Period
to

The following table provides summary statistics for permanent job vacancies advertised in the City of London with a requirement for Penetration Testing skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Penetration Testing over the 6 months to 23 May 2022 with a comparison to the same period in the previous 2 years.

Penetration Testing
Central London > City of London
6 months to
23 May 2022
Same period 2021 Same period 2020
Rank 235 179 215
Rank change year-on-year -56 +36 +26
Permanent jobs citing Penetration Testing 42 52 51
As % of all permanent jobs advertised in the City of London 0.57% 1.04% 0.73%
As % of the Processes & Methodologies category 0.61% 1.09% 0.77%
Number of salaries quoted 37 50 45
10th Percentile £51,000 - -
25th Percentile £51,250 £42,500 £35,000
Median annual salary (50th Percentile) £58,000 £54,340 £55,000
Median % change year-on-year +6.73% -1.20% -25.42%
75th Percentile £65,000 £67,500 £75,000
90th Percentile £78,000 £75,000 £90,000
Central London median annual salary £58,000 £53,681 £60,000
% change year-on-year +8.05% -10.53% -20.00%

Penetration Testing is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in the City of London with a requirement for process or methodology skills.

All Process and Methodology Skills
City of London
Permanent vacancies with a requirement for process or methodology skills 6,938 4,771 6,658
As % of all permanent IT jobs advertised in the City of London 94.86% 95.48% 94.78%
Number of salaries quoted 5,528 4,265 5,839
10th Percentile £46,250 £43,750 £41,250
25th Percentile £57,500 £55,000 £52,500
Median annual salary (50th Percentile) £72,500 £72,500 £67,500
Median % change year-on-year - +7.41% +3.85%
75th Percentile £93,750 £90,000 £85,000
90th Percentile £108,750 £107,500 £100,000
Central London median annual salary £72,500 £70,000 £68,211
% change year-on-year +3.57% +2.62% +4.94%

Penetration Testing
Job Vacancy Trend in the City of London

Job postings citing Penetration Testing as a proportion of all IT jobs advertised in the City of London.

Job vacancy trend for Penetration Testing in the City of London

Penetration Testing
Salary Trend in the City of London

3-month moving average salary quoted in jobs citing Penetration Testing in the City of London.

Salary trend for Penetration Testing in the City of London

Penetration Testing
Salary Histogram in the City of London

Salary distribution for jobs citing Penetration Testing in the City of London over the 6 months to 23 May 2022.

Salary histogram for Penetration Testing in the City of London

For the 6 months to 23 May 2022, IT jobs citing Penetration Testing also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the City of London region with a requirement for Penetration Testing.

1 24 (57.14%) CISSP
2 16 (38.10%) Finance
3 15 (35.71%) Information Security
3 15 (35.71%) Cybersecurity
4 14 (33.33%) Firewall
4 14 (33.33%) Microsoft
4 14 (33.33%) Windows
4 14 (33.33%) Azure
5 12 (28.57%) CISM
5 12 (28.57%) OSCP
5 12 (28.57%) Degree
5 12 (28.57%) Computer Science
6 11 (26.19%) AWS
6 11 (26.19%) CISA
6 11 (26.19%) Python
7 10 (23.81%) Vulnerability Assessment
7 10 (23.81%) Security Operations
7 10 (23.81%) Computer Science Degree
7 10 (23.81%) Red Team
8 9 (21.43%) CREST Certified
8 9 (21.43%) CEH
8 9 (21.43%) ISO/IEC 27001
8 9 (21.43%) Open Source
8 9 (21.43%) Change Control
8 9 (21.43%) E-Discovery
8 9 (21.43%) DNS
8 9 (21.43%) Legal
8 9 (21.43%) Service Management
9 8 (19.05%) VMware
9 8 (19.05%) CCNA

Penetration Testing
Co-occurring IT Skills in the City of London by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 6 (14.29%) MS Exchange
Applications
1 6 (14.29%) Microsoft Office
2 5 (11.90%) Microsoft Excel
Business Applications
1 1 (2.38%) Sentinel
Cloud Services
1 14 (33.33%) Azure
2 11 (26.19%) AWS
3 3 (7.14%) Microsoft 365
4 2 (4.76%) Azure Active Directory
5 1 (2.38%) Azure Sentinel
5 1 (2.38%) Mimecast
Communications & Networking
1 14 (33.33%) Firewall
2 9 (21.43%) DNS
3 7 (16.67%) Wireless
4 6 (14.29%) DHCP
5 3 (7.14%) HTTP
5 3 (7.14%) Intrusion Detection
5 3 (7.14%) IPv6
5 3 (7.14%) Network Security
5 3 (7.14%) tcpdump
5 3 (7.14%) Wireshark
6 2 (4.76%) WAN
7 1 (2.38%) LAN
7 1 (2.38%) SSL
Database & Business Intelligence
1 5 (11.90%) SQL Server
2 1 (2.38%) Relational Database
Development Applications
1 3 (7.14%) Metasploit
General
1 16 (38.10%) Finance
2 9 (21.43%) Legal
3 4 (9.52%) Presentation Skills
4 3 (7.14%) Law
4 3 (7.14%) Social Skills
Job Titles
1 15 (35.71%) Analyst
1 15 (35.71%) Security Analyst
2 13 (30.95%) Tester
3 10 (23.81%) IT Analyst
3 10 (23.81%) IT Security Analyst
3 10 (23.81%) Penetration Tester
4 9 (21.43%) E-Discovery Analyst
5 5 (11.90%) Information Analyst
5 5 (11.90%) Information Security Analyst
6 4 (9.52%) 3rd Line Engineer
6 4 (9.52%) Security Tester
6 4 (9.52%) Senior Penetration Tester
6 4 (9.52%) Senior Tester
7 3 (7.14%) Infrastructure Engineer
7 3 (7.14%) Security Engineer
7 3 (7.14%) Security Manager
8 2 (4.76%) Junior
8 2 (4.76%) Junior Penetration Tester
8 2 (4.76%) Junior Tester
8 2 (4.76%) Systems Engineer
Libraries, Frameworks & Software Standards
1 5 (11.90%) Web Services
2 2 (4.76%) .NET
2 2 (4.76%) ASP.NET
2 2 (4.76%) J2EE
3 1 (2.38%) RESTful
Miscellaneous
1 7 (16.67%) Management Information System
2 5 (11.90%) Public Cloud
2 5 (11.90%) SCADA
3 3 (7.14%) Mobile App
4 1 (2.38%) Cyber Kill Chain
4 1 (2.38%) Cyberattack
4 1 (2.38%) Cyberthreat
4 1 (2.38%) Data Centre
Operating Systems
1 14 (33.33%) Windows
2 8 (19.05%) Linux
3 6 (14.29%) Android
3 6 (14.29%) Apple iOS
3 6 (14.29%) Windows Server
3 6 (14.29%) Windows Server 2016
3 6 (14.29%) Windows Server 2019
4 3 (7.14%) Kali Linux
5 2 (4.76%) Unix
Processes & Methodologies
1 15 (35.71%) Cybersecurity
1 15 (35.71%) Information Security
2 12 (28.57%) Computer Science
3 10 (23.81%) Red Team
3 10 (23.81%) Security Operations
3 10 (23.81%) Vulnerability Assessment
4 9 (21.43%) Change Control
4 9 (21.43%) E-Discovery
4 9 (21.43%) Open Source
4 9 (21.43%) Service Management
5 7 (16.67%) Data Loss Prevention
5 7 (16.67%) Vulnerability Scanning
6 6 (14.29%) Data Protection
6 6 (14.29%) Risk Assessment
6 6 (14.29%) Social Engineering
7 5 (11.90%) Information Security Governance
7 5 (11.90%) Network Management
7 5 (11.90%) Project Management
7 5 (11.90%) Quality Management
7 5 (11.90%) Remediation Plan
Programming Languages
1 11 (26.19%) Python
2 8 (19.05%) SQL
3 7 (16.67%) PowerShell
4 3 (7.14%) Bash
4 3 (7.14%) C#
4 3 (7.14%) Perl
4 3 (7.14%) Ruby
5 2 (4.76%) Java
5 2 (4.76%) Objective-C
6 1 (2.38%) C
6 1 (2.38%) Go
6 1 (2.38%) JavaScript
Qualifications
1 24 (57.14%) CISSP
2 12 (28.57%) CISM
2 12 (28.57%) Degree
2 12 (28.57%) OSCP
3 11 (26.19%) CISA
4 10 (23.81%) Computer Science Degree
5 9 (21.43%) CEH
5 9 (21.43%) CREST Certified
6 8 (19.05%) CCNA
6 8 (19.05%) Cisco Certification
6 8 (19.05%) GXPN
7 7 (16.67%) GPEN
8 6 (14.29%) CRISC
8 6 (14.29%) OSCE
9 5 (11.90%) Master's Degree
9 5 (11.90%) OSWP
10 3 (7.14%) GWAPT
11 2 (4.76%) Cyber Scheme
11 2 (4.76%) GIAC
11 2 (4.76%) SANS
Quality Assurance & Compliance
1 9 (21.43%) ISO/IEC 27001
2 6 (14.29%) NIST
3 5 (11.90%) Cyber Essentials
3 5 (11.90%) GRC
3 5 (11.90%) Sarbanes-Oxley
4 4 (9.52%) Cyber Essentials PLUS
5 3 (7.14%) PCI DSS
6 1 (2.38%) GDPR
6 1 (2.38%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
6 1 (2.38%) ISO/IEC 27005
6 1 (2.38%) QA
System Software
1 8 (19.05%) Active Directory
2 6 (14.29%) VMware ESXi
3 2 (4.76%) VMware Infrastructure
Systems Management
1 2 (4.76%) Host Intrusion Detection System
2 1 (2.38%) QRadar
Vendors
1 14 (33.33%) Microsoft
2 8 (19.05%) VMware
3 4 (9.52%) ServiceNow
4 1 (2.38%) Cisco
4 1 (2.38%) FireEye
4 1 (2.38%) IBM
4 1 (2.38%) Palo Alto