Penetration Testing Contract Job Trends

Penetration Testing
UK

The table below provides summary statistics and contractor rates for jobs requiring Penetration Testing skills. It covers contract job vacancies from the 6 months leading up to 23 April 2026, with comparisons to the same periods in the previous two years.

 6 months to
23 Apr 2026		 Same period 2025 Same period 2024
Rank 425 370 337
Rank change year-on-year -55 -33 +130
Contract jobs citing Penetration Testing 195 152 262
As % of all contract jobs in the UK 0.42% 0.51% 0.60%
As % of the Processes & Methodologies category 0.50% 0.57% 0.69%
Number of daily rates quoted 153 88 147
10th Percentile £400 £434 £425
25th Percentile £461 £495 £505
Median daily rate (50th Percentile) £550 £550 £590
Median % change year-on-year - -6.78% -1.67%
75th Percentile £675 £699 £675
90th Percentile £750 £788 £743
UK excluding London median daily rate £538 £550 £535
% change year-on-year -2.27% +2.80% -6.14%
Number of hourly rates quoted 1 2 1
10th Percentile - - -
25th Percentile - £51.25 £81.75
Median hourly rate £31.86 £52.50 £83.50
Median % change year-on-year -39.31% -37.13% +4.38%
75th Percentile - £53.75 £85.25
90th Percentile - - -
UK excluding London median hourly rate £31.86 £52.50 £83.50
% change year-on-year -39.31% -37.13% -

All Process & Methodology Skills
UK

Penetration Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 39,369 26,799 37,747
As % of all contract IT jobs advertised in the UK 84.81% 90.74% 86.34%
Number of daily rates quoted 24,829 17,326 24,410
10th Percentile £318 £307 £300
25th Percentile £413 £413 £413
Median daily rate (50th Percentile) £500 £521 £525
Median % change year-on-year -4.03% -0.76% -4.55%
75th Percentile £613 £630 £638
90th Percentile £725 £738 £750
UK excluding London median daily rate £485 £485 £500
% change year-on-year - -3.00% -
Number of hourly rates quoted 2,359 1,054 2,423
10th Percentile £14.96 £14.84 £12.75
25th Percentile £19.88 £18.51 £16.00
Median hourly rate £39.50 £29.90 £35.00
Median % change year-on-year +32.11% -14.57% -6.67%
75th Percentile £65.60 £62.25 £58.70
90th Percentile £78.25 £75.00 £71.90
UK excluding London median hourly rate £41.56 £28.18 £35.00
% change year-on-year +47.46% -19.49% -6.17%

Penetration Testing
Job Vacancy Trend

Historical trend showing the proportion of contract IT job postings citing Penetration Testing relative to all contract IT jobs advertised.

Penetration Testing job vacancy trend in the UK

Penetration Testing
Daily Rate Trend

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Daily Rate Histogram

Daily rate distribution for jobs citing Penetration Testing over the 6 months to 23 April 2026.

Daily rate histogram for Penetration Testing in the UK

Penetration Testing
Hourly Rate Trend

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Top 14 Contract Job Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the UK over the 6 months to 23 April 2026. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England -48 170 £550 -11.11% 78
UK excluding London -47 123 £538 -2.27% 40
Work from Home -24 72 £550 -8.33% 39
London -63 48 £550 -10.20% 50
South East -37 41 £563 -14.45% 20
North of England -43 29 £600 +20.97% 3
Midlands -43 24 £550 -3.30% 4
South West -9 23 £450 - 8
North West -21 21 £617 +24.40% 1
West Midlands -49 17 £550 -3.30% 4
Yorkshire -45 8 £500 - 2
East Midlands - 7 £442 -
Scotland -11 4 £325 -39.25% 3
East of England -26 3 £198 -74.52% 2

Penetration Testing
Co-Occurring Skills & Capabilities by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1 10 (5.13%) Confluence
2 4 (2.05%) SharePoint
3 1 (0.51%) Anypoint
3 1 (0.51%) ArcGIS
3 1 (0.51%) Camunda
3 1 (0.51%) Moodle
3 1 (0.51%) Mule
3 1 (0.51%) Oracle Application Server
3 1 (0.51%) Strapi
Applications
1 17 (8.72%) Microsoft Office
2 14 (7.18%) Microsoft Excel
2 14 (7.18%) Microsoft PowerPoint
3 1 (0.51%) Adobe XD
Business Applications
1 3 (1.54%) Oracle EBS
2 1 (0.51%) SAP GRC
2 1 (0.51%) SAP S/4HANA
Cloud Services
1 58 (29.74%) Azure
2 51 (26.15%) AWS
3 10 (5.13%) Microsoft 365
4 8 (4.10%) Entra ID
4 8 (4.10%) SaaS
5 7 (3.59%) Azure DevOps
6 6 (3.08%) Amazon GuardDuty
6 6 (3.08%) OCI
7 5 (2.56%) GCP
8 4 (2.05%) Azure AI
8 4 (2.05%) Azure Sentinel
8 4 (2.05%) IBM Watson
8 4 (2.05%) Vertex AI
9 3 (1.54%) AWS CloudFormation
9 3 (1.54%) AWS CloudTrail
9 3 (1.54%) AWS KMS
10 2 (1.03%) Cloudflare
10 2 (1.03%) GitHub
11 1 (0.51%) OpenDNS
11 1 (0.51%) OpenShift
Communications & Networking
1 37 (18.97%) Firewall
2 26 (13.33%) Network Security
3 18 (9.23%) Wireless
4 8 (4.10%) HTTP
5 7 (3.59%) VPN
6 6 (3.08%) DNS
6 6 (3.08%) TCP/IP
7 5 (2.56%) BGP
8 4 (2.05%) Cisco ASA
8 4 (2.05%) Cisco IOS
8 4 (2.05%) Internet
8 4 (2.05%) Intrusion Detection
8 4 (2.05%) IPsec
8 4 (2.05%) MPLS
8 4 (2.05%) MQTT
8 4 (2.05%) SD-WAN
8 4 (2.05%) SSL
8 4 (2.05%) TACACS
9 3 (1.54%) Reverse Proxy
10 2 (1.03%) Intranet
Database & Business Intelligence
1 4 (2.05%) Oracle Reports
2 1 (0.51%) GIS
2 1 (0.51%) SQL Server
Development Applications
1 20 (10.26%) Burp Suite
2 18 (9.23%) Metasploit
3 17 (8.72%) JIRA
4 3 (1.54%) Selenium
5 2 (1.03%) GitLab
5 2 (1.03%) SoapUI
6 1 (0.51%) fastlane
6 1 (0.51%) Git
6 1 (0.51%) Jenkins
6 1 (0.51%) JMeter
6 1 (0.51%) LoadRunner
6 1 (0.51%) Postman
6 1 (0.51%) sqlmap
6 1 (0.51%) Xcode
6 1 (0.51%) XCTest
6 1 (0.51%) XCUITest
General
1 67 (34.36%) Social Skills
2 30 (15.38%) Public Sector
3 14 (7.18%) Finance
4 12 (6.15%) Analytical Skills
5 6 (3.08%) Documentation Skills
6 5 (2.56%) Aerospace
6 5 (2.56%) Legal
7 4 (2.05%) Banking
7 4 (2.05%) Local Government
7 4 (2.05%) Manufacturing
7 4 (2.05%) Presentation Skills
7 4 (2.05%) Telecoms
8 3 (1.54%) Inclusion and Diversity
8 3 (1.54%) Organisational Skills
9 2 (1.03%) Arabic Language
9 2 (1.03%) Aviation
9 2 (1.03%) Electronics
9 2 (1.03%) Law
9 2 (1.03%) Marketing
9 2 (1.03%) Military
Job Titles
1 55 (28.21%) Tester
2 51 (26.15%) Penetration Tester
3 23 (11.79%) Consultant
3 23 (11.79%) Security Engineer
4 15 (7.69%) Lead
4 15 (7.69%) Security Consultant
4 15 (7.69%) Senior
5 14 (7.18%) Architect
6 12 (6.15%) Analyst
7 9 (4.62%) Security Architect
7 9 (4.62%) Security Officer
7 9 (4.62%) Solutions Architect
7 9 (4.62%) Test Manager
8 8 (4.10%) Developer
8 8 (4.10%) Security Analyst
9 7 (3.59%) Technical Leader
10 6 (3.08%) Cloud Engineer
10 6 (3.08%) Cybersecurity Architect
10 6 (3.08%) IT Security Officer
10 6 (3.08%) Security Tester
Libraries, Frameworks & Software Standards
1 9 (4.62%) LDAP
2 6 (3.08%) LangChain
2 6 (3.08%) OAuth
2 6 (3.08%) PyTorch
2 6 (3.08%) SAML
2 6 (3.08%) scikit-learn
3 5 (2.56%) ADO
4 3 (1.54%) JWT
4 3 (1.54%) Node.js
4 3 (1.54%) OAuth2
4 3 (1.54%) OpenID
5 2 (1.03%) .NET
5 2 (1.03%) Jest
5 2 (1.03%) Spring Boot
6 1 (0.51%) CSS
6 1 (0.51%) RAML
6 1 (0.51%) React
6 1 (0.51%) SAP Fiori
6 1 (0.51%) SOAP
6 1 (0.51%) Vue
Miscellaneous
1 47 (24.10%) Security Posture
2 15 (7.69%) Operational Technology
3 14 (7.18%) Management Information System
4 13 (6.67%) Cloud Native
5 12 (6.15%) Mobile App
6 9 (4.62%) Security Operations Centre
7 7 (3.59%) BYOD
7 7 (3.59%) Data Centre
8 6 (3.08%) CSOC
8 6 (3.08%) Onboarding
9 5 (2.56%) Cloud Security Posture
9 5 (2.56%) PKI
10 4 (2.05%) Distributed Systems
11 3 (1.54%) Product Ownership
12 2 (1.03%) Analytical Mindset
12 2 (1.03%) Cyber Security Posture
12 2 (1.03%) Cyber Threat
12 2 (1.03%) Data Protection Act
12 2 (1.03%) IoT
12 2 (1.03%) Legacy Systems
Operating Systems
1 41 (21.03%) Windows
2 22 (11.28%) Linux
3 12 (6.15%) Android
4 9 (4.62%) Unix
5 8 (4.10%) Apple iOS
6 4 (2.05%) Ubuntu
7 2 (1.03%) Kali Linux
Processes & Methodologies
1 77 (39.49%) Cybersecurity
2 40 (20.51%) Information Security
3 38 (19.49%) Security Testing
4 37 (18.97%) Vulnerability Management
5 36 (18.46%) Cloud Security
6 32 (16.41%) Application Security
7 29 (14.87%) Agile
8 28 (14.36%) Security Operations
9 27 (13.85%) Threat Modelling
10 26 (13.33%) Continuous Improvement
10 26 (13.33%) OWASP
10 26 (13.33%) Test Automation
10 26 (13.33%) Vulnerability Assessment
11 25 (12.82%) Security Management
12 24 (12.31%) Risk Management
12 24 (12.31%) SDLC
13 23 (11.79%) Validation
14 22 (11.28%) DevSecOps
14 22 (11.28%) Security Architecture
15 21 (10.77%) Regulatory Compliance
Programming Languages
1 21 (10.77%) Python
2 7 (3.59%) PowerShell
3 6 (3.08%) Go
3 6 (3.08%) Java
4 5 (2.56%) Kusto Query Language
4 5 (2.56%) PHP
5 4 (2.05%) Bash
5 4 (2.05%) JavaScript
6 3 (1.54%) Bicep
6 3 (1.54%) Swift
7 2 (1.03%) C-shell
7 2 (1.03%) Korn
7 2 (1.03%) Kotlin
7 2 (1.03%) SQL
8 1 (0.51%) C#
8 1 (0.51%) DataWeave
8 1 (0.51%) Groovy
8 1 (0.51%) PL/SQL
8 1 (0.51%) Scala
8 1 (0.51%) T-SQL
Qualifications
1 67 (34.36%) Security Cleared
2 51 (26.15%) SC Cleared
3 29 (14.87%) Degree
4 28 (14.36%) CISSP
5 27 (13.85%) CREST Certified
6 24 (12.31%) CHECK Team Member
7 19 (9.74%) DV Cleared
8 14 (7.18%) CISM
8 14 (7.18%) Cyber Scheme
9 11 (5.64%) CompTIA Security+
9 11 (5.64%) Postgraduate
10 10 (5.13%) CHECK Team Leader
11 7 (3.59%) OSCP
12 6 (3.08%) BPSS Clearance
12 6 (3.08%) GIAC
12 6 (3.08%) SSCP
13 5 (2.56%) CEH
13 5 (2.56%) MCSA
13 5 (2.56%) MCSE
13 5 (2.56%) Microsoft Certification
Quality Assurance & Compliance
1 43 (22.05%) ISO/IEC 27001
2 34 (17.44%) NIST
3 30 (15.38%) PCI DSS
4 29 (14.87%) GDPR
5 22 (11.28%) NCSC
6 15 (7.69%) QA
7 14 (7.18%) GRC
8 11 (5.64%) NIST 800
8 11 (5.64%) PMO
9 8 (4.10%) Cyber Essentials
10 7 (3.59%) Sarbanes-Oxley
11 4 (2.05%) Cyber Essentials PLUS
11 4 (2.05%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
12 3 (1.54%) Accessibility
12 3 (1.54%) SLA
12 3 (1.54%) SOC 2
13 2 (1.03%) HMG Security Policy Framework
14 1 (0.51%) Data Quality
14 1 (0.51%) Def Stans
14 1 (0.51%) Disclosure Scotland
System Software
1 11 (5.64%) Active Directory
2 5 (2.56%) Docker
2 5 (2.56%) Snort
3 4 (2.05%) VMware ESXi
3 4 (2.05%) VMware Infrastructure
4 1 (0.51%) Squid
4 1 (0.51%) Virtual Desktop
4 1 (0.51%) Virtual Machines
4 1 (0.51%) vSphere
Systems Management
1 19 (9.74%) Kubernetes
1 19 (9.74%) Nmap
2 9 (4.62%) Nessus
3 6 (3.08%) Terraform
4 5 (2.56%) CASB
4 5 (2.56%) Single Sign-On
5 4 (2.05%) CSIRT
5 4 (2.05%) vCenter Server
6 3 (1.54%) Oracle Identity Management
6 3 (1.54%) Oracle Identity Manager
6 3 (1.54%) SCOM
7 2 (1.03%) Microsoft Intune
8 1 (0.51%) Nexpose
8 1 (0.51%) Suricata
Vendors
1 28 (14.36%) Microsoft
2 13 (6.67%) Splunk
3 7 (3.59%) Cisco
3 7 (3.59%) Oracle
3 7 (3.59%) SAP
4 5 (2.56%) CyberArk
4 5 (2.56%) Google
4 5 (2.56%) Remedy
4 5 (2.56%) Tenable
5 4 (2.05%) BiZZdesign
5 4 (2.05%) IBM
5 4 (2.05%) ServiceNow
5 4 (2.05%) VMware
6 3 (1.54%) Citrix
6 3 (1.54%) OutSystems
7 1 (0.51%) Blue Coat
7 1 (0.51%) BT
7 1 (0.51%) CheckPoint
7 1 (0.51%) Siemens
7 1 (0.51%) Sophos
93 Penetration Testing jobs Nationwide