Period
to 22 October 2019

The following table provides summary statistics for contract job vacancies with a requirement for SIEM skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited SIEM over the 6 months to 22 October 2019 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Security Information and Event Management (SIEM)
UK
6 months to
22 Oct 2019
Same period 2018 Same period 2017
Rank 316 398 402
Rank change year-on-year +82 +4 -8
Contract jobs citing SIEM 684 645 592
As % of all contract IT jobs advertised in the UK 0.81% 0.62% 0.60%
As % of the Processes & Methodologies category 0.93% 0.72% 0.69%
Number of daily rates quoted 448 395 370
UK median daily rate £513 £525 £500
Median daily rate % change year-on-year -2.38% +5.00% +5.26%
10th Percentile £363 £369 £363
90th Percentile £688 £650 £675
UK excluding London median daily rate £500 £513 £500
% change year-on-year -2.44% +2.50% +8.11%
Number of hourly rates quoted 12 7 1
UK median hourly rate £50.00 £21.50 £68.00
Median hourly rate % change year-on-year +132.56% -68.38% +146.38%
UK excluding London median hourly rate £50.00 £21.50 £68.00
% change year-on-year +132.56% -68.38% +146.38%

SIEM is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for process or methodology skills.

All Process and Methodology Skills
UK
Contract vacancies with a requirement for process or methodology skills 73,256 89,672 85,710
As % of all contract IT jobs advertised in the UK 86.37% 86.82% 86.25%
Number of daily rates quoted 48,113 59,141 56,784
UK median daily rate £475 £452 £450
Median daily rate % change year-on-year +5.20% +0.33% +5.88%
10th Percentile £300 £300 £278
90th Percentile £650 £638 £625
UK excluding London median daily rate £438 £425 £400
% change year-on-year +2.94% +6.25% -
Number of hourly rates quoted 2,288 2,425 2,056
UK median hourly rate £24.00 £20.60 £24.66
Median hourly rate % change year-on-year +16.50% -16.46% +9.60%
10th Percentile £11.87 £11.18 £11.25
90th Percentile £53.23 £50.00 £50.00
UK excluding London median hourly rate £22.93 £20.08 £25.00
% change year-on-year +14.22% -19.70% +9.06%

SIEM
Job Vacancy Trend

Job postings citing SIEM as a percentage of all IT jobs advertised.

Job vacancy trend for SIEM in the UK

SIEM
Contractor Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing SIEM.

Contractor daily rate trend for SIEM in the UK

SIEM
Contractor Daily Rate Histogram

The daily rate distribution of IT jobs citing SIEM over the 6 months to 22 October 2019.

Contractor daily rate histogram for SIEM in the UK

SIEM
Contractor Hourly Rate Trend

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing SIEM.

Contractor hourly rate trend for SIEM in the UK

SIEM
Contractor Hourly Rate Histogram

The hourly rate distribution of IT jobs citing SIEM over the 6 months to 22 October 2019.

Contractor hourly rate histogram for SIEM in the UK

SIEM
Top 14 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing SIEM within the UK over the 6 months to 22 October 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +66 626 £513 -1.16% 169
UK excluding London +86 388 £500 -2.44% 134
London +49 273 £525 - 47
South East +62 129 £483 -19.58% 33
North of England +7 73 £525 +5.00% 31
South West +23 62 £450 -5.26% 21
Midlands +64 52 £550 +7.32% 31
West Midlands +33 45 £525 +2.44% 22
North West -8 39 £450 -3.23% 20
Scotland +42 38 £525 +3.70% 5
Yorkshire +20 34 £550 +7.32% 9
East of England +24 33 £575 +15.00% 7
East Midlands +24 5 £550 -8.33% 9
Wales +25 1 £325 - 2

For the 6 months to 22 October 2019, IT contractor jobs citing SIEM also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads with a requirement for SIEM.

1 263 (38.45%) Cybersecurity
2 219 (32.02%) Firewall
3 202 (29.53%) Information Security
4 186 (27.19%) Security Operations
5 185 (27.05%) Splunk
6 184 (26.90%) Linux
7 163 (23.83%) Finance
8 161 (23.54%) Windows
9 136 (19.88%) CISSP
10 128 (18.71%) Security Cleared
11 118 (17.25%) Python
12 117 (17.11%) AWS
13 115 (16.81%) ISO/IEC 27001
14 94 (13.74%) Azure
15 93 (13.60%) Microsoft
16 92 (13.45%) Security Architecture
16 92 (13.45%) Vulnerability Management
17 83 (12.13%) Threat Intelligence
18 82 (11.99%) SC Cleared
18 82 (11.99%) Network Security
19 81 (11.84%) NIST
20 80 (11.70%) Unix
21 77 (11.26%) Security Operations Centre
22 74 (10.82%) Management Information System
23 73 (10.67%) Cisco
23 73 (10.67%) Cisco Certification
23 73 (10.67%) Intrusion Detection
24 71 (10.38%) Agile Software Development
24 71 (10.38%) Bash Shell
25 69 (10.09%) Use Case

SIEM
Co-occurring IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 18 (2.63%) Apache
1 18 (2.63%) Confluence
2 17 (2.49%) nginx
3 12 (1.75%) IIS
3 12 (1.75%) SharePoint
4 5 (0.73%) MS Exchange
5 4 (0.58%) OpenStack
6 3 (0.44%) Blackberry Enterprise Server
7 2 (0.29%) Apache Spark
7 2 (0.29%) Cloud Foundry
7 2 (0.29%) SharePoint 2013
8 1 (0.15%) Elasticsearch
8 1 (0.15%) Oracle Workflow
8 1 (0.15%) Skype for Business
8 1 (0.15%) Tomcat
8 1 (0.15%) WebSphere
8 1 (0.15%) WebSphere Application Server
Applications
1 15 (2.19%) Microsoft Office
2 4 (0.58%) Microsoft Excel
3 2 (0.29%) MS Visio
3 2 (0.29%) Spreadsheet
Business Applications
1 4 (0.58%) Dynamics CRM
2 1 (0.15%) Oracle EBS
2 1 (0.15%) Oracle EBS R12
2 1 (0.15%) Remedy ITSM
2 1 (0.15%) Sentinel
Cloud Services
1 117 (17.11%) AWS
2 94 (13.74%) Azure
3 54 (7.89%) SaaS
4 46 (6.73%) IaaS
5 40 (5.85%) GitHub
5 40 (5.85%) PaaS
6 31 (4.53%) Office 365
7 29 (4.24%) Serverless
8 27 (3.95%) AWS Lambda
9 25 (3.65%) Amazon ECS
10 21 (3.07%) Virtual Private Cloud
11 20 (2.92%) Amazon CloudWatch
11 20 (2.92%) Amazon EC2
11 20 (2.92%) Amazon S3
11 20 (2.92%) Route 53
12 16 (2.34%) GCP
13 15 (2.19%) Azure Active Directory
14 14 (2.05%) CloudFront
15 10 (1.46%) AWS CloudTrail
15 10 (1.46%) Mimecast
Communications & Networking
1 219 (32.02%) Firewall
2 82 (11.99%) Network Security
3 73 (10.67%) Intrusion Detection
4 67 (9.80%) VPN
5 53 (7.75%) HTTP
6 47 (6.87%) TCP/IP
7 42 (6.14%) HTTPS
8 41 (5.99%) Internet
9 37 (5.41%) DNS
9 37 (5.41%) SMTP
10 27 (3.95%) Cisco ASA
10 27 (3.95%) WAN
11 25 (3.65%) IPsec
12 21 (3.07%) LAN
13 18 (2.63%) Wireshark
14 16 (2.34%) SSL
15 15 (2.19%) DHCP
16 14 (2.05%) BGP
17 13 (1.90%) Cisco IOS
17 13 (1.90%) MPLS
Database & Business Intelligence
1 24 (3.51%) SQL Server
2 15 (2.19%) Amazon RDS
3 10 (1.46%) MySQL
4 8 (1.17%) Big Data
5 7 (1.02%) Power BI
6 6 (0.88%) Data Warehouse
7 5 (0.73%) SQL Server 2017
8 4 (0.58%) Oracle Reports
9 3 (0.44%) Relational Database
10 2 (0.29%) Azure SQL Database
10 2 (0.29%) Data Lake
10 2 (0.29%) Hadoop
10 2 (0.29%) Neo4j
10 2 (0.29%) RDBMS
11 1 (0.15%) MongoDB
Development Applications
1 36 (5.26%) Jenkins
2 26 (3.80%) Git (software)
3 22 (3.22%) JIRA
4 7 (1.02%) GitLab
5 6 (0.88%) Burp Suite
6 3 (0.44%) Bitbucket
6 3 (0.44%) Metasploit
6 3 (0.44%) Subversion
6 3 (0.44%) VSS/SourceSafe
7 2 (0.29%) MSI
7 2 (0.29%) Sonatype Nexus
7 2 (0.29%) Vagrant
8 1 (0.15%) Hudson
8 1 (0.15%) JMeter
8 1 (0.15%) Selenium
8 1 (0.15%) Toad
General
1 163 (23.83%) Finance
2 52 (7.60%) Banking
3 28 (4.09%) Public Sector
4 25 (3.65%) Telecoms
5 21 (3.07%) Financial Institution
6 16 (2.34%) Law
7 15 (2.19%) Legal
8 14 (2.05%) Manufacturing
9 13 (1.90%) Investment Banking
10 11 (1.61%) Marketing
11 8 (1.17%) Retail
12 3 (0.44%) Pharmaceutical
13 2 (0.29%) Aerospace
13 2 (0.29%) Games
14 1 (0.15%) Arabic Language
14 1 (0.15%) Electronics
14 1 (0.15%) Italian Language
14 1 (0.15%) Military
Job Titles
1 192 (28.07%) Analyst
2 130 (19.01%) Architect
3 112 (16.37%) Security Engineer
4 101 (14.77%) Security Analyst
5 91 (13.30%) Security Architect
6 71 (10.38%) SOC Analyst
7 55 (8.04%) Consultant
8 36 (5.26%) Senior Analyst
9 33 (4.82%) Security Consultant
10 31 (4.53%) Cybersecurity Analyst
11 28 (4.09%) DevOps Engineer
12 27 (3.95%) Business Analyst
13 26 (3.80%) SIEM Engineer
14 25 (3.65%) Cloud Engineer
15 22 (3.22%) Cloud Architect
16 21 (3.07%) Cybersecurity Engineer
16 21 (3.07%) Operations Analyst
17 19 (2.78%) Project Manager
17 19 (2.78%) Security Operations Analyst
18 18 (2.63%) AWS Engineer
Libraries, Frameworks & Software Standards
1 37 (5.41%) Web Services
2 28 (4.09%) SAML
3 23 (3.36%) Elastic Stack
4 19 (2.78%) Node.js
5 15 (2.19%) JSON
5 15 (2.19%) OAuth
5 15 (2.19%) OpenID
6 12 (1.75%) Regular Expression
7 11 (1.61%) .NET
8 8 (1.17%) LDAP
8 8 (1.17%) REST
9 5 (0.73%) 802.1X
9 5 (0.73%) SailPoint
10 4 (0.58%) OAuth2
10 4 (0.58%) RESTful
10 4 (0.58%) SOAP
11 3 (0.44%) .NET Core
11 3 (0.44%) .NET Framework
12 2 (0.29%) MLlib
12 2 (0.29%) Seaborn
Miscellaneous
1 77 (11.26%) Security Operations Centre
2 74 (10.82%) Management Information System
3 65 (9.50%) Analytical Skills
4 55 (8.04%) PKI
5 46 (6.73%) Data Centre
6 34 (4.97%) Cyberthreat
7 32 (4.68%) Distributed Denial-of-Service
8 30 (4.39%) Public Cloud
9 19 (2.78%) Cyber Defence
10 15 (2.19%) Enterprise Cloud
11 14 (2.05%) Cloud Native
12 9 (1.32%) Hybrid Cloud
12 9 (1.32%) Mobile App
13 8 (1.17%) Driving Licence
13 8 (1.17%) Replication
13 8 (1.17%) Self-Motivation
14 6 (0.88%) Algorithms
14 6 (0.88%) N-Tier
15 5 (0.73%) Shadow IT
15 5 (0.73%) Video Conferencing
Operating Systems
1 184 (26.90%) Linux
2 161 (23.54%) Windows
3 80 (11.70%) Unix
4 27 (3.95%) Windows Server
5 24 (3.51%) Red Hat Enterprise Linux
6 15 (2.19%) CentOS
7 12 (1.75%) Windows 10
8 6 (0.88%) Solaris
8 6 (0.88%) Windows Server 2008
8 6 (0.88%) Windows Server 2012
9 5 (0.73%) Kali Linux
9 5 (0.73%) Ubuntu
10 3 (0.44%) Android
11 2 (0.29%) Check Point GAiA
11 2 (0.29%) Mac OS X
11 2 (0.29%) Windows Server 2003
11 2 (0.29%) Windows XP
Processes & Methodologies
1 263 (38.45%) Cybersecurity
2 202 (29.53%) Information Security
3 186 (27.19%) Security Operations
4 92 (13.45%) Security Architecture
4 92 (13.45%) Vulnerability Management
5 83 (12.13%) Threat Intelligence
6 71 (10.38%) Agile Software Development
7 69 (10.09%) Use Case
8 65 (9.50%) Analytics
9 64 (9.36%) DevOps
10 61 (8.92%) Identity Access Management
11 57 (8.33%) Cyber Threat Intelligence
11 57 (8.33%) Vulnerability Scanning
12 55 (8.04%) ITIL
13 51 (7.46%) Problem-Solving
14 48 (7.02%) Configuration Management
14 48 (7.02%) Kalman Filter
15 43 (6.29%) Incident Management
15 43 (6.29%) Risk Management
16 41 (5.99%) Change Management
Programming Languages
1 118 (17.25%) Python
2 71 (10.38%) Bash Shell
3 57 (8.33%) SQL
4 53 (7.75%) PowerShell
5 37 (5.41%) Java
6 36 (5.26%) Perl
7 22 (3.22%) JavaScript
8 21 (3.07%) Ruby
9 18 (2.63%) C
10 14 (2.05%) C++
11 10 (1.46%) Shell Script
12 9 (1.32%) C#
13 7 (1.02%) PHP
14 4 (0.58%) VBA
15 2 (0.29%) R
16 1 (0.15%) AWK
16 1 (0.15%) Go
16 1 (0.15%) sed
Qualifications
1 136 (19.88%) CISSP
2 128 (18.71%) Security Cleared
3 82 (11.99%) SC Cleared
4 73 (10.67%) Cisco Certification
5 63 (9.21%) CISM
6 58 (8.48%) CEH
7 45 (6.58%) SANS
8 42 (6.14%) Degree
9 41 (5.99%) DV Cleared
10 27 (3.95%) AWS Certification
10 27 (3.95%) CCNP
10 27 (3.95%) CISA
10 27 (3.95%) GIAC
11 24 (3.51%) GCIH
12 23 (3.36%) (ISC)2 CCSP
13 22 (3.22%) CCNA
14 21 (3.07%) GCIA
15 18 (2.63%) CompTIA Security+
15 18 (2.63%) SSCP
16 17 (2.49%) OSCP
Quality Assurance & Compliance
1 115 (16.81%) ISO/IEC 27001
2 81 (11.84%) NIST
3 60 (8.77%) PCI DSS
4 37 (5.41%) GDPR
5 32 (4.68%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 27 (3.95%) Sarbanes-Oxley
7 16 (2.34%) Cyber Essentials
8 14 (2.05%) HMG Security Policy Framework
8 14 (2.05%) JSP 440
9 13 (1.90%) HMG Infosec
10 11 (1.61%) COBIT
11 10 (1.46%) Cyber Essentials PLUS
12 9 (1.32%) HIPAA
13 7 (1.02%) SLA
14 6 (0.88%) GPG13
15 5 (0.73%) Data Quality
16 4 (0.58%) NCSC
17 2 (0.29%) ISO/IEC 20000
17 2 (0.29%) PSD2
18 1 (0.15%) RMADS
System Software
1 63 (9.21%) Active Directory
2 52 (7.60%) Docker
3 17 (2.49%) Snort
4 15 (2.19%) VMware Infrastructure
5 11 (1.61%) XenApp
6 6 (0.88%) XenDesktop
7 4 (0.58%) Hyper-V
7 4 (0.58%) Virtual Machines
8 3 (0.44%) Citrix Hypervisor
9 2 (0.29%) ProxySG
9 2 (0.29%) Virtual Desktop
9 2 (0.29%) VMware NSX
10 1 (0.15%) KVM
10 1 (0.15%) Tivoli Directory Server
10 1 (0.15%) VMware ESXi
10 1 (0.15%) vSphere
Systems Management
1 54 (7.89%) Ansible
2 39 (5.70%) Nessus
3 38 (5.56%) Terraform
4 32 (4.68%) Opscode Chef
4 32 (4.68%) Puppet
5 29 (4.24%) QRadar
6 20 (2.92%) Single Sign-On
7 16 (2.34%) Suricata
8 14 (2.05%) Kubernetes
8 14 (2.05%) Network Intrusion Detection System
9 13 (1.90%) SCCM
10 10 (1.46%) Packer
11 9 (1.32%) Grafana
11 9 (1.32%) Host Intrusion Detection System
12 8 (1.17%) Rsyslog
13 7 (1.02%) CASB
13 7 (1.02%) FortiGate
13 7 (1.02%) RSA Archer
14 5 (0.73%) HAProxy
14 5 (0.73%) Microsoft Intune
Vendors
1 185 (27.05%) Splunk
2 93 (13.60%) Microsoft
3 73 (10.67%) Cisco
4 64 (9.36%) ArcSight
5 47 (6.87%) Qualys
6 32 (4.68%) VMware
7 30 (4.39%) Juniper
8 25 (3.65%) Darktrace
8 25 (3.65%) LogRhythm
9 24 (3.51%) CheckPoint
10 23 (3.36%) CyberArk
10 23 (3.36%) Palo Alto
11 21 (3.07%) McAfee
12 20 (2.92%) Zscaler
13 19 (2.78%) Red Hat
14 18 (2.63%) Atlassian
14 18 (2.63%) Symantec
15 17 (2.49%) Citrix
16 16 (2.34%) Fortinet
17 15 (2.19%) Okta