Period
to 26 July 2017

The following table provides summary statistics for contract job vacancies advertised in the South East with a requirement for Penetration Testing skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited Penetration Testing over the 6 months to 26 July 2017 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Penetration Testing
England > South East
6 months to
26 Jul 2017
Same period 2016 Same period 2015
Rank 294 312 306
Rank change year-on-year +18 -6 +12
Contract jobs citing Penetration Testing 55 86 92
As % of all contract IT jobs advertised in the South East 0.34% 0.46% 0.47%
As % of the Processes & Methodologies category 0.41% 0.56% 0.58%
Number of daily rates quoted 32 61 59
South East median daily rate £475 £475 £450
Median daily rate % change year-on-year - +5.56% +9.09%
10th Percentile £350 £350 £323
90th Percentile £575 £550 £538
England median daily rate £475 £500 £450
% change year-on-year -5.00% +11.11% -1.10%
Number of hourly rates quoted 4 0 0
South East median hourly rate £60.87 - -
England median hourly rate £60.87 £50.00 £22.50
% change year-on-year +21.74% +122.22% -62.50%

Penetration Testing is in the process and methodology skills category. The next table is for comparison with the above and provides summary statistics for all contract job vacancies advertised in the South East with a requirement for process and methodology skills.

Contract Process & Methodology Skills
South East
Contract job vacancies with a requirement for process and methodology skills 13265 15238 15729
As % of all contract IT job vacancies advertised in the South East 82.58% 81.96% 80.29%
Number of daily rates quoted 7722 9347 9070
South East median daily rate £420 £400 £380
Median daily rate % change year-on-year +5.00% +5.26% +4.83%
10th Percentile £263 £258 £250
90th Percentile £563 £550 £525
England median daily rate £450 £425 £407
% change year-on-year +5.88% +4.42% +1.75%
Number of hourly rates quoted 491 533 556
South East median hourly rate £20.00 £24.50 £22.50
Median hourly rate % change year-on-year -18.37% +8.89% +7.14%
10th Percentile £11.72 £12.00 £12.04
90th Percentile £51.75 £50.20 £46.75
England median hourly rate £25.00 £25.00 £22.00
% change year-on-year - +13.64% +7.08%

Penetration Testing
Job Vacancy Trend in the South East

Job postings citing Penetration Testing as a percentage of all IT jobs advertised in the South East.

Job vacancy trend for Penetration Testing in the South East

Penetration Testing
Contractor Daily Rate Trend in the South East

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing Penetration Testing in the South East.

Contractor daily rate trend for Penetration Testing in the South East

Penetration Testing
Contractor Daily Rate Histogram in the South East

The daily rate distribution of IT jobs citing Penetration Testing in the South East over the 6 months to 26 July 2017.

Contractor daily rate histogram for Penetration Testing in the South East

Penetration Testing
Contractor Hourly Rate Trend in the South East

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing Penetration Testing in the South East.

Contractor hourly rate trend for Penetration Testing in the South East

Penetration Testing
Contract Job Locations in the South East

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the South East region over the 6 months to 26 July 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Past 6 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
Thames Valley +4 24 £465 -7.00% 6
Hampshire +5 16 £550 +22.22% 2
Buckinghamshire -23 12 £475 -9.52% 1
Berkshire +36 11 £465 -1.06% 3
West Sussex +14 4 - - 1
Kent +6 4 £500 +5.26%
Surrey +2 2 £425 - 4
Middlesex +6 1 - -
Penetration Testing
England

For the 6 months to 26 July 2017, IT contractor jobs citing Penetration Testing also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all contract ads across the South East region with a requirement for Penetration Testing.

1 26 (47.27%) Information Security
2 20 (36.36%) CISSP
2 20 (36.36%) OWASP
3 19 (34.55%) Agile Software Development
4 17 (30.91%) Finance
5 14 (25.45%) ISO/IEC 27001
6 12 (21.82%) CISM
7 11 (20.00%) Firewall
7 11 (20.00%) Java
8 10 (18.18%) Test Automation
8 10 (18.18%) User Stories
9 9 (16.36%) SIEM
9 9 (16.36%) Security Cleared
9 9 (16.36%) Linux
9 9 (16.36%) Risk Management
9 9 (16.36%) Risk Assessment
10 8 (14.55%) CISA
10 8 (14.55%) Management Information System
10 8 (14.55%) Project Management
10 8 (14.55%) SC Cleared
11 7 (12.73%) Security Testing
11 7 (12.73%) Vulnerability Management
11 7 (12.73%) Cisco Certification
12 6 (10.91%) Scrum
12 6 (10.91%) Cryptography
12 6 (10.91%) JBoss
12 6 (10.91%) Unix
12 6 (10.91%) SSL
12 6 (10.91%) Security Architecture
12 6 (10.91%) ISMS

Penetration Testing
Co-occurring IT Skills in the South East by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 6 (10.91%) JBoss
2 4 (7.27%) WebLogic
2 4 (7.27%) WebSphere
3 3 (5.45%) Apache
4 2 (3.64%) Blackberry Enterprise Server
4 2 (3.64%) Exchange Server 2003
4 2 (3.64%) Exchange Server 2010
4 2 (3.64%) MS Exchange
5 1 (1.82%) Apache Pig
Business Applications
1 2 (3.64%) Oracle EBS
2 1 (1.82%) Oracle EBS R12
2 1 (1.82%) Oracle ERP
Cloud Services
1 2 (3.64%) IaaS
Communications & Networking
1 11 (20.00%) Firewall
2 6 (10.91%) SSL
3 3 (5.45%) VPN
4 2 (3.64%) Cisco ASA
4 2 (3.64%) HTTP
4 2 (3.64%) Internet
4 2 (3.64%) NAS
4 2 (3.64%) SAN
4 2 (3.64%) SMTP
5 1 (1.82%) Cisco PIX
5 1 (1.82%) DHCP
5 1 (1.82%) DNS
5 1 (1.82%) FTP
5 1 (1.82%) Intrusion Detection
5 1 (1.82%) Network Security
Database & Business Intelligence
1 2 (3.64%) MongoDB
2 1 (1.82%) Big Data
2 1 (1.82%) Hadoop
Development Applications
1 2 (3.64%) Burp Suite
1 2 (3.64%) Cucumber
1 2 (3.64%) Git (software)
1 2 (3.64%) Jenkins
1 2 (3.64%) JMeter
1 2 (3.64%) Selenium
1 2 (3.64%) SoapUI
General
1 17 (30.91%) Finance
2 4 (7.27%) Banking
3 3 (5.45%) Legal
4 2 (3.64%) Spanish Language
4 2 (3.64%) Telecoms
5 1 (1.82%) Automotive
5 1 (1.82%) Manufacturing
5 1 (1.82%) Retail
Job Titles
1 9 (16.36%) Consultant
2 7 (12.73%) Analyst
2 7 (12.73%) Security Analyst
2 7 (12.73%) Security Consultant
3 6 (10.91%) Security Manager
4 5 (9.09%) Information Security Manager
5 4 (7.27%) Information Manager
5 4 (7.27%) Information Security Consultant
5 4 (7.27%) Information Security Project Manager
5 4 (7.27%) Project Manager
5 4 (7.27%) Security Project Manager
5 4 (7.27%) Tester
6 3 (5.45%) Application Security Analyst
6 3 (5.45%) Information Assurance Consultant
6 3 (5.45%) Network Engineer
7 2 (3.64%) Architect
7 2 (3.64%) Developer
7 2 (3.64%) Security Architect
7 2 (3.64%) Technical Support
7 2 (3.64%) Test Manager
Libraries, Frameworks & Software Standards
1 4 (7.27%) Spring
2 2 (3.64%) SOAP
2 2 (3.64%) Spring Security
3 1 (1.82%) J2EE
Miscellaneous
1 8 (14.55%) Management Information System
2 5 (9.09%) PKI
3 4 (7.27%) PMI
3 4 (7.27%) Smart Meter
4 3 (5.45%) CESG
4 3 (5.45%) Cyberthreat
5 2 (3.64%) Computer Science
6 1 (1.82%) Analytical Skills
6 1 (1.82%) BYOD
6 1 (1.82%) Cyber Attack
6 1 (1.82%) Embedded Systems
6 1 (1.82%) Mobile App
6 1 (1.82%) RSA SecurID
6 1 (1.82%) Smart Energy
Operating Systems
1 9 (16.36%) Linux
2 6 (10.91%) Unix
3 4 (7.27%) Red Hat Enterprise Linux
3 4 (7.27%) SUSE
4 3 (5.45%) Windows
5 2 (3.64%) Windows Server
5 2 (3.64%) Windows Server 2003
5 2 (3.64%) Windows Server 2008
6 1 (1.82%) Solaris
Processes & Methodologies
1 26 (47.27%) Information Security
2 20 (36.36%) OWASP
3 19 (34.55%) Agile Software Development
4 10 (18.18%) Test Automation
4 10 (18.18%) User Stories
5 9 (16.36%) Risk Assessment
5 9 (16.36%) Risk Management
5 9 (16.36%) SIEM
6 8 (14.55%) Project Management
7 7 (12.73%) Security Testing
7 7 (12.73%) Vulnerability Management
8 6 (10.91%) Cryptography
8 6 (10.91%) ISMS
8 6 (10.91%) Scrum
8 6 (10.91%) Security Architecture
9 5 (9.09%) Continuous Integration
9 5 (9.09%) SDLC
10 4 (7.27%) Continuous Delivery
10 4 (7.27%) Server Hardening
10 4 (7.27%) Vulnerability Scanning
Programming Languages
1 11 (20.00%) Java
2 5 (9.09%) Shell Script
3 2 (3.64%) C++
3 2 (3.64%) Python
4 1 (1.82%) Bash Shell
4 1 (1.82%) C
4 1 (1.82%) Perl
4 1 (1.82%) Ruby
Qualifications
1 20 (36.36%) CISSP
2 12 (21.82%) CISM
3 9 (16.36%) Security Cleared
4 8 (14.55%) CISA
4 8 (14.55%) SC Cleared
5 7 (12.73%) Cisco Certification
6 4 (7.27%) CCIE
6 4 (7.27%) CCIE Security
6 4 (7.27%) CESG Certified Professional
6 4 (7.27%) CompTIA Security+
6 4 (7.27%) CREST Certified
6 4 (7.27%) PMI Certification
6 4 (7.27%) RHCE
6 4 (7.27%) RHCSA
6 4 (7.27%) Security+ Certification
7 2 (3.64%) CCNP
7 2 (3.64%) CEH
7 2 (3.64%) Degree
7 2 (3.64%) DV Cleared
7 2 (3.64%) ISO 27001 Lead Auditor
Quality Assurance & Compliance
1 14 (25.45%) ISO/IEC 27001
2 5 (9.09%) COBIT
2 5 (9.09%) ISO/IEC 27005
2 5 (9.09%) PCI DSS
3 4 (7.27%) GDPR
3 4 (7.27%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
3 4 (7.27%) QA
3 4 (7.27%) RMADS
4 3 (5.45%) Cyber Essentials
5 2 (3.64%) ISO 22301
5 2 (3.64%) WAI
5 2 (3.64%) WCAG
6 1 (1.82%) HMG Security Policy Framework
6 1 (1.82%) ISAE 3402
6 1 (1.82%) ISO 31000
6 1 (1.82%) JSP 440
6 1 (1.82%) PMO
6 1 (1.82%) SLA
6 1 (1.82%) SSAE 16
System Software
1 4 (7.27%) VMware Infrastructure
Systems Management
1 4 (7.27%) Cobbler
1 4 (7.27%) Opscode Chef
1 4 (7.27%) Puppet
Vendors
1 4 (7.27%) Red Hat
1 4 (7.27%) VMware
2 3 (5.45%) Cisco
3 2 (3.64%) Citrix
3 2 (3.64%) Microsoft
3 2 (3.64%) Oracle
4 1 (1.82%) Becrypt
4 1 (1.82%) Blue Coat
4 1 (1.82%) CheckPoint
4 1 (1.82%) Juniper
4 1 (1.82%) SAP
4 1 (1.82%) Sourcefire