Threat Detection Contracts

Threat Detection
UK

The table below provides summary statistics for contract job vacancies requiring Threat Detection skills. It includes a benchmarking guide to the contractor rates offered in vacancies that cited Threat Detection over the 6 months leading up to 30 April 2025, comparing them to the same period in the previous two years.

6 months to
30 Apr 2025		 Same period 2024 Same period 2023
Rank 397 493 594
Rank change year-on-year +96 +101 +186
Contract jobs citing Threat Detection 122 107 119
As % of all contract jobs advertised in the UK 0.42% 0.25% 0.20%
As % of the Processes & Methodologies category 0.46% 0.28% 0.22%
Number of daily rates quoted 68 90 77
10th Percentile £321 £498 £488
25th Percentile £462 £577 £525
Median daily rate (50th Percentile) £575 £621 £566
Median % change year-on-year -7.44% +9.84% -12.99%
75th Percentile £625 £684 £688
90th Percentile £650 £750 £763
UK excluding London median daily rate £600 £615 £550
% change year-on-year -2.44% +11.82% +4.76%
Number of hourly rates quoted 8 0 0
10th Percentile - - -
25th Percentile £40.50 - -
Median hourly rate £80.68 - -
75th Percentile £81.35 - -
90th Percentile £81.58 - -
UK excluding London median hourly rate £81.01 - -

All Process and Methodology Skills
UK

Threat Detection falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 26,551 37,621 53,662
As % of all contract IT jobs advertised in the UK 90.82% 86.30% 89.91%
Number of daily rates quoted 17,137 24,254 37,244
10th Percentile £308 £300 £325
25th Percentile £413 £413 £438
Median daily rate (50th Percentile) £521 £525 £550
Median % change year-on-year -0.86% -4.55% +4.76%
75th Percentile £630 £638 £650
90th Percentile £744 £750 £750
UK excluding London median daily rate £481 £500 £500
% change year-on-year -3.80% - +5.26%
Number of hourly rates quoted 1,071 2,437 1,746
10th Percentile £14.70 £12.75 £11.00
25th Percentile £18.50 £16.00 £16.25
Median hourly rate £29.00 £35.50 £37.30
Median % change year-on-year -18.31% -4.83% +49.20%
75th Percentile £62.00 £59.95 £65.00
90th Percentile £75.00 £72.50 £75.00
UK excluding London median hourly rate £27.94 £36.50 £36.00
% change year-on-year -23.45% +1.39% +80.00%

Threat Detection
Job Vacancy Trend

Job postings citing Threat Detection as a proportion of all IT jobs advertised.

Job vacancy trend for Threat Detection in the UK

Threat Detection
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing Threat Detection.

Daily rate trend for Threat Detection in the UK

Threat Detection
Daily Rate Histogram

Daily rate distribution for jobs citing Threat Detection over the 6 months to 30 April 2025.

Daily rate histogram for Threat Detection in the UK

Threat Detection
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing Threat Detection.

Hourly rate trend for Threat Detection in the UK

Threat Detection
Hourly Rate Histogram

Hourly rate distribution of jobs citing Threat Detection over the 6 months to 30 April 2025.

Hourly rate histogram for Threat Detection in the UK

Threat Detection
Top 13 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Threat Detection within the UK over the 6 months to 30 April 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England +90 99 £575 -4.17% 106
UK excluding London +75 51 £600 -2.44% 73
London +44 45 £575 -2.54% 45
Work from Home +53 33 £500 -16.67% 71
South East +59 17 £535 +7.00% 22
East of England - 14 £600 - 7
North of England +35 10 £575 -17.86% 18
Scotland - 6 £600 - 14
North West +13 5 £600 -14.29% 12
Yorkshire - 5 £343 - 5
South West +37 3 £550 -8.33% 6
Midlands +12 3 £650 +2.36% 8
West Midlands +4 3 £650 +2.36% 8

Threat Detection
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 1 (0.82%) Microsoft Exchange
Business Applications
1 1 (0.82%) Dynamics CRM
1 1 (0.82%) Remedy ITSM
Cloud Services
1 38 (31.15%) Azure
2 23 (18.85%) AWS
3 20 (16.39%) Azure Sentinel
4 12 (9.84%) GCP
5 9 (7.38%) Microsoft 365
6 6 (4.92%) Azure Monitor
6 6 (4.92%) Entra ID
6 6 (4.92%) SaaS
7 4 (3.28%) Azure Logic Apps
8 3 (2.46%) Azure DevOps
8 3 (2.46%) Cloud Computing
8 3 (2.46%) GitHub
8 3 (2.46%) Serverless
9 2 (1.64%) Amazon EKS
9 2 (1.64%) Amazon GuardDuty
9 2 (1.64%) AWS KMS
9 2 (1.64%) AWS Lambda
9 2 (1.64%) Datadog
9 2 (1.64%) Virtual Private Cloud
10 1 (0.82%) Azure Key Vault
Communications & Networking
1 31 (25.41%) Network Security
2 26 (21.31%) Firewall
3 25 (20.49%) SMTP
4 24 (19.67%) DNS
5 18 (14.75%) HTTP
6 15 (12.30%) FTP
6 15 (12.30%) SSL
7 11 (9.02%) TCP/IP
8 7 (5.74%) IMAP
8 7 (5.74%) POP3
8 7 (5.74%) VPN
9 6 (4.92%) DHCP
10 5 (4.10%) Wireless
11 4 (3.28%) BGP
11 4 (3.28%) Cisco Wireless
11 4 (3.28%) EIGRP
11 4 (3.28%) Intrusion Detection
11 4 (3.28%) OSPF
11 4 (3.28%) Software-Defined Networking
12 1 (0.82%) VSAN
Database & Business Intelligence
1 2 (1.64%) Amazon RDS
2 1 (0.82%) Elasticsearch
2 1 (0.82%) NoSQL
2 1 (0.82%) Tableau
Development Applications
1 2 (1.64%) Jenkins
1 2 (1.64%) JIRA
2 1 (0.82%) GitLab
2 1 (0.82%) SonarQube
General
1 44 (36.07%) Social Skills
2 27 (22.13%) Analytical Skills
3 13 (10.66%) Finance
4 6 (4.92%) Inclusion and Diversity
4 6 (4.92%) Law
4 6 (4.92%) Legal
5 5 (4.10%) Documentation Skills
6 4 (3.28%) Games
6 4 (3.28%) Public Sector
7 3 (2.46%) Aviation
7 3 (2.46%) Banking
7 3 (2.46%) Presentation Skills
8 2 (1.64%) Fire and Rescue
8 2 (1.64%) Police
8 2 (1.64%) Swedish Language
9 1 (0.82%) Aerospace
9 1 (0.82%) Local Government
9 1 (0.82%) Manufacturing
9 1 (0.82%) Military
9 1 (0.82%) Pharmaceutical
Job Titles
1 27 (22.13%) Analyst
2 21 (17.21%) Security Engineer
3 18 (14.75%) SOC Analyst
4 16 (13.11%) Architect
5 15 (12.30%) Consultant
6 10 (8.20%) Security Architect
7 8 (6.56%) Cybersecurity Engineer
7 8 (6.56%) Splunk Consultant
8 7 (5.74%) Senior
8 7 (5.74%) Support Engineer
9 6 (4.92%) Operations Engineer
9 6 (4.92%) Security Analyst
10 5 (4.10%) Splunk Support
10 5 (4.10%) Support Consultant
11 4 (3.28%) Cybersecurity Analyst
11 4 (3.28%) Network Architect
11 4 (3.28%) SIEM Consultant
11 4 (3.28%) SIEM Engineer
11 4 (3.28%) SOC Engineer
12 3 (2.46%) Security Specialist
Libraries, Frameworks & Software Standards
1 14 (11.48%) LDAP
2 3 (2.46%) .NET
3 2 (1.64%) Elastic Stack
3 2 (1.64%) Node.js
3 2 (1.64%) OAuth
3 2 (1.64%) OpenID
3 2 (1.64%) SAML
4 1 (0.82%) OAuth2
4 1 (0.82%) Smart Contracts
Miscellaneous
1 29 (23.77%) Cyber Threat
2 28 (22.95%) Security Operations Centre
3 13 (10.66%) Security Posture
4 11 (9.02%) Analytical Mindset
5 10 (8.20%) Cyberattack
5 10 (8.20%) Management Information System
6 8 (6.56%) CSOC
7 7 (5.74%) Cloud Native
7 7 (5.74%) Foreign Exchange (FX)
8 5 (4.10%) Virtual Team
9 4 (3.28%) Insider Threat
9 4 (3.28%) Onboarding
9 4 (3.28%) PKI
10 3 (2.46%) Cyber Defence
10 3 (2.46%) Cyber Kill Chain
10 3 (2.46%) Distributed Systems
10 3 (2.46%) Operational Technology
10 3 (2.46%) SCADA
10 3 (2.46%) YARA
11 2 (1.64%) Industrial Internet of Things
Operating Systems
1 20 (16.39%) Linux
2 17 (13.93%) Windows
3 7 (5.74%) Unix
4 6 (4.92%) Mac OS
5 5 (4.10%) Windows Server
6 1 (0.82%) Apple iOS
6 1 (0.82%) Windows 10
6 1 (0.82%) Windows Server 2016
Processes & Methodologies
1 70 (57.38%) SIEM
2 57 (46.72%) Cybersecurity
3 56 (45.90%) Incident Response
3 56 (45.90%) Security Operations
4 27 (22.13%) Problem-Solving
5 24 (19.67%) Threat Intelligence
6 23 (18.85%) Security Monitoring
6 23 (18.85%) Vulnerability Management
7 22 (18.03%) Cyber Threat Intelligence
8 21 (17.21%) Analytics
9 20 (16.39%) SOAR
10 19 (15.57%) Cloud Security
11 18 (14.75%) Information Security
12 16 (13.11%) Use Case
13 15 (12.30%) MITRE ATT&CK
14 13 (10.66%) CI/CD
15 12 (9.84%) Artificial Intelligence
15 12 (9.84%) Migration
16 11 (9.02%) Security Architecture
16 11 (9.02%) Vulnerability Assessment
Programming Languages
1 22 (18.03%) Python
2 19 (15.57%) PowerShell
3 12 (9.84%) Kusto Query Language
4 3 (2.46%) Bash
4 3 (2.46%) C#
5 2 (1.64%) C++
5 2 (1.64%) Java
5 2 (1.64%) Kotlin
5 2 (1.64%) Rust
5 2 (1.64%) SQL
6 1 (0.82%) C
6 1 (0.82%) Search Processing Language
6 1 (0.82%) Shell Script
Qualifications
1 40 (32.79%) Security Cleared
2 35 (28.69%) SC Cleared
3 20 (16.39%) CISSP
4 11 (9.02%) DV Cleared
5 10 (8.20%) Degree
6 9 (7.38%) CISM
6 9 (7.38%) CompTIA Security+
7 8 (6.56%) GCIH
7 8 (6.56%) GIAC
8 7 (5.74%) CEH
8 7 (5.74%) GCIA
9 6 (4.92%) Cisco Certification
10 5 (4.10%) CCNA
11 4 (3.28%) GCFA
12 3 (2.46%) CISA
12 3 (2.46%) CTC Cleared
13 2 (1.64%) AWS Certification
13 2 (1.64%) CCSP
13 2 (1.64%) Microsoft Certification
13 2 (1.64%) OSCP
Quality Assurance & Compliance
1 17 (13.93%) NIST
2 13 (10.66%) ISO/IEC 27001
3 10 (8.20%) GDPR
4 6 (4.92%) NCSC
5 4 (3.28%) HIPAA
5 4 (3.28%) NIST 800
6 3 (2.46%) PCI DSS
7 2 (1.64%) California Consumer Privacy Act
7 2 (1.64%) GRC
8 1 (0.82%) Actionable Recommendations
8 1 (0.82%) IEC 61508
System Software
1 8 (6.56%) Active Directory
1 8 (6.56%) Virtual Machines
2 1 (0.82%) Docker
2 1 (0.82%) Hyper-V
2 1 (0.82%) VMware Infrastructure
2 1 (0.82%) VMware NSX
2 1 (0.82%) vSphere
Systems Management
1 6 (4.92%) Microsoft Intune
1 6 (4.92%) QRadar
1 6 (4.92%) Terraform
2 5 (4.10%) SCCM
3 4 (3.28%) Kubernetes
4 3 (2.46%) Grafana
4 3 (2.46%) Single Sign-On
4 3 (2.46%) WSUS
5 2 (1.64%) CSIRT
5 2 (1.64%) FortiGate
6 1 (0.82%) Ansible
6 1 (0.82%) Kibana
6 1 (0.82%) logstash
6 1 (0.82%) Prometheus
Vendors
1 29 (23.77%) Microsoft
2 27 (22.13%) Splunk
3 11 (9.02%) CrowdStrike
4 7 (5.74%) Rapid7
5 6 (4.92%) Cisco
5 6 (4.92%) Google
5 6 (4.92%) Palo Alto
6 3 (2.46%) ArcSight
6 3 (2.46%) IBM
6 3 (2.46%) McAfee
6 3 (2.46%) Sophos
7 2 (1.64%) Alibaba
7 2 (1.64%) Darktrace
7 2 (1.64%) LogRhythm
7 2 (1.64%) Ribbon
7 2 (1.64%) Symantec
7 2 (1.64%) Tenable
7 2 (1.64%) Trend Micro
8 1 (0.82%) AlienVault
8 1 (0.82%) Remedy
133 Threat Detection jobs Nationwide