Period
to 18 January 2019

The following table provides summary statistics for permanent job vacancies advertised in London with a requirement for Penetration Testing skills. Included is a benchmarking guide to the salaries offered in vacancies that have cited Penetration Testing over the 6 months to 18 January 2019 with a comparison to the same period in the previous 2 years.

Penetration Testing
England > London
6 months to
18 Jan 2019
Same period 2018 Same period 2017
Rank 348 365 325
Rank change year-on-year +17 -40 +151
Permanent jobs citing Penetration Testing 553 604 708
As % of all permanent IT jobs advertised in London 0.88% 0.86% 1.00%
As % of the Processes & Methodologies category 0.95% 0.92% 1.09%
Number of salaries quoted 417 523 608
London median annual salary £68,000 £65,000 £65,000
Median salary % change year-on-year +4.62% - +8.33%
10th Percentile £45,000 £40,100 £41,100
90th Percentile £101,000 £92,500 £86,250
England median annual salary £60,000 £57,500 £60,000
% change year-on-year +4.35% -4.17% +9.09%

Penetration Testing is in the Processes and Methodologies category. The following table is for comparison with the above and provides summary statistics for all permanent job vacancies advertised in London with a requirement for process or methodology skills.

All Process and Methodology Skills
London
Permanent vacancies with a requirement for process or methodology skills 57,921 65,506 65,241
As % of all permanent IT jobs advertised in London 92.02% 93.17% 92.10%
Number of salaries quoted 46,739 52,429 55,611
London median annual salary £62,500 £60,000 £58,000
Median salary % change year-on-year +4.17% +3.45% +5.45%
10th Percentile £35,000 £35,000 £33,560
90th Percentile £95,000 £91,250 £89,000
England median annual salary £52,500 £50,000 £50,000
% change year-on-year +5.00% - +5.26%

Penetration Testing
Job Vacancy Trend in London

Job postings citing Penetration Testing as a percentage of all IT jobs advertised in London.

Job vacancy trend for Penetration Testing in London

Penetration Testing
Salary Trend in London

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Penetration Testing in London.

Salary trend for Penetration Testing in London

Penetration Testing
Salary Histogram in London

The salary distribution of IT jobs citing Penetration Testing in London over the 6 months to 18 January 2019.

Salary histogram for Penetration Testing in London

Penetration Testing
Job Locations in London

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Penetration Testing within the London region over the 6 months to 18 January 2019. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
Central London +59 154 £75,000 +11.11% 17
West London +35 19 £65,000 +4.00% 8
North London +17 5 £36,500 -32.09% 1
South London -12 5 £60,000 -13.67%
East London +2 3 £90,000 +38.46% 5
Penetration Testing
England

For the 6 months to 18 January 2019, IT jobs citing Penetration Testing also mentioned the following skills in order of popularity. The figures indicate the absolute number co-occurrences and as a proportion of all permanent job ads across the London region with a requirement for Penetration Testing.

1 288 (52.08%) Cybersecurity
2 273 (49.37%) Information Security
3 199 (35.99%) CISSP
4 149 (26.94%) Windows
5 134 (24.23%) Finance
6 130 (23.51%) SIEM
7 125 (22.60%) Linux
8 114 (20.61%) CISM
9 111 (20.07%) Firewall
10 100 (18.08%) ISO/IEC 27001
11 98 (17.72%) Security Testing
12 86 (15.55%) Vulnerability Assessment
13 85 (15.37%) Vulnerability Management
14 83 (15.01%) CEH
15 81 (14.65%) Degree
16 77 (13.92%) TCP/IP
17 76 (13.74%) CREST Certified
18 72 (13.02%) GDPR
19 70 (12.66%) Java
20 68 (12.30%) Network Security
21 67 (12.12%) Security Architecture
21 67 (12.12%) CISA
22 65 (11.75%) Ethical Hacking
23 64 (11.57%) Python
24 62 (11.21%) Risk Management
25 58 (10.49%) Cisco
25 58 (10.49%) C#
26 57 (10.31%) Microsoft
27 56 (10.13%) Vulnerability Scanning
28 55 (9.95%) OWASP

Penetration Testing
Co-occurring IT Skills in London by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Application Platforms
1 19 (3.44%) Confluence
2 9 (1.63%) IIS
3 6 (1.08%) MS Exchange
4 4 (0.72%) Apache
4 4 (0.72%) SharePoint Server
4 4 (0.72%) WebSphere
4 4 (0.72%) WebSphere Application Server
5 3 (0.54%) SharePoint
5 3 (0.54%) Umbraco
6 2 (0.36%) Apache Pig
6 2 (0.36%) Apache Solr
6 2 (0.36%) Jupyter
7 1 (0.18%) CMS
7 1 (0.18%) DNN
Applications
1 10 (1.81%) Microsoft Office
2 9 (1.63%) Microsoft PowerPoint
3 5 (0.90%) Microsoft Excel
4 4 (0.72%) MS Visio
Business Applications
1 3 (0.54%) RiskWrite
Cloud Services
1 47 (8.50%) Microsoft Azure
2 46 (8.32%) SaaS
3 37 (6.69%) Amazon AWS
4 31 (5.61%) Google Cloud Platform
5 11 (1.99%) Office 365
6 6 (1.08%) BlazeMeter
7 5 (0.90%) Mimecast
8 3 (0.54%) PaaS
9 2 (0.36%) Google Drive
9 2 (0.36%) OpenDNS
9 2 (0.36%) Serverless
10 1 (0.18%) Amazon EC2
10 1 (0.18%) Slack
Communications & Networking
1 111 (20.07%) Firewall
2 77 (13.92%) TCP/IP
3 68 (12.30%) Network Security
4 36 (6.51%) Internet
5 35 (6.33%) Intrusion Detection
6 27 (4.88%) Wireless
7 21 (3.80%) BGP
7 21 (3.80%) Cisco Nexus
7 21 (3.80%) EIGRP
8 20 (3.62%) IPsec
9 12 (2.17%) HTTP
9 12 (2.17%) LAN
9 12 (2.17%) VPN
10 11 (1.99%) WAN
11 10 (1.81%) Wireshark
12 7 (1.27%) Cisco IOS
12 7 (1.27%) Wireless Security
13 6 (1.08%) DNS
14 5 (0.90%) DKIM
14 5 (0.90%) DMARC
Database & Business Intelligence
1 19 (3.44%) Big Data
2 6 (1.08%) Blockchain
3 4 (0.72%) DB2
3 4 (0.72%) MySQL
3 4 (0.72%) Power BI
4 3 (0.54%) NoSQL
5 2 (0.36%) Apache Hive
5 2 (0.36%) Hadoop
5 2 (0.36%) MongoDB
5 2 (0.36%) PostgreSQL
5 2 (0.36%) SQL Server
6 1 (0.18%) Data Warehouse
6 1 (0.18%) NonStop SQL
Development Applications
1 30 (5.42%) JIRA
2 27 (4.88%) Metasploit
3 21 (3.80%) Selenium
4 20 (3.62%) Burp Suite
5 16 (2.89%) Android Studio
5 16 (2.89%) Cucumber
5 16 (2.89%) Xcode
6 10 (1.81%) Git (software)
7 8 (1.45%) Appium
7 8 (1.45%) JMeter
7 8 (1.45%) LoadRunner
8 6 (1.08%) SoapUI
8 6 (1.08%) SpecFlow
9 5 (0.90%) Visual Studio
10 4 (0.72%) Atlassian Bamboo
10 4 (0.72%) Rational Application Developer
10 4 (0.72%) Subversion
11 3 (0.54%) AppScan
12 2 (0.36%) Jenkins
12 2 (0.36%) Paros
General
1 134 (24.23%) Finance
2 42 (7.59%) Banking
3 29 (5.24%) Retail
4 24 (4.34%) Legal
5 14 (2.53%) Law
6 9 (1.63%) Marketing
6 9 (1.63%) Telecoms
7 5 (0.90%) Advertising
8 3 (0.54%) Investment Banking
9 2 (0.36%) Electronics
9 2 (0.36%) Games
9 2 (0.36%) Manufacturing
10 1 (0.18%) Hungarian Language
10 1 (0.18%) Military
Job Titles
1 100 (18.08%) Analyst
2 98 (17.72%) Tester
3 82 (14.83%) Security Analyst
4 77 (13.92%) Penetration Tester
5 75 (13.56%) Security Engineer
5 75 (13.56%) Security Manager
6 52 (9.40%) Consultant
7 47 (8.50%) Security Consultant
8 40 (7.23%) Cybersecurity Analyst
9 39 (7.05%) Security Specialist
10 33 (5.97%) Senior Security Engineer
11 30 (5.42%) Head of Security
12 25 (4.52%) Cybersecurity Consultant
13 23 (4.16%) Information Security Manager
14 22 (3.98%) Security Officer
15 21 (3.80%) Information Manager
16 20 (3.62%) Application Security Specialist
16 20 (3.62%) Applications Specialist
16 20 (3.62%) Information Analyst
16 20 (3.62%) Information Security Analyst
Libraries, Frameworks & Software Standards
1 34 (6.15%) .NET
2 26 (4.70%) Elastic Stack
2 26 (4.70%) Node.js
3 20 (3.62%) Web Services
4 19 (3.44%) RESTful
4 19 (3.44%) SailPoint
5 16 (2.89%) Dagger
6 15 (2.71%) HTML
7 11 (1.99%) ASP.NET
8 8 (1.45%) .NET Framework
8 8 (1.45%) JDBC
9 6 (1.08%) Java EE
10 5 (0.90%) ASP.NET Web API
10 5 (0.90%) Django
10 5 (0.90%) J2EE
10 5 (0.90%) Regular Expression
11 4 (0.72%) CSS
11 4 (0.72%) JSP
11 4 (0.72%) LDAP
11 4 (0.72%) React
Miscellaneous
1 51 (9.22%) Management Information System
1 51 (9.22%) Mobile App
2 31 (5.61%) Cyberattack
3 30 (5.42%) Self-Motivation
4 27 (4.88%) Fintech
5 19 (3.44%) Analytical Skills
6 12 (2.17%) Cyberthreat
7 11 (1.99%) BYOD
8 9 (1.63%) Cybercrime
8 9 (1.63%) Distributed Denial-of-Service
9 8 (1.45%) Data Centre
9 8 (1.45%) Enterprise Software
9 8 (1.45%) PKI
10 7 (1.27%) Cyber Defence
10 7 (1.27%) Data Protection Act
10 7 (1.27%) Hybrid Cloud
10 7 (1.27%) Security Operations Centre
11 5 (0.90%) Cyber Kill Chain
11 5 (0.90%) Public Cloud
12 4 (0.72%) Greenfield Project
Operating Systems
1 149 (26.94%) Windows
2 125 (22.60%) Linux
3 33 (5.97%) Android
3 33 (5.97%) Apple iOS
4 29 (5.24%) Unix
5 20 (3.62%) Kali Linux
5 20 (3.62%) Windows Server
6 8 (1.45%) CentOS
7 7 (1.27%) Windows 7
7 7 (1.27%) Windows Server 2008
8 4 (0.72%) Mac OS X
9 3 (0.54%) Solaris
9 3 (0.54%) Ubuntu
9 3 (0.54%) Windows Server 2012
10 2 (0.36%) Debian
10 2 (0.36%) Red Hat Enterprise Linux
10 2 (0.36%) Windows 10
11 1 (0.18%) Mac OS
11 1 (0.18%) Windows 8
Processes & Methodologies
1 288 (52.08%) Cybersecurity
2 273 (49.37%) Information Security
3 130 (23.51%) SIEM
4 98 (17.72%) Security Testing
5 86 (15.55%) Vulnerability Assessment
6 85 (15.37%) Vulnerability Management
7 67 (12.12%) Security Architecture
8 65 (11.75%) Ethical Hacking
9 62 (11.21%) Risk Management
10 56 (10.13%) Vulnerability Scanning
11 55 (9.95%) OWASP
12 54 (9.76%) Security Operations
13 46 (8.32%) Data Loss Prevention
14 45 (8.14%) Identity Access Management
15 44 (7.96%) Open Source
15 44 (7.96%) Risk Assessment
16 42 (7.59%) Analytics
17 41 (7.41%) Agile Software Development
18 40 (7.23%) Test Automation
19 39 (7.05%) Computer Science
Programming Languages
1 70 (12.66%) Java
2 64 (11.57%) Python
3 58 (10.49%) C#
4 48 (8.68%) PowerShell
5 41 (7.41%) C++
6 40 (7.23%) C
7 21 (3.80%) Ruby
8 20 (3.62%) SQL
9 19 (3.44%) Perl
10 18 (3.25%) JavaScript
11 17 (3.07%) PHP
12 12 (2.17%) Bash Shell
13 9 (1.63%) VB
14 8 (1.45%) Go
15 6 (1.08%) Shell Script
16 2 (0.36%) Lua
16 2 (0.36%) Objective-C
16 2 (0.36%) VB.NET
17 1 (0.18%) T-SQL
Qualifications
1 199 (35.99%) CISSP
2 114 (20.61%) CISM
3 83 (15.01%) CEH
4 81 (14.65%) Degree
5 76 (13.74%) CREST Certified
6 67 (12.12%) CISA
7 54 (9.76%) SANS
8 50 (9.04%) Cisco Certification
8 50 (9.04%) OSCP
9 42 (7.59%) GIAC
9 42 (7.59%) Security Cleared
10 39 (7.05%) CCNA
11 29 (5.24%) Computer Science Degree
12 23 (4.16%) CCNP
13 21 (3.80%) SC Cleared
14 19 (3.44%) CCIE
14 19 (3.44%) DV Cleared
14 19 (3.44%) GISF
15 17 (3.07%) GPEN
16 16 (2.89%) OSCE
Quality Assurance & Compliance
1 100 (18.08%) ISO/IEC 27001
2 72 (13.02%) GDPR
3 28 (5.06%) PCI DSS
4 21 (3.80%) Cyber Essentials
5 19 (3.44%) MiFID
6 16 (2.89%) QA
7 15 (2.71%) COBIT
7 15 (2.71%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
8 4 (0.72%) ISO 22301
9 3 (0.54%) Cyber Essentials PLUS
10 2 (0.36%) FINRA
11 1 (0.18%) Data Quality
11 1 (0.18%) ISO 9001
11 1 (0.18%) PMBOK
11 1 (0.18%) Sarbanes-Oxley
11 1 (0.18%) SLA
11 1 (0.18%) Web Application Security Consortium
System Software
1 32 (5.79%) Snort
2 15 (2.71%) Docker
3 14 (2.53%) Active Directory
4 12 (2.17%) VMware Infrastructure
5 6 (1.08%) Hyper-V
6 5 (0.90%) KVM
7 2 (0.36%) Squid
7 2 (0.36%) vSphere
8 1 (0.18%) Virtual Servers
Systems Management
1 48 (8.68%) Nessus
2 30 (5.42%) SCCM
3 22 (3.98%) McAfee ePO
4 19 (3.44%) OSSEC
5 18 (3.25%) QRadar
6 17 (3.07%) Nexpose
7 12 (2.17%) EnCase
8 11 (1.99%) Ansible
8 11 (1.99%) Suricata
9 10 (1.81%) Terraform
10 9 (1.63%) FTK
10 9 (1.63%) Nmap
10 9 (1.63%) WSUS
11 8 (1.45%) Kubernetes
12 6 (1.08%) Network Intrusion Detection System
13 5 (0.90%) IBM BigFix
13 5 (0.90%) OpenVAS
13 5 (0.90%) Prometheus
13 5 (0.90%) SCOM
14 4 (0.72%) Tivoli
Vendors
1 58 (10.49%) Cisco
2 57 (10.31%) Microsoft
3 46 (8.32%) Splunk
4 41 (7.41%) Palo Alto
5 33 (5.97%) CheckPoint
6 32 (5.79%) LogRhythm
6 32 (5.79%) McAfee
7 29 (5.24%) Symantec
8 28 (5.06%) Qualys
9 27 (4.88%) FireEye
10 23 (4.16%) Juniper
11 21 (3.80%) Google
12 20 (3.62%) Blue Coat
13 19 (3.44%) Aveksa
13 19 (3.44%) IBM
14 16 (2.89%) ArcSight
15 15 (2.71%) ServiceNow
16 13 (2.35%) VMware
17 11 (1.99%) CyberArk
18 10 (1.81%) Forcepoint