Static Application Security Testing Contracts

Static Application Security Testing (SAST)
UK

The table below provides summary statistics for contract job vacancies requiring Static Application Security Testing skills. It includes a benchmarking guide to the contractor rates offered in vacancies that cited Static Application Security Testing over the 6 months leading up to 1 May 2025, comparing them to the same period in the previous two years.

6 months to
1 May 2025		 Same period 2024 Same period 2023
Rank 454 487 627
Rank change year-on-year +33 +140 +146
Contract jobs citing Static Application Security Testing 66 95 91
As % of all contract jobs advertised in the UK 0.23% 0.22% 0.15%
As % of the Processes & Methodologies category 0.25% 0.25% 0.17%
Number of daily rates quoted 50 79 62
10th Percentile £370 £545 £464
25th Percentile £456 £613 £513
Median daily rate (50th Percentile) £665 £650 £625
Median % change year-on-year +2.31% +4.00% -3.85%
75th Percentile £738 £675 £738
90th Percentile £751 £755 £800
UK excluding London median daily rate £725 £600 £625
% change year-on-year +20.83% -4.00% +46.37%

All Process and Methodology Skills
UK

Static Application Security Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 26,594 37,597 53,655
As % of all contract IT jobs advertised in the UK 90.84% 86.31% 89.91%
Number of daily rates quoted 17,149 24,227 37,238
10th Percentile £308 £300 £325
25th Percentile £413 £413 £438
Median daily rate (50th Percentile) £520 £525 £550
Median % change year-on-year -0.95% -4.55% +4.76%
75th Percentile £630 £638 £650
90th Percentile £743 £750 £750
UK excluding London median daily rate £483 £500 £500
% change year-on-year -3.50% - +5.26%
Number of hourly rates quoted 1,071 2,443 1,746
10th Percentile £14.41 £12.75 £11.00
25th Percentile £18.21 £16.00 £16.25
Median hourly rate £29.00 £35.65 £37.30
Median % change year-on-year -18.65% -4.42% +49.20%
75th Percentile £60.38 £59.98 £65.00
90th Percentile £75.00 £72.50 £75.00
UK excluding London median hourly rate £27.50 £37.34 £36.00
% change year-on-year -26.35% +3.72% +80.00%

Static Application Security Testing
Job Vacancy Trend

Job postings citing Static Application Security Testing as a proportion of all IT jobs advertised.

Job vacancy trend for Static Application Security Testing in the UK

Static Application Security Testing
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing Static Application Security Testing.

Daily rate trend for Static Application Security Testing in the UK

Static Application Security Testing
Daily Rate Histogram

Daily rate distribution for jobs citing Static Application Security Testing over the 6 months to 1 May 2025.

Daily rate histogram for Static Application Security Testing in the UK

Static Application Security Testing
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing Static Application Security Testing.

Hourly rate trend for Static Application Security Testing in the UK

Static Application Security Testing
Top 12 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Static Application Security Testing within the UK over the 6 months to 1 May 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England +31 50 £700 +7.69% 58
London +5 31 £700 +7.69% 34
Work from Home +30 29 £464 -28.69% 35
UK excluding London +66 18 £725 +20.83% 33
North of England +29 12 £725 +9.43% 12
Yorkshire - 9 £713 - 6
Scotland +12 3 £550 +11.39% 3
Midlands +23 2 £775 +3.33% 4
West Midlands +15 2 £775 +3.33% 4
North East - 2 £750 -
South East +45 1 £650 - 12
North West +16 1 £750 +13.21% 6

Static Application Security Testing
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 12 (18.18%) nginx
1 12 (18.18%) Traefik
2 2 (3.03%) Confluence
3 1 (1.52%) MQSeries
3 1 (1.52%) SharePoint
Business Applications
1 3 (4.55%) Dynamics GP
Cloud Services
1 30 (45.45%) Azure
2 20 (30.30%) AWS
3 19 (28.79%) Azure AKS
4 18 (27.27%) Azure Sentinel
5 15 (22.73%) Amazon CloudWatch
5 15 (22.73%) AWS CloudFormation
6 14 (21.21%) Amazon ECS
6 14 (21.21%) AWS Fargate
6 14 (21.21%) Entra ID
6 14 (21.21%) Virtual Private Cloud
7 6 (9.09%) Power Platform
8 5 (7.58%) Azure DevOps
8 5 (7.58%) GitHub
9 4 (6.06%) Azure Monitor
9 4 (6.06%) GCP
10 3 (4.55%) Azure Data Factory
10 3 (4.55%) Azure Machine Learning
10 3 (4.55%) Azure Synapse Analytics
10 3 (4.55%) Dynamics 365
10 3 (4.55%) Microsoft 365
Communications & Networking
1 17 (25.76%) DNS
1 17 (25.76%) TCP/IP
2 15 (22.73%) Network Security
3 5 (7.58%) Firewall
4 4 (6.06%) SSL
5 3 (4.55%) FTP
5 3 (4.55%) HTTP
5 3 (4.55%) SMTP
Database & Business Intelligence
1 14 (21.21%) MongoDB
2 3 (4.55%) Power BI
3 2 (3.03%) BigQuery
3 2 (3.03%) Oracle Reports
4 1 (1.52%) SQL Server
Development Applications
1 23 (34.85%) Jenkins
2 22 (33.33%) GitLab
3 6 (9.09%) SonarQube
4 5 (7.58%) Snyk
5 3 (4.55%) Git
6 2 (3.03%) JIRA
7 1 (1.52%) AppScan
7 1 (1.52%) CircleCI
7 1 (1.52%) Octopus Deploy
General
1 11 (16.67%) Social Skills
2 10 (15.15%) Finance
3 9 (13.64%) Public Sector
4 5 (7.58%) Military
5 4 (6.06%) Banking
6 2 (3.03%) Analytical Skills
6 2 (3.03%) Telecoms
7 1 (1.52%) Financial Institution
7 1 (1.52%) Inclusion and Diversity
7 1 (1.52%) Investment Banking
7 1 (1.52%) Marketing
Job Titles
1 18 (27.27%) Senior
2 13 (19.70%) DevOps Engineer
2 13 (19.70%) Senior DevOps
3 12 (18.18%) DevSecOps Engineer
4 9 (13.64%) Senior DevOps Engineer
5 7 (10.61%) Azure Engineer
6 5 (7.58%) Architect
6 5 (7.58%) Consultant
7 4 (6.06%) Information Security Consultant
7 4 (6.06%) Security Consultant
7 4 (6.06%) Security Technical Consultant
7 4 (6.06%) Technical Consultant
7 4 (6.06%) Technical Security Consultant
8 3 (4.55%) Lead
8 3 (4.55%) Security Architect
8 3 (4.55%) Security Engineer
8 3 (4.55%) Senior Architect
9 2 (3.03%) Delivery Manager
9 2 (3.03%) Full-Stack Engineer
9 2 (3.03%) Security Specialist
Libraries, Frameworks & Software Standards
1 15 (22.73%) Kafka
2 14 (21.21%) cloud-init
2 14 (21.21%) Keycloak
3 8 (12.12%) JSON
4 5 (7.58%) .NET
5 3 (4.55%) OpenTelemetry
5 3 (4.55%) YAML
6 1 (1.52%) .NET Core
6 1 (1.52%) .NET Framework
6 1 (1.52%) Boost C++ Libraries
6 1 (1.52%) FpML
6 1 (1.52%) Middleware
6 1 (1.52%) Rendezvous
6 1 (1.52%) Smart Contracts
6 1 (1.52%) STL
6 1 (1.52%) XML
Miscellaneous
1 18 (27.27%) PKI
2 16 (24.24%) Security Posture
3 3 (4.55%) Cyber Threat
3 3 (4.55%) Distributed Systems
4 2 (3.03%) Management Information System
5 1 (1.52%) Cloud Native
5 1 (1.52%) Cloud Security Posture
5 1 (1.52%) Public Cloud
5 1 (1.52%) Security Operations Centre
Operating Systems
1 16 (24.24%) Linux
1 16 (24.24%) Unix
2 14 (21.21%) CentOS
2 14 (21.21%) Red Hat Enterprise Linux
3 10 (15.15%) Windows
4 3 (4.55%) Windows Server
5 2 (3.03%) Mac OS
Processes & Methodologies
1 41 (62.12%) Dynamic Application Security Testing
2 36 (54.55%) DevSecOps
3 35 (53.03%) DevOps
4 31 (46.97%) CI/CD
5 25 (37.88%) Application Security
6 24 (36.36%) Cloud Security
7 21 (31.82%) Agile
7 21 (31.82%) Infrastructure as Code
8 17 (25.76%) Identity Management
8 17 (25.76%) Observability
9 16 (24.24%) Secure Coding
10 15 (22.73%) Continuous Integration
10 15 (22.73%) Security Testing
11 14 (21.21%) OWASP
11 14 (21.21%) Secrets Management
12 12 (18.18%) Mobile Device Management
13 9 (13.64%) SDLC
13 9 (13.64%) Threat Modelling
13 9 (13.64%) Vulnerability Assessment
14 8 (12.12%) Penetration Testing
Programming Languages
1 27 (40.91%) Python
2 22 (33.33%) Bash
3 14 (21.21%) Go
4 13 (19.70%) PowerShell
5 4 (6.06%) Bicep
5 4 (6.06%) C#
5 4 (6.06%) Java
5 4 (6.06%) Kotlin
6 3 (4.55%) C++
6 3 (4.55%) Kusto Query Language
6 3 (4.55%) Perl
7 2 (3.03%) JavaScript
7 2 (3.03%) Rust
7 2 (3.03%) Shell Script
8 1 (1.52%) Groovy
8 1 (1.52%) SQL
Qualifications
1 18 (27.27%) Security Cleared
2 14 (21.21%) AWS Certification
2 14 (21.21%) SC Cleared
3 7 (10.61%) SANS
4 3 (4.55%) Degree
5 2 (3.03%) (ISC)2 CCSP
5 2 (3.03%) CCSP
5 2 (3.03%) Cisco Certification
5 2 (3.03%) CISSP
5 2 (3.03%) Master's Degree
6 1 (1.52%) BPSS Clearance
6 1 (1.52%) ITIL Certification
6 1 (1.52%) MCSE
6 1 (1.52%) Microsoft Certification
Quality Assurance & Compliance
1 14 (21.21%) NCSC
2 5 (7.58%) NIST
3 3 (4.55%) Disclosure Scotland
4 1 (1.52%) FedRAMP
4 1 (1.52%) GDPR
4 1 (1.52%) PMO
4 1 (1.52%) QA
4 1 (1.52%) SOC 2
System Software
1 5 (7.58%) Active Directory
2 3 (4.55%) Hyper-V
3 2 (3.03%) Docker
Systems Management
1 29 (43.94%) Kubernetes
2 20 (30.30%) Grafana
3 17 (25.76%) Prometheus
4 16 (24.24%) Terraform
5 14 (21.21%) Consul
5 14 (21.21%) Istio
5 14 (21.21%) Jamf Pro
5 14 (21.21%) linkerd
5 14 (21.21%) Packer
5 14 (21.21%) Rancher
5 14 (21.21%) ZABBIX
6 12 (18.18%) HAProxy
7 3 (4.55%) CASB
7 3 (4.55%) SCCM
8 2 (3.03%) Active Directory Federation Services
8 2 (3.03%) Ansible
9 1 (1.52%) Argo
9 1 (1.52%) HP Fortify
Vendors
1 16 (24.24%) Splunk
2 15 (22.73%) Qualys
3 14 (21.21%) Okta
4 12 (18.18%) Apple
4 12 (18.18%) ESET
5 7 (10.61%) Veracode
6 5 (7.58%) Coverity
6 5 (7.58%) Microsoft
7 3 (4.55%) Google
7 3 (4.55%) Oracle
8 2 (3.03%) Alibaba
8 2 (3.03%) IBM
8 2 (3.03%) TOWER Software
9 1 (1.52%) Confluent
9 1 (1.52%) Guidewire
9 1 (1.52%) Palo Alto
9 1 (1.52%) Rapid7
9 1 (1.52%) Salesforce
9 1 (1.52%) TIBCO
9 1 (1.52%) VMware
67 Static Application Security Testing jobs Nationwide