Penetration Testing Contracts

Penetration Testing
UK

The table below provides summary statistics for contract job vacancies requiring Penetration Testing skills. It includes a benchmarking guide to the contractor rates offered in vacancies that cited Penetration Testing over the 6 months leading up to 2 April 2025, comparing them to the same period in the previous two years.

6 months to
2 Apr 2025		 Same period 2024 Same period 2023
Rank 369 334 474
Rank change year-on-year -35 +140 +85
Contract jobs citing Penetration Testing 150 272 263
As % of all contract jobs advertised in the UK 0.52% 0.62% 0.42%
As % of the Processes & Methodologies category 0.57% 0.71% 0.46%
Number of daily rates quoted 85 137 162
10th Percentile £425 £425 £450
25th Percentile £493 £508 £488
Median daily rate (50th Percentile) £550 £590 £594
Median % change year-on-year -6.78% -0.63% +3.26%
75th Percentile £688 £675 £700
90th Percentile £788 £750 £797
UK excluding London median daily rate £550 £535 £550
% change year-on-year +2.80% -2.73% -4.35%
Number of hourly rates quoted 2 1 2
10th Percentile - - £81.38
25th Percentile £51.25 £81.75 £83.44
Median hourly rate £52.50 £83.50 £88.75
Median % change year-on-year -37.13% -5.92% +136.67%
75th Percentile £53.75 £85.25 £95.94
90th Percentile - - £99.13
UK excluding London median hourly rate £52.50 £83.50 £97.50
% change year-on-year -37.13% -14.36% +160.00%

All Process and Methodology Skills
UK

Penetration Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 26,303 38,187 56,638
As % of all contract IT jobs advertised in the UK 90.47% 86.38% 89.82%
Number of daily rates quoted 17,080 24,813 39,276
10th Percentile £308 £300 £325
25th Percentile £413 £413 £438
Median daily rate (50th Percentile) £525 £525 £550
Median % change year-on-year - -4.55% +4.76%
75th Percentile £635 £638 £650
90th Percentile £738 £750 £750
UK excluding London median daily rate £485 £500 £500
% change year-on-year -3.00% - +5.26%
Number of hourly rates quoted 969 2,339 1,838
10th Percentile £15.00 £12.82 £11.25
25th Percentile £20.12 £16.00 £16.42
Median hourly rate £31.64 £32.50 £36.65
Median % change year-on-year -2.65% -11.33% +47.41%
75th Percentile £63.75 £57.50 £65.00
90th Percentile £76.25 £70.78 £73.75
UK excluding London median hourly rate £30.62 £31.80 £36.13
% change year-on-year -3.73% -11.97% +81.67%

Penetration Testing
Job Vacancy Trend

Job postings citing Penetration Testing as a proportion of all IT jobs advertised.

Job vacancy trend for Penetration Testing in the UK

Penetration Testing
Contractor Daily Rate Trend

3-month moving average daily rate quoted in jobs citing Penetration Testing.

Daily rate trend for Penetration Testing in the UK

Penetration Testing
Daily Rate Histogram

Daily rate distribution for jobs citing Penetration Testing over the 6 months to 2 April 2025.

Daily rate histogram for Penetration Testing in the UK

Penetration Testing
Contractor Hourly Rate Trend

3-month moving average hourly rates quoted in jobs citing Penetration Testing.

Hourly rate trend for Penetration Testing in the UK

Penetration Testing
Top 15 Contract Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the UK over the 6 months to 2 April 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England -26 119 £613 +2.08% 293
London +16 62 £575 -4.17% 205
UK excluding London -14 62 £550 +2.80% 112
Work from Home -37 61 £600 +7.87% 178
South East +11 31 £635 +19.81% 34
Scotland +11 15 £535 +3.88% 11
North of England +7 7 £475 -27.48% 26
Midlands +19 5 £613 +16.67% 11
West Midlands +16 5 £613 -3.92% 10
North West -7 4 £525 -21.17% 17
East of England +22 3 £775 +10.71% 3
Wales +8 2 £650 +79.31% 2
South West +17 1 - - 17
Yorkshire +11 1 - - 5
North East -7 1 £550 -12.00% 4

Penetration Testing
Co-occurring Skills and Capabilities by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same employment type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 8 (5.33%) SharePoint
2 2 (1.33%) SAS
2 2 (1.33%) TPMS
Business Applications
1 4 (2.67%) Unit4 Business World
2 2 (1.33%) NetSuite
3 1 (0.67%) Dynamics CRM
3 1 (0.67%) Dynamics GP
Cloud Services
1 64 (42.67%) Azure
2 20 (13.33%) Microsoft 365
3 18 (12.00%) AWS
3 18 (12.00%) SaaS
4 14 (9.33%) IaaS
5 12 (8.00%) PaaS
6 11 (7.33%) Entra ID
6 11 (7.33%) Power Platform
7 8 (5.33%) Cloud Computing
8 7 (4.67%) OneDrive
9 6 (4.00%) Amazon S3
9 6 (4.00%) OpenShift
10 5 (3.33%) Azure DevOps
10 5 (3.33%) Azure Sentinel
10 5 (3.33%) GCP
11 3 (2.00%) Serverless
12 2 (1.33%) Amazon GuardDuty
12 2 (1.33%) Amazon Macie
12 2 (1.33%) AWS KMS
12 2 (1.33%) OCI
Communications & Networking
1 25 (16.67%) Network Security
2 24 (16.00%) Firewall
3 11 (7.33%) VPN
4 7 (4.67%) Internet
5 6 (4.00%) NAS
5 6 (4.00%) SAN
6 2 (1.33%) Intrusion Detection
6 2 (1.33%) LAN
6 2 (1.33%) WAN
7 1 (0.67%) Cisco ISE
7 1 (0.67%) SSL
7 1 (0.67%) Wireless
7 1 (0.67%) Wireshark
Database & Business Intelligence
1 9 (6.00%) Power BI
2 3 (2.00%) Oracle Reports
Development Applications
1 9 (6.00%) MSI
2 7 (4.67%) Jenkins
3 6 (4.00%) Burp Suite
3 6 (4.00%) Git
3 6 (4.00%) Metasploit
4 1 (0.67%) GitLab
4 1 (0.67%) JIRA
4 1 (0.67%) Snyk
4 1 (0.67%) SonarQube
General
1 52 (34.67%) Social Skills
2 29 (19.33%) Finance
3 26 (17.33%) Analytical Skills
4 14 (9.33%) Legal
5 10 (6.67%) Public Sector
6 6 (4.00%) Retail
7 5 (3.33%) Military
8 2 (1.33%) Aerospace
8 2 (1.33%) Banking
8 2 (1.33%) Documentation Skills
8 2 (1.33%) Financial Institution
8 2 (1.33%) French Language
8 2 (1.33%) Inclusion and Diversity
9 1 (0.67%) Automotive
9 1 (0.67%) Law
9 1 (0.67%) Manufacturing
9 1 (0.67%) Retail Banking
9 1 (0.67%) Telecoms
Job Titles
1 28 (18.67%) Senior
2 22 (14.67%) Tester
3 18 (12.00%) Penetration Tester
4 16 (10.67%) Architect
4 16 (10.67%) Lead
5 11 (7.33%) Consultant
5 11 (7.33%) Security Architect
5 11 (7.33%) Security Manager
6 10 (6.67%) IT Manager
6 10 (6.67%) Security Engineer
7 9 (6.00%) Security Consultant
8 8 (5.33%) IT Services Manager
8 8 (5.33%) Senior Manager
8 8 (5.33%) Service Manager
9 7 (4.67%) Security Specialist
9 7 (4.67%) Technical Architect
10 6 (4.00%) Auditor
10 6 (4.00%) Senior IT Manager
10 6 (4.00%) Senior Tester
10 6 (4.00%) Solutions Architect
Libraries, Frameworks & Software Standards
1 5 (3.33%) CSS
1 5 (3.33%) HTML
2 1 (0.67%) .NET
2 1 (0.67%) ARM Templates
2 1 (0.67%) EDI
2 1 (0.67%) OAuth
2 1 (0.67%) React
Miscellaneous
1 17 (11.33%) Security Posture
2 14 (9.33%) Cloud Native
3 13 (8.67%) Operational Technology
4 9 (6.00%) Management Information System
5 8 (5.33%) Cyber Threat
6 7 (4.67%) Video Conferencing
7 6 (4.00%) Cyber Defence
7 6 (4.00%) Cyber Kill Chain
7 6 (4.00%) Onboarding
7 6 (4.00%) Public Cloud
8 5 (3.33%) Embedded Systems
8 5 (3.33%) Mobile App
8 5 (3.33%) PKI
8 5 (3.33%) Private Cloud
9 3 (2.00%) Analytical Mindset
9 3 (2.00%) Self-Motivation
10 2 (1.33%) Data Protection Act
10 2 (1.33%) IoT
11 1 (0.67%) Life Science
11 1 (0.67%) SCADA
Operating Systems
1 23 (15.33%) Windows
2 9 (6.00%) Unix
2 9 (6.00%) Windows Server
3 8 (5.33%) Linux
4 2 (1.33%) Android
4 2 (1.33%) FreeRTOS
4 2 (1.33%) Kali Linux
4 2 (1.33%) Windows 10
4 2 (1.33%) Windows 7
4 2 (1.33%) Windows Server 2016
4 2 (1.33%) Windows Server 2019
Processes & Methodologies
1 59 (39.33%) Cybersecurity
2 36 (24.00%) Cloud Security
3 33 (22.00%) Information Security
4 32 (21.33%) Security Testing
5 29 (19.33%) Vulnerability Management
6 21 (14.00%) Agile
6 21 (14.00%) DevOps
6 21 (14.00%) Problem-Solving
6 21 (14.00%) Threat Modelling
7 20 (13.33%) Data Protection
8 19 (12.67%) Ethical Hacking
8 19 (12.67%) Incident Response
9 18 (12.00%) Computer Science
9 18 (12.00%) DevSecOps
10 17 (11.33%) Application Security
10 17 (11.33%) Cryptography
10 17 (11.33%) Risk Management
10 17 (11.33%) SIEM
10 17 (11.33%) Vulnerability Remediation
11 16 (10.67%) CI/CD
Programming Languages
1 21 (14.00%) Python
2 7 (4.67%) Ruby
3 6 (4.00%) C
3 6 (4.00%) C++
3 6 (4.00%) PowerShell
4 5 (3.33%) JavaScript
4 5 (3.33%) PHP
4 5 (3.33%) SQL
5 4 (2.67%) Bash
5 4 (2.67%) Java
5 4 (2.67%) Rust
6 2 (1.33%) Assembly Language
6 2 (1.33%) Embedded C
6 2 (1.33%) Embedded C++
7 1 (0.67%) C#
7 1 (0.67%) TypeScript
Qualifications
1 37 (24.67%) Security Cleared
2 36 (24.00%) SC Cleared
3 26 (17.33%) Degree
4 24 (16.00%) CISSP
5 19 (12.67%) CEH
6 18 (12.00%) OSCP
7 13 (8.67%) Cisco Certification
7 13 (8.67%) CISM
8 12 (8.00%) CREST Certified
9 11 (7.33%) (ISC)2 CCSP
10 10 (6.67%) CCSP
10 10 (6.67%) Computer Science Degree
11 9 (6.00%) GIAC
12 8 (5.33%) CompTIA Security+
12 8 (5.33%) GPEN
13 7 (4.67%) GWAPT
14 6 (4.00%) CISA
14 6 (4.00%) OSCE
15 5 (3.33%) GCIH
15 5 (3.33%) Master's Degree
Quality Assurance & Compliance
1 28 (18.67%) ISO/IEC 27001
2 27 (18.00%) NIST
3 9 (6.00%) NCSC
4 8 (5.33%) GDPR
5 7 (4.67%) PCI DSS
6 5 (3.33%) HIPAA
6 5 (3.33%) SLA
7 4 (2.67%) NIST 800
8 3 (2.00%) Disclosure Scotland
8 3 (2.00%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 3 (2.00%) QA
9 2 (1.33%) Actionable Recommendations
9 2 (1.33%) GRC
10 1 (0.67%) California Consumer Privacy Act
10 1 (0.67%) Cyber Essentials
System Software
1 5 (3.33%) Active Directory
2 2 (1.33%) Docker
2 2 (1.33%) Embedded Firmware
2 2 (1.33%) Firmware
3 1 (0.67%) Hyper-V
3 1 (0.67%) Virtual Machines
Systems Management
1 15 (10.00%) Microsoft Intune
2 10 (6.67%) Kubernetes
3 8 (5.33%) Nessus
4 6 (4.00%) NetBackup
4 6 (4.00%) Oracle RMAN
5 3 (2.00%) CASB
5 3 (2.00%) SCCM
5 3 (2.00%) Terraform
6 2 (1.33%) Nmap
6 2 (1.33%) WSUS
7 1 (0.67%) Ansible
7 1 (0.67%) Computer Emergency Response Teams
7 1 (0.67%) CSIRT
7 1 (0.67%) HP Fortify
Vendors
1 33 (22.00%) Microsoft
2 7 (4.67%) Oracle
3 6 (4.00%) SAP
3 6 (4.00%) Veritas
4 5 (3.33%) Qualys
5 4 (2.67%) Splunk
6 3 (2.00%) Tenable
7 2 (1.33%) Ariba
7 2 (1.33%) Google
7 2 (1.33%) TOWER Software
7 2 (1.33%) Tripwire
7 2 (1.33%) Workday
8 1 (0.67%) Apple
8 1 (0.67%) BT
8 1 (0.67%) Cisco
8 1 (0.67%) CyberArk
8 1 (0.67%) Samsung
350 Penetration Testing jobs Nationwide