Penetration Testing Contract Job Trends

Penetration Testing
UK

The table below provides summary statistics and contractor rates for jobs requiring Penetration Testing skills. It covers contract job vacancies from the 6 months leading up to 20 March 2026, with comparisons to the same periods in the previous two years.

 6 months to
20 Mar 2026		 Same period 2025 Same period 2024
Rank 397 383 347
Rank change year-on-year -14 -36 +128
Contract jobs citing Penetration Testing 221 139 247
As % of all contract jobs in the UK 0.51% 0.48% 0.56%
As % of the Processes & Methodologies category 0.59% 0.53% 0.64%
Number of daily rates quoted 159 81 107
10th Percentile £400 £400 £425
25th Percentile £431 £495 £508
Median daily rate (50th Percentile) £550 £563 £563
Median % change year-on-year -2.22% - -6.25%
75th Percentile £650 £688 £656
90th Percentile £700 £788 £771
UK excluding London median daily rate £526 £550 £525
% change year-on-year -4.34% +4.76% -8.30%
Number of hourly rates quoted 1 1 0
Median hourly rate £31.86 £52.50 -
Median % change year-on-year -39.31% - -
UK excluding London median hourly rate £31.86 £52.50 -
% change year-on-year -39.31% - -

All Process & Methodology Skills
UK

Penetration Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all contract job vacancies requiring process or methodology skills.

Contract vacancies with a requirement for process or methodology skills 37,403 26,465 38,354
As % of all contract IT jobs advertised in the UK 85.99% 90.45% 86.55%
Number of daily rates quoted 23,742 17,048 24,949
10th Percentile £313 £308 £300
25th Percentile £413 £413 £413
Median daily rate (50th Percentile) £500 £525 £525
Median % change year-on-year -4.76% - -4.55%
75th Percentile £611 £638 £638
90th Percentile £725 £743 £745
UK excluding London median daily rate £480 £488 £500
% change year-on-year -1.54% -2.50% -
Number of hourly rates quoted 2,201 924 2,323
10th Percentile £15.00 £15.25 £12.99
25th Percentile £18.50 £21.00 £16.00
Median hourly rate £30.00 £32.50 £32.50
Median % change year-on-year -7.69% - -7.14%
75th Percentile £65.00 £64.50 £57.50
90th Percentile £75.00 £77.41 £70.66
UK excluding London median hourly rate £28.00 £31.64 £31.13
% change year-on-year -11.50% +1.65% -11.14%

Penetration Testing
Job Vacancy Trend

Historical trend showing the proportion of contract IT job postings citing Penetration Testing relative to all contract IT jobs advertised.

Penetration Testing job vacancy trend in the UK

Penetration Testing
Daily Rate Trend

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor daily rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Daily Rate Histogram

Daily rate distribution for jobs citing Penetration Testing over the 6 months to 20 March 2026.

Daily rate histogram for Penetration Testing in the UK

Penetration Testing
Hourly Rate Trend

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing.

Contractor hourly rate distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Top 15 Contract Job Locations

The table below looks at the demand and provides a guide to the median contractor rates quoted in IT jobs citing Penetration Testing within the UK over the 6 months to 20 March 2026. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Contract
IT Job Ads		 Median
Daily Rate
Past 6 Months		 Median Daily Rate
% Change
on Same Period
Last Year		 Live
Jobs
England -3 200 £538 -14.68% 98
UK excluding London -5 138 £526 -4.34% 84
Work from Home -8 78 £560 -4.68% 64
South East -25 59 £515 -18.90% 19
London -48 57 £575 -4.17% 31
North of England -47 32 £615 +29.47% 22
Midlands -44 24 £447 -27.02% 12
North West -16 21 £617 +17.52% 9
South West -8 19 £425 - 19
West Midlands -52 16 £550 -10.20% 9
East Midlands - 8 £438 - 3
Yorkshire -53 7 £514 - 11
North East -11 4 £700 +27.27% 2
East of England -19 4 £198 -74.52% 4
Scotland -9 1 £525 -1.69% 7

Penetration Testing
Co-Occurring Skills & Capabilities by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1 14 (6.33%) Confluence
2 6 (2.71%) SharePoint
3 1 (0.45%) Anypoint
3 1 (0.45%) Camunda
3 1 (0.45%) Moodle
3 1 (0.45%) Mule
3 1 (0.45%) Oracle Application Server
3 1 (0.45%) Strapi
Applications
1 18 (8.14%) Microsoft Office
2 13 (5.88%) Microsoft Excel
2 13 (5.88%) Microsoft PowerPoint
3 4 (1.81%) Microsoft Project
4 1 (0.45%) Adobe XD
Business Applications
1 5 (2.26%) Oracle EBS
Cloud Services
1 66 (29.86%) Azure
2 64 (28.96%) AWS
3 11 (4.98%) Microsoft 365
4 10 (4.52%) Entra ID
4 10 (4.52%) GCP
5 6 (2.71%) Amazon GuardDuty
5 6 (2.71%) Azure DevOps
5 6 (2.71%) SaaS
6 5 (2.26%) OCI
7 4 (1.81%) Azure AI
7 4 (1.81%) Azure Sentinel
7 4 (1.81%) IBM Watson
7 4 (1.81%) Vertex AI
8 3 (1.36%) AWS CloudFormation
8 3 (1.36%) AWS CloudTrail
8 3 (1.36%) AWS KMS
8 3 (1.36%) Cloudflare
9 2 (0.90%) OpenDNS
9 2 (0.90%) OpenShift
10 1 (0.45%) Figma
Communications & Networking
1 40 (18.10%) Firewall
2 30 (13.57%) Network Security
3 19 (8.60%) Wireless
4 9 (4.07%) HTTP
4 9 (4.07%) Wireshark
5 7 (3.17%) VPN
6 6 (2.71%) TCP/IP
7 5 (2.26%) Cisco ASA
7 5 (2.26%) DNS
7 5 (2.26%) Internet
7 5 (2.26%) Intrusion Detection
8 4 (1.81%) BGP
8 4 (1.81%) Cisco IOS
8 4 (1.81%) Intranet
8 4 (1.81%) IPsec
8 4 (1.81%) MPLS
8 4 (1.81%) MQTT
8 4 (1.81%) SD-WAN
8 4 (1.81%) SSL
8 4 (1.81%) TACACS
Database & Business Intelligence
1 3 (1.36%) MongoDB
2 2 (0.90%) Oracle Reports
3 1 (0.45%) Amazon RDS
3 1 (0.45%) DB2
3 1 (0.45%) SQL Server
Development Applications
1 30 (13.57%) Burp Suite
2 28 (12.67%) Metasploit
3 20 (9.05%) JIRA
4 4 (1.81%) Selenium
5 2 (0.90%) GitLab
6 1 (0.45%) Gatling
6 1 (0.45%) JMeter
6 1 (0.45%) Postman
6 1 (0.45%) sqlmap
General
1 82 (37.10%) Social Skills
2 36 (16.29%) Public Sector
3 17 (7.69%) Analytical Skills
4 15 (6.79%) Finance
5 7 (3.17%) Banking
6 5 (2.26%) Aerospace
6 5 (2.26%) Documentation Skills
6 5 (2.26%) Legal
6 5 (2.26%) Presentation Skills
7 4 (1.81%) Manufacturing
7 4 (1.81%) Telecoms
8 3 (1.36%) Law
9 2 (0.90%) Arabic Language
9 2 (0.90%) Aviation
9 2 (0.90%) Electronics
9 2 (0.90%) Inclusion and Diversity
9 2 (0.90%) Investment Banking
9 2 (0.90%) Local Government
9 2 (0.90%) Marketing
9 2 (0.90%) Military
Job Titles
1 71 (32.13%) Tester
2 68 (30.77%) Penetration Tester
3 28 (12.67%) Security Engineer
4 19 (8.60%) Lead
5 16 (7.24%) Analyst
5 16 (7.24%) Senior
6 15 (6.79%) Consultant
7 11 (4.98%) Architect
7 11 (4.98%) Security Analyst
7 11 (4.98%) Security Consultant
8 10 (4.52%) Security Officer
9 9 (4.07%) Security Architect
10 8 (3.62%) Test Manager
11 7 (3.17%) Technical Leader
12 6 (2.71%) Cloud Engineer
12 6 (2.71%) Cybersecurity Architect
12 6 (2.71%) IT Security Officer
12 6 (2.71%) Security Tester
12 6 (2.71%) Solutions Architect
12 6 (2.71%) Test Engineer
Libraries, Frameworks & Software Standards
1 9 (4.07%) LDAP
2 7 (3.17%) OAuth
2 7 (3.17%) SAML
3 6 (2.71%) LangChain
3 6 (2.71%) PyTorch
3 6 (2.71%) scikit-learn
4 5 (2.26%) ADO
5 4 (1.81%) JWT
6 3 (1.36%) Node.js
6 3 (1.36%) OAuth2
6 3 (1.36%) OpenID
6 3 (1.36%) Spring Boot
7 2 (0.90%) Flash
7 2 (0.90%) Jest
7 2 (0.90%) Smart Contracts
8 1 (0.45%) Microsoft Graph
8 1 (0.45%) Playwright
8 1 (0.45%) RAML
8 1 (0.45%) React
8 1 (0.45%) Vue
Miscellaneous
1 46 (20.81%) Security Posture
2 21 (9.50%) Management Information System
3 15 (6.79%) Cloud Native
3 15 (6.79%) Operational Technology
4 11 (4.98%) Security Operations Centre
5 10 (4.52%) Mobile App
6 9 (4.07%) BYOD
6 9 (4.07%) CSOC
7 7 (3.17%) Data Centre
8 5 (2.26%) Cloud Security Posture
8 5 (2.26%) PKI
9 4 (1.81%) Cyber Threat
9 4 (1.81%) Distributed Systems
10 3 (1.36%) Cyber Defence
10 3 (1.36%) Data Protection Act
10 3 (1.36%) Onboarding
10 3 (1.36%) Product Ownership
11 2 (0.90%) Analytical Mindset
11 2 (0.90%) Blockchain
12 1 (0.45%) IoT
Operating Systems
1 41 (18.55%) Windows
2 34 (15.38%) Linux
3 12 (5.43%) Android
3 12 (5.43%) Kali Linux
4 10 (4.52%) Unix
5 7 (3.17%) Apple iOS
6 4 (1.81%) Ubuntu
Processes & Methodologies
1 97 (43.89%) Cybersecurity
2 44 (19.91%) Security Testing
2 44 (19.91%) Vulnerability Management
3 43 (19.46%) Cloud Security
3 43 (19.46%) OWASP
4 42 (19.00%) Information Security
5 37 (16.74%) Test Automation
6 34 (15.38%) Security Operations
7 33 (14.93%) Application Security
8 32 (14.48%) Agile
8 32 (14.48%) Threat Modelling
9 31 (14.03%) Incident Response
10 29 (13.12%) Risk Management
11 28 (12.67%) Regulatory Compliance
12 25 (11.31%) Security Management
12 25 (11.31%) Vulnerability Assessment
13 24 (10.86%) DevSecOps
14 23 (10.41%) Continuous Improvement
14 23 (10.41%) Red Team
14 23 (10.41%) SDLC
Programming Languages
1 30 (13.57%) Python
2 16 (7.24%) PowerShell
3 13 (5.88%) Bash
4 7 (3.17%) Java
5 6 (2.71%) Kusto Query Language
6 5 (2.26%) Go
6 5 (2.26%) SQL
7 4 (1.81%) PHP
8 3 (1.36%) Bicep
8 3 (1.36%) JavaScript
9 2 (0.90%) C-shell
9 2 (0.90%) Korn
9 2 (0.90%) Kotlin
9 2 (0.90%) Rust
9 2 (0.90%) Solidity
9 2 (0.90%) Swift
10 1 (0.45%) DataWeave
10 1 (0.45%) Groovy
10 1 (0.45%) Scala
10 1 (0.45%) T-SQL
Qualifications
1 86 (38.91%) Security Cleared
2 69 (31.22%) SC Cleared
3 40 (18.10%) CISSP
4 36 (16.29%) Degree
5 34 (15.38%) CREST Certified
6 28 (12.67%) CHECK Team Member
7 24 (10.86%) CISM
8 23 (10.41%) DV Cleared
9 21 (9.50%) OSCP
10 17 (7.69%) CEH
11 15 (6.79%) CHECK Team Leader
12 14 (6.33%) Cyber Scheme
12 14 (6.33%) GPEN
13 13 (5.88%) CompTIA Security+
14 11 (4.98%) Postgraduate
15 7 (3.17%) AWS Certification
15 7 (3.17%) SANS
16 6 (2.71%) CISA
16 6 (2.71%) SSCP
17 5 (2.26%) Microsoft Certification
Quality Assurance & Compliance
1 58 (26.24%) ISO/IEC 27001
2 49 (22.17%) NIST
3 34 (15.38%) GDPR
4 32 (14.48%) PCI DSS
5 27 (12.22%) NCSC
6 15 (6.79%) PMO
6 15 (6.79%) QA
7 12 (5.43%) NIST 800
8 11 (4.98%) GRC
9 9 (4.07%) Cyber Essentials
9 9 (4.07%) Sarbanes-Oxley
10 5 (2.26%) SOC 2
11 4 (1.81%) Cyber Essentials PLUS
12 3 (1.36%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
12 3 (1.36%) JSP 440
13 2 (0.90%) Accessibility
14 1 (0.45%) Disclosure Scotland
14 1 (0.45%) EU AI Act
14 1 (0.45%) HMG Security Policy Framework
System Software
1 14 (6.33%) Active Directory
2 7 (3.17%) Docker
3 6 (2.71%) Snort
4 4 (1.81%) VMware ESXi
4 4 (1.81%) VMware Infrastructure
5 2 (0.90%) Squid
6 1 (0.45%) Virtual Machines
6 1 (0.45%) vSphere
Systems Management
1 29 (13.12%) Kubernetes
1 29 (13.12%) Nmap
2 14 (6.33%) Nessus
3 5 (2.26%) CASB
3 5 (2.26%) Terraform
4 4 (1.81%) CSIRT
4 4 (1.81%) Single Sign-On
4 4 (1.81%) vCenter Server
5 3 (1.36%) SCOM
6 2 (0.90%) Nexpose
6 2 (0.90%) Suricata
7 1 (0.45%) Grafana
7 1 (0.45%) Kibana
7 1 (0.45%) Microsoft Intune
Vendors
1 28 (12.67%) Microsoft
2 15 (6.79%) Splunk
3 9 (4.07%) Oracle
4 8 (3.62%) Cisco
5 7 (3.17%) CyberArk
5 7 (3.17%) Remedy
6 6 (2.71%) Google
6 6 (2.71%) SAP
6 6 (2.71%) ServiceNow
6 6 (2.71%) Tenable
7 4 (1.81%) BiZZdesign
7 4 (1.81%) CrowdStrike
7 4 (1.81%) IBM
7 4 (1.81%) VMware
8 3 (1.36%) Citrix
8 3 (1.36%) Palo Alto
9 2 (0.90%) Blue Coat
9 2 (0.90%) Carbon Black
9 2 (0.90%) Qualys
9 2 (0.90%) Zscaler
121 Penetration Testing jobs Nationwide