Period
to 22 November 2017

The median annual salary for a Penetration Tester was £47,500 in advertised job vacancies in the South East during the 6 months to 22 November 2017.

The first table below provides salary benchmarking and summary statistics including a comparison to same period in the previous 2 years.

Penetration Tester
England > South East
6 months to
22 Nov 2017
Same period 2016 Same period 2015
Rank 502 520 622
Rank change year-on-year +18 +102 +17
Permanent jobs requiring a Penetration Tester 53 78 22
As % of all permanent IT jobs advertised in the South East 0.17% 0.22% 0.052%
As % of the Job Titles category 0.18% 0.23% 0.054%
Number of salaries quoted 49 69 15
South East median annual salary £47,500 £50,000 £65,000
Median salary % change year-on-year -5.00% -23.08% +30.00%
10th Percentile £35,000 £34,450 £49,900
90th Percentile £77,500 £110,000 £75,000
England median annual salary £65,000 £55,000 £55,000
% change year-on-year +18.18% - -

The following table is for comparison with the above and includes summary statistics for all permanent IT job vacancies advertised in the South East. Most job vacancies include a discernible job title that can be normalized. As such, the figures in the second row provide an indication of the number of permanent jobs in our overall sample.

All Permanent IT Job Vacancies
South East
Permanent vacancies in the South East with a recognized job title 29733 34136 40912
% of permanent IT jobs with a recognized job title 96.62% 96.98% 96.87%
Number of salaries quoted 24803 28632 34129
South East median annual salary £45,000 £45,000 £44,000
Median salary % change year-on-year - +2.27% +3.53%
10th Percentile £26,250 £26,250 £25,500
90th Percentile £67,500 £67,500 £65,000
England median annual salary £50,000 £47,500 £46,250
% change year-on-year +5.26% +2.70% +2.78%

Penetration Tester
Job Vacancy Trend in the South East

Job postings that featured Penetration Tester in the job title as a percentage of all IT jobs advertised in the South East.

Job vacancy trend for Penetration Tester in the South East

Penetration Tester
Salary Trend in the South East

This chart provides the 3-month moving average for salaries quoted in permanent IT jobs citing Penetration Tester in the South East.

Salary trend for Penetration Tester in the South East

Penetration Tester
Salary Histogram in the South East

The salary distribution of IT jobs citing Penetration Tester in the South East over the 6 months to 22 November 2017.

Salary histogram for Penetration Tester in the South East

Penetration Tester
Job Locations in the South East

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Penetration Tester within the South East region over the 6 months to 22 November 2017. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year
Matching
Permanent
IT Job Ads
Median Salary
Past 6 Months
Median Salary
% Change
on Same Period
Last Year
Live
Job
Vacancies
Thames Valley +2 25 £45,000 -10.00% 6
Surrey +17 17 £45,000 -14.29% 4
Oxfordshire -45 17 £45,000 -10.00% 3
Hampshire +10 9 £66,000 -7.37% 1
Berkshire +40 5 £72,500 +31.82% 1
Buckinghamshire - 3 £53,750 - 2
Penetration Tester
England

Penetration Tester Skill Set
Top 30 Co-occurring IT Skills in the South East

For the 6 months to 22 November 2017, Penetration Tester job roles required the following IT skills in order of popularity. The figures indicate the number co-occurrences and its proportion to all job ads across the South East region featuring Penetration Tester in the job title.

1 45 (84.91%) Penetration Testing
2 22 (41.51%) Java
3 21 (39.62%) CREST Certified
4 20 (37.74%) Information Security
5 19 (35.85%) Ethical Hacking
5 19 (35.85%) Security Testing
6 18 (33.96%) OWASP
7 17 (32.08%) Degree
7 17 (32.08%) CEH
8 16 (30.19%) OSCP
9 13 (24.53%) TCP/IP
10 12 (22.64%) CISSP
10 12 (22.64%) CISM
10 12 (22.64%) Cybersecurity
11 11 (20.75%) Windows
12 10 (18.87%) HTML
12 10 (18.87%) Customer Engagement
13 9 (16.98%) Mobile App
14 8 (15.09%) Information Assurance
14 8 (15.09%) Node.js
14 8 (15.09%) Splunk
14 8 (15.09%) C++
14 8 (15.09%) Perl
14 8 (15.09%) Linux
14 8 (15.09%) Unix
15 7 (13.21%) VB.NET
15 7 (13.21%) .NET
15 7 (13.21%) PHP
15 7 (13.21%) Risk Management
15 7 (13.21%) CHECK Team Member

Penetration Tester Skill Set
Co-occurring IT Skills in the South East by Category

The follow tables expand on the table above by listing co-occurrences grouped by category. The same job type, locality and period is covered with up to 20 co-occurrences shown in each of the following categories:

Business Applications
1 5 (9.43%) Payment Gateway
Cloud Services
1 3 (5.66%) SaaS
Communications & Networking
1 13 (24.53%) TCP/IP
2 6 (11.32%) Network Security
3 5 (9.43%) Internet
4 1 (1.89%) Firewall
4 1 (1.89%) SMS
Development Applications
1 3 (5.66%) Metasploit
2 2 (3.77%) AppScan
General
1 6 (11.32%) Finance
2 5 (9.43%) Legal
3 4 (7.55%) Retail
4 3 (5.66%) Aerospace
4 3 (5.66%) Automotive
5 1 (1.89%) Banking
5 1 (1.89%) Financial Institution
5 1 (1.89%) Games
Libraries, Frameworks & Software Standards
1 10 (18.87%) HTML
2 8 (15.09%) Node.js
3 7 (13.21%) .NET
4 5 (9.43%) ASP.NET Web API
4 5 (9.43%) HTML5
4 5 (9.43%) JSON
4 5 (9.43%) RESTful
4 5 (9.43%) Web Services
4 5 (9.43%) XML
5 2 (3.77%) REST
Miscellaneous
1 9 (16.98%) Mobile App
2 5 (9.43%) Computer Science
2 5 (9.43%) Management Information System
3 2 (3.77%) CESG
4 1 (1.89%) Embedded Systems
4 1 (1.89%) iPad
4 1 (1.89%) SCADA
Operating Systems
1 11 (20.75%) Windows
2 8 (15.09%) Linux
2 8 (15.09%) Unix
3 5 (9.43%) Android
3 5 (9.43%) Apple iOS
Processes & Methodologies
1 45 (84.91%) Penetration Testing
2 20 (37.74%) Information Security
3 19 (35.85%) Ethical Hacking
3 19 (35.85%) Security Testing
4 18 (33.96%) OWASP
5 12 (22.64%) Cybersecurity
6 10 (18.87%) Customer Engagement
7 8 (15.09%) Information Assurance
8 7 (13.21%) Risk Management
9 6 (11.32%) Mentoring
9 6 (11.32%) Vulnerability Assessment
10 5 (9.43%) Data Protection
11 4 (7.55%) Social Engineering
12 3 (5.66%) Logistics
13 2 (3.77%) Cyber Threat Intelligence
13 2 (3.77%) Reverse Engineering
13 2 (3.77%) Stakeholder Management
13 2 (3.77%) Threat Intelligence
13 2 (3.77%) Vulnerability Management
14 1 (1.89%) Protective Monitoring
Programming Languages
1 22 (41.51%) Java
2 8 (15.09%) C++
2 8 (15.09%) Perl
3 7 (13.21%) PHP
3 7 (13.21%) VB.NET
4 6 (11.32%) C
5 5 (9.43%) Shell Script
6 3 (5.66%) Ruby
7 2 (3.77%) C#
7 2 (3.77%) Python
7 2 (3.77%) SQL
Qualifications
1 21 (39.62%) CREST Certified
2 17 (32.08%) CEH
2 17 (32.08%) Degree
3 16 (30.19%) OSCP
4 12 (22.64%) CISM
4 12 (22.64%) CISSP
5 7 (13.21%) CHECK Team Member
6 5 (9.43%) Computer Science Degree
6 5 (9.43%) Security Cleared
7 4 (7.55%) CHECK Team Leader
7 4 (7.55%) SC Cleared
8 3 (5.66%) Cyber Scheme
9 2 (3.77%) SANS
10 1 (1.89%) DV Cleared
Quality Assurance & Compliance
1 2 (3.77%) ISO/IEC 27001
1 2 (3.77%) ISO/IEC 27002 (supersedes ISO/IEC 17799)
2 1 (1.89%) Cyber Essentials
2 1 (1.89%) GDPR
2 1 (1.89%) IASME
2 1 (1.89%) QA
Systems Management
1 3 (5.66%) Nessus
1 3 (5.66%) Nmap
2 2 (3.77%) WebInspect
Vendors
1 8 (15.09%) Splunk