The table below looks at the statistics for Penetration Testing skills in IT contracts advertised across the UK. Included is a guide to the contractor rates offered in IT contracts that have cited Penetration Testing over the 3 months to 30 September 2016 with a comparison to the same period over the previous 2 years.

Note that daily contractor rates and hourly contractor rates are treated separately. When calculating average contractor rates, daily rates are not derived from quoted hourly rates or vice versa.

3 months to
30 Sep 2016
Same period 2015 Same period 2014
Penetration Testing
Rank 401 496 479
Rank change year-on-year
+95 -17
Contract jobs citing Penetration Testing 268 180 164
As % of all contract IT jobs located in the UK 0.50% 0.31% 0.28%
As % of the Processes & Methodologies category 0.60% 0.38% 0.37%
Number of daily rates quoted 179 128 111
Median daily rate £450 £450 £450
90% offered a daily rate of more than £350 £300 £375
10% offered a daily rate of more than £597 £580 £525
UK excluding London median daily rate £437 £450 £450
% change year-on-year
-2.88% -
Number of hourly rates quoted 1 0 1
Median hourly rate £35.00 - £60.00
UK excluding London median hourly rate £35.00 - £60.00

The following table is for comparison with the above and provides statistics for the entire Processes & Methodologies category in contract jobs advertised across the UK.

Processes & Methodologies Category
UK
Contract IT job ads with a match in the
Processes & Methodologies category
44299 46946 44879
As % of all contract IT jobs located in the UK 83.12% 81.11% 77.00%
Number of daily rates quoted 29375 30672 28106
Median daily rate £438 £425 £410
Median daily rate % change year-on-year
+2.94% +3.54%
90% offered a daily rate of more than £300 £288 £275
10% offered a daily rate of more than £590 £583 £575
UK excluding London median daily rate £400 £400 £375
% change year-on-year
- +6.66%
Number of hourly rates quoted 1162 1305 1228
Median hourly rate £31.00 £32.50 £23.75
Median hourly rate % change year-on-year
-4.61% +36.84%
90% offered a hourly rate of more than £12.54 £12.50 £12.50
10% offered a hourly rate of more than £50.00 £50.00 £52.50
UK excluding London median hourly rate £32.50 £34.00 £25.75
% change year-on-year
-4.41% +32.03%

Penetration Testing
Jobs Demand Trend

The demand trend of contract jobs citing Penetration Testing as a proportion of all IT contracts with a match in the Processes & Methodologies category.

Penetration Testing Jobs Demand Trend in the UK

Penetration Testing
Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in IT contract jobs citing Penetration Testing within the UK.

Penetration Testing Daily Rate Trend in the UK

Penetration Testing
Daily Rate Histogram

This chart provides a histogram of daily rates quoted in contract IT jobs citing Penetration Testing within the UK over the 3 months to 30 September 2016.

Penetration Testing Daily Rate Histogram in the UK

Penetration Testing
Hourly Rate Trend

This chart provides the 3-month moving average for hourly rates quoted in IT contractor jobs citing Penetration Testing within the UK.

Penetration Testing Hourly Rate Trend in the UK

Penetration Testing
Top 30 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the UK over the 3 months to 30 September 2016. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 3 month period last year.

Location
(Click see detailed
statistics and trends)
Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Last 3 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +71 253 £450 - 164
London +60 132 £450 -1.09% 44
South East +26 48 £525 +5.00% 44
Hampshire +23 19 £525 -5.19% 9
East of England +14 16 £450 +12.50% 9
City of London +10 15 £398 -6.47% 14
South West +21 12 £469 -39.51% 17
North West +12 12 £488 +39.28% 11
Surrey +10 11 £425 -15.00% 5
South Wales +27 10 £403 -12.97% 1
Wales +27 10 £403 -12.97% 1
Manchester -13 10 £550 +57.14% 9
West Midlands - 10 £398 - 19
Buckinghamshire +18 8 £550 -8.33% 8
Hertfordshire +11 8 £431 +7.81% 3
Yorkshire +7 8 £325 +21.49% 11
Bedfordshire +2 8 £525 +75.00%
Newport - 8 £450 - 1
Milton Keynes +16 7 £550 +83.33% 6
West Yorkshire +11 6 £300 - 9
Gloucestershire - 6 £345 - 10
Scotland +15 5 £288 -36.11%
Newcastle upon Tyne - 5 £375 - 1
Tyne and Wear - 5 £375 - 1
North East - 5 £375 - 1
Wiltshire +17 4 £500 +36.98% 2
Swindon +15 4 £500 +36.98% 1
Basingstoke +14 4 £525 -5.82% 1
Berkshire -1 4 £375 -21.05% 8
Docklands, London - 4 £563 -

Penetration Testing
Top 30 Related IT Skills

For the 6 months to 30 September 2016, IT contractor jobs citing Penetration Testing also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all contract ads with a requirement for Penetration Testing.

1 149 (29.10%) Information Security
2 131 (25.59%) CISSP
3 111 (21.68%) OWASP
4 98 (19.14%) Finance
5 94 (18.36%) Security Testing
6 93 (18.16%) Security Cleared
7 90 (17.58%) Firewall
8 89 (17.38%) CREST Certified
9 80 (15.63%) Agile Software Development
10 78 (15.23%) Cybersecurity
11 77 (15.04%) Linux
12 76 (14.84%) ISO/IEC 27001
13 75 (14.65%) Ethical Hacking
14 74 (14.45%) Microsoft
15 71 (13.87%) CEH
16 68 (13.28%) Windows
17 66 (12.89%) Continuous Integration
17 66 (12.89%) Vulnerability Management
18 64 (12.50%) Python
19 60 (11.72%) CISM
20 55 (10.74%) SC Cleared
21 52 (10.16%) Risk Management
21 52 (10.16%) Java
22 50 (9.77%) PCI DSS
22 50 (9.77%) Network Security
23 49 (9.57%) Management Information System
24 48 (9.38%) Open Source
24 48 (9.38%) Security Architecture
25 47 (9.18%) Amazon AWS
26 46 (8.98%) CESG Certified Professional

Penetration Testing
Top Related IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 30 (5.86%) nginx
2 15 (2.93%) Apache
3 14 (2.73%) MS Exchange
4 11 (2.15%) SharePoint
5 10 (1.95%) IIS
6 9 (1.76%) Skype for Business
7 8 (1.56%) Tomcat
8 7 (1.37%) OpenStack
9 6 (1.17%) SharePoint 2013
10 5 (0.98%) Moodle
11 4 (0.78%) Apache Pig
12 3 (0.59%) CMS
13 2 (0.39%) SAS
14 1 (0.20%) uWSGI
Applications
1 27 (5.27%) MS Excel
2 8 (1.56%) MS Office
3 5 (0.98%) MS PowerPoint
4 2 (0.39%) MS Project
5 1 (0.20%) MS Visio
Business Applications
1 14 (2.73%) Dynamics CRM
2 2 (0.39%) Oracle Applications
2 2 (0.39%) Remedy ITSM
3 1 (0.20%) Bankmaster
3 1 (0.20%) Dynamics AX
3 1 (0.20%) Payment Gateway
3 1 (0.20%) SAP Oil and Gas
3 1 (0.20%) Sentinel
Cloud Services
1 47 (9.18%) Amazon AWS
2 19 (3.71%) Microsoft Azure
3 7 (1.37%) Azure Active Directory
3 7 (1.37%) IaaS
3 7 (1.37%) Office 365
4 3 (0.59%) Amazon ELB
4 3 (0.59%) Amazon S3
4 3 (0.59%) AWS CloudFormation
4 3 (0.59%) GitHub
4 3 (0.59%) Route 53
5 2 (0.39%) Google Analytics
5 2 (0.39%) Heroku
5 2 (0.39%) SaaS
6 1 (0.20%) Cloud Computing
6 1 (0.20%) IBM Cloud
6 1 (0.20%) Slack
6 1 (0.20%) Virtual Private Cloud
Communications & Networking
1 90 (17.58%) Firewall
2 50 (9.77%) Network Security
3 37 (7.23%) Internet
3 37 (7.23%) Wireless
4 30 (5.86%) VPN
4 30 (5.86%) WAN
5 28 (5.47%) Intrusion Detection
6 26 (5.08%) LAN
7 25 (4.88%) Cisco ASA
8 21 (4.10%) TCP/IP
9 20 (3.91%) FTP
10 19 (3.71%) IPsec
10 19 (3.71%) OSPF
11 18 (3.52%) DNS
11 18 (3.52%) SMTP
12 16 (3.13%) SSL
13 15 (2.93%) BGP
13 15 (2.93%) Wireshark
14 13 (2.54%) SSH
15 11 (2.15%) Wireless Security
Database & Business Intelligence
1 39 (7.62%) SQL Server
2 35 (6.84%) PostgreSQL
3 16 (3.13%) SQL Server 2008
4 12 (2.34%) MongoDB
4 12 (2.34%) MySQL
5 9 (1.76%) SQL Server 2012
6 8 (1.56%) SQL Server Integration Services
7 6 (1.17%) InterSystems Cache
7 6 (1.17%) Oracle Database
7 6 (1.17%) Oracle Reports
8 4 (0.78%) Big Data
8 4 (0.78%) Hadoop
8 4 (0.78%) MariaDB
9 3 (0.59%) Amazon RDS
9 3 (0.59%) NoSQL
10 2 (0.39%) Data Lake
10 2 (0.39%) Mixpanel
10 2 (0.39%) SQL Server Reporting Services
11 1 (0.20%) GIS
11 1 (0.20%) SQL Server 2005
Development Applications
1 44 (8.59%) Jenkins
2 28 (5.47%) Travis CI
3 20 (3.91%) CircleCI
4 16 (3.13%) Selenium
5 15 (2.93%) Git (software)
6 12 (2.34%) Burp Suite
6 12 (2.34%) Metasploit
7 9 (1.76%) Visual Studio
8 8 (1.56%) AppScan
8 8 (1.56%) JMeter
8 8 (1.56%) SpecFlow
8 8 (1.56%) Team Foundation Server
9 7 (1.37%) Jasmine
9 7 (1.37%) JIRA
10 6 (1.17%) Balsamiq Mockups
10 6 (1.17%) Cucumber
11 5 (0.98%) Oracle APEX
12 4 (0.78%) Vagrant
13 3 (0.59%) NUnit
14 2 (0.39%) Maven
General
1 98 (19.14%) Finance
2 24 (4.69%) Legal
3 22 (4.30%) Banking
4 13 (2.54%) Retail
5 10 (1.95%) Telecoms
6 8 (1.56%) Marketing
7 6 (1.17%) Advertising
7 6 (1.17%) Military
8 4 (0.78%) Back Office
8 4 (0.78%) Financial Institution
8 4 (0.78%) Local Government
9 2 (0.39%) Games
9 2 (0.39%) Manufacturing
9 2 (0.39%) Retail Banking
10 1 (0.20%) Electronics
10 1 (0.20%) Italian Language
10 1 (0.20%) Law
Job Titles
1 118 (23.05%) Tester
2 109 (21.29%) Penetration Tester
3 81 (15.82%) Consultant
4 68 (13.28%) Security Engineer
5 60 (11.72%) Security Consultant
6 55 (10.74%) Analyst
7 45 (8.79%) Security Analyst
7 45 (8.79%) Security Manager
8 36 (7.03%) Security Tester
9 33 (6.45%) Security Penetration Tester
10 28 (5.47%) Developer
10 28 (5.47%) Information Security Consultant
11 21 (4.10%) Network Engineer
12 19 (3.71%) Technical Consultant
13 18 (3.52%) Project Manager
14 17 (3.32%) Architect
14 17 (3.32%) IT Consultant
15 16 (3.13%) Security Specialist
16 15 (2.93%) IT Security Consultant
17 13 (2.54%) Information Analyst
Libraries, Frameworks & Software Standards
1 44 (8.59%) Web Services
2 34 (6.64%) .NET
3 17 (3.32%) SAML
4 16 (3.13%) ASP.NET
5 14 (2.73%) .NET Framework
6 12 (2.34%) jQuery
7 11 (2.15%) ASP.NET Web API
7 11 (2.15%) Entity Framework
8 10 (1.95%) Ajax
8 10 (1.95%) HTML
8 10 (1.95%) Node.js
8 10 (1.95%) React
9 9 (1.76%) HTML5
9 9 (1.76%) KnockoutJS
10 8 (1.56%) Breeze.js
10 8 (1.56%) Durandal
10 8 (1.56%) Windows Identity Foundation
11 5 (0.98%) Middleware
12 4 (0.78%) J2EE
12 4 (0.78%) Spring
Miscellaneous
1 49 (9.57%) Management Information System
2 38 (7.42%) Analytical Skills
3 34 (6.64%) CESG
4 30 (5.86%) Cryptography
5 27 (5.27%) PKI
6 23 (4.49%) Mobile App
7 17 (3.32%) Data Centre
8 14 (2.73%) Security Operations Centre
9 11 (2.15%) Client/Server
10 10 (1.95%) Embedded Systems
10 10 (1.95%) N-Tier
11 9 (1.76%) Algorithms
11 9 (1.76%) Distributed Denial-of-Service
12 8 (1.56%) Data Protection Act
12 8 (1.56%) Video Conferencing
13 7 (1.37%) Computer Science
14 6 (1.17%) Fintech
15 5 (0.98%) e-Learning
16 4 (0.78%) Cyberthreat
17 3 (0.59%) Virtual Team
Operating Systems
1 77 (15.04%) Linux
2 68 (13.28%) Windows
3 34 (6.64%) Unix
4 10 (1.95%) Windows Server
4 10 (1.95%) Windows Vista
5 9 (1.76%) Android
6 7 (1.37%) Apple iOS
6 7 (1.37%) Kali Linux
7 6 (1.17%) Windows Server 2008
7 6 (1.17%) Windows Server 2012
8 5 (0.98%) CentOS
8 5 (0.98%) Solaris
8 5 (0.98%) Ubuntu
9 2 (0.39%) Windows Server 2003
10 1 (0.20%) Mac OS X
10 1 (0.20%) Windows 10
10 1 (0.20%) Windows 2000
10 1 (0.20%) Windows Mobile
Processes & Methodologies
1 149 (29.10%) Information Security
2 111 (21.68%) OWASP
3 94 (18.36%) Security Testing
4 80 (15.63%) Agile Software Development
5 78 (15.23%) Cybersecurity
6 75 (14.65%) Ethical Hacking
7 66 (12.89%) Continuous Integration
7 66 (12.89%) Vulnerability Management
8 52 (10.16%) Risk Management
9 48 (9.38%) Open Source
9 48 (9.38%) Security Architecture
10 46 (8.98%) ITIL
11 44 (8.59%) SIEM
12 43 (8.40%) Fuzz Testing
12 43 (8.40%) Vulnerability Assessment
13 42 (8.20%) Vulnerability Scanning
14 41 (8.01%) Social Engineering
15 38 (7.42%) Project Management
16 37 (7.23%) Security Management
17 36 (7.03%) Automated Testing
Programming Languages
1 64 (12.50%) Python
2 52 (10.16%) Java
3 42 (8.20%) PHP
3 42 (8.20%) Ruby
4 26 (5.08%) Perl
5 24 (4.69%) C#
6 23 (4.49%) JavaScript
6 23 (4.49%) SQL
7 21 (4.10%) C++
7 21 (4.10%) PowerShell
8 19 (3.71%) C
9 14 (2.73%) Bash Shell
10 11 (2.15%) TypeScript
11 9 (1.76%) T-SQL
12 5 (0.98%) Shell Script
13 2 (0.39%) Assembly Language
13 2 (0.39%) COBOL
13 2 (0.39%) PL/SQL
13 2 (0.39%) VB
13 2 (0.39%) VB.NET
Qualifications
1 131 (25.59%) CISSP
2 93 (18.16%) Security Cleared
3 89 (17.38%) CREST Certified
4 71 (13.87%) CEH
5 60 (11.72%) CISM
6 55 (10.74%) SC Cleared
7 46 (8.98%) CESG Certified Professional
8 37 (7.23%) CHECK Team Member
9 32 (6.25%) CISA
10 25 (4.88%) OSCP
11 22 (4.30%) Cisco Certification
12 18 (3.52%) Cyber Scheme
13 17 (3.32%) CCNP
14 16 (3.13%) Degree
15 15 (2.93%) CLAS
15 15 (2.93%) Tigerscheme
16 14 (2.73%) CompTIA Security+
16 14 (2.73%) Security+ Certification
17 13 (2.54%) ITIL Certification
17 13 (2.54%) SANS
Quality Assurance & Compliance
1 76 (14.84%) ISO/IEC 27001
2 50 (9.77%) PCI DSS
3 18 (3.52%) COBIT
3 18 (3.52%) QA
4 11 (2.15%) Disclosure Scotland
5 9 (1.76%) RMADS
6 8 (1.56%) Sarbanes-Oxley
7 7 (1.37%) HMG Security Policy Framework
8 4 (0.78%) Data Quality
8 4 (0.78%) WAI
8 4 (0.78%) WCAG
9 3 (0.59%) HIPAA
9 3 (0.59%) ISO27002
10 2 (0.39%) GPG13
10 2 (0.39%) ISAE 3402
10 2 (0.39%) SSAE 16
11 1 (0.20%) Government Security Classifications
11 1 (0.20%) ISO/IEC 17799
11 1 (0.20%) JSP 440
11 1 (0.20%) PA-DSS
System Software
1 24 (4.69%) Active Directory
2 11 (2.15%) Sendmail
3 10 (1.95%) VMware Infrastructure
4 9 (1.76%) Docker
5 6 (1.17%) oVirt
6 5 (0.98%) Virtual Servers
6 5 (0.98%) VMware ESXi
7 4 (0.78%) Corosync
7 4 (0.78%) Squid
8 3 (0.59%) Firmware
8 3 (0.59%) Hyper-V
8 3 (0.59%) VMware ESX
9 2 (0.39%) NFS
9 2 (0.39%) Virtual Machines
10 1 (0.20%) IAG
10 1 (0.20%) Snort
10 1 (0.20%) Virtual Desktop
10 1 (0.20%) VMware Server
10 1 (0.20%) VMware Workstation
Systems Management
1 15 (2.93%) Nessus
1 15 (2.93%) Puppet
2 12 (2.34%) HP Fortify
3 8 (1.56%) SmoothWall
4 7 (1.37%) WebInspect
5 6 (1.17%) CA Single Sign-On
6 4 (0.78%) EnCase
6 4 (0.78%) Nagios
6 4 (0.78%) Pacemaker
7 3 (0.59%) Nmap
8 2 (0.39%) Microsoft Clustering
9 1 (0.20%) Ansible
9 1 (0.20%) ArcSight ESM
9 1 (0.20%) Cisco CUCM
9 1 (0.20%) Core Impact
9 1 (0.20%) Nexpose
9 1 (0.20%) Opscode Chef
9 1 (0.20%) QRadar
9 1 (0.20%) TrustSec
9 1 (0.20%) WSUS
Vendors
1 74 (14.45%) Microsoft
2 46 (8.98%) Cisco
3 33 (6.45%) CheckPoint
4 32 (6.25%) Oracle
5 25 (4.88%) Citrix
6 21 (4.10%) VMware
7 16 (3.13%) Juniper
8 13 (2.54%) F5
8 13 (2.54%) HP
9 11 (2.15%) LogRhythm
10 9 (1.76%) ArcSight
10 9 (1.76%) Polycom
10 9 (1.76%) Splunk
11 8 (1.56%) Brocade
11 8 (1.56%) Clearswift
11 8 (1.56%) Fortinet
11 8 (1.56%) Kaspersky
11 8 (1.56%) LogLogic
11 8 (1.56%) Riverbed
12 7 (1.37%) IBM
Newport, Gwent
IntaPeople
Rate: £500 - £550 per day
Posted: 4 hours ago
Hampshire
Sanderson
Rate: £350 - £380 per day
Posted: 21 hours ago
Milton Keynes, Buckinghamshire
IT Connections
Rate: £550 per day
Posted: Yesterday
City, London
Acumin
Rate: Up to £600 per day
Posted: 2 days ago
Milton Keynes, Buckinghamshire
LA International
Rate: Market Rates Apply
Posted: 3 days ago
Poole, Dorset
Proteus Europe
Rate: £300 - £380 per day + DOE
Posted: 3 days ago
Hampshire
Spencer Rose
Rate: Up to £550 per day
Posted: 6 days ago
Watford, Hertfordshire
Executive Recruitment Services (ERS)
Posted: 6 days ago
Welwyn Garden City, Hertfordshire
ServerChoice
Rate: From £25,000 to £28,000 per annum depending on experience
Posted: 15 days ago