Penetration Testing Contract Job Trends

Penetration Testing
UK

The table below provides summary statistics and contractor rates for jobs requiring Penetration Testing skills. It covers contract job vacancies from the 6 months leading up to 5 February 2026, with comparisons to the same periods in the previous two years.

 6 months to
5 Feb 2026		 Same period 2025 Same period 2024
Rank 362 410 341
Rank change year-on-year +48 -69 +125
Contract jobs citing Penetration Testing 244 117 263
As % of all contract jobs in the UK 0.62% 0.38% 0.59%
As % of the Processes & Methodologies category 0.71% 0.42% 0.68%
Number of daily rates quoted 166 70 121
10th Percentile £400 £425 £450
25th Percentile £425 £550 £508
Median daily rate (50th Percentile) £537 £625 £588
Median % change year-on-year -14.12% +6.38% -2.08%
75th Percentile £600 £700 £650
90th Percentile £688 £788 £750
UK excluding London median daily rate £475 £550 £525
% change year-on-year -13.64% +4.76% -12.50%
Number of hourly rates quoted 1 0 0
Median hourly rate £31.86 - -
UK excluding London median hourly rate £31.86 - -

All Process & Methodology Skills
UK

Penetration Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 34,128 27,815 38,732
As % of all contract IT jobs advertised in the UK 87.17% 89.32% 87.09%
Number of daily rates quoted 21,612 16,932 25,487
10th Percentile £306 £306 £300
25th Percentile £406 £413 £413
Median daily rate (50th Percentile) £500 £525 £525
Median % change year-on-year -4.76% - -4.55%
75th Percentile £613 £638 £638
90th Percentile £720 £738 £738
UK excluding London median daily rate £480 £498 £500
% change year-on-year -3.52% -0.50% -
Number of hourly rates quoted 2,064 868 2,102
10th Percentile £14.51 £15.62 £13.29
25th Percentile £17.69 £21.00 £16.26
Median hourly rate £25.15 £32.50 £35.00
Median % change year-on-year -22.62% -7.14% +9.38%
75th Percentile £58.75 £62.50 £61.13
90th Percentile £70.00 £75.00 £73.75
UK excluding London median hourly rate £25.04 £31.50 £35.25
% change year-on-year -20.52% -10.64% +18.61%

Penetration Testing
Job Vacancy Trend

Historical trend showing the proportion of contract IT job postings citing Penetration Testing relative to all contract IT jobs advertised.

Penetration Testing job vacancy trend in the UK

Penetration Testing
Daily Rate Trend

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Daily Rate Histogram

Daily rate distribution for jobs citing Penetration Testing over the 6 months to 5 February 2026.

Daily rate histogram for Penetration Testing in the UK

Penetration Testing
Hourly Rate Trend

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Top 16 Contract Job Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the UK over the 6 months to 5 February 2026. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England +53 220 £525 -17.32% 96
UK excluding London +32 125 £475 -13.64% 79
Work from Home +47 109 £588 -6.00% 55
London -1 90 £600 -8.95% 31
South East +16 54 £492 -21.90% 22
Midlands -34 23 £438 -43.55% 10
North of England -48 20 £521 +4.25% 15
South West - 17 £400 - 21
West Midlands -28 14 £463 -40.32% 6
East Midlands - 9 £438 - 4
North West -23 8 £420 -6.64% 9
Yorkshire -49 8 £500 - 3
East of England -17 6 £374 -51.77% 6
North East -9 4 £700 +27.27% 3
Northern Ireland - 3 - -
Scotland +2 2 - - 5

Penetration Testing
Co-Occurring Skills & Capabilities by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1 12 (4.92%) Confluence
2 6 (2.46%) SharePoint
Applications
1 13 (5.33%) Microsoft Office
2 12 (4.92%) Microsoft Excel
2 12 (4.92%) Microsoft PowerPoint
3 4 (1.64%) Microsoft Project
Business Applications
1 3 (1.23%) Oracle EBS
Cloud Services
1 68 (27.87%) Azure
2 60 (24.59%) AWS
3 23 (9.43%) GCP
4 13 (5.33%) Entra ID
5 10 (4.10%) Microsoft 365
6 9 (3.69%) Azure DevOps
7 7 (2.87%) Azure Sentinel
7 7 (2.87%) SaaS
8 6 (2.46%) Amazon GuardDuty
9 5 (2.05%) Cloudflare
10 4 (1.64%) OpenDNS
11 3 (1.23%) AWS CloudFormation
11 3 (1.23%) AWS CloudTrail
11 3 (1.23%) AWS KMS
11 3 (1.23%) OCI
12 2 (0.82%) OpenShift
12 2 (0.82%) Power Platform
13 1 (0.41%) npm
13 1 (0.41%) OneDrive
13 1 (0.41%) Virtual Private Cloud
Communications & Networking
1 34 (13.93%) Firewall
2 21 (8.61%) Network Security
3 17 (6.97%) Wireless
4 9 (3.69%) Wireshark
5 6 (2.46%) VPN
6 5 (2.05%) Internet
6 5 (2.05%) SD-WAN
7 4 (1.64%) Cisco ASA
7 4 (1.64%) Intranet
8 3 (1.23%) BGP
8 3 (1.23%) Cisco IOS
8 3 (1.23%) HTTP
8 3 (1.23%) Intrusion Detection
8 3 (1.23%) IPsec
8 3 (1.23%) MPLS
8 3 (1.23%) MQTT
8 3 (1.23%) Reverse Proxy
8 3 (1.23%) TACACS
8 3 (1.23%) Wi-Fi
9 2 (0.82%) VLAN
Database & Business Intelligence
1 3 (1.23%) MongoDB
2 2 (0.82%) Power BI
3 1 (0.41%) Amazon RDS
3 1 (0.41%) DB2
3 1 (0.41%) Oracle Reports
Development Applications
1 35 (14.34%) Burp Suite
2 32 (13.11%) Metasploit
3 21 (8.61%) JIRA
4 7 (2.87%) Selenium
5 6 (2.46%) GitLab
5 6 (2.46%) sqlmap
6 5 (2.05%) Jenkins
7 3 (1.23%) JMeter
7 3 (1.23%) Postman
8 2 (0.82%) Git
9 1 (0.41%) Cucumber
9 1 (0.41%) Cypress.io
9 1 (0.41%) Gatling
9 1 (0.41%) Maven
9 1 (0.41%) webpack
General
1 108 (44.26%) Social Skills
2 34 (13.93%) Public Sector
3 23 (9.43%) Analytical Skills
4 15 (6.15%) Finance
5 6 (2.46%) Banking
5 6 (2.46%) Documentation Skills
6 5 (2.05%) Aerospace
6 5 (2.05%) Legal
6 5 (2.05%) Manufacturing
6 5 (2.05%) Presentation Skills
7 4 (1.64%) Inclusion and Diversity
7 4 (1.64%) Organisational Skills
7 4 (1.64%) Telecoms
8 3 (1.23%) Law
8 3 (1.23%) Military
9 2 (0.82%) Arabic Language
9 2 (0.82%) Automotive
9 2 (0.82%) Electronics
9 2 (0.82%) Investment Banking
9 2 (0.82%) Marketing
Job Titles
1 101 (41.39%) Penetration Tester
2 100 (40.98%) Tester
3 21 (8.61%) Security Engineer
4 19 (7.79%) Analyst
5 17 (6.97%) Lead
6 15 (6.15%) Senior
7 13 (5.33%) Security Analyst
8 12 (4.92%) Architect
9 10 (4.10%) Security Architect
10 9 (3.69%) Consultant
10 9 (3.69%) Test Manager
11 8 (3.28%) Security Officer
11 8 (3.28%) Test Engineer
12 7 (2.87%) Security Manager
13 6 (2.46%) Developer
13 6 (2.46%) IT Security Officer
13 6 (2.46%) Security Consultant
13 6 (2.46%) Security Tester
13 6 (2.46%) Solutions Architect
14 5 (2.05%) Security Solutions Architect
Libraries, Frameworks & Software Standards
1 7 (2.87%) OAuth
1 7 (2.87%) SAML
2 6 (2.46%) ADO
3 4 (1.64%) JWT
3 4 (1.64%) Node.js
4 3 (1.23%) .NET
4 3 (1.23%) LDAP
4 3 (1.23%) OAuth2
4 3 (1.23%) OpenID
4 3 (1.23%) Spring Boot
5 2 (0.82%) Flash
5 2 (0.82%) Jest
5 2 (0.82%) RESTful
5 2 (0.82%) Smart Contracts
5 2 (0.82%) Spring
6 1 (0.41%) Playwright
6 1 (0.41%) React
6 1 (0.41%) Spring Batch
6 1 (0.41%) SwiftUI
6 1 (0.41%) WireMock
Miscellaneous
1 46 (18.85%) Security Posture
2 13 (5.33%) Cloud Native
2 13 (5.33%) Management Information System
2 13 (5.33%) Mobile App
2 13 (5.33%) Operational Technology
3 10 (4.10%) Security Operations Centre
4 9 (3.69%) Cyber Threat
5 8 (3.28%) Data Centre
6 6 (2.46%) CSOC
7 4 (1.64%) Distributed Systems
7 4 (1.64%) PKI
7 4 (1.64%) Product Ownership
8 3 (1.23%) BYOD
8 3 (1.23%) Cyber Defence
8 3 (1.23%) Onboarding
8 3 (1.23%) Video Conferencing
9 2 (0.82%) Blockchain
9 2 (0.82%) Data Protection Act
10 1 (0.41%) Life Science
10 1 (0.41%) SCADA
Operating Systems
1 33 (13.52%) Windows
2 27 (11.07%) Linux
3 15 (6.15%) Android
4 13 (5.33%) Kali Linux
5 8 (3.28%) Apple iOS
6 5 (2.05%) Unix
7 3 (1.23%) Ubuntu
Processes & Methodologies
1 114 (46.72%) Cybersecurity
2 50 (20.49%) OWASP
3 45 (18.44%) Test Automation
4 38 (15.57%) Security Testing
5 36 (14.75%) Cloud Security
5 36 (14.75%) Incident Response
6 35 (14.34%) Agile
7 34 (13.93%) Application Security
7 34 (13.93%) Vulnerability Management
8 33 (13.52%) Threat Modelling
9 29 (11.89%) Information Security
9 29 (11.89%) Regulatory Compliance
10 28 (11.48%) Red Team
11 27 (11.07%) Validation
12 26 (10.66%) MITRE ATT&CK
12 26 (10.66%) Risk Management
12 26 (10.66%) Security Operations
13 24 (9.84%) Problem-Solving
13 24 (9.84%) Vulnerability Assessment
14 23 (9.43%) SDLC
Programming Languages
1 31 (12.70%) Python
2 21 (8.61%) Bash
3 18 (7.38%) PowerShell
4 8 (3.28%) Java
5 7 (2.87%) Go
6 5 (2.05%) Kusto Query Language
7 3 (1.23%) Bicep
7 3 (1.23%) PHP
7 3 (1.23%) SQL
7 3 (1.23%) Swift
8 2 (0.82%) C-shell
8 2 (0.82%) JavaScript
8 2 (0.82%) Korn
8 2 (0.82%) Kotlin
8 2 (0.82%) Rust
8 2 (0.82%) Solidity
9 1 (0.41%) Scala
9 1 (0.41%) TypeScript
Qualifications
1 104 (42.62%) Security Cleared
2 88 (36.07%) SC Cleared
3 48 (19.67%) CHECK Team Member
4 37 (15.16%) CHECK Team Leader
5 31 (12.70%) CREST Certified
6 29 (11.89%) OSCP
7 26 (10.66%) CISSP
7 26 (10.66%) Degree
8 20 (8.20%) CEH
8 20 (8.20%) CISM
8 20 (8.20%) DV Cleared
8 20 (8.20%) GPEN
9 12 (4.92%) Cyber Scheme
10 10 (4.10%) Postgraduate
11 9 (3.69%) SANS
12 6 (2.46%) CompTIA Security+
13 5 (2.05%) AWS Certification
13 5 (2.05%) BPSS Clearance
13 5 (2.05%) OSCE
14 4 (1.64%) GWAPT
Quality Assurance & Compliance
1 56 (22.95%) ISO/IEC 27001
2 46 (18.85%) NIST
3 33 (13.52%) GDPR
4 25 (10.25%) NCSC
4 25 (10.25%) PCI DSS
5 15 (6.15%) QA
6 13 (5.33%) PMO
7 12 (4.92%) GRC
8 9 (3.69%) Cyber Essentials
8 9 (3.69%) NIST 800
9 5 (2.05%) SOC 2
10 4 (1.64%) Cyber Essentials PLUS
10 4 (1.64%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
11 3 (1.23%) Actionable Recommendations
11 3 (1.23%) EU AI Act
11 3 (1.23%) JSP 440
11 3 (1.23%) Sarbanes-Oxley
12 2 (0.82%) ISO 9001
13 1 (0.41%) Accessibility
13 1 (0.41%) California Consumer Privacy Act
System Software
1 14 (5.74%) Active Directory
2 11 (4.51%) Docker
3 5 (2.05%) Snort
4 4 (1.64%) Squid
5 3 (1.23%) VMware ESXi
5 3 (1.23%) VMware Infrastructure
6 1 (0.41%) Virtual Machines
6 1 (0.41%) vSphere
Systems Management
1 32 (13.11%) Nmap
2 30 (12.30%) Kubernetes
3 18 (7.38%) Nessus
4 5 (2.05%) Nexpose
4 5 (2.05%) Terraform
5 4 (1.64%) Ansible
5 4 (1.64%) Suricata
6 3 (1.23%) SCOM
6 3 (1.23%) Single Sign-On
6 3 (1.23%) vCenter Server
7 2 (0.82%) CSIRT
7 2 (0.82%) Microsoft Intune
8 1 (0.41%) Grafana
8 1 (0.41%) Kibana
8 1 (0.41%) QRadar
Vendors
1 26 (10.66%) Microsoft
2 11 (4.51%) ServiceNow
3 10 (4.10%) Splunk
4 9 (3.69%) Cisco
5 7 (2.87%) Qualys
6 6 (2.46%) CrowdStrike
6 6 (2.46%) Oracle
6 6 (2.46%) SAP
7 5 (2.05%) Palo Alto
8 4 (1.64%) Blue Coat
8 4 (1.64%) Carbon Black
8 4 (1.64%) FireEye
8 4 (1.64%) Google
8 4 (1.64%) Zscaler
9 3 (1.23%) BiZZdesign
9 3 (1.23%) Citrix
9 3 (1.23%) VMware
10 2 (0.82%) CyberArk
10 2 (0.82%) LogRhythm
10 2 (0.82%) Remedy
109 Penetration Testing jobs Nationwide