Period
to 20 November 2017

The following table provides summary statistics for contract job vacancies with a requirement for SANS qualifications. Included is a benchmarking guide to the contractor rates offered over the 6 months to 20 November 2017 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

SANS Institute
UK
6 months to
20 Nov 2017
Same period 2016 Same period 2015
Rank 761 775 818
Rank change year-on-year +14 +43 +1
Contract jobs citing SANS 118 113 68
As % of all contract IT jobs advertised in the UK 0.12% 0.11% 0.059%
As % of the Qualifications category 0.62% 0.53% 0.30%
Number of daily rates quoted 76 65 44
UK median daily rate £513 £450 £528
Median daily rate % change year-on-year +13.89% -14.69% +16.57%
10th Percentile £413 £349 £418
90th Percentile £656 £575 £629
UK excluding London median daily rate £500 £450 £488
% change year-on-year +11.11% -7.69% +27.87%
Number of hourly rates quoted 0 1 0
UK median hourly rate - £35.00 -
UK excluding London median hourly rate - £35.00 -

SANS is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Contract vacancies requiring academic qualifications or professional certifications 19090 21493 22625
As % of all contract IT jobs advertised in the UK 18.67% 20.66% 19.78%
Number of daily rates quoted 11700 13402 13639
UK median daily rate £425 £413 £400
Median daily rate % change year-on-year +3.03% +3.13% +2.56%
10th Percentile £220 £240 £244
90th Percentile £600 £588 £575
UK excluding London median daily rate £400 £388 £385
% change year-on-year +3.23% +0.65% +5.48%
Number of hourly rates quoted 897 851 1090
UK median hourly rate £26.25 £26.50 £25.00
Median hourly rate % change year-on-year -0.94% +6.00% +31.58%
10th Percentile £12.00 £12.13 £12.00
90th Percentile £50.00 £49.19 £49.78
UK excluding London median hourly rate £27.50 £27.50 £25.00
% change year-on-year - +10.00% +31.58%

SANS
Job Vacancy Trend

Job postings citing SANS as a percentage of all IT jobs advertised.

Job vacancy trend for SANS in the UK

SANS
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing SANS.

Contractor daily rate trend for SANS in the UK

SANS
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing SANS over the 6 months to 20 November 2017.

Contractor daily rate histogram for SANS in the UK

SANS
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing SANS.

Contractor hourly rate trend for SANS in the UK

SANS
Top 12 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing SANS within the UK over the 6 months to 20 November 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +22 93 £500 +11.11% 19
UK excluding London +21 68 £500 +11.11% 10
London -1 42 £550 +15.79% 9
South East +18 30 £500 -4.76% 3
Scotland -9 18 £550 +22.22%
North of England +24 12 £425 -5.56% 3
North West -12 11 £425 -5.56% 1
South West +12 5 £588 +4.91% 1
Midlands +21 2 £513 +20.59% 2
West Midlands +24 1 £475 +11.76% 2
Yorkshire +14 1 - - 2
East of England - 1 - - 1

For the 6 months to 20 November 2017, IT contractor jobs citing SANS also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all contract ads with a requirement for SANS.

1 96 (81.36%) CISSP
2 71 (60.17%) Cybersecurity
3 68 (57.63%) Information Security
4 56 (47.46%) ISO/IEC 27001
5 48 (40.68%) Firewall
6 44 (37.29%) CISM
6 44 (37.29%) Linux
7 39 (33.05%) SIEM
8 37 (31.36%) Splunk
8 37 (31.36%) Finance
9 36 (30.51%) Unix
10 34 (28.81%) Windows
11 30 (25.42%) GIAC
11 30 (25.42%) CEH
12 28 (23.73%) SSCP
12 28 (23.73%) PCI DSS
13 26 (22.03%) Python
14 25 (21.19%) Vulnerability Management
15 22 (18.64%) Analytics
15 22 (18.64%) Qualys
15 22 (18.64%) GDPR
16 21 (17.80%) Amazon AWS
17 19 (16.10%) Computer Security
17 19 (16.10%) Degree
18 17 (14.41%) COBIT
18 17 (14.41%) Perl
18 17 (14.41%) McAfee
18 17 (14.41%) Security Operations
19 16 (13.56%) Java
19 16 (13.56%) TCP/IP

SANS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 12 (10.17%) Apache Spark
2 2 (1.69%) Oracle SOA Suite
Applications
1 1 (0.85%) Spreadsheet
Cloud Services
1 21 (17.80%) Amazon AWS
2 15 (12.71%) Microsoft Azure
3 14 (11.86%) Mimecast
4 12 (10.17%) IaaS
5 7 (5.93%) Cloud Computing
6 5 (4.24%) SaaS
7 4 (3.39%) PaaS
Communications & Networking
1 48 (40.68%) Firewall
2 16 (13.56%) TCP/IP
3 12 (10.17%) DNS
3 12 (10.17%) SAN
4 11 (9.32%) Network Security
5 9 (7.63%) LAN
5 9 (7.63%) VoIP
5 9 (7.63%) VPN
5 9 (7.63%) WAN
6 7 (5.93%) Intrusion Detection
7 3 (2.54%) HTTP
7 3 (2.54%) HTTPS
7 3 (2.54%) IPsec
8 2 (1.69%) Kerberos
8 2 (1.69%) LDAP
9 1 (0.85%) Internet
9 1 (0.85%) X.509
Database & Business Intelligence
1 14 (11.86%) Big Data
2 12 (10.17%) Parquet
3 2 (1.69%) Redis
Development Applications
1 12 (10.17%) Git (software)
1 12 (10.17%) JIRA
2 2 (1.69%) Metasploit
General
1 37 (31.36%) Finance
2 7 (5.93%) Legal
3 5 (4.24%) Retail
3 5 (4.24%) Telecoms
4 4 (3.39%) Law
5 2 (1.69%) Banking
6 1 (0.85%) Dutch Language
6 1 (0.85%) French Language
6 1 (0.85%) Publishing
6 1 (0.85%) Spanish Language
Job Titles
1 39 (33.05%) Analyst
2 36 (30.51%) Security Analyst
3 24 (20.34%) Information Analyst
3 24 (20.34%) Information Security Analyst
4 17 (14.41%) Consultant
5 16 (13.56%) Security Engineer
6 15 (12.71%) Security Consultant
7 13 (11.02%) Architect
7 13 (11.02%) Splunk Engineer
8 12 (10.17%) Security Architect
9 11 (9.32%) Cybersecurity Analyst
10 9 (7.63%) Security Specialist
11 8 (6.78%) CISSP Consultant
11 8 (6.78%) Java Engineer
12 6 (5.08%) Cybersecurity Specialist
13 5 (4.24%) Cloud Specialist
13 5 (4.24%) Penetration Tester
13 5 (4.24%) Security Manager
13 5 (4.24%) Splunk Analyst
13 5 (4.24%) Tester
Libraries, Frameworks & Software Standards
1 13 (11.02%) Regular Expression
2 12 (10.17%) Grok
2 12 (10.17%) Kafka
3 9 (7.63%) Elastic Stack
4 3 (2.54%) Web Services
5 2 (1.69%) SAML
6 1 (0.85%) COM
6 1 (0.85%) VML
Miscellaneous
1 16 (13.56%) Management Information System
2 12 (10.17%) PKI
3 11 (9.32%) Cyber Attack
4 6 (5.08%) Analytical Skills
4 6 (5.08%) Data Centre
5 5 (4.24%) Cyberthreat
6 4 (3.39%) Hybrid Cloud
7 3 (2.54%) CESG
7 3 (2.54%) Reinsurance
7 3 (2.54%) Security Operations Centre
8 2 (1.69%) Algorithms
8 2 (1.69%) N-Tier
9 1 (0.85%) Computer Science
9 1 (0.85%) Distributed Denial-of-Service
9 1 (0.85%) FMCG
9 1 (0.85%) Tandem
Operating Systems
1 44 (37.29%) Linux
2 36 (30.51%) Unix
3 34 (28.81%) Windows
Processes & Methodologies
1 71 (60.17%) Cybersecurity
2 68 (57.63%) Information Security
3 39 (33.05%) SIEM
4 25 (21.19%) Vulnerability Management
5 22 (18.64%) Analytics
6 19 (16.10%) Computer Security
7 17 (14.41%) Security Operations
8 15 (12.71%) Configuration Management
8 15 (12.71%) DevOps
9 14 (11.86%) OWASP
10 13 (11.02%) Enterprise Architecture
10 13 (11.02%) SDLC
10 13 (11.02%) Security Monitoring
11 12 (10.17%) Anomaly Detection
11 12 (10.17%) Data Privacy
11 12 (10.17%) Data Protection
11 12 (10.17%) Patch Management
11 12 (10.17%) Security Architecture
11 12 (10.17%) User Acceptance Testing
11 12 (10.17%) Vulnerability Assessment
Programming Languages
1 26 (22.03%) Python
2 17 (14.41%) Perl
3 16 (13.56%) Java
4 15 (12.71%) Bash Shell
5 5 (4.24%) PowerShell
6 3 (2.54%) C
6 3 (2.54%) C-shell
6 3 (2.54%) Korn
6 3 (2.54%) Ruby
6 3 (2.54%) SQL
7 2 (1.69%) Shell Script
8 1 (0.85%) C++
Qualifications
1 96 (81.36%) CISSP
2 44 (37.29%) CISM
3 30 (25.42%) CEH
3 30 (25.42%) GIAC
4 28 (23.73%) SSCP
5 19 (16.10%) Degree
6 15 (12.71%) GCIH
7 14 (11.86%) GCIA
8 13 (11.02%) Security Cleared
9 9 (7.63%) Cisco Certification
9 9 (7.63%) CREST Certified
10 7 (5.93%) (ISC)2 CCSP
10 7 (5.93%) SC Cleared
11 4 (3.39%) CESG Certified Professional
11 4 (3.39%) CLAS
11 4 (3.39%) GCFA
11 4 (3.39%) Network+ Certification
11 4 (3.39%) Novell Certification
11 4 (3.39%) OSCP
11 4 (3.39%) PCI QSA
Quality Assurance & Compliance
1 56 (47.46%) ISO/IEC 27001
2 28 (23.73%) PCI DSS
3 22 (18.64%) GDPR
4 17 (14.41%) COBIT
5 14 (11.86%) NIST 800
6 12 (10.17%) QA
7 9 (7.63%) PA-DSS
8 8 (6.78%) Sarbanes-Oxley
9 5 (4.24%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
10 4 (3.39%) ISO/IEC 27005
10 4 (3.39%) SAS 70
11 2 (1.69%) Cyber Essentials
11 2 (1.69%) SLA
System Software
1 10 (8.47%) Virtual Machines
2 4 (3.39%) Active Directory
3 2 (1.69%) IAG
4 1 (0.85%) VMware Infrastructure
Systems Management
1 11 (9.32%) Opscode Chef
1 11 (9.32%) Puppet
2 10 (8.47%) McAfee ePO
2 10 (8.47%) QRadar
3 9 (7.63%) Nmap
4 8 (6.78%) Ansible
4 8 (6.78%) Host Intrusion Detection System
5 7 (5.93%) CSIRT
5 7 (5.93%) Nessus
5 7 (5.93%) Nexpose
6 3 (2.54%) Computer Emergency Response Teams
7 2 (1.69%) Kibana
7 2 (1.69%) logstash
8 1 (0.85%) ArcSight ESM
8 1 (0.85%) EnCase
Vendors
1 37 (31.36%) Splunk
2 22 (18.64%) Qualys
3 17 (14.41%) McAfee
4 13 (11.02%) Tufin
5 11 (9.32%) ArcSight
5 11 (9.32%) CheckPoint
5 11 (9.32%) Cisco
6 10 (8.47%) Blue Coat
6 10 (8.47%) Dell
6 10 (8.47%) FireEye
7 9 (7.63%) Apple
7 9 (7.63%) Microsoft
8 7 (5.93%) Intel
8 7 (5.93%) ServiceNow
8 7 (5.93%) Snow
9 5 (4.24%) AlienVault
10 4 (3.39%) IBM
11 3 (2.54%) LogRhythm
11 3 (2.54%) Sun
12 2 (1.69%) Oracle