Period
to 19 September 2018

The following table provides summary statistics for contract job vacancies advertised in England with a requirement for Penetration Testing skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited Penetration Testing over the 6 months to 19 September 2018 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Penetration Testing
UK > England
6 months to
19 Sep 2018
Same period 2017 Same period 2016
Rank 536 480 462
Rank change year-on-year -56 -18 +110
Contract jobs citing Penetration Testing 350 402 478
As % of all contract IT jobs advertised in England 0.37% 0.44% 0.48%
As % of the Processes & Methodologies category 0.43% 0.52% 0.57%
Number of daily rates quoted 213 240 315
England median daily rate £525 £489 £498
Median daily rate % change year-on-year +7.42% -1.76% +10.56%
10th Percentile £364 £350 £350
90th Percentile £710 £625 £625
UK median daily rate £525 £488 £489
% change year-on-year +7.69% -0.26% +8.61%
Number of hourly rates quoted 7 3 1
England median hourly rate £39.00 £60.87 £35.00
Median hourly rate % change year-on-year -35.93% +73.91% -
10th Percentile £31.30 £58.17 £32.50
90th Percentile £91.80 £63.50 £37.50
UK median hourly rate £39.00 £60.44 £27.31
% change year-on-year -35.47% +121.27% -39.31%

Penetration Testing is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all contract job vacancies advertised in England with a requirement for process or methodology skills.

All Process and Methodology Skills
England
Contract vacancies with a requirement for process or methodology skills 81,204 77,869 84,448
As % of all contract IT jobs advertised in England 86.26% 85.78% 85.24%
Number of daily rates quoted 54,165 51,684 56,449
England median daily rate £465 £450 £425
Median daily rate % change year-on-year +3.33% +5.88% +3.03%
10th Percentile £300 £281 £263
90th Percentile £638 £625 £606
UK median daily rate £450 £450 £425
% change year-on-year - +5.88% +6.12%
Number of hourly rates quoted 2,224 1,902 2,122
England median hourly rate £21.00 £23.14 £23.00
Median hourly rate % change year-on-year -9.25% +0.61% +4.55%
10th Percentile £11.18 £11.25 £11.64
90th Percentile £50.25 £50.00 £47.83
UK median hourly rate £20.50 £24.00 £23.00
% change year-on-year -14.58% +4.35% +4.55%

Penetration Testing
Job Vacancy Trend in England

Job postings citing Penetration Testing as a percentage of all IT jobs advertised in England.

Job vacancy trend for Penetration Testing in England

Penetration Testing
Contractor Daily Rate Trend in England

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing Penetration Testing in England.

Contractor daily rate trend for Penetration Testing in England

Penetration Testing
Contractor Daily Rate Histogram in England

The daily rate distribution of IT jobs citing Penetration Testing in England over the 6 months to 19 September 2018.

Contractor daily rate histogram for Penetration Testing in England

Penetration Testing
Contractor Hourly Rate Trend in England

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing Penetration Testing in England.

Contractor hourly rate trend for Penetration Testing in England

Penetration Testing
Contractor Hourly Rate Histogram in England

The hourly rate distribution of IT jobs citing Penetration Testing in England over the 6 months to 19 September 2018.

Contractor hourly rate histogram for Penetration Testing in England

Penetration Testing
Contract Job Locations in England

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the England region over the 6 months to 19 September 2018. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
London -26 176 £540 +8.00% 54
South East +21 79 £600 +20.00% 22
North of England -8 36 £419 +19.64% 19
East of England -16 31 £509 +13.06% 10
North West -12 27 £406 +8.33% 8
South West -13 19 £472 -12.19% 14
East Midlands +19 11 £600 +33.33% 4
Midlands -24 11 £600 +32.23% 12
Yorkshire -5 7 £488 - 8
West Midlands -47 4 £600 +28.69% 8
North East -8 2 £403 +25.98% 3
Penetration Testing
UK

For the 6 months to 19 September 2018, IT contractor jobs citing Penetration Testing also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all contract job ads across the England region with a requirement for Penetration Testing.

1 135 (38.57%) Information Security
2 75 (21.43%) Firewall
3 71 (20.29%) Cybersecurity
4 67 (19.14%) CISSP
5 66 (18.86%) Windows
5 66 (18.86%) Finance
6 64 (18.29%) Agile Software Development
7 61 (17.43%) Amazon AWS
8 60 (17.14%) SIEM
9 57 (16.29%) Microsoft
10 55 (15.71%) Security Testing
10 55 (15.71%) Security Cleared
11 47 (13.43%) Management Information System
12 45 (12.86%) Linux
12 45 (12.86%) DevOps
13 44 (12.57%) Security Architecture
14 43 (12.29%) Network Security
14 43 (12.29%) SC Cleared
15 41 (11.71%) Ethical Hacking
15 41 (11.71%) ISO/IEC 27001
16 40 (11.43%) Active Directory
16 40 (11.43%) Risk Management
17 37 (10.57%) Degree
17 37 (10.57%) Vulnerability Management
18 35 (10.00%) Banking
19 34 (9.71%) Stakeholder Management
19 34 (9.71%) Java
20 33 (9.43%) SQL Server
20 33 (9.43%) CISM
21 32 (9.14%) Security Operations

Penetration Testing
Co-occurring IT Skills in England by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 21 (6.00%) IIS
2 10 (2.86%) SharePoint
3 9 (2.57%) Apache
4 7 (2.00%) Confluence
5 5 (1.43%) Apache Spark
5 5 (1.43%) Oracle SOA Suite
6 4 (1.14%) BizTalk Server
6 4 (1.14%) MS Exchange
6 4 (1.14%) WebSphere
7 3 (0.86%) Adobe Experience Manager
7 3 (0.86%) CMS
7 3 (0.86%) nginx
7 3 (0.86%) SharePoint 2013
7 3 (0.86%) Sitecore CMS
7 3 (0.86%) Umbraco
8 2 (0.57%) Tomcat
9 1 (0.29%) Exchange Server 2003
9 1 (0.29%) Exchange Server 2007
9 1 (0.29%) Exchange Server 2010
9 1 (0.29%) Joomla!
Applications
1 11 (3.14%) Microsoft Office
2 6 (1.71%) Microsoft Project
3 5 (1.43%) MS Visio
4 4 (1.14%) Microsoft Excel
4 4 (1.14%) Microsoft PowerPoint
Business Applications
1 2 (0.57%) Magento
Cloud Services
1 61 (17.43%) Amazon AWS
2 30 (8.57%) Microsoft Azure
3 11 (3.14%) Office 365
4 10 (2.86%) Mimecast
4 10 (2.86%) PaaS
5 8 (2.29%) IaaS
6 4 (1.14%) Cloud Computing
6 4 (1.14%) GitHub
6 4 (1.14%) Google Cloud Platform
6 4 (1.14%) Virtual Private Cloud
7 3 (0.86%) Amazon EC2
7 3 (0.86%) Amazon S3
7 3 (0.86%) OpenShift
7 3 (0.86%) Route 53
7 3 (0.86%) SaaS
7 3 (0.86%) Sumo Logic
8 2 (0.57%) Akamai
8 2 (0.57%) AWS Lambda
8 2 (0.57%) Cloudflare
8 2 (0.57%) Serverless
Communications & Networking
1 75 (21.43%) Firewall
2 43 (12.29%) Network Security
3 21 (6.00%) Internet
4 20 (5.71%) LAN
5 19 (5.43%) WAN
6 18 (5.14%) Intrusion Detection
6 18 (5.14%) SAN
6 18 (5.14%) TCP/IP
7 17 (4.86%) VPN
8 15 (4.29%) IPsec
8 15 (4.29%) SSL
9 13 (3.71%) HTTP
10 12 (3.43%) DNS
10 12 (3.43%) NAS
11 10 (2.86%) Cisco ASA
12 9 (2.57%) MPLS
13 8 (2.29%) BGP
13 8 (2.29%) OSPF
14 7 (2.00%) Wi-Fi
15 6 (1.71%) FTP
Database & Business Intelligence
1 33 (9.43%) SQL Server
2 7 (2.00%) Hadoop
3 6 (1.71%) MySQL
4 5 (1.43%) Amazon RDS
4 5 (1.43%) Amazon Redshift
4 5 (1.43%) Apache Cassandra
5 4 (1.14%) DB2
5 4 (1.14%) Maltego
5 4 (1.14%) MongoDB
5 4 (1.14%) PostgreSQL
6 2 (0.57%) Blockchain
6 2 (0.57%) MariaDB
7 1 (0.29%) Big Data
7 1 (0.29%) NonStop SQL
Development Applications
1 10 (2.86%) GitLab
1 10 (2.86%) Jenkins
2 8 (2.29%) JIRA
3 7 (2.00%) Selenium
3 7 (2.00%) Team Foundation Server
4 6 (1.71%) Burp Suite
5 5 (1.43%) Metasploit
5 5 (1.43%) Octopus Deploy
6 4 (1.14%) Git (software)
6 4 (1.14%) TeamCity
6 4 (1.14%) WebDriver
7 3 (0.86%) Fiddler
7 3 (0.86%) Jasmine
7 3 (0.86%) JMeter
7 3 (0.86%) Visual Studio
8 2 (0.57%) LoadRunner
8 2 (0.57%) Visual Studio Team System
8 2 (0.57%) Zephyr
9 1 (0.29%) Android Studio
9 1 (0.29%) Appium
General
1 66 (18.86%) Finance
2 35 (10.00%) Banking
3 23 (6.57%) Legal
4 7 (2.00%) Financial Institution
4 7 (2.00%) Telecoms
5 5 (1.43%) Aerospace
5 5 (1.43%) Manufacturing
6 3 (0.86%) Marketing
7 2 (0.57%) Billing
7 2 (0.57%) Law
8 1 (0.29%) Automotive
8 1 (0.29%) French Language
8 1 (0.29%) Investment Banking
8 1 (0.29%) Italian Language
8 1 (0.29%) Retail
Job Titles
1 66 (18.86%) Analyst
2 52 (14.86%) Security Analyst
3 44 (12.57%) Consultant
4 43 (12.29%) Architect
5 34 (9.71%) Security Architect
6 32 (9.14%) Security Consultant
7 31 (8.86%) Security Manager
8 30 (8.57%) Tester
9 24 (6.86%) Penetration Tester
10 21 (6.00%) Information Manager
10 21 (6.00%) Information Security Manager
10 21 (6.00%) Security Specialist
11 18 (5.14%) Security Engineer
12 15 (4.29%) Cybersecurity Analyst
13 14 (4.00%) Information Security Consultant
13 14 (4.00%) Project Manager
13 14 (4.00%) Test Manager
14 13 (3.71%) Information Analyst
15 11 (3.14%) Information Security Analyst
15 11 (3.14%) Solutions Architect
Libraries, Frameworks & Software Standards
1 27 (7.71%) OAuth
2 26 (7.43%) Web Services
3 17 (4.86%) Middleware
3 17 (4.86%) SAML
4 16 (4.57%) JSON
5 15 (4.29%) SOAP
6 14 (4.00%) OpenID
7 13 (3.71%) REST
8 6 (1.71%) .NET
9 5 (1.43%) J2EE
9 5 (1.43%) Java EE
9 5 (1.43%) OAuth2
10 4 (1.14%) LAMP
11 3 (0.86%) ASP.NET Web API
11 3 (0.86%) pytest
11 3 (0.86%) RESTful
12 2 (0.57%) 802.1X
12 2 (0.57%) Node.js
12 2 (0.57%) Regular Expression
13 1 (0.29%) WebSockets
Miscellaneous
1 47 (13.43%) Management Information System
2 28 (8.00%) PKI
3 24 (6.86%) Computer Science
3 24 (6.86%) Data Centre
4 21 (6.00%) Mobile App
5 20 (5.71%) Self-Motivation
6 18 (5.14%) Analytical Skills
7 13 (3.71%) Clustering
8 11 (3.14%) Cyber Defence
9 10 (2.86%) CESG
9 10 (2.86%) Fintech
10 9 (2.57%) Cyberthreat
11 7 (2.00%) Public Cloud
11 7 (2.00%) RSA SecurID
12 6 (1.71%) Client/Server
12 6 (1.71%) Cyberattack
12 6 (1.71%) Hybrid Cloud
13 5 (1.43%) Cyber Kill Chain
13 5 (1.43%) Data Protection Act
13 5 (1.43%) Mainframe
Operating Systems
1 66 (18.86%) Windows
2 45 (12.86%) Linux
3 21 (6.00%) Unix
4 20 (5.71%) Windows Server
5 15 (4.29%) Solaris
6 9 (2.57%) Android
6 9 (2.57%) Windows 10
7 6 (1.71%) Apple iOS
8 5 (1.43%) AIX
8 5 (1.43%) Kali Linux
9 4 (1.14%) zOS
10 3 (0.86%) Red Hat Enterprise Linux
11 2 (0.57%) Windows Server 2008
12 1 (0.29%) Mac OS
12 1 (0.29%) Windows 2000 Server
12 1 (0.29%) Windows 7
12 1 (0.29%) Windows Server 2003
12 1 (0.29%) Windows Server 2012
Processes & Methodologies
1 135 (38.57%) Information Security
2 71 (20.29%) Cybersecurity
3 64 (18.29%) Agile Software Development
4 60 (17.14%) SIEM
5 55 (15.71%) Security Testing
6 45 (12.86%) DevOps
7 44 (12.57%) Security Architecture
8 41 (11.71%) Ethical Hacking
9 40 (11.43%) Risk Management
10 37 (10.57%) Vulnerability Management
11 34 (9.71%) Stakeholder Management
12 32 (9.14%) Security Operations
13 30 (8.57%) Identity Access Management
14 29 (8.29%) Migration
15 28 (8.00%) OWASP
15 28 (8.00%) Vulnerability Scanning
16 26 (7.43%) Test Automation
17 25 (7.14%) Data Protection
18 24 (6.86%) Incident Management
19 23 (6.57%) Load Balancing
Programming Languages
1 34 (9.71%) Java
2 23 (6.57%) Python
3 18 (5.14%) PowerShell
4 12 (3.43%) C#
5 11 (3.14%) Perl
6 10 (2.86%) Bash Shell
7 8 (2.29%) C
7 8 (2.29%) JavaScript
7 8 (2.29%) Ruby
8 7 (2.00%) SQL
9 6 (1.71%) PHP
10 5 (1.43%) C++
10 5 (1.43%) Groovy
11 1 (0.29%) VB.NET
Qualifications
1 67 (19.14%) CISSP
2 55 (15.71%) Security Cleared
3 43 (12.29%) SC Cleared
4 37 (10.57%) Degree
5 33 (9.43%) CISM
6 30 (8.57%) CISA
7 29 (8.29%) CEH
8 27 (7.71%) Cisco Certification
9 19 (5.43%) Computer Science Degree
10 17 (4.86%) GIAC
11 13 (3.71%) OSCP
12 12 (3.43%) CompTIA Security+
12 12 (3.43%) DV Cleared
13 10 (2.86%) CREST Certified
13 10 (2.86%) SANS
14 8 (2.29%) (ISC)2 CCSP
14 8 (2.29%) CCIE
15 6 (1.71%) CCSP
16 5 (1.43%) CSSLP
16 5 (1.43%) ISACA
Quality Assurance & Compliance
1 41 (11.71%) ISO/IEC 27001
2 29 (8.29%) GDPR
2 29 (8.29%) PCI DSS
3 15 (4.29%) QA
4 14 (4.00%) PSD2
5 9 (2.57%) Cyber Essentials
6 8 (2.29%) Actionable Recommendations
6 8 (2.29%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
7 6 (1.71%) COBIT
8 5 (1.43%) PMO
9 4 (1.14%) GCP
10 2 (0.57%) Sarbanes-Oxley
10 2 (0.57%) SLA
11 1 (0.29%) HMG Security Policy Framework
11 1 (0.29%) ISO 31000
11 1 (0.29%) ISO/IEC 27005
11 1 (0.29%) NIST 800
11 1 (0.29%) RMADS
11 1 (0.29%) WCAG
System Software
1 40 (11.43%) Active Directory
2 22 (6.29%) VMware Infrastructure
3 16 (4.57%) Docker
4 9 (2.57%) OpenAM
5 4 (1.14%) BitLocker
5 4 (1.14%) Firmware
5 4 (1.14%) Virtual Desktop
6 3 (0.86%) ProxySG
6 3 (0.86%) Virtual Machines
7 2 (0.57%) Hyper-V
Systems Management
1 16 (4.57%) Single Sign-On
2 14 (4.00%) Nessus
3 13 (3.71%) Host Intrusion Detection System
3 13 (3.71%) Kubernetes
3 13 (3.71%) Microsoft Clustering
4 12 (3.43%) Network Intrusion Detection System
5 9 (2.57%) Computer Emergency Response Teams
5 9 (2.57%) QRadar
6 8 (2.29%) Opscode Chef
7 7 (2.00%) CSIRT
8 6 (1.71%) SCCM
9 5 (1.43%) McAfee ePO
9 5 (1.43%) WebSphere Service Registry and Repository
10 4 (1.14%) EnCase
10 4 (1.14%) Systems Management Server (SMS)
11 3 (0.86%) HP Quality Center
12 2 (0.57%) FTK
12 2 (0.57%) HP Fortify
12 2 (0.57%) Kibana
12 2 (0.57%) Microsoft Intune
Vendors
1 57 (16.29%) Microsoft
2 30 (8.57%) Cisco
3 26 (7.43%) VMware
4 16 (4.57%) IBM
5 14 (4.00%) ArcSight
5 14 (4.00%) Citrix
6 13 (3.71%) Qualys
7 11 (3.14%) McAfee
7 11 (3.14%) Oracle
8 10 (2.86%) Google
8 10 (2.86%) Proofpoint
9 9 (2.57%) Apigee
9 9 (2.57%) CheckPoint
9 9 (2.57%) ForgeRock
9 9 (2.57%) Splunk
10 8 (2.29%) Palo Alto
11 7 (2.00%) Juniper
12 6 (1.71%) AlienVault
12 6 (1.71%) Blue Coat
12 6 (1.71%) F5