Period
to 24 November 2017

The following table provides summary statistics for permanent job vacancies advertised in London with a requirement for Penetration Testing skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Penetration Testing over the 6 months to 24 November 2017 with a comparison to the same period in the previous 2 years.

Penetration Testing
England > London
6 months to
24 Nov 2017
Same period 2016 Same period 2015
Rank 359 310 474
Rank change year-on-year -49 +164 +22
Permanent jobs citing Penetration Testing 645 801 534
As % of all permanent IT jobs advertised in London 0.86% 1.06% 0.60%
As % of the Processes & Methodologies category 0.94% 1.16% 0.67%
Number of salaries quoted 546 680 427
London median annual salary £64,000 £65,000 £57,500
Median salary % change year-on-year -1.54% +13.04% -4.17%
10th Percentile £38,875 £42,000 £41,250
90th Percentile £92,500 £85,000 £82,500
England median annual salary £55,000 £57,500 £52,500
% change year-on-year -4.35% +9.52% -

Penetration Testing is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in London with a requirement for process or methodology skills.

All Process and Methodology Skills
London
Permanent vacancies with a requirement for process or methodology skills 68735 68760 79859
As % of all permanent IT jobs advertised in London 91.61% 90.69% 89.57%
Number of salaries quoted 52944 59134 67322
London median annual salary £60,000 £58,500 £55,000
Median salary % change year-on-year +2.56% +6.36% -
10th Percentile £35,000 £33,750 £33,173
90th Percentile £90,000 £88,750 £86,250
England median annual salary £50,000 £50,000 £47,500
% change year-on-year - +5.26% +5.56%

Penetration Testing
Job Vacancy Trend in London

Job postings citing Penetration Testing as a percentage of all IT jobs advertised in London.

Job vacancy trend for Penetration Testing in London

Penetration Testing
Salary Trend in London

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Penetration Testing in London.

Salary trend for Penetration Testing in London

Penetration Testing
Salary Histogram in London

The salary distribution of IT jobs citing Penetration Testing in London over the 6 months to 24 November 2017.

Salary histogram for Penetration Testing in London

Penetration Testing
Job Locations in London

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Penetration Testing within the London region over the 6 months to 24 November 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
Central London -31 86 £65,000 - 5
East London +13 20 £65,000 +8.33%
West London -9 10 £68,000 +29.52% 2
South London -7 7 £71,500 +19.17%
North London +7 3 £42,500 -41.38%
Penetration Testing
England

For the 6 months to 24 November 2017, IT jobs citing Penetration Testing also mentioned the following skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads across the London region with a requirement for Penetration Testing.

1 396 (61.40%) Information Security
2 275 (42.64%) Cybersecurity
3 233 (36.12%) CISSP
4 207 (32.09%) Firewall
5 202 (31.32%) ISO/IEC 27001
6 171 (26.51%) SIEM
7 167 (25.89%) Windows
8 157 (24.34%) Finance
9 152 (23.57%) CISM
10 132 (20.47%) Vulnerability Scanning
11 128 (19.84%) Network Security
12 123 (19.07%) Vulnerability Management
13 122 (18.91%) Linux
14 118 (18.29%) Security Architecture
15 114 (17.67%) Agile Software Development
16 97 (15.04%) Data Protection
17 94 (14.57%) Active Directory
18 93 (14.42%) ITIL
19 92 (14.26%) Degree
20 89 (13.80%) TCP/IP
20 89 (13.80%) CREST Certified
21 84 (13.02%) CEH
22 83 (12.87%) Security Operations
23 81 (12.56%) OWASP
24 78 (12.09%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
25 77 (11.94%) Banking
26 73 (11.32%) PCI DSS
27 72 (11.16%) Java
28 70 (10.85%) Microsoft
28 70 (10.85%) Vulnerability Assessment

Penetration Testing
Co-occurring IT Skills in London by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 26 (4.03%) IIS
2 20 (3.10%) MS Exchange
3 12 (1.86%) Apache
4 11 (1.71%) Exchange Server 2010
5 7 (1.09%) Exchange Server 2013
5 7 (1.09%) Skype for Business
6 5 (0.78%) WordPress
7 4 (0.62%) JBoss
8 3 (0.47%) Apache Pig
8 3 (0.47%) SharePoint
9 2 (0.31%) nginx
9 2 (0.31%) OpenStack
Applications
1 2 (0.31%) Spreadsheet
2 1 (0.16%) Microsoft Office
Business Applications
1 1 (0.16%) Payment Gateway
1 1 (0.16%) Salesforce.com CRM
1 1 (0.16%) SunGard APT
Cloud Services
1 59 (9.15%) Amazon AWS
2 23 (3.57%) Microsoft Azure
2 23 (3.57%) SaaS
3 13 (2.02%) IaaS
4 11 (1.71%) Cloudflare
5 9 (1.40%) PaaS
6 8 (1.24%) Office 365
7 6 (0.93%) AWS Lambda
7 6 (0.93%) Serverless
8 5 (0.78%) AWS CloudFormation
9 4 (0.62%) Mimecast
10 3 (0.47%) OpenShift
11 2 (0.31%) GitHub
11 2 (0.31%) Google Cloud Platform
11 2 (0.31%) Google Compute Engine
12 1 (0.16%) Amazon ELB
12 1 (0.16%) Amazon S3
12 1 (0.16%) Cloud Computing
12 1 (0.16%) Route 53
Communications & Networking
1 207 (32.09%) Firewall
2 128 (19.84%) Network Security
3 89 (13.80%) TCP/IP
4 42 (6.51%) Internet
5 39 (6.05%) Wireless
6 32 (4.96%) DNS
7 30 (4.65%) WAN
8 27 (4.19%) Intrusion Detection
9 24 (3.72%) LAN
10 19 (2.95%) DHCP
11 18 (2.79%) SAN
12 17 (2.64%) VPN
13 12 (1.86%) Multicast
14 11 (1.71%) Cisco ASA
15 9 (1.40%) SSL
16 8 (1.24%) LDAP
16 8 (1.24%) Wireshark
17 7 (1.09%) FTP
17 7 (1.09%) Skype
18 6 (0.93%) HTTP
Database & Business Intelligence
1 25 (3.88%) SQL Server
2 14 (2.17%) MySQL
3 10 (1.55%) NoSQL
3 10 (1.55%) SQL Server 2012
3 10 (1.55%) SQL Server 2014
4 8 (1.24%) MongoDB
5 6 (0.93%) Amazon RDS
6 5 (0.78%) Big Data
7 3 (0.47%) Apache Hive
7 3 (0.47%) Blockchain
7 3 (0.47%) Hadoop
7 3 (0.47%) Redis
8 2 (0.31%) GIS
8 2 (0.31%) PostgreSQL
8 2 (0.31%) SQL Server 2008
9 1 (0.16%) Hazelcast
9 1 (0.16%) Oracle Database
9 1 (0.16%) SQL Server 2016
Development Applications
1 37 (5.74%) Metasploit
2 27 (4.19%) Burp Suite
3 20 (3.10%) AppScan
4 11 (1.71%) Git (software)
5 7 (1.09%) Paros
6 5 (0.78%) Jenkins
7 4 (0.62%) Atlassian Bamboo
7 4 (0.62%) Selenium
7 4 (0.62%) WebScarab
8 3 (0.47%) Bitbucket
8 3 (0.47%) CodeSonar
8 3 (0.47%) git-flow
8 3 (0.47%) JIRA
8 3 (0.47%) Robot Framework
8 3 (0.47%) Sonatype Nexus
9 2 (0.31%) Protractor
10 1 (0.16%) Jasmine
10 1 (0.16%) JHipster
10 1 (0.16%) Karma Test Runner
10 1 (0.16%) Vagrant
General
1 157 (24.34%) Finance
2 77 (11.94%) Banking
3 33 (5.12%) Legal
4 19 (2.95%) Law
5 16 (2.48%) Retail
6 15 (2.33%) Telecoms
7 10 (1.55%) Financial Institution
8 9 (1.40%) Marketing
9 4 (0.62%) Investment Banking
9 4 (0.62%) Spanish Language
10 3 (0.47%) Games
10 3 (0.47%) Multimedia
11 2 (0.31%) Advertising
11 2 (0.31%) Automotive
11 2 (0.31%) Electronics
11 2 (0.31%) Manufacturing
11 2 (0.31%) Military
12 1 (0.16%) German Language
12 1 (0.16%) iGaming
12 1 (0.16%) Publishing
Job Titles
1 128 (19.84%) Analyst
2 110 (17.05%) Security Analyst
3 108 (16.74%) Penetration Tester
3 108 (16.74%) Tester
4 95 (14.73%) Consultant
5 89 (13.80%) Security Consultant
6 85 (13.18%) Security Manager
7 79 (12.25%) Security Engineer
8 54 (8.37%) IT Engineer
9 49 (7.60%) IT Analyst
9 49 (7.60%) IT Security Analyst
10 46 (7.13%) Team Leader
11 45 (6.98%) IT Security Engineer
12 43 (6.67%) Senior Penetration Tester
12 43 (6.67%) Senior Tester
13 42 (6.51%) Security Officer
14 38 (5.89%) Senior Consultant
14 38 (5.89%) Senior Security Consultant
15 32 (4.96%) Information Security Officer
15 32 (4.96%) Operations Engineer
Libraries, Frameworks & Software Standards
1 46 (7.13%) .NET
2 25 (3.88%) J2EE
3 22 (3.41%) Web Services
4 20 (3.10%) HTML
5 16 (2.48%) XML
6 13 (2.02%) Node.js
7 11 (1.71%) RESTful
8 10 (1.55%) CGI
8 10 (1.55%) LAMP
9 9 (1.40%) CSS
9 9 (1.40%) OAuth
10 8 (1.24%) ASP.NET
10 8 (1.24%) OAuth2
10 8 (1.24%) SAML
10 8 (1.24%) Spring
11 7 (1.09%) SOAP
12 6 (0.93%) Hibernate
12 6 (0.93%) J2SE
13 5 (0.78%) JSP
13 5 (0.78%) XSL
Miscellaneous
1 69 (10.70%) Data Protection Act
2 61 (9.46%) Management Information System
3 60 (9.30%) Computer Science
4 35 (5.43%) Distributed Denial-of-Service
5 28 (4.34%) PKI
6 27 (4.19%) Cyberthreat
6 27 (4.19%) Data Centre
7 25 (3.88%) SCADA
8 21 (3.26%) Analytical Skills
9 18 (2.79%) Mobile App
10 16 (2.48%) Cyber Defence
11 14 (2.17%) Fintech
12 13 (2.02%) Cyber Attack
12 13 (2.02%) iPad
12 13 (2.02%) Security Operations Centre
13 10 (1.55%) BYOD
13 10 (1.55%) Public Cloud
14 9 (1.40%) Clustering
14 9 (1.40%) Enterprise Software
15 7 (1.09%) CESG
Operating Systems
1 167 (25.89%) Windows
2 122 (18.91%) Linux
3 69 (10.70%) Apple iOS
4 63 (9.77%) Windows Server
5 62 (9.61%) Unix
6 55 (8.53%) Android
7 25 (3.88%) Mac OS X
8 12 (1.86%) Windows Server 2012
9 11 (1.71%) Kali Linux
10 8 (1.24%) Windows Server 2008
11 2 (0.31%) Check Point GAiA
11 2 (0.31%) VMS
11 2 (0.31%) Windows 7
12 1 (0.16%) KNOPPIX
Processes & Methodologies
1 396 (61.40%) Information Security
2 275 (42.64%) Cybersecurity
3 171 (26.51%) SIEM
4 132 (20.47%) Vulnerability Scanning
5 123 (19.07%) Vulnerability Management
6 118 (18.29%) Security Architecture
7 114 (17.67%) Agile Software Development
8 97 (15.04%) Data Protection
9 93 (14.42%) ITIL
10 83 (12.87%) Security Operations
11 81 (12.56%) OWASP
12 70 (10.85%) Vulnerability Assessment
13 67 (10.39%) Risk Management
14 58 (8.99%) Security Testing
15 51 (7.91%) Data Loss Prevention
16 48 (7.44%) DRM
16 48 (7.44%) Stakeholder Management
17 43 (6.67%) Risk Assessment
18 42 (6.51%) Disaster Recovery
18 42 (6.51%) Project Management
Programming Languages
1 72 (11.16%) Java
2 52 (8.06%) Python
3 36 (5.58%) C++
4 28 (4.34%) C#
4 28 (4.34%) JavaScript
5 23 (3.57%) Ruby
5 23 (3.57%) SQL
6 19 (2.95%) Perl
7 18 (2.79%) C
8 13 (2.02%) PowerShell
9 12 (1.86%) Bash Shell
9 12 (1.86%) PHP
10 10 (1.55%) Objective-C
10 10 (1.55%) VB.NET
11 7 (1.09%) Shell Script
12 6 (0.93%) Scala
13 5 (0.78%) VB
14 4 (0.62%) Groovy
15 3 (0.47%) Go
16 2 (0.31%) Apple Swift
Qualifications
1 233 (36.12%) CISSP
2 152 (23.57%) CISM
3 92 (14.26%) Degree
4 89 (13.80%) CREST Certified
5 84 (13.02%) CEH
6 57 (8.84%) OSCP
7 56 (8.68%) CISA
8 55 (8.53%) Security Cleared
9 50 (7.75%) Cisco Certification
10 46 (7.13%) SANS
11 38 (5.89%) CHECK Team Leader
12 37 (5.74%) CCNA
13 35 (5.43%) GIAC
14 33 (5.12%) CCNP
15 28 (4.34%) Computer Science Degree
16 25 (3.88%) SSCP
17 19 (2.95%) GPEN
18 16 (2.48%) CHECK Team Member
18 16 (2.48%) CompTIA Security+
18 16 (2.48%) Security+ Certification
Quality Assurance & Compliance
1 202 (31.32%) ISO/IEC 27001
2 78 (12.09%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
3 73 (11.32%) PCI DSS
4 49 (7.60%) GDPR
5 26 (4.03%) COBIT
6 20 (3.10%) Cyber Essentials
7 9 (1.40%) Sarbanes-Oxley
7 9 (1.40%) SLA
8 3 (0.47%) ISO 22301
8 3 (0.47%) NIST 800
8 3 (0.47%) QA
9 2 (0.31%) HIPAA
10 1 (0.16%) ISO/IEC 27005
10 1 (0.16%) RMADS
System Software
1 94 (14.57%) Active Directory
2 17 (2.64%) Docker
3 14 (2.17%) Hyper-V
4 12 (1.86%) VMware Infrastructure
5 11 (1.71%) vSphere
6 8 (1.24%) ProxySG
7 6 (0.93%) Firmware
8 4 (0.62%) Virtual Machines
8 4 (0.62%) XenApp
9 2 (0.31%) KVM
10 1 (0.16%) Snort
10 1 (0.16%) Virtual Servers
10 1 (0.16%) VMware NSX
Systems Management
1 49 (7.60%) Nessus
2 13 (2.02%) Nmap
3 11 (1.71%) Core Impact
4 9 (1.40%) Microsoft Clustering
4 9 (1.40%) SCOM
5 7 (1.09%) Ansible
5 7 (1.09%) QRadar
6 6 (0.93%) McAfee ePO
6 6 (0.93%) Puppet
6 6 (0.93%) SCCM
7 5 (0.78%) Computer Emergency Response Teams
8 4 (0.62%) WMI
9 3 (0.47%) FortiGate
9 3 (0.47%) Host Intrusion Detection System
9 3 (0.47%) HP Fortify
9 3 (0.47%) Salt
9 3 (0.47%) SolarWinds Orion
9 3 (0.47%) WebInspect
9 3 (0.47%) XenMobile
10 2 (0.31%) OpenVAS
Vendors
1 70 (10.85%) Microsoft
2 67 (10.39%) Cisco
3 38 (5.89%) CheckPoint
4 35 (5.43%) Apple
5 19 (2.95%) Qualys
5 19 (2.95%) VMware
6 18 (2.79%) Palo Alto
7 14 (2.17%) Citrix
8 13 (2.02%) ArcSight
8 13 (2.02%) IBM
8 13 (2.02%) Juniper
8 13 (2.02%) Oracle
8 13 (2.02%) Splunk
9 12 (1.86%) Blue Coat
9 12 (1.86%) Darktrace
9 12 (1.86%) McAfee
9 12 (1.86%) Radware
10 11 (1.71%) SolarWinds
11 9 (1.40%) Xamarin
12 8 (1.24%) HP