Penetration Testing Contract Job Trends

Penetration Testing
UK

The table below provides summary statistics and contractor rates for jobs requiring Penetration Testing skills. It covers contract job vacancies from the 6 months leading up to 11 December 2025, with comparisons to the same periods in the previous two years.

 6 months to
11 Dec 2025		 Same period 2024 Same period 2023
Rank 346 398 346
Rank change year-on-year +52 -52 +176
Contract jobs citing Penetration Testing 243 146 285
As % of all contract jobs in the UK 0.67% 0.41% 0.63%
As % of the Processes & Methodologies category 0.75% 0.47% 0.71%
Number of daily rates quoted 169 93 133
10th Percentile £400 £450 £435
25th Percentile £450 £540 £500
Median daily rate (50th Percentile) £550 £600 £563
Median % change year-on-year -8.33% +6.67% -6.25%
75th Percentile £600 £700 £650
90th Percentile £675 £775 £748
UK excluding London median daily rate £481 £550 £525
% change year-on-year -12.50% +4.76% -12.50%
Number of hourly rates quoted 1 0 0
Median hourly rate £31.86 - -
UK excluding London median hourly rate £31.86 - -

All Process and Methodology Skills
UK

Penetration Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 32,247 31,236 40,271
As % of all contract IT jobs advertised in the UK 88.88% 87.47% 88.55%
Number of daily rates quoted 20,285 18,990 26,947
10th Percentile £300 £308 £310
25th Percentile £405 £413 £425
Median daily rate (50th Percentile) £500 £525 £533
Median % change year-on-year -4.76% -1.50% -3.09%
75th Percentile £619 £638 £650
90th Percentile £725 £738 £745
UK excluding London median daily rate £475 £500 £500
% change year-on-year -5.00% - -
Number of hourly rates quoted 2,090 1,084 1,559
10th Percentile £14.50 £15.25 £14.36
25th Percentile £17.50 £20.19 £18.94
Median hourly rate £25.13 £33.00 £42.50
Median % change year-on-year -23.86% -22.35% +21.43%
75th Percentile £45.46 £63.75 £65.00
90th Percentile £67.50 £74.00 £77.50
UK excluding London median hourly rate £22.63 £32.50 £42.50
% change year-on-year -30.37% -23.53% +30.77%

Penetration Testing
Job Vacancy Trend

Historical trend showing the proportion of contract IT job postings citing Penetration Testing relative to all contract IT jobs advertised.

Penetration Testing job vacancy trend in the UK

Penetration Testing
Daily Rate Trend

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Daily Rate Histogram

Daily rate distribution for jobs citing Penetration Testing over the 6 months to 11 December 2025.

Daily rate histogram for Penetration Testing in the UK

Penetration Testing
Hourly Rate Trend

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Top 16 Contract Job Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the UK over the 6 months to 11 December 2025. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England +55 221 £550 -12.00% 191
London +33 114 £550 -13.04% 44
UK excluding London +17 104 £481 -12.50% 175
Work from Home +26 91 £600 -3.61% 134
South East +17 42 £484 -18.05% 38
North of England -28 25 £525 -0.94% 38
North West -8 15 £508 -0.35% 21
Midlands -20 15 £400 -48.39% 35
South West -4 11 £425 -29.17% 34
West Midlands -18 11 £550 -29.03% 26
East of England -10 6 £550 +33.33% 15
Yorkshire -37 6 £501 -8.89% 15
North East 0 4 £700 +27.27% 2
East Midlands - 4 £375 - 8
Northern Ireland - 3 - - 2
Scotland -8 2 - - 9

Penetration Testing
Co-Occurring Skills & Capabilities by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1 9 (3.70%) Confluence
2 5 (2.06%) SharePoint
3 1 (0.41%) IBM Transformation Extender
3 1 (0.41%) SAS
Applications
1 9 (3.70%) Microsoft Office
2 8 (3.29%) Microsoft Excel
3 7 (2.88%) Microsoft PowerPoint
4 4 (1.65%) Microsoft Project
5 1 (0.41%) GNU Octave
Business Applications
1 3 (1.23%) Oracle EBS
Cloud Services
1 67 (27.57%) Azure
2 53 (21.81%) AWS
3 35 (14.40%) GCP
4 10 (4.12%) Azure Sentinel
4 10 (4.12%) Entra ID
5 8 (3.29%) Microsoft 365
6 7 (2.88%) GitHub
7 6 (2.47%) Cloudflare
8 5 (2.06%) Azure DevOps
8 5 (2.06%) OpenDNS
9 4 (1.65%) OCI
10 3 (1.23%) SaaS
11 2 (0.82%) Cloud Computing
11 2 (0.82%) OpenShift
11 2 (0.82%) Power Platform
12 1 (0.41%) Cloud Run
12 1 (0.41%) Firebase
12 1 (0.41%) GitHub Actions
12 1 (0.41%) npm
12 1 (0.41%) Slack
Communications & Networking
1 39 (16.05%) Firewall
2 18 (7.41%) Network Security
3 14 (5.76%) Wireless
4 9 (3.70%) TCP/IP
5 8 (3.29%) Internet
5 8 (3.29%) Wireshark
6 7 (2.88%) DNS
6 7 (2.88%) SSL
7 6 (2.47%) Intrusion Detection
8 4 (1.65%) Intranet
8 4 (1.65%) VPN
8 4 (1.65%) Wi-Fi
9 3 (1.23%) HTTP
9 3 (1.23%) SD-WAN
9 3 (1.23%) VLAN
10 2 (0.82%) HTTPS
10 2 (0.82%) WAN
11 1 (0.41%) LAN
11 1 (0.41%) SNMP
11 1 (0.41%) WLAN
Database & Business Intelligence
1 3 (1.23%) MongoDB
2 2 (0.82%) Power BI
3 1 (0.41%) Amazon RDS
3 1 (0.41%) DB2
3 1 (0.41%) Oracle Reports
Development Applications
1 32 (13.17%) Burp Suite
2 30 (12.35%) Metasploit
3 20 (8.23%) JIRA
4 7 (2.88%) GitLab
5 6 (2.47%) Jenkins
5 6 (2.47%) Selenium
5 6 (2.47%) SonarQube
5 6 (2.47%) sqlmap
6 3 (1.23%) JMeter
6 3 (1.23%) Postman
7 2 (0.82%) Git
8 1 (0.41%) Cucumber
8 1 (0.41%) Cypress.io
8 1 (0.41%) Gatling
8 1 (0.41%) Maven
8 1 (0.41%) webpack
General
1 97 (39.92%) Social Skills
2 30 (12.35%) Public Sector
3 27 (11.11%) Analytical Skills
4 19 (7.82%) Finance
5 9 (3.70%) Banking
6 5 (2.06%) Military
7 4 (1.65%) Investment Banking
7 4 (1.65%) Presentation Skills
8 3 (1.23%) German Language
8 3 (1.23%) Inclusion and Diversity
8 3 (1.23%) Organisational Skills
9 2 (0.82%) Automotive
9 2 (0.82%) Documentation Skills
9 2 (0.82%) Influencing Skills
9 2 (0.82%) Legal
9 2 (0.82%) Manufacturing
9 2 (0.82%) Telecoms
10 1 (0.41%) Electronics
10 1 (0.41%) Financial Institution
10 1 (0.41%) Law
Job Titles
1 96 (39.51%) Penetration Tester
2 94 (38.68%) Tester
3 32 (13.17%) Analyst
4 28 (11.52%) Security Engineer
5 23 (9.47%) Security Analyst
6 17 (7.00%) Lead
7 14 (5.76%) Senior
8 10 (4.12%) Cybersecurity Engineer
9 8 (3.29%) Security Officer
9 8 (3.29%) Test Engineer
10 7 (2.88%) Consultant
10 7 (2.88%) Cybersecurity Analyst
10 7 (2.88%) Network Engineer
11 6 (2.47%) Architect
11 6 (2.47%) IT Security Officer
11 6 (2.47%) Network Security Engineer
11 6 (2.47%) Security Manager
12 5 (2.06%) Operations Analyst
12 5 (2.06%) Security Architect
12 5 (2.06%) Security Operations Analyst
Libraries, Frameworks & Software Standards
1 6 (2.47%) LDAP
2 4 (1.65%) OAuth
3 3 (1.23%) .NET
3 3 (1.23%) JWT
3 3 (1.23%) Node.js
3 3 (1.23%) SAML
4 2 (0.82%) ADO
4 2 (0.82%) Flash
4 2 (0.82%) RESTful
4 2 (0.82%) Smart Contracts
4 2 (0.82%) Spring
4 2 (0.82%) Spring Boot
5 1 (0.41%) Django
5 1 (0.41%) Flutter
5 1 (0.41%) Jest
5 1 (0.41%) JSON
5 1 (0.41%) Playwright
5 1 (0.41%) PyTorch
5 1 (0.41%) TensorFlow
5 1 (0.41%) YAML
Miscellaneous
1 40 (16.46%) Security Posture
2 16 (6.58%) Management Information System
3 13 (5.35%) Cloud Native
3 13 (5.35%) Cyber Threat
4 12 (4.94%) Mobile App
5 9 (3.70%) Security Operations Centre
6 6 (2.47%) Cloud Security Posture
7 5 (2.06%) CSOC
7 5 (2.06%) Operational Technology
8 3 (1.23%) BYOD
8 3 (1.23%) Cyber Defence
8 3 (1.23%) Data Protection Act
8 3 (1.23%) Distributed Systems
8 3 (1.23%) Greenfield Project
8 3 (1.23%) Video Conferencing
9 2 (0.82%) Blockchain
9 2 (0.82%) CMDB
9 2 (0.82%) Cyber Kill Chain
9 2 (0.82%) Data Centre
10 1 (0.41%) Renewable Energy
Operating Systems
1 30 (12.35%) Linux
2 29 (11.93%) Windows
3 12 (4.94%) Kali Linux
3 12 (4.94%) Unix
4 11 (4.53%) Android
5 6 (2.47%) Apple iOS
6 1 (0.41%) Mac OS X
6 1 (0.41%) VMS
6 1 (0.41%) Windows Server
Processes & Methodologies
1 109 (44.86%) Cybersecurity
2 49 (20.16%) Incident Response
3 47 (19.34%) OWASP
4 45 (18.52%) Vulnerability Assessment
5 44 (18.11%) Vulnerability Management
6 43 (17.70%) Cloud Security
7 40 (16.46%) Test Automation
8 36 (14.81%) Application Security
8 36 (14.81%) Vulnerability Remediation
9 33 (13.58%) Threat Modelling
10 31 (12.76%) Security Testing
11 30 (12.35%) Problem-Solving
12 29 (11.93%) CI/CD
13 27 (11.11%) DevSecOps
13 27 (11.11%) Information Security
13 27 (11.11%) Security Operations
13 27 (11.11%) Stakeholder Management
14 26 (10.70%) Agile
15 25 (10.29%) MITRE ATT&CK
16 24 (9.88%) Red Team
Programming Languages
1 37 (15.23%) Python
2 30 (12.35%) Bash
3 20 (8.23%) PowerShell
4 8 (3.29%) Java
5 6 (2.47%) Go
6 5 (2.06%) Kusto Query Language
7 3 (1.23%) SQL
8 2 (0.82%) C-shell
8 2 (0.82%) JavaScript
8 2 (0.82%) Korn
8 2 (0.82%) Rust
8 2 (0.82%) Shell Script
8 2 (0.82%) Solidity
9 1 (0.41%) C
9 1 (0.41%) C#
9 1 (0.41%) C++
9 1 (0.41%) R
9 1 (0.41%) Scala
9 1 (0.41%) Swift
9 1 (0.41%) TypeScript
Qualifications
1 94 (38.68%) Security Cleared
2 81 (33.33%) SC Cleared
3 43 (17.70%) CHECK Team Member
4 35 (14.40%) CHECK Team Leader
5 34 (13.99%) OSCP
6 32 (13.17%) CISSP
7 26 (10.70%) CREST Certified
8 22 (9.05%) CEH
9 21 (8.64%) Degree
10 20 (8.23%) CISM
11 18 (7.41%) GPEN
12 12 (4.94%) DV Cleared
13 11 (4.53%) CompTIA Security+
14 8 (3.29%) Cisco Certification
15 6 (2.47%) SANS
16 5 (2.06%) Cyber Scheme
16 5 (2.06%) MCSE
16 5 (2.06%) Microsoft Certification
16 5 (2.06%) Postgraduate
16 5 (2.06%) Tigerscheme
Quality Assurance & Compliance
1 50 (20.58%) ISO/IEC 27001
2 46 (18.93%) NIST
3 29 (11.93%) GDPR
4 18 (7.41%) NCSC
4 18 (7.41%) PCI DSS
5 13 (5.35%) QA
6 8 (3.29%) PMO
7 7 (2.88%) Cyber Essentials
7 7 (2.88%) NIST 800
8 6 (2.47%) GRC
9 4 (1.65%) Actionable Recommendations
9 4 (1.65%) Cyber Essentials PLUS
10 3 (1.23%) California Consumer Privacy Act
10 3 (1.23%) EU AI Act
10 3 (1.23%) JSP 440
10 3 (1.23%) Sarbanes-Oxley
10 3 (1.23%) SOC 2
11 2 (0.82%) Accessibility
11 2 (0.82%) ISO 9001
12 1 (0.41%) SLA
System Software
1 21 (8.64%) Active Directory
2 13 (5.35%) Docker
3 6 (2.47%) Snort
4 5 (2.06%) Squid
5 3 (1.23%) Virtual Machines
6 1 (0.41%) Firmware
Systems Management
1 29 (11.93%) Nmap
2 28 (11.52%) Kubernetes
2 28 (11.52%) Nessus
3 6 (2.47%) Nexpose
4 5 (2.06%) CASB
4 5 (2.06%) Suricata
5 4 (1.65%) Ansible
5 4 (1.65%) Terraform
6 2 (0.82%) Microsoft Intune
7 1 (0.41%) CSIRT
7 1 (0.41%) Grafana
7 1 (0.41%) HP Fortify
7 1 (0.41%) Kibana
7 1 (0.41%) QRadar
7 1 (0.41%) Single Sign-On
Vendors
1 25 (10.29%) Microsoft
2 17 (7.00%) Qualys
3 14 (5.76%) ServiceNow
4 13 (5.35%) Splunk
5 12 (4.94%) Tenable
6 11 (4.53%) CrowdStrike
7 10 (4.12%) Cisco
8 9 (3.70%) Palo Alto
9 8 (3.29%) CyberArk
9 8 (3.29%) Google
9 8 (3.29%) Oracle
9 8 (3.29%) Zscaler
10 7 (2.88%) Remedy
11 5 (2.06%) Blue Coat
11 5 (2.06%) Carbon Black
11 5 (2.06%) FireEye
11 5 (2.06%) SAP
11 5 (2.06%) Veracode
12 4 (1.65%) Tanium
13 3 (1.23%) Workday
214 Penetration Testing jobs Nationwide