Penetration Testing Job Trends

Penetration Testing
UK

The table below provides summary statistics and salary benchmarking for jobs requiring Penetration Testing skills. It covers permanent job vacancies from the 6 months leading up to 5 April 2026, with comparisons to the same periods in the previous two years.

 6 months to
5 Apr 2026		 Same period 2025 Same period 2024
Rank 442 379 410
Rank change year-on-year -63 +31 +79
Permanent jobs citing Penetration Testing 270 264 539
As % of all permanent jobs in the UK 0.33% 0.65% 0.59%
As % of the Processes & Methodologies category 0.44% 0.69% 0.69%
Number of salaries quoted 190 207 432
10th Percentile £42,500 £46,900 £38,750
25th Percentile £50,203 £58,750 £47,500
Median annual salary (50th Percentile) £67,500 £67,500 £62,500
Median % change year-on-year - +8.00% -9.68%
75th Percentile £90,000 £87,500 £82,500
90th Percentile £97,500 £95,000 £94,750
UK excluding London median annual salary £67,500 £67,500 £55,000
% change year-on-year - +22.73% -8.33%

All Process & Methodology Skills
UK

Penetration Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies requiring process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills 61,872 38,072 78,558
As % of all permanent jobs advertised in the UK 76.33% 93.03% 86.34%
Number of salaries quoted 38,257 22,481 58,309
10th Percentile £30,000 £31,250 £29,241
25th Percentile £40,000 £43,750 £40,000
Median annual salary (50th Percentile) £55,500 £60,000 £55,000
Median % change year-on-year -7.50% +9.09% -11.00%
75th Percentile £77,500 £80,000 £73,000
90th Percentile £97,500 £102,500 £92,500
UK excluding London median annual salary £50,000 £54,321 £50,000
% change year-on-year -7.95% +8.64% -8.41%

Penetration Testing
Job Vacancy Trend

Historical trend showing the proportion of permanent IT job postings citing Penetration Testing relative to all permanent IT jobs advertised.

Penetration Testing job vacancy trend in the UK

Penetration Testing
Salary Trend

Salary distribution trend for jobs in the UK citing Penetration Testing.

Salary distribution trend for jobs in the UK citing Penetration Testing

Penetration Testing
Salary Histogram

Salary distribution for jobs citing Penetration Testing over the 6 months to 5 April 2026.

Salary histogram for Penetration Testing in the UK

Penetration Testing
Top 15 Job Locations

The table below looks at the demand and provides a guide to the median salaries quoted in IT jobs citing Penetration Testing within the UK over the 6 months to 5 April 2026. The 'Rank Change' column provides an indication of the change in demand within each location based on the same 6 month period last year.

Location Rank Change
on Same Period
Last Year		 Matching
Permanent
IT Job Ads		 Median Salary
Past 6 Months		 Median Salary
% Change
on Same Period
Last Year		 Live
Jobs
England -56 234 £66,250 -1.85% 96
UK excluding London -68 138 £67,500 - 81
London -33 100 £77,500 +6.90% 31
Work from Home -10 99 £60,000 -17.24% 61
South West +4 52 £62,500 -7.41% 23
Midlands -45 26 £52,500 -22.22% 9
South East -56 23 £75,000 +13.21% 22
North of England -62 22 £63,750 +4.51% 14
West Midlands -28 16 £65,000 -3.70% 7
Scotland -26 13 £90,000 +21.21% 6
East Midlands -37 10 £51,058 +27.65% 2
Yorkshire -47 10 £57,500 +12.20% 7
North West -42 7 £56,000 -10.40% 7
North East -19 5 £75,000 +12.36%
East of England -22 3 £35,000 - 6

Penetration Testing
Co-Occurring Skills & Capabilities by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1 3 (1.11%) Confluence
1 3 (1.11%) Microsoft Exchange
1 3 (1.11%) SharePoint
2 2 (0.74%) IIS
3 1 (0.37%) Apache
3 1 (0.37%) Drupal
3 1 (0.37%) nginx
3 1 (0.37%) WordPress
Applications
1 3 (1.11%) Microsoft Excel
1 3 (1.11%) Microsoft Office
2 2 (0.74%) Weka
Business Applications
1 1 (0.37%) Exchequer
1 1 (0.37%) Magento
Cloud Services
1 67 (24.81%) Azure
2 57 (21.11%) AWS
3 21 (7.78%) GitHub
4 20 (7.41%) GCP
5 17 (6.30%) GitHub Actions
6 14 (5.19%) Microsoft 365
7 12 (4.44%) Azure Sentinel
8 10 (3.70%) Entra ID
9 9 (3.33%) Microsoft Purview
10 6 (2.22%) SaaS
11 5 (1.85%) Power Platform
12 4 (1.48%) Azure DevOps
12 4 (1.48%) Mimecast
13 3 (1.11%) Amazon EKS
13 3 (1.11%) AWS CloudFormation
13 3 (1.11%) Azure Key Vault
13 3 (1.11%) Slack
14 2 (0.74%) Dynamics 365
14 2 (0.74%) IaaS
14 2 (0.74%) PaaS
Communications & Networking
1 45 (16.67%) Firewall
2 27 (10.00%) Network Security
3 20 (7.41%) TCP/IP
3 20 (7.41%) Wireless
4 17 (6.30%) VPN
5 14 (5.19%) DNS
6 8 (2.96%) Intrusion Detection
6 8 (2.96%) VLAN
7 7 (2.59%) Cisco ISE
8 5 (1.85%) HTTP
8 5 (1.85%) Wi-Fi
9 4 (1.48%) Cisco Nexus
9 4 (1.48%) HTTPS
9 4 (1.48%) Internet
10 3 (1.11%) DHCP
10 3 (1.11%) DMZ
10 3 (1.11%) LAN
10 3 (1.11%) SSL
10 3 (1.11%) VoIP
10 3 (1.11%) WAN
Database & Business Intelligence
1 5 (1.85%) Power BI
2 3 (1.11%) SQL Server
2 3 (1.11%) Tableau
3 2 (0.74%) Amazon RDS
4 1 (0.37%) InterSystems Cache
4 1 (0.37%) MongoDB
4 1 (0.37%) Redis
Development Applications
1 29 (10.74%) Burp Suite
1 29 (10.74%) Metasploit
2 16 (5.93%) Jenkins
3 10 (3.70%) JIRA
4 6 (2.22%) Bitbucket
5 3 (1.11%) Git
6 2 (0.74%) IDA Disassembler
6 2 (0.74%) NUnit
7 1 (0.37%) Gatling
7 1 (0.37%) GitLab
7 1 (0.37%) JMeter
7 1 (0.37%) Vagrant
General
1 82 (30.37%) Finance
2 80 (29.63%) Social Skills
3 27 (10.00%) Public Sector
4 22 (8.15%) Analytical Skills
4 22 (8.15%) Inclusion and Diversity
5 20 (7.41%) Banking
6 18 (6.67%) Law
7 17 (6.30%) Retail
8 9 (3.33%) Legal
9 6 (2.22%) Marketing
9 6 (2.22%) Pharmaceutical
10 5 (1.85%) Influencing Skills
11 4 (1.48%) Presentation Skills
11 4 (1.48%) Telecoms
12 3 (1.11%) Aerospace
12 3 (1.11%) Financial Institution
12 3 (1.11%) Manufacturing
12 3 (1.11%) Military
13 2 (0.74%) Public Speaking
13 2 (0.74%) Social Housing
Job Titles
1 45 (16.67%) Consultant
2 42 (15.56%) Security Consultant
3 38 (14.07%) Analyst
3 38 (14.07%) Tester
4 37 (13.70%) Penetration Tester
5 31 (11.48%) Senior
6 30 (11.11%) Security Analyst
6 30 (11.11%) Security Engineer
7 24 (8.89%) Security Manager
8 23 (8.52%) Cybersecurity Consultant
9 21 (7.78%) Lead
10 18 (6.67%) Applications Engineer
10 18 (6.67%) Security Specialist
11 13 (4.81%) Senior Analyst
11 13 (4.81%) Senior Security Analyst
12 12 (4.44%) Team Leader
13 11 (4.07%) IT Manager
14 10 (3.70%) Test Team Leader
15 9 (3.33%) Digital Analyst
15 9 (3.33%) Senior Digital Analyst
Libraries, Frameworks & Software Standards
1 4 (1.48%) .NET
2 3 (1.11%) .NET Framework
3 2 (0.74%) AngularJS
3 2 (0.74%) ASP.NET
3 2 (0.74%) ASP.NET Core
3 2 (0.74%) Entity Framework
3 2 (0.74%) OpenAPI
3 2 (0.74%) RESTful
3 2 (0.74%) RxJS
3 2 (0.74%) Swagger
3 2 (0.74%) Vitest
4 1 (0.37%) ARM Templates
4 1 (0.37%) LDAP
4 1 (0.37%) Memcached
4 1 (0.37%) OAuth
4 1 (0.37%) OAuth2
4 1 (0.37%) OpenID
Miscellaneous
1 66 (24.44%) Security Posture
2 31 (11.48%) Mobile App
3 27 (10.00%) Cyber Defence
4 23 (8.52%) Cyber Threat
5 19 (7.04%) Management Information System
6 7 (2.59%) Blog
6 7 (2.59%) Data Centre
6 7 (2.59%) Insider Threat
6 7 (2.59%) Operational Technology
6 7 (2.59%) Self-Motivation
7 6 (2.22%) PKI
8 5 (1.85%) Cloud Native
8 5 (1.85%) Enterprise Software
8 5 (1.85%) Public Cloud
8 5 (1.85%) Security Operations Centre
9 4 (1.48%) Analytical Mindset
9 4 (1.48%) Cyber Security Posture
9 4 (1.48%) Data Protection Act
10 3 (1.11%) Onboarding
10 3 (1.11%) SCADA
Operating Systems
1 36 (13.33%) Linux
2 34 (12.59%) Windows
3 12 (4.44%) Android
3 12 (4.44%) Apple iOS
4 7 (2.59%) Unix
5 4 (1.48%) Windows Server
6 1 (0.37%) Kali Linux
6 1 (0.37%) Mac OS
6 1 (0.37%) Red Hat Enterprise Linux
6 1 (0.37%) Windows Server 2016
Processes & Methodologies
1 154 (57.04%) Cybersecurity
2 85 (31.48%) Incident Response
3 80 (29.63%) Red Team
4 64 (23.70%) Application Security
5 54 (20.00%) Information Security
6 52 (19.26%) Mentoring
6 52 (19.26%) Offensive Security
6 52 (19.26%) Problem-Solving
7 49 (18.15%) SIEM
8 48 (17.78%) Security Testing
9 46 (17.04%) Vulnerability Management
10 45 (16.67%) Agile
11 39 (14.44%) Threat Modelling
12 34 (12.59%) Cloud Security
13 33 (12.22%) Security Operations
14 32 (11.85%) Vulnerability Assessment
15 31 (11.48%) Business Strategy
15 31 (11.48%) Internal Audit
16 29 (10.74%) Coaching
16 29 (10.74%) Ethical Hacking
Programming Languages
1 63 (23.33%) Python
2 49 (18.15%) PowerShell
3 45 (16.67%) Bash
4 14 (5.19%) Go
4 14 (5.19%) Java
5 10 (3.70%) C
5 10 (3.70%) C++
6 8 (2.96%) C#
6 8 (2.96%) Perl
6 8 (2.96%) SQL
7 6 (2.22%) Ruby
8 3 (1.11%) Bicep
8 3 (1.11%) Objective-C
8 3 (1.11%) R
8 3 (1.11%) Rust
9 2 (0.74%) TypeScript
10 1 (0.37%) JavaScript
10 1 (0.37%) Kusto Query Language
10 1 (0.37%) PHP
10 1 (0.37%) Scala
Qualifications
1 97 (35.93%) CREST Certified
2 70 (25.93%) OSCP
3 68 (25.19%) CISSP
4 53 (19.63%) Security Cleared
5 50 (18.52%) Degree
6 43 (15.93%) SC Cleared
7 35 (12.96%) CHECK Team Member
8 30 (11.11%) CEH
9 28 (10.37%) Cisco Certification
10 25 (9.26%) CISM
11 24 (8.89%) CHECK Team Leader
12 21 (7.78%) CCSAM
13 19 (7.04%) CCNA
14 18 (6.67%) SANS
15 17 (6.30%) CompTIA Security+
15 17 (6.30%) DV Cleared
15 17 (6.30%) GIAC
16 14 (5.19%) GPEN
17 11 (4.07%) CCNP
17 11 (4.07%) CISA
Quality Assurance & Compliance
1 83 (30.74%) ISO/IEC 27001
2 49 (18.15%) NIST
3 40 (14.81%) GDPR
4 26 (9.63%) Cyber Essentials
5 20 (7.41%) Accessibility
6 19 (7.04%) Actionable Recommendations
7 18 (6.67%) PCI DSS
8 12 (4.44%) NCSC
9 10 (3.70%) Cyber Essentials PLUS
10 9 (3.33%) GRC
11 4 (1.48%) SOC 2
12 3 (1.11%) Data Quality
12 3 (1.11%) GxP
12 3 (1.11%) ITGC
12 3 (1.11%) NIST 800
12 3 (1.11%) RMADS
12 3 (1.11%) Sarbanes-Oxley
13 2 (0.74%) COBIT
13 2 (0.74%) ISO/IEC 27005
14 1 (0.37%) HIPAA
System Software
1 23 (8.52%) Active Directory
2 6 (2.22%) VMware Infrastructure
3 4 (1.48%) Virtual Machines
4 3 (1.11%) Docker
4 3 (1.11%) VMware ESXi
5 2 (0.74%) EMC RecoverPoint
5 2 (0.74%) Hyper-V
5 2 (0.74%) vSphere
6 1 (0.37%) Virtual Desktop
Systems Management
1 21 (7.78%) Nessus
2 19 (7.04%) Nmap
3 14 (5.19%) Kubernetes
4 7 (2.59%) Microsoft Intune
4 7 (2.59%) Terraform
5 5 (1.85%) Ansible
5 5 (1.85%) CSIRT
6 4 (1.48%) Single Sign-On
7 3 (1.11%) ArcSight ESM
7 3 (1.11%) FortiGate
7 3 (1.11%) QRadar
8 2 (0.74%) Progress Chef
8 2 (0.74%) VxRail
9 1 (0.37%) CASB
9 1 (0.37%) Consul
9 1 (0.37%) Jamf Pro
9 1 (0.37%) Packer
9 1 (0.37%) Puppet
9 1 (0.37%) Red Hat Satellite
Vendors
1 61 (22.59%) Microsoft
2 14 (5.19%) Cisco
2 14 (5.19%) Splunk
3 10 (3.70%) Sophos
4 9 (3.33%) VMware
5 8 (2.96%) Zscaler
6 7 (2.59%) CheckPoint
6 7 (2.59%) Fortinet
7 5 (1.85%) Qualys
7 5 (1.85%) TOWER Software
8 4 (1.48%) CrowdStrike
8 4 (1.48%) Okta
8 4 (1.48%) Oracle
8 4 (1.48%) ServiceNow
8 4 (1.48%) Tenable
9 3 (1.11%) ArcSight
9 3 (1.11%) CyberArk
9 3 (1.11%) Dell
9 3 (1.11%) McAfee
9 3 (1.11%) Palo Alto
120 Penetration Testing jobs Nationwide