Penetration Testing Contract Job Trends

Penetration Testing
UK

The table below provides summary statistics and contractor rates for jobs requiring Penetration Testing skills. It covers contract job vacancies from the 6 months leading up to 11 June 2026, with comparisons to the same periods in the previous two years.

 6 months to
11 Jun 2026		 Same period 2025 Same period 2024
Rank 460 367 364
Rank change year-on-year -93 -3 +83
Contract jobs citing Penetration Testing 183 160 236
As % of all contract jobs in the UK 0.37% 0.54% 0.54%
As % of the Processes & Methodologies category 0.43% 0.60% 0.63%
Number of daily rates quoted 157 96 171
10th Percentile £400 £425 £425
25th Percentile £469 £491 £502
Median daily rate (50th Percentile) £558 £550 £550
Median % change year-on-year +1.36% - -4.35%
75th Percentile £688 £678 £670
90th Percentile £750 £753 £738
UK excluding London median daily rate £538 £534 £533
% change year-on-year +0.66% +0.28% -3.18%
Number of hourly rates quoted 0 2 1
10th Percentile - - -
25th Percentile - £51.25 £81.75
Median hourly rate - £52.50 £83.50
Median % change year-on-year - -37.13% +4.38%
75th Percentile - £53.75 £85.25
90th Percentile - - -
UK excluding London median hourly rate - £52.50 £83.50
% change year-on-year - -37.13% -

All Process & Methodology Skills
UK

Penetration Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 42,291 26,731 37,187
As % of all contract IT jobs advertised in the UK 84.76% 91.01% 85.22%
Number of daily rates quoted 26,385 16,984 23,772
10th Percentile £325 £300 £300
25th Percentile £413 £406 £413
Median daily rate (50th Percentile) £513 £508 £525
Median % change year-on-year +0.99% -3.33% -4.55%
75th Percentile £619 £625 £638
90th Percentile £725 £738 £750
UK excluding London median daily rate £500 £475 £500
% change year-on-year +5.26% -5.00% -
Number of hourly rates quoted 2,541 1,182 2,587
10th Percentile £14.68 £14.20 £12.75
25th Percentile £20.00 £17.87 £16.00
Median hourly rate £43.96 £27.28 £36.50
Median % change year-on-year +61.14% -25.26% +1.39%
75th Percentile £68.00 £56.00 £61.16
90th Percentile £81.25 £73.75 £72.50
UK excluding London median hourly rate £45.00 £25.15 £38.12
% change year-on-year +78.93% -34.02% +8.91%

Penetration Testing
Job Vacancy Trend

Historical trend showing the proportion of contract IT job postings citing Penetration Testing relative to all contract IT jobs advertised.

Penetration Testing job vacancy trend in the UK

Penetration Testing
Daily Rate Trend

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Daily Rate Histogram

Daily rate distribution for jobs citing Penetration Testing over the 6 months to 11 June 2026.

Daily rate histogram for Penetration Testing in the UK

Penetration Testing
Hourly Rate Trend

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Top 14 Contract Job Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the UK over the 6 months to 11 June 2026. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England -80 161 £550 -4.35% 88
UK excluding London -61 110 £538 +0.66% 70
Work from Home -42 65 £550 -4.35% 42
London -89 53 £550 -6.38% 41
North of England -55 34 £558 +4.94% 12
South East -51 32 £563 -16.67% 28
North West -26 26 £613 +6.52% 2
Midlands -61 19 £625 +66.67% 6
South West -9 18 £525 - 12
West Midlands -53 11 £700 +69.70% 5
East Midlands -29 8 £447 +19.20% 1
Yorkshire -47 8 £500 -5.88% 9
Scotland -21 7 £425 -19.12% 7
East of England -25 1 £198 -73.22%

Penetration Testing
Co-Occurring Skills & Capabilities by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1 10 (5.46%) Confluence
2 2 (1.09%) SharePoint
3 1 (0.55%) Anypoint
3 1 (0.55%) ArcGIS
3 1 (0.55%) Camunda
3 1 (0.55%) Moodle
3 1 (0.55%) Mule
3 1 (0.55%) Oracle Application Server
3 1 (0.55%) Strapi
Applications
1 14 (7.65%) Microsoft Office
2 7 (3.83%) Microsoft Excel
2 7 (3.83%) Microsoft PowerPoint
3 1 (0.55%) Adobe XD
Business Applications
1 3 (1.64%) Oracle ERP
2 2 (1.09%) Oracle EBS
2 2 (1.09%) SAP GRC
2 2 (1.09%) SAP S/4HANA
3 1 (0.55%) Dynamics GP
3 1 (0.55%) Sparx Enterprise Architect
Cloud Services
1 69 (37.70%) Azure
2 58 (31.69%) AWS
3 13 (7.10%) SaaS
4 12 (6.56%) Microsoft 365
5 11 (6.01%) Entra ID
6 8 (4.37%) OCI
7 7 (3.83%) Amazon GuardDuty
8 6 (3.28%) Azure DevOps
9 4 (2.19%) Azure AI
9 4 (2.19%) GCP
9 4 (2.19%) IBM Watson
9 4 (2.19%) Vertex AI
10 3 (1.64%) AWS CloudFormation
10 3 (1.64%) AWS CloudTrail
10 3 (1.64%) AWS KMS
10 3 (1.64%) Azure Sentinel
10 3 (1.64%) Power Platform
11 2 (1.09%) Azure Stack
11 2 (1.09%) GitHub
12 1 (0.55%) Serverless
Communications & Networking
1 29 (15.85%) Firewall
2 25 (13.66%) Network Security
3 9 (4.92%) Wireless
4 8 (4.37%) HTTP
5 7 (3.83%) VPN
6 6 (3.28%) DNS
6 6 (3.28%) TCP/IP
7 5 (2.73%) BGP
7 5 (2.73%) SSL
8 4 (2.19%) Cisco ASA
8 4 (2.19%) Cisco IOS
8 4 (2.19%) Intrusion Detection
8 4 (2.19%) IPsec
8 4 (2.19%) MPLS
8 4 (2.19%) MQTT
8 4 (2.19%) SD-WAN
8 4 (2.19%) TACACS
9 3 (1.64%) Reverse Proxy
10 2 (1.09%) Internet
10 2 (1.09%) WAN
Database & Business Intelligence
1 5 (2.73%) Oracle Reports
2 1 (0.55%) GIS
2 1 (0.55%) SAP HANA
2 1 (0.55%) SQL Server
Development Applications
1 15 (8.20%) JIRA
2 12 (6.56%) Burp Suite
3 10 (5.46%) Metasploit
4 2 (1.09%) GitLab
4 2 (1.09%) Selenium
4 2 (1.09%) SoapUI
5 1 (0.55%) fastlane
5 1 (0.55%) Git
5 1 (0.55%) Jenkins
5 1 (0.55%) JMeter
5 1 (0.55%) LoadRunner
5 1 (0.55%) Postman
5 1 (0.55%) Xcode
5 1 (0.55%) XCTest
5 1 (0.55%) XCUITest
General
1 65 (35.52%) Social Skills
2 32 (17.49%) Public Sector
3 15 (8.20%) Analytical Skills
3 15 (8.20%) Finance
4 8 (4.37%) Documentation Skills
5 5 (2.73%) Aerospace
5 5 (2.73%) Legal
6 4 (2.19%) Banking
7 3 (1.64%) Inclusion and Diversity
7 3 (1.64%) Local Government
7 3 (1.64%) Manufacturing
7 3 (1.64%) Organisational Skills
7 3 (1.64%) Retail
8 2 (1.09%) Arabic Language
8 2 (1.09%) Aviation
8 2 (1.09%) Law
8 2 (1.09%) Telecoms
9 1 (0.55%) Police
9 1 (0.55%) Presentation Skills
Job Titles
1 33 (18.03%) Tester
2 32 (17.49%) Consultant
3 30 (16.39%) Penetration Tester
4 25 (13.66%) Security Consultant
5 24 (13.11%) Security Engineer
6 21 (11.48%) Architect
7 17 (9.29%) Security Architect
8 15 (8.20%) Lead
9 12 (6.56%) Senior
10 11 (6.01%) Analyst
11 9 (4.92%) Solutions Architect
12 8 (4.37%) Developer
13 7 (3.83%) Cybersecurity Architect
13 7 (3.83%) Security Analyst
14 6 (3.28%) Cloud Engineer
14 6 (3.28%) Security Officer
14 6 (3.28%) Security Specialist
14 6 (3.28%) Senior Security Engineer
15 5 (2.73%) Infrastructure Engineer
15 5 (2.73%) Security Tester
Libraries, Frameworks & Software Standards
1 12 (6.56%) LDAP
2 6 (3.28%) LangChain
2 6 (3.28%) OAuth
2 6 (3.28%) OAuth2
2 6 (3.28%) OpenID
2 6 (3.28%) PyTorch
2 6 (3.28%) SAML
2 6 (3.28%) scikit-learn
3 4 (2.19%) ADO
3 4 (2.19%) HTML
3 4 (2.19%) REST
4 3 (1.64%) .NET
4 3 (1.64%) Node.js
5 2 (1.09%) Jest
5 2 (1.09%) React
5 2 (1.09%) SAP Fiori
5 2 (1.09%) Spring Boot
6 1 (0.55%) Microsoft Graph
6 1 (0.55%) RAML
6 1 (0.55%) Vue
Miscellaneous
1 43 (23.50%) Security Posture
2 15 (8.20%) Operational Technology
3 14 (7.65%) Management Information System
4 13 (7.10%) Cloud Native
5 10 (5.46%) Security Operations Centre
6 9 (4.92%) Mobile App
7 8 (4.37%) PKI
8 7 (3.83%) BYOD
9 6 (3.28%) Data Centre
10 5 (2.73%) Cloud Security Posture
10 5 (2.73%) CSOC
10 5 (2.73%) Cyber Threat
10 5 (2.73%) Onboarding
11 3 (1.64%) Product Ownership
12 2 (1.09%) Analytical Mindset
12 2 (1.09%) CESG
12 2 (1.09%) Cyber Security Posture
12 2 (1.09%) Enterprise Cloud
12 2 (1.09%) Hybrid Cloud
12 2 (1.09%) Legacy Systems
Operating Systems
1 41 (22.40%) Windows
2 29 (15.85%) Linux
3 6 (3.28%) Android
3 6 (3.28%) Unix
4 5 (2.73%) Windows Server
5 4 (2.19%) Apple iOS
5 4 (2.19%) Ubuntu
6 2 (1.09%) Kali Linux
6 2 (1.09%) Red Hat Enterprise Linux
Processes & Methodologies
1 90 (49.18%) Cybersecurity
2 45 (24.59%) Cloud Security
3 43 (23.50%) Vulnerability Management
4 38 (20.77%) Application Security
5 37 (20.22%) Information Security
6 36 (19.67%) Security Testing
7 34 (18.58%) Security Operations
8 32 (17.49%) Threat Modelling
9 29 (15.85%) Security Architecture
10 27 (14.75%) SDLC
11 26 (14.21%) Agile
11 26 (14.21%) Continuous Improvement
11 26 (14.21%) DevSecOps
11 26 (14.21%) Risk Management
12 25 (13.66%) OWASP
13 24 (13.11%) CI/CD
13 24 (13.11%) DevOps
13 24 (13.11%) SIEM
14 23 (12.57%) Incident Response
14 23 (12.57%) Vulnerability Assessment
Programming Languages
1 18 (9.84%) Python
2 7 (3.83%) Java
2 7 (3.83%) JavaScript
3 6 (3.28%) Search Processing Language
4 5 (2.73%) PHP
5 4 (2.19%) Kusto Query Language
5 4 (2.19%) PowerShell
6 3 (1.64%) Bicep
6 3 (1.64%) Swift
7 2 (1.09%) Kotlin
7 2 (1.09%) SQL
8 1 (0.55%) Bash
8 1 (0.55%) C#
8 1 (0.55%) DataWeave
8 1 (0.55%) Go
8 1 (0.55%) Groovy
8 1 (0.55%) PL/SQL
8 1 (0.55%) T-SQL
Qualifications
1 59 (32.24%) Security Cleared
2 42 (22.95%) CISSP
3 41 (22.40%) SC Cleared
4 29 (15.85%) Degree
5 23 (12.57%) DV Cleared
6 21 (11.48%) CISM
7 18 (9.84%) CompTIA Security+
8 17 (9.29%) CREST Certified
9 16 (8.74%) CHECK Team Member
10 10 (5.46%) AWS Certification
11 9 (4.92%) Cyber Scheme
12 8 (4.37%) BPSS Clearance
12 8 (4.37%) CHECK Team Leader
12 8 (4.37%) MCSE
12 8 (4.37%) Microsoft Certification
13 7 (3.83%) CEH
13 7 (3.83%) Cisco Certification
13 7 (3.83%) CompTIA CySA+
13 7 (3.83%) GSEC
13 7 (3.83%) OSCP
Quality Assurance & Compliance
1 42 (22.95%) ISO/IEC 27001
2 35 (19.13%) NIST
3 31 (16.94%) NCSC
4 29 (15.85%) GDPR
4 29 (15.85%) PCI DSS
5 14 (7.65%) GRC
6 10 (5.46%) Cyber Essentials
7 9 (4.92%) QA
8 8 (4.37%) NIST 800
9 7 (3.83%) PMO
9 7 (3.83%) Sarbanes-Oxley
10 6 (3.28%) Cyber Essentials PLUS
11 5 (2.73%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
12 3 (1.64%) Accessibility
12 3 (1.64%) SLA
12 3 (1.64%) SOC 2
13 2 (1.09%) Def Stans
13 2 (1.09%) Government Security Classifications
13 2 (1.09%) HMG Security Policy Framework
14 1 (0.55%) JSP 440
System Software
1 15 (8.20%) Active Directory
2 4 (2.19%) Docker
2 4 (2.19%) Snort
2 4 (2.19%) VMware ESXi
2 4 (2.19%) VMware Infrastructure
3 3 (1.64%) Hyper-V
4 2 (1.09%) Virtual Machines
5 1 (0.55%) Virtual Desktop
5 1 (0.55%) vSphere
Systems Management
1 17 (9.29%) Kubernetes
2 11 (6.01%) Nmap
3 7 (3.83%) Nessus
3 7 (3.83%) Single Sign-On
4 5 (2.73%) CASB
4 5 (2.73%) Microsoft Intune
4 5 (2.73%) Terraform
5 4 (2.19%) CSIRT
5 4 (2.19%) vCenter Server
6 3 (1.64%) Active Directory Federation Services
6 3 (1.64%) Oracle Identity Management
6 3 (1.64%) Oracle Identity Manager
6 3 (1.64%) SCCM
6 3 (1.64%) SCOM
Vendors
1 37 (20.22%) Microsoft
2 20 (10.93%) Splunk
3 11 (6.01%) Oracle
4 10 (5.46%) Tenable
5 7 (3.83%) CyberArk
6 6 (3.28%) Cisco
7 5 (2.73%) CrowdStrike
7 5 (2.73%) Remedy
8 4 (2.19%) BiZZdesign
8 4 (2.19%) Google
8 4 (2.19%) IBM
8 4 (2.19%) VMware
9 3 (1.64%) Citrix
9 3 (1.64%) OutSystems
9 3 (1.64%) ServiceNow
10 2 (1.09%) Ivanti
10 2 (1.09%) Palo Alto
10 2 (1.09%) Rapid7
10 2 (1.09%) SAP
10 2 (1.09%) Veracode
112 Penetration Testing jobs Nationwide