Penetration Testing Contract Job Trends

Penetration Testing
UK

The table below provides summary statistics and contractor rates for jobs requiring Penetration Testing skills. It covers contract job vacancies from the 6 months leading up to 26 December 2025, with comparisons to the same periods in the previous two years.

 6 months to
26 Dec 2025		 Same period 2024 Same period 2023
Rank 358 417 325
Rank change year-on-year +59 -92 +179
Contract jobs citing Penetration Testing 237 138 285
As % of all contract jobs in the UK 0.64% 0.41% 0.65%
As % of the Processes & Methodologies category 0.72% 0.46% 0.74%
Number of daily rates quoted 167 86 131
10th Percentile £400 £425 £450
25th Percentile £446 £525 £508
Median daily rate (50th Percentile) £550 £593 £600
Median % change year-on-year -7.17% -1.25% -
75th Percentile £600 £698 £650
90th Percentile £668 £781 £750
UK excluding London median daily rate £481 £550 £550
% change year-on-year -12.50% - -8.33%
Number of hourly rates quoted 1 0 0
Median hourly rate £31.86 - -
UK excluding London median hourly rate £31.86 - -

All Process and Methodology Skills
UK

Penetration Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 32,744 29,791 38,561
As % of all contract IT jobs advertised in the UK 88.06% 88.28% 88.10%
Number of daily rates quoted 20,623 18,168 25,704
10th Percentile £300 £308 £306
25th Percentile £406 £413 £419
Median daily rate (50th Percentile) £500 £525 £525
Median % change year-on-year -4.76% - -4.55%
75th Percentile £615 £638 £650
90th Percentile £725 £738 £744
UK excluding London median daily rate £475 £500 £500
% change year-on-year -5.00% - -
Number of hourly rates quoted 2,071 964 1,544
10th Percentile £14.61 £15.62 £14.25
25th Percentile £17.69 £20.30 £18.93
Median hourly rate £25.15 £32.50 £43.50
Median % change year-on-year -22.62% -25.29% +24.29%
75th Percentile £51.23 £62.59 £65.00
90th Percentile £68.75 £74.31 £77.50
UK excluding London median hourly rate £23.58 £31.50 £45.00
% change year-on-year -25.16% -30.00% +40.63%

Penetration Testing
Job Vacancy Trend

Historical trend showing the proportion of contract IT job postings citing Penetration Testing relative to all contract IT jobs advertised.

Penetration Testing job vacancy trend in the UK

Penetration Testing
Daily Rate Trend

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Daily Rate Histogram

Daily rate distribution for jobs citing Penetration Testing over the 6 months to 26 December 2025.

Daily rate histogram for Penetration Testing in the UK

Penetration Testing
Hourly Rate Trend

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Top 16 Contract Job Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the UK over the 6 months to 26 December 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England +44 214 £550 -11.82% 503
UK excluding London +10 107 £481 -12.50% 499
London +32 104 £550 -12.00% 48
Work from Home +33 90 £600 -3.61% 313
South East +22 45 £492 -16.61% 111
North of England -48 23 £527 +3.38% 108
Midlands -32 17 £375 -51.61% 98
West Midlands -21 14 £375 -51.61% 54
North West -22 13 £520 +2.99% 54
South West +2 11 £400 -38.46% 71
East of England -19 6 £550 -1.12% 74
Yorkshire -36 6 £501 -8.89% 47
North East -6 4 £700 +27.27% 7
East Midlands - 3 £400 - 38
Northern Ireland - 3 - - 7
Scotland -5 2 - - 23

Penetration Testing
Co-Occurring Skills & Capabilities by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1 12 (5.06%) Confluence
2 5 (2.11%) SharePoint
Applications
1 10 (4.22%) Microsoft Office
2 9 (3.80%) Microsoft Excel
3 8 (3.38%) Microsoft PowerPoint
4 4 (1.69%) Microsoft Project
Business Applications
1 3 (1.27%) Oracle EBS
Cloud Services
1 61 (25.74%) Azure
2 48 (20.25%) AWS
3 28 (11.81%) GCP
4 11 (4.64%) Entra ID
5 8 (3.38%) Azure Sentinel
6 7 (2.95%) Azure DevOps
6 7 (2.95%) Microsoft 365
7 5 (2.11%) Cloudflare
8 4 (1.69%) OpenDNS
8 4 (1.69%) SaaS
9 3 (1.27%) OCI
10 2 (0.84%) Cloud Computing
10 2 (0.84%) OpenShift
10 2 (0.84%) Power Platform
11 1 (0.42%) Cloud Run
11 1 (0.42%) Firebase
11 1 (0.42%) GitHub
11 1 (0.42%) Google App Engine
11 1 (0.42%) npm
11 1 (0.42%) Slack
Communications & Networking
1 38 (16.03%) Firewall
2 18 (7.59%) Network Security
3 15 (6.33%) Wireless
4 9 (3.80%) TCP/IP
5 8 (3.38%) Wireshark
6 7 (2.95%) DNS
6 7 (2.95%) SSL
7 6 (2.53%) Internet
8 4 (1.69%) Intranet
8 4 (1.69%) Intrusion Detection
8 4 (1.69%) SD-WAN
8 4 (1.69%) VPN
8 4 (1.69%) Wi-Fi
9 3 (1.27%) HTTP
9 3 (1.27%) VLAN
10 2 (0.84%) HTTPS
10 2 (0.84%) WAN
11 1 (0.42%) DMZ
11 1 (0.42%) IPsec
11 1 (0.42%) Telnet
Database & Business Intelligence
1 3 (1.27%) MongoDB
2 2 (0.84%) Power BI
3 1 (0.42%) Amazon RDS
3 1 (0.42%) DB2
3 1 (0.42%) Oracle Reports
Development Applications
1 28 (11.81%) Burp Suite
2 26 (10.97%) Metasploit
3 23 (9.70%) JIRA
4 6 (2.53%) GitLab
4 6 (2.53%) Selenium
4 6 (2.53%) sqlmap
5 5 (2.11%) Jenkins
6 3 (1.27%) JMeter
6 3 (1.27%) Postman
7 2 (0.84%) Git
8 1 (0.42%) Cucumber
8 1 (0.42%) Cypress.io
8 1 (0.42%) Gatling
8 1 (0.42%) Maven
8 1 (0.42%) webpack
General
1 94 (39.66%) Social Skills
2 26 (10.97%) Analytical Skills
2 26 (10.97%) Public Sector
3 18 (7.59%) Finance
4 6 (2.53%) Banking
5 5 (2.11%) Presentation Skills
6 4 (1.69%) Inclusion and Diversity
7 3 (1.27%) Documentation Skills
7 3 (1.27%) Influencing Skills
7 3 (1.27%) Investment Banking
7 3 (1.27%) Legal
7 3 (1.27%) Manufacturing
7 3 (1.27%) Military
7 3 (1.27%) Organisational Skills
8 2 (0.84%) Automotive
8 2 (0.84%) Electronics
8 2 (0.84%) German Language
8 2 (0.84%) Law
8 2 (0.84%) Marketing
8 2 (0.84%) Telecoms
Job Titles
1 101 (42.62%) Penetration Tester
2 99 (41.77%) Tester
3 27 (11.39%) Analyst
4 20 (8.44%) Security Engineer
5 19 (8.02%) Security Analyst
6 16 (6.75%) Lead
7 13 (5.49%) Senior
8 8 (3.38%) Security Officer
8 8 (3.38%) Test Manager
9 7 (2.95%) Consultant
9 7 (2.95%) Test Engineer
10 6 (2.53%) Architect
10 6 (2.53%) IT Security Officer
10 6 (2.53%) Security Manager
11 5 (2.11%) Cybersecurity Analyst
11 5 (2.11%) Security Architect
11 5 (2.11%) Vulnerability Manager
12 4 (1.69%) Security Operations Analyst
12 4 (1.69%) Security Solutions Architect
12 4 (1.69%) SOC Analyst
Libraries, Frameworks & Software Standards
1 6 (2.53%) LDAP
2 5 (2.11%) OAuth
3 4 (1.69%) ADO
3 4 (1.69%) JWT
3 4 (1.69%) SAML
4 3 (1.27%) .NET
4 3 (1.27%) Node.js
5 2 (0.84%) Flash
5 2 (0.84%) RESTful
5 2 (0.84%) Smart Contracts
5 2 (0.84%) Spring
5 2 (0.84%) Spring Boot
6 1 (0.42%) Django
6 1 (0.42%) Flutter
6 1 (0.42%) Jest
6 1 (0.42%) JSON
6 1 (0.42%) Playwright
6 1 (0.42%) Spring Batch
6 1 (0.42%) SwiftUI
6 1 (0.42%) WireMock
Miscellaneous
1 43 (18.14%) Security Posture
2 15 (6.33%) Management Information System
3 12 (5.06%) Cloud Native
3 12 (5.06%) Mobile App
4 11 (4.64%) Cyber Threat
5 9 (3.80%) Security Operations Centre
6 8 (3.38%) Operational Technology
7 5 (2.11%) Cloud Security Posture
7 5 (2.11%) CSOC
8 4 (1.69%) Distributed Systems
9 3 (1.27%) BYOD
9 3 (1.27%) Cyber Defence
9 3 (1.27%) Data Centre
9 3 (1.27%) Video Conferencing
10 2 (0.84%) Blockchain
10 2 (0.84%) Data Protection Act
10 2 (0.84%) Greenfield Project
11 1 (0.42%) CMDB
11 1 (0.42%) Life Science
11 1 (0.42%) SCADA
Operating Systems
1 31 (13.08%) Windows
2 28 (11.81%) Linux
3 13 (5.49%) Android
4 12 (5.06%) Kali Linux
5 11 (4.64%) Unix
6 6 (2.53%) Apple iOS
7 1 (0.42%) Mac OS X
7 1 (0.42%) VMS
7 1 (0.42%) Windows Server
Processes & Methodologies
1 101 (42.62%) Cybersecurity
2 44 (18.57%) Incident Response
3 43 (18.14%) OWASP
4 41 (17.30%) Vulnerability Management
5 40 (16.88%) Test Automation
6 38 (16.03%) Cloud Security
6 38 (16.03%) Vulnerability Assessment
7 31 (13.08%) Application Security
8 30 (12.66%) Agile
8 30 (12.66%) Vulnerability Remediation
9 29 (12.24%) Threat Modelling
10 28 (11.81%) Security Testing
11 27 (11.39%) Information Security
11 27 (11.39%) Problem-Solving
12 26 (10.97%) Stakeholder Management
13 24 (10.13%) Risk Management
13 24 (10.13%) Security Operations
13 24 (10.13%) Validation
14 23 (9.70%) Red Team
14 23 (9.70%) Regulatory Compliance
Programming Languages
1 29 (12.24%) Python
2 22 (9.28%) Bash
3 19 (8.02%) PowerShell
4 8 (3.38%) Go
5 7 (2.95%) Java
6 4 (1.69%) Kusto Query Language
7 3 (1.27%) SQL
8 2 (0.84%) C-shell
8 2 (0.84%) Korn
8 2 (0.84%) Rust
8 2 (0.84%) Solidity
9 1 (0.42%) JavaScript
9 1 (0.42%) R
9 1 (0.42%) Scala
9 1 (0.42%) Shell Script
9 1 (0.42%) Swift
9 1 (0.42%) TypeScript
Qualifications
1 91 (38.40%) Security Cleared
2 79 (33.33%) SC Cleared
3 40 (16.88%) CHECK Team Member
4 35 (14.77%) CHECK Team Leader
5 32 (13.50%) CISSP
6 30 (12.66%) OSCP
7 23 (9.70%) CREST Certified
8 22 (9.28%) Degree
9 21 (8.86%) CEH
10 20 (8.44%) CISM
11 19 (8.02%) GPEN
12 11 (4.64%) CompTIA Security+
12 11 (4.64%) DV Cleared
13 6 (2.53%) Cisco Certification
13 6 (2.53%) Cyber Scheme
13 6 (2.53%) Postgraduate
13 6 (2.53%) SANS
14 5 (2.11%) MCSA
14 5 (2.11%) MCSE
14 5 (2.11%) Microsoft Certification
Quality Assurance & Compliance
1 51 (21.52%) ISO/IEC 27001
2 46 (19.41%) NIST
3 27 (11.39%) GDPR
4 18 (7.59%) PCI DSS
5 16 (6.75%) NCSC
6 13 (5.49%) QA
7 9 (3.80%) PMO
8 7 (2.95%) NIST 800
9 6 (2.53%) GRC
10 5 (2.11%) Cyber Essentials
11 4 (1.69%) Actionable Recommendations
12 3 (1.27%) California Consumer Privacy Act
12 3 (1.27%) EU AI Act
12 3 (1.27%) JSP 440
12 3 (1.27%) Sarbanes-Oxley
12 3 (1.27%) SOC 2
13 2 (0.84%) Accessibility
13 2 (0.84%) ISO 9001
14 1 (0.42%) Cyber Essentials PLUS
14 1 (0.42%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
System Software
1 21 (8.86%) Active Directory
2 11 (4.64%) Docker
3 5 (2.11%) Snort
4 4 (1.69%) Squid
5 2 (0.84%) Virtual Machines
6 1 (0.42%) Firmware
Systems Management
1 25 (10.55%) Kubernetes
1 25 (10.55%) Nessus
1 25 (10.55%) Nmap
2 5 (2.11%) CASB
2 5 (2.11%) Nexpose
3 4 (1.69%) Ansible
3 4 (1.69%) Suricata
4 2 (0.84%) Microsoft Intune
4 2 (0.84%) Terraform
5 1 (0.42%) CSIRT
5 1 (0.42%) Grafana
5 1 (0.42%) Kibana
5 1 (0.42%) QRadar
5 1 (0.42%) Single Sign-On
Vendors
1 24 (10.13%) Microsoft
2 15 (6.33%) Qualys
3 14 (5.91%) ServiceNow
4 12 (5.06%) Splunk
5 11 (4.64%) Tenable
6 10 (4.22%) CrowdStrike
7 8 (3.38%) CyberArk
8 7 (2.95%) Cisco
8 7 (2.95%) Google
8 7 (2.95%) Remedy
9 6 (2.53%) Oracle
9 6 (2.53%) Palo Alto
9 6 (2.53%) SAP
10 5 (2.11%) Zscaler
11 4 (1.69%) Blue Coat
11 4 (1.69%) Carbon Black
11 4 (1.69%) FireEye
11 4 (1.69%) Tanium
12 3 (1.27%) F5
13 2 (0.84%) LogRhythm
555 Penetration Testing jobs Nationwide