Static Application Security Testing Contracts

Static Application Security Testing (SAST)
UK

The following table provides summary statistics for contract job vacancies with a requirement for Static Application Security Testing skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited Static Application Security Testing over the 6 months to 29 May 2024 with a comparison to the same period in the previous 2 years.

6 months to
29 May 2024		 Same period 2023 Same period 2022
Rank 486 611 769
Rank change year-on-year +125 +158 -110
Contract jobs citing Static Application Security Testing 102 84 72
As % of all contract jobs advertised in the UK 0.24% 0.15% 0.082%
As % of the Processes & Methodologies category 0.28% 0.17% 0.091%
Number of daily rates quoted 82 61 50
10th Percentile £476 £463 £459
25th Percentile £600 £550 £556
Median daily rate (50th Percentile) £650 £650 £650
Median % change year-on-year - - +23.81%
75th Percentile £719 £738 £719
90th Percentile £823 £800 £739
UK excluding London median daily rate £625 £713 £427
% change year-on-year -12.28% +66.86% +4.15%
Number of hourly rates quoted 0 0 2
10th Percentile - - £41.00
25th Percentile - - £42.50
Median hourly rate - - £45.00
75th Percentile - - £47.50
90th Percentile - - £49.00
UK excluding London median hourly rate - - -

All Process and Methodology Skills
UK

Static Application Security Testing is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies with a requirement for process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 36,749 50,370 79,373
As % of all contract IT jobs advertised in the UK 85.64% 89.70% 90.61%
Number of daily rates quoted 23,629 34,859 55,702
10th Percentile £300 £325 £345
25th Percentile £413 £438 £431
Median daily rate (50th Percentile) £525 £550 £538
Median % change year-on-year -4.55% +2.33% +7.50%
75th Percentile £638 £650 £640
90th Percentile £750 £750 £738
UK excluding London median daily rate £500 £500 £486
% change year-on-year - +2.87% +9.23%
Number of hourly rates quoted 2,511 1,675 1,892
10th Percentile £12.75 £10.63 £12.50
25th Percentile £16.00 £15.75 £15.50
Median hourly rate £36.50 £37.00 £25.68
Median % change year-on-year -1.35% +44.08% +7.00%
75th Percentile £60.00 £65.00 £49.50
90th Percentile £72.50 £75.00 £65.00
UK excluding London median hourly rate £38.12 £35.00 £20.00
% change year-on-year +8.91% +75.00% -4.99%

Static Application Security Testing
Job Vacancy Trend

Job postings citing Static Application Security Testing as a proportion of all IT jobs advertised.

Job vacancy trend for Static Application Security Testing in the UK

Static Application Security Testing
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing Static Application Security Testing.

Daily rate trend for Static Application Security Testing in the UK

Static Application Security Testing
Daily Rate Histogram

Daily rate distribution for jobs citing Static Application Security Testing over the 6 months to 29 May 2024.

Daily rate histogram for Static Application Security Testing in the UK

Static Application Security Testing
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing Static Application Security Testing.

Hourly rate trend for Static Application Security Testing in the UK

Static Application Security Testing
Top 11 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Static Application Security Testing within the UK over the 6 months to 29 May 2024. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England +114 82 £650 - 21
London +102 68 £650 +4.00% 10
Work from Home +116 35 £650 - 8
UK excluding London +56 19 £625 -12.28% 10
South West +14 7 £600 -4.00% 2
Scotland - 7 £525 -
North of England +28 2 £663 +32.50% 2
North West +23 2 £663 +17.78% 2
South East +7 2 £650 -13.33% 1
Midlands +10 1 £750 +3.45% 2
West Midlands +5 1 £750 +3.45% 2

Static Application Security Testing
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 2 (1.96%) Confluence
2 1 (0.98%) Microsoft Exchange
2 1 (0.98%) SAS
Applications
1 3 (2.94%) Microsoft Office
1 3 (2.94%) Microsoft Project
Business Applications
1 4 (3.92%) Dynamics GP
Cloud Services
1 39 (38.24%) Azure
2 33 (32.35%) AWS
3 13 (12.75%) GCP
4 12 (11.76%) Azure DevOps
4 12 (11.76%) GitHub
4 12 (11.76%) GitHub Actions
4 12 (11.76%) PaaS
4 12 (11.76%) SaaS
5 10 (9.80%) IaaS
6 5 (4.90%) Microsoft 365
6 5 (4.90%) Power Platform
7 4 (3.92%) Miro
8 3 (2.94%) Azure AKS
8 3 (2.94%) Azure Sentinel
9 2 (1.96%) Amazon EKS
9 2 (1.96%) Amazon S3
9 2 (1.96%) Entra ID
10 1 (0.98%) Amazon CloudWatch
10 1 (0.98%) AWS CloudFormation
10 1 (0.98%) AWS Lambda
Communications & Networking
1 7 (6.86%) Firewall
2 4 (3.92%) SSL
3 1 (0.98%) HTTP
3 1 (0.98%) HTTPS
3 1 (0.98%) Intrusion Detection
3 1 (0.98%) Kerberos
3 1 (0.98%) TCP/IP
3 1 (0.98%) Wi-Fi
Database & Business Intelligence
1 5 (4.90%) SQL Server
2 1 (0.98%) Amazon RDS
2 1 (0.98%) Data Lake
2 1 (0.98%) DynamoDB
2 1 (0.98%) MySQL
Development Applications
1 12 (11.76%) SonarQube
2 10 (9.80%) Jenkins
3 7 (6.86%) GitLab
4 4 (3.92%) Burp Suite
4 4 (3.92%) JIRA
5 3 (2.94%) Snyk
6 1 (0.98%) Git
6 1 (0.98%) Selenium
General
1 52 (50.98%) Finance
2 11 (10.78%) Banking
2 11 (10.78%) Financial Institution
3 9 (8.82%) Social Skills
4 6 (5.88%) Front Office
4 6 (5.88%) Public Sector
5 4 (3.92%) Retail
6 3 (2.94%) Documentation Skills
7 1 (0.98%) Analytical Skills
7 1 (0.98%) Automotive
7 1 (0.98%) Health Technology
Job Titles
1 23 (22.55%) Security Engineer
2 21 (20.59%) Project Manager
2 21 (20.59%) Security Manager
2 21 (20.59%) Security Project Manager
3 18 (17.65%) Architect
3 18 (17.65%) Security Architect
4 15 (14.71%) Applications Architect
5 13 (12.75%) Cybersecurity Manager
5 13 (12.75%) Project Manager - Cybersecurity
6 10 (9.80%) Consultant
6 10 (9.80%) Senior
7 9 (8.82%) Azure Engineer
7 9 (8.82%) Security Consultant
8 8 (7.84%) CISSP Manager
9 7 (6.86%) IT Manager
9 7 (6.86%) IT Project Manager
9 7 (6.86%) IT Security Manager
9 7 (6.86%) IT Security Project Manager
10 6 (5.88%) IT Services Manager
10 6 (5.88%) Service Security Manager
Libraries, Frameworks & Software Standards
1 10 (9.80%) ARM Templates
1 10 (9.80%) Azure Blueprints
2 5 (4.90%) Kafka
3 4 (3.92%) GraphQL
3 4 (3.92%) Java EE
3 4 (3.92%) REST
3 4 (3.92%) SOAP
3 4 (3.92%) Spring
3 4 (3.92%) Spring Boot
4 1 (0.98%) AWS CDK
4 1 (0.98%) JSON
4 1 (0.98%) RESTful
4 1 (0.98%) YAML
Miscellaneous
1 22 (21.57%) Management Information System
2 11 (10.78%) Onboarding
3 6 (5.88%) PKI
4 4 (3.92%) Cyber Kill Chain
4 4 (3.92%) Cyber Threat
4 4 (3.92%) Security Posture
5 3 (2.94%) Foreign Exchange (FX)
5 3 (2.94%) PMI
6 2 (1.96%) Cloud Native
6 2 (1.96%) Public Cloud
7 1 (0.98%) Cyber Security Posture
7 1 (0.98%) Cyberattack
7 1 (0.98%) Data Protection Act
7 1 (0.98%) IoT
7 1 (0.98%) Reinsurance
Operating Systems
1 11 (10.78%) Windows
2 6 (5.88%) Linux
3 5 (4.90%) Windows Server
4 4 (3.92%) zOS
5 1 (0.98%) Unix
Processes & Methodologies
1 92 (90.20%) Dynamic Application Security Testing
2 46 (45.10%) Application Security
3 42 (41.18%) Cybersecurity
4 39 (38.24%) Security Testing
5 35 (34.31%) DevOps
6 32 (31.37%) Threat Modelling
7 30 (29.41%) DevSecOps
8 29 (28.43%) Vulnerability Management
9 28 (27.45%) CI/CD
10 27 (26.47%) Project Management
11 22 (21.57%) Agile
11 22 (21.57%) Information Security
11 22 (21.57%) Interactive Application Security Testing
11 22 (21.57%) Software Engineering
12 19 (18.63%) Test Automation
13 15 (14.71%) Deployment Automation
13 15 (14.71%) Penetration Testing
14 14 (13.73%) Containerisation
14 14 (13.73%) Project Delivery
14 14 (13.73%) SDLC
Programming Languages
1 11 (10.78%) Java
2 7 (6.86%) C++
3 5 (4.90%) Bash
3 5 (4.90%) PowerShell
4 4 (3.92%) C#
5 3 (2.94%) Python
6 2 (1.96%) Bicep
Qualifications
1 23 (22.55%) CISSP
2 22 (21.57%) CISM
3 17 (16.67%) CISA
4 13 (12.75%) SC Cleared
4 13 (12.75%) Security Cleared
5 11 (10.78%) BPSS Clearance
6 5 (4.90%) Degree
7 4 (3.92%) CRISC
7 4 (3.92%) ITIL Certification
7 4 (3.92%) MCSE
7 4 (3.92%) Microsoft Certification
8 3 (2.94%) PMI Certification
9 1 (0.98%) AWS Certification
9 1 (0.98%) CCNP
9 1 (0.98%) CEH
9 1 (0.98%) Cisco Certification
9 1 (0.98%) GCIA
9 1 (0.98%) GCIH
9 1 (0.98%) GIAC
9 1 (0.98%) GSEC
Quality Assurance & Compliance
1 11 (10.78%) ISO/IEC 27001
2 10 (9.80%) NCSC
2 10 (9.80%) NIST
3 7 (6.86%) QA
4 4 (3.92%) GDPR
4 4 (3.92%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
5 3 (2.94%) Disclosure Scotland
5 3 (2.94%) HIPAA
5 3 (2.94%) PCI DSS
System Software
1 15 (14.71%) Docker
2 7 (6.86%) Hyper-V
3 6 (5.88%) Active Directory
4 4 (3.92%) Virtual Machines
Systems Management
1 26 (25.49%) Terraform
2 23 (22.55%) Kubernetes
3 15 (14.71%) Ansible
4 6 (5.88%) SCCM
5 2 (1.96%) Argo
5 2 (1.96%) Microsoft Intune
6 1 (0.98%) HP Fortify
6 1 (0.98%) Nmap
6 1 (0.98%) Single Sign-On
Vendors
1 10 (9.80%) Microsoft
2 8 (7.84%) Qualys
3 6 (5.88%) Splunk
4 4 (3.92%) Checkmarx
4 4 (3.92%) F5
4 4 (3.92%) Veracode
5 3 (2.94%) VMware
6 1 (0.98%) ArcSight
6 1 (0.98%) Atlassian
6 1 (0.98%) CyberArk
6 1 (0.98%) Okta
6 1 (0.98%) SAP
23 Static Application Security Testing jobs Nationwide