The following table provides summary statistics for contract job vacancies advertised in the South East with a requirement for Penetration Testing skills. Included is a benchmarking guide to the contractor rates offered in vacancies that have cited Penetration Testing over the 3 months to 28 April 2017 with a comparison to the same period in the previous 2 years.

Note that daily and hourly rates are treated separately in these statistics. When calculating contractor rate percentiles, daily rates are never derived from quoted hourly rates or vice versa.

Penetration Testing
England / South East
3 months to
28 Apr 2017
Same period 2016 Same period 2015
Rank 230 243 221
Rank change year-on-year +13 -22  
Contract jobs citing Penetration Testing 27 38 47
As % of all contract IT jobs advertised in the South East 0.33% 0.39% 0.47%
As % of the Processes & Methodologies category 0.40% 0.48% 0.59%
Number of daily rates quoted 18 26 24
Median daily rate £404 £475 £425
Median daily rate % change year-on-year -15.00% +11.76%  
90% offered a daily rate of more than £344 £275 £383
10% offered a daily rate of more than £556 £575 £518
UK excluding London median daily rate £404 £470 £400
% change year-on-year -14.09% +17.50%  
Number of hourly rates quoted 2 0 0
Median hourly rate £60.87 - -
UK excluding London median hourly rate £60.87 £34.81 £22.50
% change year-on-year +74.85% +54.72%  

Penetration Testing is in the process and methodology skills category. The next table is for comparison with the above and provides summary statistics for all contract job vacancies advertised in the South East with a requirement for process and methodology skills.

Contract Process & Methodology Skills
South East
Contract job vacancies with a requirement for process and methodology skills 6803 7879 7903
As % of all contract IT job vacancies advertised in the South East 82.17% 80.80% 79.09%
Number of daily rates quoted 3929 4906 4431
Median daily rate £425 £400 £395
Median daily rate % change year-on-year +6.25% +1.26%  
90% offered a daily rate of more than £288 £275 £270
10% offered a daily rate of more than £550 £540 £525
UK excluding London median daily rate £415 £400 £390
% change year-on-year +3.75% +2.56%  
Number of hourly rates quoted 268 257 288
Median hourly rate £31.50 £35.00 £32.50
Median hourly rate % change year-on-year -10.00% +7.69%  
90% offered a hourly rate of more than £12.50 £12.50 £13.00
10% offered a hourly rate of more than £57.00 £48.50 £47.56
UK excluding London median hourly rate £37.00 £36.00 £30.20
% change year-on-year +2.77% +19.20%  

Penetration Testing
Job Vacancy Trend in the South East

The job posting trend of jobs advertised in the South East citing Penetration Testing as a proportion of all contract or permanent IT jobs with a match in the Processes & Methodologies category.

Job vacancy trend for Penetration Testing in the South East

Penetration Testing
Contractor Daily Rate Trend in the South East

This chart provides the 3-month moving average for daily rates quoted in contract jobs citing Penetration Testing in the South East.

Contractor daily rate trend for Penetration Testing in the South East

Penetration Testing
Contractor Daily Rate Histogram in the South East

The daily rate distribution of IT jobs citing Penetration Testing in the South East over the 3 months to 28 April 2017.

Contractor daily rate histogram for Penetration Testing in the South East

Penetration Testing
Contractor Hourly Rate Trend in the South East

This chart provides the 3-month moving average for contractor hourly rates quoted in IT jobs citing Penetration Testing in the South East.

Contractor hourly rate trend for Penetration Testing in the South East

Penetration Testing
Contract Job Locations in the South East

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the South East region over the 3 months to 28 April 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 3 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Contract
IT Job Ads
Median
Daily Rate
Last 3 Months
Median Daily Rate
% Change
on Same Period
Last Year
Live
Job
Vacancies
Hampshire +9 9 £550 +57.70% 2
Berkshire +18 7 £433 -10.82% 3
Buckinghamshire -11 3 £375 -28.57% 3
West Sussex +12 2 - - 1
Thames Valley 0 1 £570 +9.61%
Surrey -5 1 £325 -23.52% 9
Penetration Testing
England

For the 6 months to 28 April 2017, IT contractor jobs citing Penetration Testing also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all contract ads across the South East region with a requirement for Penetration Testing.

1 23 (38.98%) Firewall
2 19 (32.20%) Risk Management
3 17 (28.81%) SIEM
4 16 (27.12%) Vulnerability Management
5 15 (25.42%) CISSP
6 14 (23.73%) Finance
6 14 (23.73%) VMware
6 14 (23.73%) Information Security
6 14 (23.73%) Security Cleared
7 13 (22.03%) Agile Software Development
8 12 (20.34%) Java
8 12 (20.34%) Security Management
8 12 (20.34%) Management Information System
8 12 (20.34%) Service Management
8 12 (20.34%) Security Testing
8 12 (20.34%) User Stories
8 12 (20.34%) Security Hardening
8 12 (20.34%) Data Loss Prevention
9 11 (18.64%) VMware Infrastructure
10 10 (16.95%) Scrum
10 10 (16.95%) Unix
10 10 (16.95%) Event Correlation
10 10 (16.95%) Cybersecurity
10 10 (16.95%) IaaS
11 9 (15.25%) SC Cleared
11 9 (15.25%) OWASP
11 9 (15.25%) Linux
11 9 (15.25%) Cryptography
12 8 (13.56%) Risk Assessment
12 8 (13.56%) ISO/IEC 27001

Penetration Testing
Co-occurring IT Skills in the South East by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 6 (10.17%) JBoss
2 4 (6.78%) WebLogic
2 4 (6.78%) WebSphere
3 3 (5.08%) MS Exchange
4 2 (3.39%) Apache
4 2 (3.39%) Blackberry Enterprise Server
4 2 (3.39%) Exchange Server 2003
4 2 (3.39%) Exchange Server 2010
Applications
1 3 (5.08%) Microsoft Office
1 3 (5.08%) Microsoft Project
1 3 (5.08%) MS Visio
Business Applications
1 2 (3.39%) Oracle EBS
2 1 (1.69%) Oracle EBS R12
2 1 (1.69%) Oracle ERP
Cloud Services
1 10 (16.95%) IaaS
2 4 (6.78%) PaaS
Communications & Networking
1 23 (38.98%) Firewall
2 6 (10.17%) SSL
3 3 (5.08%) Internet
3 3 (5.08%) SMTP
3 3 (5.08%) VPN
4 2 (3.39%) Cisco ASA
4 2 (3.39%) FTP
4 2 (3.39%) NAS
4 2 (3.39%) Network Security
4 2 (3.39%) SAN
4 2 (3.39%) Wireless
5 1 (1.69%) Cisco PIX
5 1 (1.69%) DHCP
5 1 (1.69%) DNS
5 1 (1.69%) HTTP
5 1 (1.69%) Intrusion Detection
5 1 (1.69%) IPsec
5 1 (1.69%) SSH
Database & Business Intelligence
1 1 (1.69%) MongoDB
1 1 (1.69%) SQL Server
Development Applications
1 5 (8.47%) Jenkins
2 4 (6.78%) JIRA
2 4 (6.78%) Sonatype Nexus
3 2 (3.39%) SoapUI
4 1 (1.69%) Burp Suite
4 1 (1.69%) Cucumber
4 1 (1.69%) Git (software)
4 1 (1.69%) JMeter
4 1 (1.69%) Selenium
General
1 14 (23.73%) Finance
2 5 (8.47%) Legal
3 3 (5.08%) Banking
4 2 (3.39%) Spanish Language
5 1 (1.69%) Back Office
5 1 (1.69%) Manufacturing
5 1 (1.69%) Retail
5 1 (1.69%) Telecoms
Job Titles
1 13 (22.03%) Consultant
2 11 (18.64%) Security Consultant
3 7 (11.86%) Tester
4 6 (10.17%) Penetration Tester
5 5 (8.47%) Architect
5 5 (8.47%) Security Architect
6 4 (6.78%) Developer
6 4 (6.78%) Security Manager
7 3 (5.08%) DV Cleared Technical Consultant
7 3 (5.08%) Information Assurance Consultant
7 3 (5.08%) Information Security Consultant
7 3 (5.08%) Network Engineer
7 3 (5.08%) Security Technical Consultant
7 3 (5.08%) Technical Consultant
7 3 (5.08%) Technical Security Consultant
8 2 (3.39%) Exchange Specialist
8 2 (3.39%) Java Developer
8 2 (3.39%) Senior Security Architect
8 2 (3.39%) Technical Support
8 2 (3.39%) Test Manager
Libraries, Frameworks & Software Standards
1 3 (5.08%) J2EE
1 3 (5.08%) OAuth
1 3 (5.08%) Spring
2 2 (3.39%) SOAP
2 2 (3.39%) Spring Security
Miscellaneous
1 12 (20.34%) Management Information System
2 6 (10.17%) CMDB
3 5 (8.47%) Mobile App
4 4 (6.78%) CESG
4 4 (6.78%) PKI
4 4 (6.78%) Smart Meter
5 2 (3.39%) Analytical Skills
5 2 (3.39%) Cyberthreat
6 1 (1.69%) Client/Server
6 1 (1.69%) Computer Science
6 1 (1.69%) Cyber Attack
6 1 (1.69%) Embedded Systems
Operating Systems
1 10 (16.95%) Unix
2 9 (15.25%) Linux
3 7 (11.86%) Windows
4 4 (6.78%) Red Hat Enterprise Linux
4 4 (6.78%) SUSE
5 2 (3.39%) Windows Server
5 2 (3.39%) Windows Server 2003
5 2 (3.39%) Windows Server 2008
6 1 (1.69%) Solaris
6 1 (1.69%) Windows Vista
Processes & Methodologies
1 19 (32.20%) Risk Management
2 17 (28.81%) SIEM
3 16 (27.12%) Vulnerability Management
4 14 (23.73%) Information Security
5 13 (22.03%) Agile Software Development
6 12 (20.34%) Data Loss Prevention
6 12 (20.34%) Security Hardening
6 12 (20.34%) Security Management
6 12 (20.34%) Security Testing
6 12 (20.34%) Service Management
6 12 (20.34%) User Stories
7 10 (16.95%) Cybersecurity
7 10 (16.95%) Event Correlation
7 10 (16.95%) Scrum
8 9 (15.25%) Cryptography
8 9 (15.25%) OWASP
9 8 (13.56%) Risk Assessment
10 7 (11.86%) Ethical Hacking
10 7 (11.86%) Vulnerability Assessment
11 6 (10.17%) ITIL
Programming Languages
1 12 (20.34%) Java
2 5 (8.47%) Shell Script
3 2 (3.39%) C++
3 2 (3.39%) Python
4 1 (1.69%) Bash Shell
4 1 (1.69%) C
4 1 (1.69%) Perl
4 1 (1.69%) Ruby
Qualifications
1 15 (25.42%) CISSP
2 14 (23.73%) Security Cleared
3 9 (15.25%) SC Cleared
4 7 (11.86%) DV Cleared
5 6 (10.17%) CEH
5 6 (10.17%) Cisco Certification
5 6 (10.17%) CREST Certified
6 5 (8.47%) CISM
7 4 (6.78%) CCIE
7 4 (6.78%) CESG Certified Professional
7 4 (6.78%) OSCP
7 4 (6.78%) RHCE
7 4 (6.78%) RHCSA
7 4 (6.78%) SANS
8 2 (3.39%) CCNP
8 2 (3.39%) CLAS
8 2 (3.39%) GIAC
9 1 (1.69%) CISA
9 1 (1.69%) Degree
Quality Assurance & Compliance
1 8 (13.56%) ISO/IEC 27001
2 6 (10.17%) PCI DSS
3 4 (6.78%) RMADS
4 3 (5.08%) GDPR
4 3 (5.08%) ISO27005
5 2 (3.39%) Cyber Essentials
5 2 (3.39%) QA
6 1 (1.69%) SLA
6 1 (1.69%) WAI
6 1 (1.69%) WCAG
6 1 (1.69%) Web Application Security Consortium
System Software
1 11 (18.64%) VMware Infrastructure
2 1 (1.69%) Active Directory
2 1 (1.69%) Sendmail
Systems Management
1 5 (8.47%) Norton AntiVirus
2 4 (6.78%) Cobbler
2 4 (6.78%) Opscode Chef
2 4 (6.78%) Puppet
3 3 (5.08%) CA Spectrum
4 1 (1.69%) Computer Emergency Response Teams
Vendors
1 14 (23.73%) VMware
2 7 (11.86%) CheckPoint
3 6 (10.17%) ArcSight
3 6 (10.17%) BMC
3 6 (10.17%) CA
3 6 (10.17%) HP
3 6 (10.17%) Intel Security
3 6 (10.17%) Microsoft
3 6 (10.17%) SolarWinds
3 6 (10.17%) Splunk
3 6 (10.17%) Symantec
4 4 (6.78%) Red Hat
5 3 (5.08%) Cisco
5 3 (5.08%) Citrix
5 3 (5.08%) Oracle
6 1 (1.69%) Blue Coat
6 1 (1.69%) Juniper
6 1 (1.69%) Sourcefire