The table below looks at the statistics for Penetration Testing skills in IT contracts advertised across the UK. Included is a guide to the contractor rates offered in IT contracts that have cited Penetration Testing over the 3 months to 29 June 2016 with a comparison to the same period over the previous 2 years.

Note that daily contractor rates and hourly contractor rates are treated separately. When calculating average contractor rates, daily rates are not derived from quoted hourly rates or vice versa.

3 months to
29 Jun 2016
Same period 2015 Same period 2014
Penetration Testing
Rank 407 500 514
Rank change year-on-year
+93 +14
Contract jobs citing Penetration Testing 244 136 107
As % of all contract IT jobs located in the UK 0.45% 0.24% 0.20%
As % of the Processes & Methodologies category 0.55% 0.30% 0.26%
Number of daily rates quoted 143 91 60
Median daily rate £500 £425 £450
Median daily rate % change year-on-year
+17.64% -5.55%
90% offered a daily rate of more than £350 £300 £265
10% offered a daily rate of more than £625 £525 £555
UK excluding London median daily rate £475 £400 £400
% change year-on-year
+18.75% -
Number of hourly rates quoted 0 1 1
Median hourly rate - £45.00 £28.99
Median hourly rate % change year-on-year
- +55.22%
UK excluding London median hourly rate - £45.00 £28.99
% change year-on-year
- +55.22%

The following table is for comparison with the above and provides statistics for the entire Processes & Methodologies category in contract jobs advertised across the UK.

Processes & Methodologies Category
UK
Contract IT job ads with a match in the
Processes & Methodologies category
44197 44611 41541
As % of all contract IT jobs located in the UK 82.30% 79.62% 78.32%
Number of daily rates quoted 29356 28750 26041
Median daily rate £438 £413 £400
Median daily rate % change year-on-year
+6.06% +3.12%
90% offered a daily rate of more than £298 £285 £275
10% offered a daily rate of more than £600 £575 £570
UK excluding London median daily rate £400 £385 £375
% change year-on-year
+3.89% +2.66%
Number of hourly rates quoted 1042 1189 1204
Median hourly rate £28.00 £28.00 £27.50
Median hourly rate % change year-on-year
- +1.81%
90% offered a hourly rate of more than £13.00 £12.35 £13.00
10% offered a hourly rate of more than £47.83 £50.00 £47.50
UK excluding London median hourly rate £28.50 £30.00 £30.00
% change year-on-year
-5.00% -

Penetration Testing
Jobs Demand Trend

The demand trend of contract jobs citing Penetration Testing as a proportion of all IT contracts with a match in the Processes & Methodologies category.

Penetration Testing Jobs Demand Trend in the UK

Penetration Testing
Daily Rate Trend

This chart provides the 3-month moving average for daily rates quoted in IT contract jobs citing Penetration Testing within the UK.

Penetration Testing Daily Rate Trend in the UK

Penetration Testing
Daily Rate Histogram

This chart provides a histogram of daily rates quoted in contract IT jobs citing Penetration Testing within the UK over the 3 months to 29 June 2016.

Penetration Testing Daily Rate Histogram in the UK

Penetration Testing
Hourly Rate Trend

This chart provides the 3-month moving average for hourly rates quoted in IT contractor jobs citing Penetration Testing within the UK.

Penetration Testing Hourly Rate Trend in the UK

Penetration Testing
Top 30 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the UK over the 3 months to 29 June 2016. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 3 month period last year.

Location
(Click see detailed
statistics and trends)
Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Last 3 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
England +74 215 £500 +17.64% 109
London +44 92 £513 +13.88% 41
South East -14 47 £475 +5.55% 17
North West +2 27 £406 +25.00% 11
Manchester +2 23 £388 +19.23% 6
Wales +30 14 £500 -
South Wales +27 14 £500 -
Hampshire +10 12 £450 +16.88% 7
East of England +22 11 £425 -2.85% 7
Cardiff - 10 £400 -
Yorkshire - 10 £468 - 8
East Midlands +14 9 £565 - 5
Buckinghamshire -5 8 £525 +16.66%
Kent +13 7 £475 -9.52% 1
East Sussex +11 7 £350 - 2
Milton Keynes -2 7 £525 +16.66%
West Yorkshire - 7 £435 - 4
West Midlands - 7 £500 - 8
Nottinghamshire +1 6 £585 - 1
Berkshire -2 6 £450 +38.46% 2
Nottingham - 6 £585 - 1
City of London +45 5 £463 +19.35% 9
South West -1 5 £338 -12.33% 7
Andover -11 5 £350 -17.64%
Leeds - 5 £435 - 2
Hove - 5 - - 1
North East - 5 - - 1
Hertfordshire +17 4 £325 -18.75% 1
Birmingham - 4 - - 3
Bristol - 4 £350 -

Penetration Testing
Top 30 Related IT Skills

For the 6 months to 29 June 2016, IT contractor jobs citing Penetration Testing also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all contract ads with a requirement for Penetration Testing.

1 180 (37.04%) Information Security
2 119 (24.49%) CISSP
3 105 (21.60%) Firewall
3 105 (21.60%) Security Cleared
4 98 (20.16%) Finance
5 83 (17.08%) Cybersecurity
6 80 (16.46%) Windows
6 80 (16.46%) CREST Certified
7 79 (16.26%) OWASP
8 73 (15.02%) Security Testing
9 72 (14.81%) ISO/IEC 27001
10 71 (14.61%) Agile Software Development
11 70 (14.40%) SC Cleared
12 68 (13.99%) Linux
13 64 (13.17%) Risk Management
14 62 (12.76%) CEH
14 62 (12.76%) Vulnerability Assessment
14 62 (12.76%) Vulnerability Management
15 58 (11.93%) Java
16 57 (11.73%) Security Operations
17 56 (11.52%) CISM
18 54 (11.11%) Ethical Hacking
19 52 (10.70%) Python
20 51 (10.49%) Analytical Skills
21 50 (10.29%) CESG Certified Professional
22 49 (10.08%) Management Information System
23 48 (9.88%) PCI DSS
24 47 (9.67%) Intrusion Detection
25 46 (9.47%) Project Management
25 46 (9.47%) C++

Penetration Testing
Top Related IT Skills by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 12 (2.47%) Apache
2 11 (2.26%) Moodle
3 10 (2.06%) IIS
3 10 (2.06%) MS Exchange
4 7 (1.44%) SharePoint
5 6 (1.23%) SharePoint 2013
6 4 (0.82%) OpenStack
7 3 (0.62%) Confluence
8 2 (0.41%) Tomcat
9 1 (0.21%) Apache Pig
9 1 (0.21%) nginx
9 1 (0.21%) SAS
9 1 (0.21%) uWSGI
Applications
1 33 (6.79%) MS Excel
2 13 (2.67%) MS PowerPoint
3 3 (0.62%) MS Office
4 1 (0.21%) MS Project
4 1 (0.21%) MS Visio
Business Applications
1 14 (2.88%) Dynamics CRM
2 1 (0.21%) Payment Gateway
Cloud Services
1 30 (6.17%) Microsoft Azure
2 28 (5.76%) Amazon AWS
3 7 (1.44%) Azure Active Directory
4 6 (1.23%) Office 365
5 5 (1.03%) IaaS
6 3 (0.62%) Amazon S3
7 2 (0.41%) Amazon ELB
7 2 (0.41%) AWS CloudFormation
7 2 (0.41%) Google Analytics
7 2 (0.41%) Heroku
7 2 (0.41%) Route 53
8 1 (0.21%) Cloud Computing
8 1 (0.21%) PaaS
Communications & Networking
1 105 (21.60%) Firewall
2 47 (9.67%) Intrusion Detection
3 39 (8.02%) VPN
4 38 (7.82%) Network Security
5 36 (7.41%) SSL
6 34 (7.00%) Wireless
7 33 (6.79%) Internet
8 30 (6.17%) TCP/IP
9 29 (5.97%) WAN
10 23 (4.73%) IPsec
11 22 (4.53%) HTTP
12 21 (4.32%) LAN
13 20 (4.12%) FTP
14 18 (3.70%) DNS
15 16 (3.29%) SSH
16 15 (3.09%) Cisco ASA
16 15 (3.09%) SMTP
17 11 (2.26%) BGP
17 11 (2.26%) OSPF
18 10 (2.06%) Wireless Security
Database & Business Intelligence
1 40 (8.23%) SQL Server
2 20 (4.12%) PostgreSQL
3 19 (3.91%) SQL Server 2008
4 17 (3.50%) MongoDB
4 17 (3.50%) MySQL
5 16 (3.29%) Relational Database
6 14 (2.88%) Redis
7 9 (1.85%) SQL Server 2012
7 9 (1.85%) SQL Server Integration Services
8 8 (1.65%) DB2
9 6 (1.23%) InterSystems Cache
10 4 (0.82%) MariaDB
10 4 (0.82%) Oracle Reports
11 3 (0.62%) NoSQL
12 2 (0.41%) Amazon RDS
12 2 (0.41%) Mixpanel
13 1 (0.21%) Azure SQL Database
13 1 (0.21%) Big Data
13 1 (0.21%) Hadoop
13 1 (0.21%) QlikView
Development Applications
1 28 (5.76%) Git (software)
2 26 (5.35%) Jenkins
3 17 (3.50%) Metasploit
4 13 (2.67%) Selenium
5 11 (2.26%) AppScan
6 8 (1.65%) JIRA
6 8 (1.65%) Team Foundation Server
7 7 (1.44%) Burp Suite
7 7 (1.44%) Jasmine
7 7 (1.44%) SpecFlow
8 6 (1.23%) Balsamiq Mockups
8 6 (1.23%) Cucumber
9 5 (1.03%) JMeter
10 4 (0.82%) VSS/SourceSafe
11 3 (0.62%) LoadRunner
11 3 (0.62%) TestRail
11 3 (0.62%) Vagrant
12 2 (0.41%) Fiddler
12 2 (0.41%) Gatling
12 2 (0.41%) TeamCity
General
1 98 (20.16%) Finance
2 24 (4.94%) Banking
3 22 (4.53%) Legal
4 17 (3.50%) Telecoms
5 11 (2.26%) Military
6 7 (1.44%) Retail
7 5 (1.03%) Games
8 4 (0.82%) Marketing
9 2 (0.41%) Billing
9 2 (0.41%) Financial Institution
9 2 (0.41%) Investment Banking
9 2 (0.41%) Retail Banking
10 1 (0.21%) Advertising
10 1 (0.21%) Back Office
10 1 (0.21%) Front Office
10 1 (0.21%) Local Government
10 1 (0.21%) Manufacturing
10 1 (0.21%) Pharmaceutical
Job Titles
1 101 (20.78%) Tester
2 92 (18.93%) Penetration Tester
3 82 (16.87%) Analyst
4 72 (14.81%) Consultant
5 69 (14.20%) Security Analyst
6 60 (12.35%) Security Consultant
7 46 (9.47%) Security Manager
8 36 (7.41%) Security Engineer
9 34 (7.00%) Security Tester
10 32 (6.58%) Security Penetration Tester
11 25 (5.14%) Information Security Consultant
12 23 (4.73%) Developer
13 21 (4.32%) Security Specialist
14 20 (4.12%) Architect
15 18 (3.70%) Information Analyst
15 18 (3.70%) Information Security Analyst
16 17 (3.50%) DevOps Engineer
16 17 (3.50%) IT Manager
17 16 (3.29%) IT Security Manager
18 15 (3.09%) Risk Manager
Libraries, Frameworks & Software Standards
1 44 (9.05%) .NET
2 26 (5.35%) Web Services
3 18 (3.70%) Node.js
4 14 (2.88%) Sensu
5 13 (2.67%) .NET Framework
6 11 (2.26%) ASP.NET
7 10 (2.06%) Ajax
8 9 (1.85%) ASP.NET Web API
8 9 (1.85%) Entity Framework
8 9 (1.85%) HTML
8 9 (1.85%) jQuery
9 8 (1.65%) HTML5
9 8 (1.65%) Middleware
9 8 (1.65%) React
10 7 (1.44%) KnockoutJS
10 7 (1.44%) SAML
11 6 (1.23%) Breeze.js
11 6 (1.23%) Durandal
11 6 (1.23%) Windows Identity Foundation
12 5 (1.03%) SOAP
Miscellaneous
1 51 (10.49%) Analytical Skills
2 49 (10.08%) Management Information System
3 45 (9.26%) CESG
4 35 (7.20%) Cryptography
5 30 (6.17%) PKI
6 26 (5.35%) Mobile App
7 17 (3.50%) Security Operations Centre
8 14 (2.88%) Data Centre
9 12 (2.47%) Client/Server
10 10 (2.06%) e-Learning
10 10 (2.06%) N-Tier
11 8 (1.65%) Mainframe
12 6 (1.23%) Algorithms
12 6 (1.23%) AS400
12 6 (1.23%) Computer Science
12 6 (1.23%) Embedded Systems
12 6 (1.23%) IBM Mainframe
13 5 (1.03%) NHS
13 5 (1.03%) Virtual Team
14 4 (0.82%) Data Protection Act
Operating Systems
1 80 (16.46%) Windows
2 68 (13.99%) Linux
3 43 (8.85%) Unix
4 18 (3.70%) Windows Server
5 10 (2.06%) Android
6 9 (1.85%) Apple iOS
6 9 (1.85%) Windows Server 2008
6 9 (1.85%) Windows Vista
7 8 (1.65%) Windows Server 2012
8 7 (1.44%) Kali Linux
9 6 (1.23%) Solaris
10 4 (0.82%) CentOS
10 4 (0.82%) Ubuntu
11 1 (0.21%) Mac OS X
11 1 (0.21%) Windows Mobile
11 1 (0.21%) Windows Server 2003
Processes & Methodologies
1 180 (37.04%) Information Security
2 83 (17.08%) Cybersecurity
3 79 (16.26%) OWASP
4 73 (15.02%) Security Testing
5 71 (14.61%) Agile Software Development
6 64 (13.17%) Risk Management
7 62 (12.76%) Vulnerability Assessment
7 62 (12.76%) Vulnerability Management
8 57 (11.73%) Security Operations
9 54 (11.11%) Ethical Hacking
10 46 (9.47%) Project Management
11 44 (9.05%) ITIL
11 44 (9.05%) Security Architecture
12 39 (8.02%) Security Management
13 38 (7.82%) Kalman Filter
13 38 (7.82%) SIEM
14 36 (7.41%) Stakeholder Management
15 35 (7.20%) Continuous Integration
16 31 (6.38%) Information Assurance
17 28 (5.76%) Vulnerability Scanning
Programming Languages
1 58 (11.93%) Java
2 52 (10.70%) Python
3 46 (9.47%) C++
4 40 (8.23%) Perl
5 33 (6.79%) C
6 32 (6.58%) Ruby
7 31 (6.38%) PowerShell
8 28 (5.76%) C#
9 24 (4.94%) JavaScript
10 22 (4.53%) SQL
11 21 (4.32%) PHP
12 9 (1.85%) TypeScript
13 7 (1.44%) Shell Script
13 7 (1.44%) T-SQL
14 6 (1.23%) Bash Shell
15 4 (0.82%) COBOL
16 2 (0.41%) Assembly Language
16 2 (0.41%) Go
16 2 (0.41%) PL/SQL
16 2 (0.41%) VB.NET
Qualifications
1 119 (24.49%) CISSP
2 105 (21.60%) Security Cleared
3 80 (16.46%) CREST Certified
4 70 (14.40%) SC Cleared
5 62 (12.76%) CEH
6 56 (11.52%) CISM
7 50 (10.29%) CESG Certified Professional
8 36 (7.41%) OSCP
9 35 (7.20%) CISA
10 24 (4.94%) Cyber Scheme
11 21 (4.32%) CHECK Team Member
12 20 (4.12%) Tigerscheme
13 19 (3.91%) CLAS
13 19 (3.91%) Degree
13 19 (3.91%) SANS
14 17 (3.50%) GIAC
15 13 (2.67%) CompTIA Security+
15 13 (2.67%) Security+ Certification
16 12 (2.47%) DV Cleared
17 10 (2.06%) Cisco Certification
Quality Assurance & Compliance
1 72 (14.81%) ISO/IEC 27001
2 48 (9.88%) PCI DSS
3 22 (4.53%) QA
4 18 (3.70%) RMADS
5 15 (3.09%) COBIT
6 6 (1.23%) GPG13
6 6 (1.23%) HMG Security Policy Framework
6 6 (1.23%) ISO27002
6 6 (1.23%) WAI
6 6 (1.23%) WCAG
7 5 (1.03%) Disclosure Scotland
7 5 (1.03%) JSP 440
8 4 (0.82%) Sarbanes-Oxley
9 3 (0.62%) ISAE 3402
10 2 (0.41%) ISO27005
11 1 (0.21%) ISO/IEC 17799
11 1 (0.21%) PA-DSS
11 1 (0.21%) SLA
11 1 (0.21%) SSAE 16
System Software
1 32 (6.58%) Active Directory
2 15 (3.09%) Docker
3 9 (1.85%) Sendmail
4 7 (1.44%) VMware Infrastructure
5 6 (1.23%) Virtual Servers
6 4 (0.82%) VMware ESXi
7 2 (0.41%) Firmware
7 2 (0.41%) NFS
7 2 (0.41%) VMware ESX
8 1 (0.21%) Hyper-V
8 1 (0.21%) Snort
8 1 (0.21%) Virtual Desktop
8 1 (0.21%) VMware Workstation
Systems Management
1 21 (4.32%) Puppet
2 15 (3.09%) Nessus
3 14 (2.88%) Ansible
4 12 (2.47%) Grafana
4 12 (2.47%) Kibana
4 12 (2.47%) logstash
4 12 (2.47%) Opscode Chef
4 12 (2.47%) Salt
4 12 (2.47%) Uchiwa
5 7 (1.44%) HP Fortify
5 7 (1.44%) SmoothWall
5 7 (1.44%) WebInspect
6 6 (1.23%) Nmap
7 3 (0.62%) OpenVAS
8 2 (0.41%) HAProxy
8 2 (0.41%) McAfee ePO
8 2 (0.41%) Microsoft Clustering
9 1 (0.21%) Host Intrusion Detection System
9 1 (0.21%) QRadar
9 1 (0.21%) RSA Archer
Vendors
1 44 (9.05%) Microsoft
2 30 (6.17%) VMware
3 29 (5.97%) Cisco
4 25 (5.14%) Oracle
5 20 (4.12%) CheckPoint
6 15 (3.09%) IBM
7 13 (2.67%) Citrix
8 12 (2.47%) Sitecore
9 10 (2.06%) F5
9 10 (2.06%) HP
10 9 (1.85%) Veracode
11 7 (1.44%) Clearswift
11 7 (1.44%) Kaspersky
11 7 (1.44%) LogRhythm
11 7 (1.44%) Splunk
12 6 (1.23%) Blue Coat
12 6 (1.23%) SAP
12 6 (1.23%) Symantec
13 5 (1.03%) Intel Security
13 5 (1.03%) Qualys
Midlands
Lorien Resourcing
Posted: 4 hours ago
West Midlands
Spring Technology
Rate: £500.00 - £600.00 per day
Posted: 3 hours ago
Edinburgh, Midlothian
Lorien Resourcing
Rate: Market Rate
Posted: Yesterday
London
Barclay Simpson Corporate Governance Recruitment
Posted: Yesterday
London
Computer People
Rate: £400.00 per day + remote
Posted: Yesterday
City, London
Lorien Resourcing
Posted: Yesterday
City, London
Michael Bailey Associates
Rate: market rates
Posted: 2 days ago
East London
Eaglecliff
Rate: From £450 to £530 per day
Posted: 2 days ago
London
Montash Associates
Rate: £550 - £700 per day + Negotiable
Posted: 7 days ago