The table below looks at the statistics for Penetration Testing skills in IT contracts advertised across the UK. Included is a guide to the contractor rates offered in IT contracts that have cited Penetration Testing over the 3 months to 21 February 2017 with a comparison to the same period over the previous 2 years.

Note that daily contractor rates and hourly contractor rates are treated separately. When calculating average contractor rates, daily rates are not derived from quoted hourly rates or vice versa.

3 months to
21 Feb 2017
Same period 2016 Same period 2015
Penetration Testing
UK
Rank 401 434 519
Rank change year-on-year
+33 +85
Contract jobs citing Penetration Testing 202 193 101
As % of all contract IT jobs located in the UK 0.45% 0.38% 0.20%
As % of the Processes & Methodologies category 0.54% 0.46% 0.25%
Number of daily rates quoted 134 132 59
Median daily rate £475 £450 £438
Median daily rate % change year-on-year
+5.55% +2.85%
90% offered a daily rate of more than £350 £373 £290
10% offered a daily rate of more than £600 £550 £600
UK excluding London median daily rate £450 £425 £375
% change year-on-year
+5.88% +13.33%
Number of hourly rates quoted 2 2 3
Median hourly rate £60.87 £46.25 £47.50
Median hourly rate % change year-on-year
+31.61% -2.63%
UK excluding London median hourly rate £60.87 £46.25 £47.50
% change year-on-year
+31.61% -2.63%

The following table is for comparison with the above and provides statistics for the entire Processes & Methodologies category in contract jobs advertised across the UK.

Processes & Methodologies Category
UK
Contract IT job ads with a match in the
Processes & Methodologies category
37463 42318 40948
As % of all contract IT jobs located in the UK 82.62% 82.71% 79.33%
Number of daily rates quoted 24877 27655 25965
Median daily rate £450 £425 £425
Median daily rate % change year-on-year
+5.88% -
90% offered a daily rate of more than £300 £297 £280
10% offered a daily rate of more than £600 £600 £575
UK excluding London median daily rate £410 £400 £400
% change year-on-year
+2.50% -
Number of hourly rates quoted 969 1164 1085
Median hourly rate £35.00 £38.75 £26.00
Median hourly rate % change year-on-year
-9.67% +49.03%
90% offered a hourly rate of more than £13.00 £13.00 £12.00
10% offered a hourly rate of more than £55.00 £57.00 £47.50
UK excluding London median hourly rate £35.75 £40.00 £27.50
% change year-on-year
-10.62% +45.45%

Penetration Testing
Jobs Demand Trend

The demand trend of contract jobs citing Penetration Testing as a proportion of all IT contracts with a match in the Processes & Methodologies category.

Penetration Testing Jobs Demand Trend in the UK

Penetration Testing
Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in IT contract jobs citing Penetration Testing within the UK.

Penetration Testing Daily Rate Trend in the UK

Penetration Testing
Daily Rate Histogram

This chart provides a histogram of daily rates quoted in contract IT jobs citing Penetration Testing within the UK over the 3 months to 21 February 2017.

Penetration Testing Daily Rate Histogram in the UK

Penetration Testing
Hourly Rate Trend

This chart provides the 3-month moving average for hourly rates quoted in IT contractor jobs citing Penetration Testing within the UK.

Penetration Testing Hourly Rate Trend in the UK

Penetration Testing
Top 30 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the UK over the 3 months to 21 February 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 3 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Last 3 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +34 194 £475 +5.55% 61
London +23 106 £475 +2.70% 31
South West +12 25 £450 +3.44% 4
South East +9 25 £433 +1.76% 6
North West +26 15 £425 -2.85% 6
Bristol +11 14 £525 +40.93% 3
East of England +8 11 £538 +27.59% 4
West Yorkshire +19 8 £450 -18.18% 2
Manchester +14 8 £343 -23.88% 5
Buckinghamshire +8 8 £450 -10.89% 1
Wiltshire +2 8 £440 -2.22%
Yorkshire +1 8 £450 +9.75% 4
City of London -9 8 £500 +7.52% 3
Hampshire +4 7 £513 +36.66%
Hertfordshire +4 7 £531 - 2
Salisbury - 6 £440 -
Berkshire +22 5 £433 -18.58% 1
Milton Keynes +7 5 £450 -10.89%
Leeds +5 5 £425 - 1
West Midlands +2 5 £550 +22.22% 3
Scotland +22 4 £425 - 1
Cheshire +25 3 £425 - 1
Reading +12 3 £400 -34.69% 1
Merseyside -4 3 £600 -
Liverpool - 3 £600 -
Docklands, London - 3 - -
Edinburgh +18 2 £425 -
Portsmouth - 2 - -
Wolverhampton - 2 £575 -
Croydon - 2 £488 -

Penetration Testing
Top 30 Related IT Skills

For the 6 months to 21 February 2017, IT contractor jobs citing Penetration Testing also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all contract ads with a requirement for Penetration Testing.

1 146 (33.03%) Information Security
2 111 (25.11%) Firewall
3 99 (22.40%) CISSP
4 94 (21.27%) Security Cleared
5 89 (20.14%) Linux
6 79 (17.87%) Agile Software Development
7 76 (17.19%) Microsoft
8 75 (16.97%) OWASP
9 72 (16.29%) SC Cleared
9 72 (16.29%) Finance
10 65 (14.71%) Windows
10 65 (14.71%) Java
11 64 (14.48%) Risk Management
11 64 (14.48%) Network Security
12 63 (14.25%) Amazon AWS
13 61 (13.80%) Ethical Hacking
14 60 (13.57%) CREST Certified
15 56 (12.67%) Management Information System
16 55 (12.44%) SIEM
16 55 (12.44%) Cybersecurity
17 54 (12.22%) ISO/IEC 27001
17 54 (12.22%) Security Testing
18 52 (11.76%) Intrusion Detection
18 52 (11.76%) Jenkins
19 51 (11.54%) Continuous Integration
20 50 (11.31%) Cisco
21 49 (11.09%) Security Management
21 49 (11.09%) Vulnerability Management
22 47 (10.63%) Puppet
22 47 (10.63%) CEH

Penetration Testing
Top Related IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 11 (2.49%) MS Exchange
2 9 (2.04%) nginx
3 6 (1.36%) IIS
3 6 (1.36%) Skype for Business
4 5 (1.13%) WebSphere
5 4 (0.90%) JBoss
5 4 (0.90%) Tomcat
6 3 (0.68%) Apache
6 3 (0.68%) CMS
6 3 (0.68%) WebLogic
7 2 (0.45%) Jetty
7 2 (0.45%) Mongrel
7 2 (0.45%) OpenStack
7 2 (0.45%) SharePoint
8 1 (0.23%) EPiServer
8 1 (0.23%) SAS
8 1 (0.23%) Umbraco
Applications
1 35 (7.92%) MS Excel
2 15 (3.39%) MS Office
3 6 (1.36%) MS Project
4 5 (1.13%) MS PowerPoint
5 4 (0.90%) MS Visio
Business Applications
1 5 (1.13%) Dynamics CRM
2 2 (0.45%) Dynamics AX
2 2 (0.45%) SAP Oil and Gas
2 2 (0.45%) Sentinel
2 2 (0.45%) Temenos T24
3 1 (0.23%) Bankmaster
Cloud Services
1 63 (14.25%) Amazon AWS
2 32 (7.24%) Microsoft Azure
3 19 (4.30%) IaaS
4 10 (2.26%) Cloud Computing
5 9 (2.04%) PaaS
6 7 (1.58%) Office 365
7 6 (1.36%) Amazon ELB
8 5 (1.13%) Amazon S3
8 5 (1.13%) AWS CloudFormation
8 5 (1.13%) Azure Active Directory
8 5 (1.13%) Route 53
9 3 (0.68%) Amazon EC2
9 3 (0.68%) SaaS
9 3 (0.68%) Virtual Private Cloud
10 2 (0.45%) Google App Engine
10 2 (0.45%) Google Cloud Platform
11 1 (0.23%) Amazon SQS
Communications & Networking
1 111 (25.11%) Firewall
2 64 (14.48%) Network Security
3 52 (11.76%) Intrusion Detection
4 42 (9.50%) TCP/IP
5 38 (8.60%) SSL
6 28 (6.33%) VPN
7 27 (6.11%) HTTP
8 26 (5.88%) DNS
9 25 (5.66%) Internet
10 21 (4.75%) Wireless
10 21 (4.75%) Wireshark
11 15 (3.39%) Cisco ASA
12 14 (3.17%) FTP
12 14 (3.17%) OSPF
13 13 (2.94%) LAN
13 13 (2.94%) WAN
14 12 (2.71%) DHCP
15 11 (2.49%) NetScaler
15 11 (2.49%) SMTP
15 11 (2.49%) WebEx
Database & Business Intelligence
1 31 (7.01%) MongoDB
2 25 (5.66%) PostgreSQL
3 23 (5.20%) Redis
3 23 (5.20%) Relational Database
4 14 (3.17%) SQL Server
5 6 (1.36%) Oracle Database
6 5 (1.13%) Amazon RDS
6 5 (1.13%) SQL Server Integration Services
7 2 (0.45%) Data Lake
7 2 (0.45%) MySQL
8 1 (0.23%) Big Data
8 1 (0.23%) Crystal Reports
8 1 (0.23%) Oracle Reports
8 1 (0.23%) SQL Server 2008
Development Applications
1 52 (11.76%) Jenkins
2 32 (7.24%) Git (software)
3 16 (3.62%) Metasploit
4 13 (2.94%) Burp Suite
5 10 (2.26%) Selenium
6 8 (1.81%) JIRA
7 7 (1.58%) Cucumber
7 7 (1.58%) JMeter
8 5 (1.13%) Sonatype Nexus
8 5 (1.13%) Team Foundation Server
8 5 (1.13%) Vagrant
9 3 (0.68%) TeamCity
9 3 (0.68%) Travis CI
9 3 (0.68%) Visual Studio
10 2 (0.45%) Appium
10 2 (0.45%) Visual Studio Team System
11 1 (0.23%) GDB
11 1 (0.23%) Rational DOORS
11 1 (0.23%) WebDriver
11 1 (0.23%) WinDbg
General
1 72 (16.29%) Finance
2 25 (5.66%) Legal
3 19 (4.30%) Retail
4 16 (3.62%) Banking
5 8 (1.81%) Telecoms
6 6 (1.36%) Law
6 6 (1.36%) Manufacturing
7 5 (1.13%) Financial Institution
8 4 (0.90%) Advertising
8 4 (0.90%) Back Office
9 3 (0.68%) Electronics
9 3 (0.68%) Marketing
10 2 (0.45%) Retail Banking
11 1 (0.23%) Automotive
11 1 (0.23%) French Language
Job Titles
1 91 (20.59%) Consultant
2 88 (19.91%) Tester
3 81 (18.33%) Penetration Tester
4 61 (13.80%) Security Consultant
5 57 (12.90%) Analyst
6 47 (10.63%) Security Analyst
7 34 (7.69%) Security Engineer
8 25 (5.66%) Network Engineer
9 22 (4.98%) Architect
9 22 (4.98%) DevOps Engineer
10 19 (4.30%) Security Manager
11 18 (4.07%) IT Consultant
11 18 (4.07%) Network Security Engineer
12 16 (3.62%) Technical Consultant
13 15 (3.39%) IT Security Consultant
14 14 (3.17%) Applications Consultant
14 14 (3.17%) Developer
15 13 (2.94%) Information Security Manager
15 13 (2.94%) Security Specialist
16 12 (2.71%) Information Security Consultant
Libraries, Frameworks & Software Standards
1 25 (5.66%) Node.js
2 23 (5.20%) Web Services
3 10 (2.26%) .NET
4 7 (1.58%) SAML
4 7 (1.58%) Spring
5 6 (1.36%) Middleware
6 5 (1.13%) ASP.NET
6 5 (1.13%) J2EE
6 5 (1.13%) Oracle GoldenGate
7 4 (0.90%) OAuth
8 2 (0.45%) 802.1X
8 2 (0.45%) Servlets
9 1 (0.23%) Android SDK
9 1 (0.23%) AngularJS
9 1 (0.23%) Elastic Stack
9 1 (0.23%) HTML
9 1 (0.23%) LAMP
9 1 (0.23%) Regular Expression
9 1 (0.23%) RESTful
9 1 (0.23%) Ruby on Rails
Miscellaneous
1 56 (12.67%) Management Information System
2 29 (6.56%) Analytical Skills
3 22 (4.98%) Data Centre
3 22 (4.98%) Mobile App
4 13 (2.94%) Algorithms
5 12 (2.71%) Computer Science
5 12 (2.71%) Distributed Denial-of-Service
6 9 (2.04%) CESG
6 9 (2.04%) CMDB
7 6 (1.36%) Cyberthreat
7 6 (1.36%) Video Conferencing
8 5 (1.13%) PKI
8 5 (1.13%) Security Operations Centre
9 4 (0.90%) Cyber Defence
10 3 (0.68%) Client/Server
10 3 (0.68%) Clustering
10 3 (0.68%) Data Protection Act
10 3 (0.68%) Fintech
10 3 (0.68%) Public Cloud
10 3 (0.68%) Smart Meter
Operating Systems
1 89 (20.14%) Linux
2 65 (14.71%) Windows
3 28 (6.33%) Unix
4 8 (1.81%) Windows Server
5 7 (1.58%) CentOS
6 6 (1.36%) Kali Linux
6 6 (1.36%) Ubuntu
7 5 (1.13%) Mac OS X
7 5 (1.13%) Red Hat Enterprise Linux
8 3 (0.68%) Android
8 3 (0.68%) Solaris
8 3 (0.68%) SUSE
8 3 (0.68%) Windows Server 2008
8 3 (0.68%) Windows Server 2012
8 3 (0.68%) Windows Vista
9 2 (0.45%) Apple iOS
9 2 (0.45%) Windows 10
9 2 (0.45%) Windows Server 2003
10 1 (0.23%) Windows 2000
Processes & Methodologies
1 146 (33.03%) Information Security
2 79 (17.87%) Agile Software Development
3 75 (16.97%) OWASP
4 64 (14.48%) Risk Management
5 61 (13.80%) Ethical Hacking
6 55 (12.44%) Cybersecurity
6 55 (12.44%) SIEM
7 54 (12.22%) Security Testing
8 51 (11.54%) Continuous Integration
9 49 (11.09%) Security Management
9 49 (11.09%) Vulnerability Management
10 42 (9.50%) DevOps
10 42 (9.50%) Vulnerability Assessment
11 40 (9.05%) Security Architecture
12 39 (8.82%) Open Source
13 33 (7.47%) Secure Coding
14 32 (7.24%) Configuration Management
15 31 (7.01%) ITIL
16 27 (6.11%) Risk Assessment
17 26 (5.88%) Vulnerability Scanning
Programming Languages
1 65 (14.71%) Java
2 42 (9.50%) Python
3 20 (4.52%) PowerShell
4 11 (2.49%) Ruby
4 11 (2.49%) SQL
5 10 (2.26%) Perl
6 9 (2.04%) Bash Shell
7 6 (1.36%) C
7 6 (1.36%) C++
8 5 (1.13%) C#
8 5 (1.13%) Shell Script
9 2 (0.45%) PHP
10 1 (0.23%) JavaScript
10 1 (0.23%) Scala
10 1 (0.23%) VB
10 1 (0.23%) VB6
Qualifications
1 99 (22.40%) CISSP
2 94 (21.27%) Security Cleared
3 72 (16.29%) SC Cleared
4 60 (13.57%) CREST Certified
5 47 (10.63%) CEH
6 35 (7.92%) SANS
7 31 (7.01%) CISM
8 24 (5.43%) Degree
9 22 (4.98%) OSCP
10 21 (4.75%) Cisco Certification
11 18 (4.07%) CISA
11 18 (4.07%) GIAC
12 13 (2.94%) CHECK Team Member
12 13 (2.94%) CISMP
13 11 (2.49%) CCNP
14 10 (2.26%) CCSE
14 10 (2.26%) DV Cleared
15 9 (2.04%) CESG Certified Professional
15 9 (2.04%) CLAS
16 8 (1.81%) CHECK Team Leader
Quality Assurance & Compliance
1 54 (12.22%) ISO/IEC 27001
2 40 (9.05%) PCI DSS
3 15 (3.39%) COBIT
3 15 (3.39%) ISO27002
4 9 (2.04%) QA
5 8 (1.81%) Disclosure Scotland
6 7 (1.58%) RMADS
6 7 (1.58%) WAI
6 7 (1.58%) WCAG
7 5 (1.13%) Data Quality
7 5 (1.13%) Sarbanes-Oxley
7 5 (1.13%) SLA
7 5 (1.13%) Web Application Security Consortium
8 4 (0.90%) GPG13
9 3 (0.68%) HIPAA
10 2 (0.45%) GDPR
10 2 (0.45%) HMG Security Policy Framework
10 2 (0.45%) ISO27005
11 1 (0.23%) ISO22301
11 1 (0.23%) JSP 440
System Software
1 20 (4.52%) Active Directory
2 19 (4.30%) VMware Infrastructure
3 12 (2.71%) Docker
4 9 (2.04%) vCloud
5 6 (1.36%) VMware ESXi
6 5 (1.13%) Corosync
6 5 (1.13%) Squid
7 4 (0.90%) Firmware
8 3 (0.68%) Sendmail
9 2 (0.45%) BitLocker
9 2 (0.45%) NFS
9 2 (0.45%) Virtual Machines
9 2 (0.45%) Xen
10 1 (0.23%) Hyper-V
10 1 (0.23%) IAG
10 1 (0.23%) oVirt
10 1 (0.23%) VMware ESX
10 1 (0.23%) VMware Server
Systems Management
1 47 (10.63%) Puppet
2 27 (6.11%) Ansible
3 11 (2.49%) Nessus
4 9 (2.04%) McAfee ePO
5 8 (1.81%) Nmap
5 8 (1.81%) Opscode Chef
6 7 (1.58%) HP Fortify
6 7 (1.58%) Norton AntiVirus
7 6 (1.36%) EnCase
7 6 (1.36%) Nagios
8 5 (1.13%) CA Single Sign-On
8 5 (1.13%) Computer Emergency Response Teams
8 5 (1.13%) Pacemaker
9 4 (0.90%) CA Spectrum
9 4 (0.90%) Terraform
10 3 (0.68%) Cobbler
10 3 (0.68%) Microsoft Clustering
11 1 (0.23%) ArcSight ESM
11 1 (0.23%) Nexpose
11 1 (0.23%) Systems Management Server (SMS)
Vendors
1 76 (17.19%) Microsoft
2 50 (11.31%) Cisco
3 43 (9.73%) CheckPoint
4 38 (8.60%) VMware
5 23 (5.20%) Citrix
6 22 (4.98%) HP
7 18 (4.07%) Intel Security
8 17 (3.85%) Juniper
9 16 (3.62%) Symantec
10 15 (3.39%) ArcSight
10 15 (3.39%) Dell
10 15 (3.39%) Splunk
11 14 (3.17%) CA
12 12 (2.71%) Red Hat
12 12 (2.71%) Riverbed
13 11 (2.49%) Oracle
14 10 (2.26%) Palo Alto
15 9 (2.04%) BMC
15 9 (2.04%) SolarWinds
16 8 (1.81%) LogRhythm
London
McGregor Boyall
Rate: £350 - £390 per day
Posted: 5 days ago
London
Contingency Team
Posted: 4 days ago
Glasgow, Lanarkshire
Experis Ltd
Posted: 6 days ago
Welwyn Garden City
ECS
Rate: Competitive
Posted: 25 days ago