Penetration Testing Contract Job Trends

Penetration Testing
UK

The table below provides summary statistics and contractor rates for jobs requiring Penetration Testing skills. It covers contract job vacancies from the 6 months leading up to 21 December 2025, with comparisons to the same periods in the previous two years.

 6 months to
21 Dec 2025		 Same period 2024 Same period 2023
Rank 356 395 341
Rank change year-on-year +39 -54 +164
Contract jobs citing Penetration Testing 241 140 279
As % of all contract jobs in the UK 0.66% 0.41% 0.64%
As % of the Processes & Methodologies category 0.74% 0.47% 0.72%
Number of daily rates quoted 170 88 126
10th Percentile £400 £425 £450
25th Percentile £447 £512 £508
Median daily rate (50th Percentile) £550 £593 £600
Median % change year-on-year -7.17% -1.25% -
75th Percentile £600 £700 £650
90th Percentile £675 £779 £750
UK excluding London median daily rate £488 £550 £550
% change year-on-year -11.36% - -8.33%
Number of hourly rates quoted 1 0 0
Median hourly rate £31.86 - -
UK excluding London median hourly rate £31.86 - -

All Process and Methodology Skills
UK

Penetration Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 32,432 29,959 38,773
As % of all contract IT jobs advertised in the UK 88.29% 88.23% 88.50%
Number of daily rates quoted 20,397 18,286 25,908
10th Percentile £300 £307 £306
25th Percentile £406 £413 £420
Median daily rate (50th Percentile) £500 £525 £530
Median % change year-on-year -4.76% -0.94% -3.64%
75th Percentile £615 £638 £650
90th Percentile £723 £743 £744
UK excluding London median daily rate £475 £500 £500
% change year-on-year -5.00% - -
Number of hourly rates quoted 2,093 972 1,488
10th Percentile £14.51 £15.62 £14.33
25th Percentile £17.50 £20.30 £18.99
Median hourly rate £25.15 £32.50 £43.84
Median % change year-on-year -22.62% -25.86% +25.25%
75th Percentile £50.00 £62.50 £65.00
90th Percentile £68.00 £73.75 £77.50
UK excluding London median hourly rate £23.00 £31.50 £44.50
% change year-on-year -26.98% -29.21% +39.26%

Penetration Testing
Job Vacancy Trend

Historical trend showing the proportion of contract IT job postings citing Penetration Testing relative to all contract IT jobs advertised.

Penetration Testing job vacancy trend in the UK

Penetration Testing
Daily Rate Trend

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Daily Rate Histogram

Daily rate distribution for jobs citing Penetration Testing over the 6 months to 21 December 2025.

Daily rate histogram for Penetration Testing in the UK

Penetration Testing
Hourly Rate Trend

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Top 16 Contract Job Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the UK over the 6 months to 21 December 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England +65 218 £550 -12.00% 88
London +33 109 £550 -12.00% 25
UK excluding London +31 106 £488 -11.36% 81
Work from Home +21 92 £600 -3.61% 49
South East +20 46 £492 -16.61% 20
North of England -28 23 £527 +3.38% 16
Midlands -21 16 £388 -50.00% 13
West Midlands -18 13 £375 -51.61% 12
North West -24 13 £520 +2.99% 8
South West -4 10 £413 -36.54% 23
East of England -19 6 £550 -1.12% 2
Yorkshire -41 6 £501 -8.89% 7
North East -2 4 £700 +27.27% 1
East Midlands - 3 £400 - 1
Northern Ireland - 3 - - 1
Scotland -6 2 - - 5

Penetration Testing
Co-Occurring Skills & Capabilities by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1 11 (4.56%) Confluence
2 5 (2.07%) SharePoint
Applications
1 10 (4.15%) Microsoft Office
2 9 (3.73%) Microsoft Excel
3 8 (3.32%) Microsoft PowerPoint
4 4 (1.66%) Microsoft Project
5 1 (0.41%) GNU Octave
Business Applications
1 3 (1.24%) Oracle EBS
Cloud Services
1 64 (26.56%) Azure
2 50 (20.75%) AWS
3 31 (12.86%) GCP
4 11 (4.56%) Entra ID
5 9 (3.73%) Azure Sentinel
6 7 (2.90%) Azure DevOps
6 7 (2.90%) Microsoft 365
7 6 (2.49%) Cloudflare
8 5 (2.07%) OpenDNS
9 4 (1.66%) SaaS
10 3 (1.24%) GitHub
10 3 (1.24%) OCI
11 2 (0.83%) Cloud Computing
11 2 (0.83%) OpenShift
11 2 (0.83%) Power Platform
12 1 (0.41%) Cloud Run
12 1 (0.41%) Firebase
12 1 (0.41%) Google App Engine
12 1 (0.41%) npm
12 1 (0.41%) Virtual Private Cloud
Communications & Networking
1 39 (16.18%) Firewall
2 18 (7.47%) Network Security
3 15 (6.22%) Wireless
4 9 (3.73%) TCP/IP
5 8 (3.32%) Wireshark
6 7 (2.90%) DNS
6 7 (2.90%) SSL
7 6 (2.49%) Internet
8 4 (1.66%) Intranet
8 4 (1.66%) Intrusion Detection
8 4 (1.66%) SD-WAN
8 4 (1.66%) VPN
8 4 (1.66%) Wi-Fi
9 3 (1.24%) HTTP
9 3 (1.24%) VLAN
10 2 (0.83%) HTTPS
10 2 (0.83%) WAN
11 1 (0.41%) DMZ
11 1 (0.41%) SNMP
11 1 (0.41%) Telnet
Database & Business Intelligence
1 3 (1.24%) MongoDB
2 2 (0.83%) Power BI
3 1 (0.41%) Amazon RDS
3 1 (0.41%) DB2
3 1 (0.41%) Oracle Reports
Development Applications
1 30 (12.45%) Burp Suite
2 28 (11.62%) Metasploit
3 22 (9.13%) JIRA
4 6 (2.49%) GitLab
4 6 (2.49%) Selenium
4 6 (2.49%) sqlmap
5 5 (2.07%) Jenkins
6 3 (1.24%) JMeter
6 3 (1.24%) Postman
7 2 (0.83%) Git
7 2 (0.83%) SonarQube
8 1 (0.41%) Cucumber
8 1 (0.41%) Cypress.io
8 1 (0.41%) Gatling
8 1 (0.41%) Maven
8 1 (0.41%) webpack
General
1 96 (39.83%) Social Skills
2 28 (11.62%) Public Sector
3 27 (11.20%) Analytical Skills
4 18 (7.47%) Finance
5 6 (2.49%) Banking
6 5 (2.07%) Presentation Skills
7 4 (1.66%) Inclusion and Diversity
8 3 (1.24%) Influencing Skills
8 3 (1.24%) Investment Banking
8 3 (1.24%) Manufacturing
8 3 (1.24%) Military
8 3 (1.24%) Organisational Skills
8 3 (1.24%) Telecoms
9 2 (0.83%) Automotive
9 2 (0.83%) Documentation Skills
9 2 (0.83%) Electronics
9 2 (0.83%) German Language
9 2 (0.83%) Legal
9 2 (0.83%) Marketing
10 1 (0.41%) Health Technology
Job Titles
1 99 (41.08%) Penetration Tester
2 97 (40.25%) Tester
3 30 (12.45%) Analyst
4 22 (9.13%) Security Engineer
5 21 (8.71%) Security Analyst
6 16 (6.64%) Lead
7 13 (5.39%) Senior
8 8 (3.32%) Security Officer
8 8 (3.32%) Test Engineer
8 8 (3.32%) Test Manager
9 7 (2.90%) Consultant
10 6 (2.49%) Architect
10 6 (2.49%) Cybersecurity Analyst
10 6 (2.49%) IT Security Officer
10 6 (2.49%) Security Manager
11 5 (2.07%) Cybersecurity Engineer
11 5 (2.07%) Operations Analyst
11 5 (2.07%) Security Architect
11 5 (2.07%) Security Operations Analyst
11 5 (2.07%) Vulnerability Manager
Libraries, Frameworks & Software Standards
1 6 (2.49%) LDAP
2 5 (2.07%) OAuth
3 4 (1.66%) ADO
3 4 (1.66%) JWT
3 4 (1.66%) SAML
4 3 (1.24%) .NET
4 3 (1.24%) Node.js
5 2 (0.83%) Flash
5 2 (0.83%) RESTful
5 2 (0.83%) Smart Contracts
5 2 (0.83%) Spring
5 2 (0.83%) Spring Boot
6 1 (0.41%) Django
6 1 (0.41%) Flutter
6 1 (0.41%) Jest
6 1 (0.41%) JSON
6 1 (0.41%) Playwright
6 1 (0.41%) PyTorch
6 1 (0.41%) TensorFlow
6 1 (0.41%) WireMock
Miscellaneous
1 42 (17.43%) Security Posture
2 15 (6.22%) Management Information System
3 13 (5.39%) Cyber Threat
4 12 (4.98%) Cloud Native
4 12 (4.98%) Mobile App
5 9 (3.73%) Security Operations Centre
6 7 (2.90%) Operational Technology
7 5 (2.07%) Cloud Security Posture
7 5 (2.07%) CSOC
8 4 (1.66%) Distributed Systems
9 3 (1.24%) BYOD
9 3 (1.24%) Cyber Defence
9 3 (1.24%) Data Centre
9 3 (1.24%) Video Conferencing
10 2 (0.83%) Blockchain
10 2 (0.83%) Data Protection Act
10 2 (0.83%) Greenfield Project
11 1 (0.41%) Analytical Mindset
11 1 (0.41%) Cyber Kill Chain
11 1 (0.41%) Renewable Energy
Operating Systems
1 31 (12.86%) Windows
2 28 (11.62%) Linux
3 12 (4.98%) Android
3 12 (4.98%) Kali Linux
3 12 (4.98%) Unix
4 6 (2.49%) Apple iOS
5 1 (0.41%) Mac OS X
5 1 (0.41%) VMS
5 1 (0.41%) Windows Server
Processes & Methodologies
1 105 (43.57%) Cybersecurity
2 45 (18.67%) Incident Response
2 45 (18.67%) OWASP
3 42 (17.43%) Vulnerability Management
4 41 (17.01%) Vulnerability Assessment
5 40 (16.60%) Cloud Security
5 40 (16.60%) Test Automation
6 33 (13.69%) Application Security
7 32 (13.28%) Vulnerability Remediation
8 31 (12.86%) Threat Modelling
9 30 (12.45%) Agile
10 29 (12.03%) Problem-Solving
10 29 (12.03%) Security Testing
11 27 (11.20%) Information Security
11 27 (11.20%) Stakeholder Management
12 26 (10.79%) Security Operations
13 25 (10.37%) Validation
14 24 (9.96%) MITRE ATT&CK
14 24 (9.96%) Risk Management
15 23 (9.54%) Red Team
Programming Languages
1 33 (13.69%) Python
2 25 (10.37%) Bash
3 20 (8.30%) PowerShell
4 8 (3.32%) Go
5 7 (2.90%) Java
6 5 (2.07%) Kusto Query Language
7 3 (1.24%) SQL
8 2 (0.83%) C-shell
8 2 (0.83%) Korn
8 2 (0.83%) Rust
8 2 (0.83%) Solidity
9 1 (0.41%) JavaScript
9 1 (0.41%) R
9 1 (0.41%) Scala
9 1 (0.41%) Shell Script
9 1 (0.41%) Swift
9 1 (0.41%) TypeScript
Qualifications
1 93 (38.59%) Security Cleared
2 81 (33.61%) SC Cleared
3 42 (17.43%) CHECK Team Member
4 35 (14.52%) CHECK Team Leader
5 33 (13.69%) CISSP
6 32 (13.28%) OSCP
7 25 (10.37%) CREST Certified
8 22 (9.13%) CEH
8 22 (9.13%) Degree
9 21 (8.71%) CISM
10 19 (7.88%) GPEN
11 11 (4.56%) CompTIA Security+
11 11 (4.56%) DV Cleared
12 6 (2.49%) Cisco Certification
12 6 (2.49%) Cyber Scheme
12 6 (2.49%) Postgraduate
12 6 (2.49%) SANS
13 5 (2.07%) MCSA
13 5 (2.07%) MCSE
13 5 (2.07%) Microsoft Certification
Quality Assurance & Compliance
1 52 (21.58%) ISO/IEC 27001
2 48 (19.92%) NIST
3 27 (11.20%) GDPR
4 18 (7.47%) NCSC
4 18 (7.47%) PCI DSS
5 13 (5.39%) QA
6 9 (3.73%) PMO
7 8 (3.32%) NIST 800
8 7 (2.90%) Cyber Essentials
9 6 (2.49%) GRC
10 4 (1.66%) Actionable Recommendations
11 3 (1.24%) California Consumer Privacy Act
11 3 (1.24%) Cyber Essentials PLUS
11 3 (1.24%) EU AI Act
11 3 (1.24%) JSP 440
11 3 (1.24%) Sarbanes-Oxley
11 3 (1.24%) SOC 2
12 2 (0.83%) Accessibility
12 2 (0.83%) ISO 9001
13 1 (0.41%) SLA
System Software
1 21 (8.71%) Active Directory
2 12 (4.98%) Docker
3 6 (2.49%) Snort
4 5 (2.07%) Squid
5 3 (1.24%) Virtual Machines
6 1 (0.41%) Firmware
Systems Management
1 27 (11.20%) Nessus
1 27 (11.20%) Nmap
2 26 (10.79%) Kubernetes
3 6 (2.49%) Nexpose
4 5 (2.07%) CASB
4 5 (2.07%) Suricata
5 4 (1.66%) Ansible
6 2 (0.83%) Microsoft Intune
6 2 (0.83%) Terraform
7 1 (0.41%) CSIRT
7 1 (0.41%) Grafana
7 1 (0.41%) Kibana
7 1 (0.41%) QRadar
7 1 (0.41%) Single Sign-On
Vendors
1 25 (10.37%) Microsoft
2 16 (6.64%) Qualys
3 14 (5.81%) ServiceNow
4 13 (5.39%) Splunk
5 12 (4.98%) Tenable
6 11 (4.56%) CrowdStrike
7 8 (3.32%) Cisco
7 8 (3.32%) CyberArk
7 8 (3.32%) Google
8 7 (2.90%) Palo Alto
8 7 (2.90%) Remedy
9 6 (2.49%) Oracle
9 6 (2.49%) SAP
9 6 (2.49%) Zscaler
10 5 (2.07%) Blue Coat
10 5 (2.07%) Carbon Black
10 5 (2.07%) FireEye
11 4 (1.66%) Tanium
12 3 (1.24%) F5
13 2 (0.83%) LogRhythm
100 Penetration Testing jobs Nationwide