Hiring and Sponsoring Cyber security professionals (SOC Code 2135)

‍

Hiring skilled cybersecurity professionals from overseas is an increasingly common route for UK employers facing a significant domestic talent shortage. If you are looking to sponsor a worker under SOC Code 2135, understanding the visa requirements, salary thresholds and compliance obligations will save you time and help you avoid costly mistakes.

For related support, explore Annaizu’s sponsorship compliance software, mock audit inspection readiness and mock audit preparation.

Key Takeaways

Essential Points for Employers

• SOC Code 2135 covers cybersecurity professionals including threat analysts, security architects and penetration testers.
• Employers must hold a valid Skilled Worker sponsor licence before issuing a Certificate of Sponsorship.
• Minimum salary thresholds apply and must meet both the general threshold and the occupation-specific going rate.
• Right to work checks are mandatory before employment begins, even for sponsored workers.
• The Immigration Skills Charge applies to most Skilled Worker sponsorships under this code.

What Is SOC Code 2135?

SOC Code 2135 refers to IT Security Professionals within the Standard Occupational Classification system used by the UK Home Office. This occupation group covers roles focused on protecting computer systems, networks and data from cyber threats.

Roles Covered Under SOC 2135

• Cybersecurity Analyst
• Information Security Manager
• Penetration Tester
• Security Architect
• Threat Intelligence Analyst
• Security Operations Centre (SOC) Analyst
• Incident Response Specialist
• Vulnerability Assessment Engineer

These roles sit firmly within the eligible occupations list for the Skilled Worker visa route, meaning overseas nationals can be sponsored to fill them provided the employer meets all sponsorship requirements.

Skilled Worker Visa Requirements for SOC 2135

To sponsor a cybersecurity professional under SOC Code 2135, both the employer and the worker must meet a set of criteria set out by UK Visas and Immigration.

Employer Requirements

• Hold a valid Skilled Worker sponsor licence issued by the Home Office.
• Assign a Certificate of Sponsorship (CoS) to the worker before they apply for their visa.
• Pay the Immigration Skills Charge, currently £1,000 per year for large sponsors and £364 per year for small or charitable sponsors.
• Carry out a Resident Labour Market Test if required (this requirement has been removed for most Skilled Worker roles but employers should confirm current rules).
• Maintain accurate records and report changes to the worker's employment via the Sponsor Management System.

Worker Requirements

• Have a valid job offer from a licensed sponsor.
• Meet the minimum salary threshold for the role.
• Demonstrate English language proficiency at the required level.
• Not fall below the points threshold under the points-based immigration system.
• Pay the visa application fee and the Immigration Health Surcharge.

Salary Thresholds for SOC Code 2135

Salary requirements for Skilled Worker visas are set at the higher of the general salary threshold and the occupation-specific going rate. For SOC Code 2135, employers should check the most current figures published by the Home Office, as thresholds were increased significantly from April 2024.

Current Salary Considerations

• The general Skilled Worker salary threshold is £41,700 per year for most new applicants.
• The going rate for SOC 2135 roles must also be met - whichever figure is higher applies.
• New entrant rates may apply for recent graduates or those switching from student visas, allowing a lower threshold in some cases.
• Part-time roles must be paid at a pro-rata rate that still meets the hourly going rate.

Always verify current thresholds directly against the Home Office going rates for eligible occupations before issuing a Certificate of Sponsorship.

How to Obtain a Sponsor Licence

If your organisation does not yet hold a sponsor licence, you will need to apply to the Home Office before you can hire any overseas worker under the Skilled Worker route.

Steps to Apply for a Sponsor Licence

1. Check your organisation is eligible and has the necessary HR systems in place.
2. Appoint an Authorising Officer, Key Contact and at least one Level 1 User on the Sponsor Management System.
3. Complete the online sponsor licence application on gov.uk.
4. Pay the application fee - currently £536 for small sponsors and charities, or £1,682 for medium and large organisations.
5. Submit supporting documents as required by the Home Office.
6. Await a decision, which typically takes up to eight weeks (priority processing is available for an additional fee).

Maintaining Your Licence

Once granted, a sponsor licence must be actively managed. Sponsors have ongoing duties including tracking worker attendance, reporting changes in employment and keeping records up to date on the Sponsor Management System. Failure to comply can result in licence suspension or revocation.

Right to Work Checks for Cybersecurity Hires

Before a sponsored worker starts employment, the employer must conduct a compliant right to work check. For Skilled Worker visa holders, this typically involves checking a share code provided by the worker via the Home Office online checking service.

Key Points on Right to Work

• Right to work checks must be completed before the first day of employment, not after.
• Online checks using the Home Office Employer Checking Service provide a statutory excuse against a civil penalty.
• Physical document checks are still valid for certain categories of worker.
• Follow-up checks are required when a worker's visa is time-limited.
• Employing someone without the right to work can result in a civil penalty of up to £60,000 per illegal worker.

The Immigration Skills Charge Explained

Employers sponsoring workers under the Skilled Worker route must pay the Immigration Skills Charge when assigning a Certificate of Sponsorship. This charge is designed to encourage investment in domestic skills training.

Immigration Skills Charge Rates

• Large sponsors: £1,000 per year of sponsorship.
• Small sponsors and charities: £364 per year of sponsorship.
• The charge is calculated based on the length of the CoS, not the actual period worked.
• Certain categories of worker are exempt, including those switching from a Tier 4 or Student visa to a Skilled Worker visa in the same role.

Why the UK Faces a Cybersecurity Skills Shortage

The demand for cybersecurity talent in the UK significantly outpaces domestic supply. The government's own research has consistently identified a gap between the number of qualified professionals needed and those available in the resident labour market. This makes international recruitment under SOC Code 2135 a practical necessity for many organisations, particularly in financial services, critical national infrastructure, defence contracting and the public sector.

Factors Driving Demand

• Rapid growth in ransomware, phishing and state-sponsored cyberattacks.
• Increasing regulatory requirements including the Network and Information Systems (NIS) Regulations and UK GDPR.
• Expansion of cloud infrastructure increasing the attack surface for organisations.
• Growing need for security operations centres operating around the clock.
• Shortage of domestic graduates with specialist cybersecurity qualifications.

Compliance Obligations After Sponsoring a Worker

Sponsoring a cybersecurity professional does not end with the visa being granted. UK employers have ongoing compliance duties throughout the period of sponsorship.

Ongoing Sponsor Duties

• Report any significant changes to the worker's role, salary or working location within ten working days via the Sponsor Management System.
• Report if the worker does not turn up for their first day of work.
• Report if the worker's employment ends earlier than expected.
• Keep copies of relevant documents including passports, visas and contact details.
• Cooperate with any Home Office compliance visit or audit.

Frequently Asked Questions

What is SOC Code 2135 used for in UK immigration?

SOC Code 2135 is the occupation code for IT Security Professionals used by the Home Office to classify roles eligible for the Skilled Worker visa. Employers assign this code when issuing a Certificate of Sponsorship for cybersecurity roles such as analysts, architects and penetration testers.

What salary must I pay a sponsored cybersecurity professional?

You must pay at least the general Skilled Worker threshold of £41,700 per year or the going rate for SOC Code 2135, whichever is higher. Always check the current going rates published by the Home Office as these are updated periodically.

Do I need a sponsor licence to hire an overseas cybersecurity worker?

Yes. You must hold a valid Skilled Worker sponsor licence before you can issue a Certificate of Sponsorship. Without a licence you cannot legally sponsor a worker under this route.

How long does it take to get a sponsor licence?

Standard processing takes up to eight weeks. A priority service is available for an additional fee, which can reduce this to around ten working days, though availability is not guaranteed.

Can a cybersecurity professional switch to a Skilled Worker visa from inside the UK?

Yes, in most cases. Workers already in the UK on