaily Rate Histogram

SANSHourly Rate Trend

SANSTop 11 Contract Job Locations

SANSTop 30 Co-Occurring Skills & Capabilities

SANSCo-Occurring Skills & Capabilities by Category