Penetration Testing Job Trends, Salaries & Related Skills in England

Penetration Testing
UK > England

The table below provides summary statistics and salary benchmarking for jobs advertised in England requiring Penetration Testing skills. It covers permanent job vacancies from the 6 months leading up to 13 March 2026, with comparisons to the same periods in the previous two years.

	6 months to 13 Mar 2026	Same period 2025	Same period 2024
Rank	445	383	385
Rank change year-on-year	-62	+2	+84
Permanent jobs citing Penetration Testing	206	265	472
As % of all permanent jobs in England	0.32%	0.68%	0.64%
As % of the Processes & Methodologies category	0.40%	0.72%	0.73%
Number of salaries quoted	140	193	377
10^th Percentile	£38,750	£45,000	£38,987
25^th Percentile	£50,813	£58,750	£47,725
Median annual salary (50^th Percentile)	£70,000	£67,500	£65,000
Median % change year-on-year	+3.70%	+3.85%	-3.70%
75^th Percentile	£87,500	£87,500	£82,500
90^th Percentile	£95,000	£95,000	£95,000
UK median annual salary	£72,367	£69,500	£65,000
% change year-on-year	+4.13%	+6.92%	-6.07%

All Process & Methodology Skills
England

Penetration Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies requiring process or methodology skills in England.

Permanent vacancies with a requirement for process or methodology skills	50,928	36,703	64,580
As % of all permanent jobs advertised in England	78.09%	93.67%	87.25%
Number of salaries quoted	31,528	20,155	50,498
10^th Percentile	£29,750	£32,500	£29,000
25^th Percentile	£40,000	£45,000	£40,000
Median annual salary (50^th Percentile)	£55,000	£60,000	£55,000
Median % change year-on-year	-8.33%	+9.09%	-12.00%
75^th Percentile	£77,500	£81,250	£75,000
90^th Percentile	£97,500	£102,500	£95,000
UK median annual salary	£55,000	£60,000	£55,000
% change year-on-year	-8.33%	+9.09%	-11.41%

Penetration Testing
Job Vacancy Trend in England

Historical trend showing the proportion of permanent IT job postings citing Penetration Testing relative to all permanent IT jobs advertised in England.

Penetration Testing
Salary Trend in England

Salary distribution trend for jobs in England citing Penetration Testing.

Penetration Testing
Salary Histogram in England

Salary distribution for jobs citing Penetration Testing in England over the 6 months to 13 March 2026.

Salary histogram for Penetration Testing in England

Penetration Testing
Job Locations in England

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Penetration Testing within the England region over the 6 months to 13 March 2026. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location	Rank Change on Same Period Last Year	Matching Permanent IT Job Ads	Median Salary Past 6 Months	Median Salary % Change on Same Period Last Year	Live Jobs
London	-10	95	£77,500	+6.90%	36
South West	+15	46	£72,500	+3.57%	15
Midlands	-33	25	£52,500	-22.22%	4
South East	-55	17	£72,500	+3.57%	22
West Midlands	-24	14	£60,000	-11.11%	3
North of England	-58	13	£60,000	-4.00%	10
East Midlands	-25	11	£51,058	+27.65%	1
Yorkshire	-49	6	£56,250	+9.76%	3
North West	-39	4	£55,000	-12.00%	6
North East	-21	3	£75,000	-1.32%	1
East of England	-3	2	£57,500	-	4
Penetration Testing UK

Penetration Testing
Top 30 Co-Occurring Skills & Capabilities in England

For the 6 months to 13 March 2026, job vacancies citing Penetration Testing also mentioned the following skills and capabilities in order of popularity. The figures indicate the absolute number of co-occurrences and as a proportion of all permanent job ads across the England region with a requirement for Penetration Testing.

1	114 (55.34%)	Cybersecurity
2	74 (35.92%)	Incident Response
3	70 (33.98%)	ISO/IEC 27001
3	70 (33.98%)	Red Team
4	65 (31.55%)	CREST Certified
5	62 (30.10%)	OSCP
6	56 (27.18%)	Microsoft
6	56 (27.18%)	Python
7	55 (26.70%)	Azure
8	51 (24.76%)	Application Security
8	51 (24.76%)	CISSP
9	46 (22.33%)	Degree
9	46 (22.33%)	Problem-Solving
10	45 (21.84%)	Offensive Security
11	44 (21.36%)	Information Security

12	43 (20.87%)	Agile
12	43 (20.87%)	NIST
12	43 (20.87%)	SIEM
13	41 (19.90%)	Bash
13	41 (19.90%)	PowerShell
13	41 (19.90%)	Vulnerability Management
14	39 (18.93%)	AWS
14	39 (18.93%)	Security Cleared
15	37 (17.96%)	Firewall
15	37 (17.96%)	Mentoring
16	33 (16.02%)	Business Strategy
16	33 (16.02%)	SC Cleared
17	32 (15.53%)	Threat Modelling
18	31 (15.05%)	Internal Audit
19	29 (14.08%)	Business Transformation

Penetration Testing
Co-Occurring Skills & Capabilities in England by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1	5 (2.43%)	Microsoft Exchange
2	4 (1.94%)	SharePoint
3	1 (0.49%)	Confluence

Applications
1	3 (1.46%)	Microsoft Excel
1	3 (1.46%)	Microsoft Office

Cloud Services
1	55 (26.70%)	Azure
2	39 (18.93%)	AWS
3	16 (7.77%)	Microsoft 365
4	15 (7.28%)	GitHub
5	14 (6.80%)	GCP
6	12 (5.83%)	Entra ID
7	11 (5.34%)	Azure Sentinel
8	10 (4.85%)	GitHub Actions
8	10 (4.85%)	Microsoft Purview
9	7 (3.40%)	Slack
10	6 (2.91%)	Power Platform
11	3 (1.46%)	Mimecast
11	3 (1.46%)	SaaS
12	2 (0.97%)	Dynamics 365
12	2 (0.97%)	IBM Cloud
12	2 (0.97%)	Rubrik
13	1 (0.49%)	Amazon EKS
13	1 (0.49%)	Azure DevOps
13	1 (0.49%)	Azure Key Vault
13	1 (0.49%)	Figma

Communications & Networking
1	37 (17.96%)	Firewall
2	20 (9.71%)	Network Security
2	20 (9.71%)	Wireless
3	14 (6.80%)	TCP/IP
3	14 (6.80%)	VPN
4	11 (5.34%)	DNS
5	7 (3.40%)	Intrusion Detection
5	7 (3.40%)	VLAN
5	7 (3.40%)	Wi-Fi
6	6 (2.91%)	Cisco ISE
7	5 (2.43%)	HTTP
7	5 (2.43%)	Wireshark
8	4 (1.94%)	Ethernet
8	4 (1.94%)	HTTPS
8	4 (1.94%)	Internet
9	3 (1.46%)	DHCP
9	3 (1.46%)	DMZ
9	3 (1.46%)	LAN
9	3 (1.46%)	SSL
9	3 (1.46%)	VoIP

Database & Business Intelligence
1	6 (2.91%)	Power BI
2	3 (1.46%)	Tableau
3	1 (0.49%)	SQL Server

Development Applications
1	22 (10.68%)	Burp Suite
1	22 (10.68%)	Metasploit
2	12 (5.83%)	JIRA
3	10 (4.85%)	Jenkins
4	5 (2.43%)	Bitbucket
5	2 (0.97%)	Git
5	2 (0.97%)	IDA Disassembler
6	1 (0.49%)	GitLab
6	1 (0.49%)	NUnit

General
1	80 (38.83%)	Social Skills
2	65 (31.55%)	Finance
3	20 (9.71%)	Inclusion and Diversity
4	19 (9.22%)	Analytical Skills
5	16 (7.77%)	Retail
6	14 (6.80%)	Banking
6	14 (6.80%)	Law
7	9 (4.37%)	Influencing Skills
7	9 (4.37%)	Legal
8	8 (3.88%)	Presentation Skills
9	6 (2.91%)	Marketing
10	5 (2.43%)	Public Sector
11	4 (1.94%)	Electronics
11	4 (1.94%)	Telecoms
12	3 (1.46%)	Aerospace
12	3 (1.46%)	Documentation Skills
12	3 (1.46%)	Manufacturing
12	3 (1.46%)	Military
13	2 (0.97%)	Financial Institution
13	2 (0.97%)	Public Speaking

Job Titles
1	38 (18.45%)	Analyst
2	37 (17.96%)	Consultant
3	36 (17.48%)	Security Consultant
4	28 (13.59%)	Security Analyst
4	28 (13.59%)	Security Engineer
5	27 (13.11%)	Senior
6	23 (11.17%)	Security Manager
7	20 (9.71%)	Tester
8	19 (9.22%)	Penetration Tester
9	18 (8.74%)	Cybersecurity Consultant
10	17 (8.25%)	Security Specialist
11	13 (6.31%)	Applications Engineer
12	12 (5.83%)	IT Manager
13	11 (5.34%)	Senior Analyst
13	11 (5.34%)	Senior Security Analyst
14	9 (4.37%)	Digital Analyst
14	9 (4.37%)	Lead
14	9 (4.37%)	Senior Digital Analyst
15	7 (3.40%)	Cybersecurity Analyst
15	7 (3.40%)	Cybersecurity Engineer

Libraries, Frameworks & Software Standards
1	2 (0.97%)	.NET
1	2 (0.97%)	JSON
2	1 (0.49%)	.NET Framework
2	1 (0.49%)	AngularJS
2	1 (0.49%)	ASP.NET
2	1 (0.49%)	ASP.NET Core
2	1 (0.49%)	Entity Framework
2	1 (0.49%)	OpenAPI
2	1 (0.49%)	RESTful
2	1 (0.49%)	RxJS
2	1 (0.49%)	Swagger
2	1 (0.49%)	Vitest
2	1 (0.49%)	YAML

Miscellaneous
1	57 (27.67%)	Security Posture
2	27 (13.11%)	Cyber Defence
3	25 (12.14%)	Mobile App
4	21 (10.19%)	Cyber Threat
5	17 (8.25%)	Management Information System
6	7 (3.40%)	Data Centre
6	7 (3.40%)	Insider Threat
7	6 (2.91%)	Analytical Mindset
7	6 (2.91%)	Enterprise Software
7	6 (2.91%)	Operational Technology
7	6 (2.91%)	PKI
7	6 (2.91%)	Self-Motivation
8	4 (1.94%)	Cloud Native
8	4 (1.94%)	Cyber Security Posture
8	4 (1.94%)	Data Protection Act
8	4 (1.94%)	Security Operations Centre
9	3 (1.46%)	Blog
9	3 (1.46%)	Cyberattack
9	3 (1.46%)	Renewable Energy
9	3 (1.46%)	SCADA

Operating Systems
1	22 (10.68%)	Linux
1	22 (10.68%)	Windows
2	9 (4.37%)	Android
2	9 (4.37%)	Apple iOS
3	7 (3.40%)	Unix
4	4 (1.94%)	Windows Server

Processes & Methodologies
1	114 (55.34%)	Cybersecurity
2	74 (35.92%)	Incident Response
3	70 (33.98%)	Red Team
4	51 (24.76%)	Application Security
5	46 (22.33%)	Problem-Solving
6	45 (21.84%)	Offensive Security
7	44 (21.36%)	Information Security
8	43 (20.87%)	Agile
8	43 (20.87%)	SIEM
9	41 (19.90%)	Vulnerability Management
10	37 (17.96%)	Mentoring
11	33 (16.02%)	Business Strategy
12	32 (15.53%)	Threat Modelling
13	31 (15.05%)	Internal Audit
14	29 (14.08%)	Business Transformation
15	28 (13.59%)	Coaching
15	28 (13.59%)	Creative Thinking
16	27 (13.11%)	SDLC
16	27 (13.11%)	Security Operations
16	27 (13.11%)	Vulnerability Assessment

Programming Languages
1	56 (27.18%)	Python
2	41 (19.90%)	Bash
2	41 (19.90%)	PowerShell
3	14 (6.80%)	Go
4	8 (3.88%)	C
4	8 (3.88%)	C++
4	8 (3.88%)	Java
5	6 (2.91%)	SQL
6	5 (2.43%)	C#
7	4 (1.94%)	Perl
8	3 (1.46%)	R
9	2 (0.97%)	JavaScript
9	2 (0.97%)	Ruby
10	1 (0.49%)	Bicep
10	1 (0.49%)	Scala
10	1 (0.49%)	TypeScript

Qualifications
1	65 (31.55%)	CREST Certified
2	62 (30.10%)	OSCP
3	51 (24.76%)	CISSP
4	46 (22.33%)	Degree
5	39 (18.93%)	Security Cleared
6	33 (16.02%)	SC Cleared
7	27 (13.11%)	Cisco Certification
8	25 (12.14%)	CEH
9	24 (11.65%)	CHECK Team Member
10	21 (10.19%)	CHECK Team Leader
11	19 (9.22%)	CCNA
12	18 (8.74%)	CCSAM
13	17 (8.25%)	CompTIA Security+
13	17 (8.25%)	DV Cleared
14	16 (7.77%)	GIAC
15	13 (6.31%)	CISM
15	13 (6.31%)	SANS
16	11 (5.34%)	CISA
17	10 (4.85%)	GPEN
18	9 (4.37%)	Microsoft Certification

Quality Assurance & Compliance
1	70 (33.98%)	ISO/IEC 27001
2	43 (20.87%)	NIST
3	28 (13.59%)	GDPR
4	24 (11.65%)	Cyber Essentials
5	18 (8.74%)	Accessibility
6	14 (6.80%)	Actionable Recommendations
7	10 (4.85%)	NCSC
7	10 (4.85%)	PCI DSS
8	9 (4.37%)	Cyber Essentials PLUS
9	6 (2.91%)	GRC
10	3 (1.46%)	ITGC
10	3 (1.46%)	NIST 800
10	3 (1.46%)	RMADS
11	2 (0.97%)	COBIT
11	2 (0.97%)	Data Quality
11	2 (0.97%)	ISO/IEC 27005
11	2 (0.97%)	Sarbanes-Oxley
12	1 (0.49%)	GxP
12	1 (0.49%)	HIPAA
12	1 (0.49%)	SOC 2

System Software
1	20 (9.71%)	Active Directory
2	7 (3.40%)	Virtual Machines
3	6 (2.91%)	VMware Infrastructure
4	5 (2.43%)	VMware ESXi
5	2 (0.97%)	EMC RecoverPoint
5	2 (0.97%)	Hyper-V
6	1 (0.49%)	Virtual Desktop

Systems Management
1	15 (7.28%)	Nessus
2	13 (6.31%)	Nmap
3	12 (5.83%)	Kubernetes
4	6 (2.91%)	Microsoft Intune
5	4 (1.94%)	Ansible
5	4 (1.94%)	CSIRT
6	3 (1.46%)	ArcSight ESM
6	3 (1.46%)	FortiGate
6	3 (1.46%)	QRadar
6	3 (1.46%)	Terraform
7	2 (0.97%)	Proxmox
7	2 (0.97%)	Single Sign-On
7	2 (0.97%)	VxRail
8	1 (0.49%)	Progress Chef

Vendors
1	56 (27.18%)	Microsoft
2	14 (6.80%)	Cisco
3	10 (4.85%)	Splunk
4	9 (4.37%)	VMware
5	7 (3.40%)	CheckPoint
5	7 (3.40%)	ServiceNow
5	7 (3.40%)	Tenable
5	7 (3.40%)	Zscaler
6	6 (2.91%)	Sophos
7	4 (1.94%)	Fortinet
7	4 (1.94%)	Qualys
7	4 (1.94%)	TOWER Software
8	3 (1.46%)	ArcSight
8	3 (1.46%)	CrowdStrike
8	3 (1.46%)	Dell
8	3 (1.46%)	LogLogic
8	3 (1.46%)	McAfee
8	3 (1.46%)	Okta
8	3 (1.46%)	Oracle
8	3 (1.46%)	Veeam

Penetration TestingUK > England

All Process & Methodology SkillsEngland

Penetration TestingJob Vacancy Trend in England

Penetration TestingSalary Trend in England

Penetration TestingSalary Histogram in England

Penetration TestingJob Locations in England

Penetration TestingTop 30 Co-Occurring Skills & Capabilities in England

Penetration TestingCo-Occurring Skills & Capabilities in England by Category