Period
to 25 April 2019

The following table provides summary statistics for contract job vacancies with a requirement for SANS qualifications. Included is a benchmarking guide to the contractor rates offered over the 6 months to 25 April 2019 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

SANS Institute
UK
6 months to
25 Apr 2019
Same period 2018 Same period 2017
Rank 746 781 691
Rank change year-on-year +35 -90 +124
Contract jobs citing SANS 111 104 138
As % of all contract IT jobs advertised in the UK 0.12% 0.10% 0.15%
As % of the Qualifications category 0.60% 0.54% 0.74%
Number of daily rates quoted 73 73 101
UK median daily rate £525 £560 £450
Median daily rate % change year-on-year -6.25% +24.44% -14.29%
10th Percentile £413 £413 £375
90th Percentile £730 £738 £575
UK excluding London median daily rate £500 £494 £450
% change year-on-year +1.27% +9.72% -9.55%
Number of hourly rates quoted 0 0 0
UK median hourly rate - - -
UK excluding London median hourly rate - - -

SANS is in the Academic Qualifications and Professional Certifications category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for academic qualifications or professional certifications.

All Academic and Professional Certifications
UK
Contract vacancies requiring academic qualifications or professional certifications 18,425 19,365 18,657
As % of all contract IT jobs advertised in the UK 19.40% 19.16% 20.46%
Number of daily rates quoted 11,110 11,639 11,815
UK median daily rate £463 £450 £425
Median daily rate % change year-on-year +2.78% +5.88% +3.66%
10th Percentile £263 £235 £253
90th Percentile £638 £625 £600
UK excluding London median daily rate £435 £413 £400
% change year-on-year +5.45% +3.13% +3.90%
Number of hourly rates quoted 839 860 913
UK median hourly rate £33.40 £23.50 £30.00
Median hourly rate % change year-on-year +42.13% -21.67% +3.45%
10th Percentile £12.56 £12.50 £12.00
90th Percentile £53.75 £50.67 £52.14
UK excluding London median hourly rate £30.00 £25.00 £30.00
% change year-on-year +20.00% -16.67% -7.69%

SANS
Job Vacancy Trend

Job postings citing SANS as a percentage of all IT jobs advertised.

Job vacancy trend for SANS in the UK

SANS
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing SANS.

Contractor daily rate trend for SANS in the UK

SANS
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing SANS over the 6 months to 25 April 2019.

Contractor daily rate histogram for SANS in the UK

SANS
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing SANS.

Contractor hourly rate trend for SANS in the UK

SANS
Top 12 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing SANS within the UK over the 6 months to 25 April 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +33 110 £525 -4.55% 10
UK excluding London +21 56 £500 +1.27% 8
London +17 54 £550 -17.29% 2
South East +12 19 £520 +12.43%
Midlands -1 13 £500 +5.26% 2
West Midlands -10 10 £525 +10.53% 2
South West -26 9 £725 +28.89% 2
East of England +15 7 £340 -37.90% 4
North of England +12 7 £463 -31.48%
North West - 6 £450 -
Yorkshire +10 1 £640 -5.19%
Scotland +3 1 £750 +27.66%

For the 6 months to 25 April 2019, IT contractor jobs citing SANS also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for SANS.

1 72 (64.86%) CISSP
2 69 (62.16%) Information Security
2 69 (62.16%) Cybersecurity
3 54 (48.65%) ISO/IEC 27001
4 52 (46.85%) OWASP
5 50 (45.05%) Penetration Testing
6 37 (33.33%) GIAC
7 33 (29.73%) Security Operations
8 32 (28.83%) Management Information System
8 32 (28.83%) Vulnerability Management
9 28 (25.23%) SIEM
10 27 (24.32%) Amazon AWS
10 27 (24.32%) Firewall
11 24 (21.62%) CISM
11 24 (21.62%) Security Architecture
12 23 (20.72%) TOGAF
12 23 (20.72%) Cisco Certification
13 21 (18.92%) Agile Software Development
14 20 (18.02%) Threat Modelling
15 19 (17.12%) Patch Management
15 19 (17.12%) ITIL
15 19 (17.12%) Linux
15 19 (17.12%) Python
15 19 (17.12%) Information Assurance
16 18 (16.22%) Security Cleared
16 18 (16.22%) Windows
16 18 (16.22%) Finance
17 17 (15.32%) Computer Emergency Response Teams
17 17 (15.32%) GDPR
18 16 (14.41%) Threat Intelligence

SANS
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 5 (4.50%) OpenStack
Applications
1 1 (0.90%) Microsoft Excel
1 1 (0.90%) MS Visio
Cloud Services
1 27 (24.32%) Amazon AWS
2 16 (14.41%) Microsoft Azure
3 15 (13.51%) Google Cloud Platform
4 2 (1.80%) IaaS
4 2 (1.80%) PaaS
5 1 (0.90%) Office 365
5 1 (0.90%) OpenShift
Communications & Networking
1 27 (24.32%) Firewall
2 16 (14.41%) TCP/IP
3 12 (10.81%) WAN
4 11 (9.91%) LAN
4 11 (9.91%) SNMP
4 11 (9.91%) VPN
5 10 (9.01%) HTTP
5 10 (9.01%) Intrusion Detection
5 10 (9.01%) Network Security
5 10 (9.01%) SAN
6 8 (7.21%) VoIP
7 6 (5.41%) MPLS
8 5 (4.50%) 802.11
8 5 (4.50%) DHCP
8 5 (4.50%) DNS
8 5 (4.50%) FTP
8 5 (4.50%) Internet
8 5 (4.50%) SSL
8 5 (4.50%) VLAN
9 4 (3.60%) Cisco ASA
Database & Business Intelligence
1 5 (4.50%) Big Data
2 2 (1.80%) EDRMS
Development Applications
1 9 (8.11%) Burp Suite
2 7 (6.31%) Metasploit
3 2 (1.80%) AppScan
3 2 (1.80%) SonarQube
4 1 (0.90%) Jenkins
General
1 18 (16.22%) Finance
2 14 (12.61%) Law
3 9 (8.11%) Legal
3 9 (8.11%) Telecoms
4 8 (7.21%) Retail
5 7 (6.31%) Financial Institution
6 6 (5.41%) Banking
6 6 (5.41%) Manufacturing
7 5 (4.50%) Electronics
7 5 (4.50%) Marketing
8 3 (2.70%) Multimedia
9 1 (0.90%) Aerospace
9 1 (0.90%) Back Office
Job Titles
1 35 (31.53%) Architect
1 35 (31.53%) Security Architect
2 24 (21.62%) Analyst
3 16 (14.41%) Security Analyst
4 14 (12.61%) Tester
5 9 (8.11%) Security Manager
5 9 (8.11%) SOC Analyst
6 8 (7.21%) Penetration Tester
7 7 (6.31%) Cybersecurity Analyst
7 7 (6.31%) Lead Architect
7 7 (6.31%) Lead Security Architect
7 7 (6.31%) Security Tester
8 6 (5.41%) Cloud Architect
8 6 (5.41%) Cybersecurity Architect
8 6 (5.41%) Information Manager
8 6 (5.41%) Information Security Manager
8 6 (5.41%) Security Specialist
9 5 (4.50%) Applications Tester
9 5 (4.50%) Cybersecurity Specialist
10 4 (3.60%) Web Tester
Libraries, Frameworks & Software Standards
1 10 (9.01%) .NET
2 6 (5.41%) 802.1X
3 5 (4.50%) Elastic Stack
3 5 (4.50%) Middleware
4 3 (2.70%) Spring
4 3 (2.70%) Web Services
5 2 (1.80%) .NET Framework
5 2 (1.80%) AngularJS
5 2 (1.80%) HTML
5 2 (1.80%) jQuery
5 2 (1.80%) React
6 1 (0.90%) Regular Expression
6 1 (0.90%) Underscore.js
Miscellaneous
1 32 (28.83%) Management Information System
2 16 (14.41%) Cyberthreat
3 12 (10.81%) Cyberattack
4 7 (6.31%) Analytical Skills
4 7 (6.31%) Mobile App
5 6 (5.41%) Public Cloud
6 5 (4.50%) Cybercrime
6 5 (4.50%) SCADA
6 5 (4.50%) Security Operations Centre
7 3 (2.70%) Wiki
8 2 (1.80%) Fintech
8 2 (1.80%) Smartphone
9 1 (0.90%) Cyber Kill Chain
9 1 (0.90%) Distributed Denial-of-Service
9 1 (0.90%) PKI
9 1 (0.90%) Self-Motivation
Operating Systems
1 19 (17.12%) Linux
2 18 (16.22%) Windows
3 9 (8.11%) Unix
4 5 (4.50%) Kali Linux
5 1 (0.90%) Android
5 1 (0.90%) Apple iOS
5 1 (0.90%) Mac OS
Processes & Methodologies
1 69 (62.16%) Cybersecurity
1 69 (62.16%) Information Security
2 52 (46.85%) OWASP
3 50 (45.05%) Penetration Testing
4 33 (29.73%) Security Operations
5 32 (28.83%) Vulnerability Management
6 28 (25.23%) SIEM
7 24 (21.62%) Security Architecture
8 23 (20.72%) TOGAF
9 21 (18.92%) Agile Software Development
10 20 (18.02%) Threat Modelling
11 19 (17.12%) Information Assurance
11 19 (17.12%) ITIL
11 19 (17.12%) Patch Management
12 16 (14.41%) Cyber Threat Intelligence
12 16 (14.41%) Threat Intelligence
13 15 (13.51%) SDLC
14 14 (12.61%) Data Privacy
14 14 (12.61%) Open Source
15 13 (11.71%) Data Protection
Programming Languages
1 19 (17.12%) Python
2 12 (10.81%) Java
2 12 (10.81%) PowerShell
3 10 (9.01%) Perl
4 9 (8.11%) C
4 9 (8.11%) Ruby
5 8 (7.21%) PHP
6 7 (6.31%) C#
7 6 (5.41%) Bash Shell
8 5 (4.50%) Lua
9 4 (3.60%) C++
9 4 (3.60%) JavaScript
9 4 (3.60%) Shell Script
10 2 (1.80%) Apple Swift
10 2 (1.80%) Objective-C
11 1 (0.90%) SQL
Qualifications
1 72 (64.86%) CISSP
2 37 (33.33%) GIAC
3 24 (21.62%) CISM
4 23 (20.72%) Cisco Certification
5 18 (16.22%) Security Cleared
6 16 (14.41%) CCNA
7 14 (12.61%) GSNA
8 13 (11.71%) SC Cleared
9 12 (10.81%) GCIH
10 11 (9.91%) CREST Certified
11 10 (9.01%) CEH
11 10 (9.01%) Degree
11 10 (9.01%) OSCP
12 9 (8.11%) CLAS
12 9 (8.11%) GCFE
12 9 (8.11%) GSEC
13 8 (7.21%) CISA
14 7 (6.31%) GPEN
14 7 (6.31%) OSCE
15 6 (5.41%) CRISC
Quality Assurance & Compliance
1 54 (48.65%) ISO/IEC 27001
2 17 (15.32%) GDPR
3 8 (7.21%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
4 7 (6.31%) HMG Security Policy Framework
5 6 (5.41%) COBIT
5 6 (5.41%) Cyber Essentials
5 6 (5.41%) Sarbanes-Oxley
6 5 (4.50%) HIPAA
6 5 (4.50%) PCI DSS
7 4 (3.60%) Web Application Security Consortium
8 1 (0.90%) ISO 31000
8 1 (0.90%) NIST 800
System Software
1 1 (0.90%) Docker
1 1 (0.90%) ProxySG
1 1 (0.90%) Virtual Machines
Systems Management
1 17 (15.32%) Computer Emergency Response Teams
2 11 (9.91%) Nessus
3 8 (7.21%) CSIRT
4 7 (6.31%) Nmap
5 5 (4.50%) EnCase
5 5 (4.50%) FTK
5 5 (4.50%) QRadar
6 2 (1.80%) Host Intrusion Detection System
6 2 (1.80%) Network Intrusion Detection System
7 1 (0.90%) Ansible
7 1 (0.90%) CASB
7 1 (0.90%) Kubernetes
7 1 (0.90%) McAfee ePO
Vendors
1 9 (8.11%) McAfee
2 7 (6.31%) Cisco
2 7 (6.31%) Splunk
3 6 (5.41%) AlienVault
3 6 (5.41%) ArcSight
3 6 (5.41%) Microsoft
3 6 (5.41%) Netsparker
3 6 (5.41%) Veracode
4 5 (4.50%) Apple
4 5 (4.50%) IBM
4 5 (4.50%) SAP
5 4 (3.60%) Oracle
6 3 (2.70%) CheckPoint
6 3 (2.70%) Palo Alto
6 3 (2.70%) Qualys
6 3 (2.70%) Rapid7
7 2 (1.80%) LogRhythm
7 2 (1.80%) ServiceNow
8 1 (0.90%) Blue Coat
8 1 (0.90%) Sophos