Hybrid/Remote Penetration Testing Job Trends, Salaries & Related Skills

Penetration Testing
UK > Work from Home

The table below provides summary statistics and salary benchmarking for remote or hybrid work requiring Penetration Testing skills. It covers permanent job vacancies from the 6 months leading up to 2 March 2026, with comparisons to the same periods in the previous two years.

	6 months to 2 Mar 2026	Same period 2025	Same period 2024
Rank	313	287	327
Rank change year-on-year	-26	+40	+84
Permanent jobs citing Penetration Testing	81	128	221
As % of all permanent jobs with remote/hybrid work options	0.49%	0.87%	0.78%
As % of the Processes & Methodologies category	0.58%	0.92%	0.84%
Number of salaries quoted	63	89	192
10^th Percentile	£42,500	£52,500	£42,500
25^th Percentile	£48,165	£61,250	£48,750
Median annual salary (50^th Percentile)	£60,000	£70,000	£60,000
Median % change year-on-year	-14.29%	+16.67%	-11.11%
75^th Percentile	£73,750	£88,750	£87,500
90^th Percentile	£97,250	£95,000	£105,000
UK median annual salary	£72,367	£70,000	£65,000
% change year-on-year	+3.38%	+7.69%	-6.07%

All Process & Methodology Skills
Work from Home

Penetration Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies with remote or hybrid options requiring process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills	14,057	13,953	26,346
As % of all permanent jobs with a WFH option	85.59%	95.12%	92.40%
Number of salaries quoted	9,126	8,602	21,863
10^th Percentile	£30,994	£35,500	£34,500
25^th Percentile	£42,500	£47,500	£42,725
Median annual salary (50^th Percentile)	£60,000	£62,500	£57,500
Median % change year-on-year	-4.00%	+8.70%	-8.00%
75^th Percentile	£80,000	£82,500	£76,250
90^th Percentile	£100,000	£103,750	£95,000
UK median annual salary	£55,000	£60,000	£55,000
% change year-on-year	-8.33%	+9.09%	-12.00%

Penetration Testing
Job Vacancy Trend for Remote/Hybrid Jobs

Historical trend showing the proportion of permanent IT job postings citing Penetration Testing and offering remote or hybrid work options relative to all permanent IT jobs advertised.

Penetration Testing
Salary Trend for Remote/Hybrid Jobs

Salary distribution trend for jobs with remote/hybrid work options citing Penetration Testing.

Penetration Testing
Salary Histogram for Remote/Hybrid Jobs

Salary distribution for jobs with remote/hybrid work options citing Penetration Testing over the 6 months to 2 March 2026.

Penetration Testing salary histogram for jobs with remote/hybrid work options

Penetration Testing
Top 30 Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs

For the 6 months to 2 March 2026, Penetration Testing job roles required the following skills and capabilities in order of popularity. The figures indicate the absolute number of co-occurrences and as a proportion of all permanent jobs with hybrid or remote work options and a requirement for Penetration Testing.

1	54 (66.67%)	Cybersecurity
2	32 (39.51%)	ISO/IEC 27001
3	29 (35.80%)	Incident Response
4	28 (34.57%)	CREST Certified
5	25 (30.86%)	OSCP
6	23 (28.40%)	CISSP
7	22 (27.16%)	AWS
8	21 (25.93%)	Information Security
8	21 (25.93%)	Microsoft
8	21 (25.93%)	Security Cleared
9	19 (23.46%)	Degree
10	18 (22.22%)	Azure
11	17 (20.99%)	Firewall
12	16 (19.75%)	Burp Suite
12	16 (19.75%)	GDPR

12	16 (19.75%)	Metasploit
12	16 (19.75%)	Problem-Solving
12	16 (19.75%)	SC Cleared
13	15 (18.52%)	Nmap
13	15 (18.52%)	Python
13	15 (18.52%)	Red Team
13	15 (18.52%)	SIEM
14	14 (17.28%)	Application Security
14	14 (17.28%)	Cyber Essentials
14	14 (17.28%)	Offensive Security
15	13 (16.05%)	CHECK Team Member
15	13 (16.05%)	Nessus
15	13 (16.05%)	SDLC
16	12 (14.81%)	Actionable Insight
16	12 (14.81%)	Actionable Recommendations

Penetration Testing
Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1	3 (3.70%)	Microsoft Exchange
1	3 (3.70%)	SharePoint
2	1 (1.23%)	Confluence

Applications
1	4 (4.94%)	Microsoft Excel
1	4 (4.94%)	Microsoft Office
2	1 (1.23%)	GNU Octave

Cloud Services
1	22 (27.16%)	AWS
2	18 (22.22%)	Azure
3	10 (12.35%)	GCP
4	4 (4.94%)	Entra ID
4	4 (4.94%)	Power Platform
5	3 (3.70%)	IBM Cloud
5	3 (3.70%)	Microsoft 365
6	2 (2.47%)	Mimecast
7	1 (1.23%)	Amazon EKS
7	1 (1.23%)	AWS CloudFormation
7	1 (1.23%)	GitHub
7	1 (1.23%)	SaaS

Communications & Networking
1	17 (20.99%)	Firewall
2	12 (14.81%)	TCP/IP
3	7 (8.64%)	Network Security
4	6 (7.41%)	VPN
5	5 (6.17%)	Wireshark
6	4 (4.94%)	Ethernet
6	4 (4.94%)	Wi-Fi
7	3 (3.70%)	DMARC
7	3 (3.70%)	VLAN
8	2 (2.47%)	Cisco ISE
8	2 (2.47%)	Cisco Nexus
8	2 (2.47%)	DNS
8	2 (2.47%)	HTTP
8	2 (2.47%)	Intrusion Detection
9	1 (1.23%)	ICMP
9	1 (1.23%)	Modbus
9	1 (1.23%)	SSH
9	1 (1.23%)	Wireless

Database & Business Intelligence
1	4 (4.94%)	Power BI
1	4 (4.94%)	Tableau

Development Applications
1	16 (19.75%)	Burp Suite
1	16 (19.75%)	Metasploit
2	1 (1.23%)	IDA Disassembler
2	1 (1.23%)	JIRA

General
1	41 (50.62%)	Social Skills
2	14 (17.28%)	Retail
3	13 (16.05%)	Banking
4	12 (14.81%)	Public Sector
5	11 (13.58%)	Inclusion and Diversity
6	10 (12.35%)	Analytical Skills
7	7 (8.64%)	Finance
7	7 (8.64%)	Law
8	4 (4.94%)	Electronics
9	3 (3.70%)	Marketing
10	1 (1.23%)	Back Office
10	1 (1.23%)	Documentation Skills
10	1 (1.23%)	Financial Institution
10	1 (1.23%)	Investment Banking
10	1 (1.23%)	Legal
10	1 (1.23%)	Manufacturing

Job Titles
1	22 (27.16%)	Tester
2	21 (25.93%)	Penetration Tester
3	13 (16.05%)	Security Specialist
4	12 (14.81%)	Senior
5	9 (11.11%)	Analyst
5	9 (11.11%)	IT Manager
6	8 (9.88%)	Security Manager
6	8 (9.88%)	Senior Penetration Tester
6	8 (9.88%)	Senior Tester
7	7 (8.64%)	Threat Intelligence Specialist
8	5 (6.17%)	Auditor
8	5 (6.17%)	Consultant
8	5 (6.17%)	Cybersecurity Engineer
8	5 (6.17%)	IT Auditor
8	5 (6.17%)	Security Analyst
8	5 (6.17%)	Security Consultant
8	5 (6.17%)	Security Engineer
9	4 (4.94%)	Audit Manager
9	4 (4.94%)	Data Analyst
9	4 (4.94%)	Internal Auditor

Libraries, Frameworks & Software Standards
1	1 (1.23%)	.NET
1	1 (1.23%)	JSON
1	1 (1.23%)	PyTorch
1	1 (1.23%)	TensorFlow

Miscellaneous
1	23 (28.40%)	Security Posture
2	10 (12.35%)	Cyber Threat
3	7 (8.64%)	Insider Threat
4	6 (7.41%)	Cyber Defence
4	6 (7.41%)	Mobile App
5	5 (6.17%)	Security Operations Centre
6	4 (4.94%)	Analytical Mindset
6	4 (4.94%)	Data Centre
6	4 (4.94%)	Enterprise Software
6	4 (4.94%)	Operational Technology
6	4 (4.94%)	Self-Motivation
7	3 (3.70%)	Cloud Native
7	3 (3.70%)	Cyberattack
7	3 (3.70%)	PKI
8	2 (2.47%)	Public Cloud
9	1 (1.23%)	Cyber Security Posture
9	1 (1.23%)	Linux Command Line
9	1 (1.23%)	Renewable Energy
9	1 (1.23%)	SCADA
9	1 (1.23%)	Web Conferencing

Operating Systems
1	11 (13.58%)	Windows
2	10 (12.35%)	Linux
3	9 (11.11%)	Android
3	9 (11.11%)	Apple iOS
4	4 (4.94%)	Unix
5	3 (3.70%)	Windows Server
6	1 (1.23%)	Kali Linux
6	1 (1.23%)	Mac OS

Processes & Methodologies
1	54 (66.67%)	Cybersecurity
2	29 (35.80%)	Incident Response
3	21 (25.93%)	Information Security
4	16 (19.75%)	Problem-Solving
5	15 (18.52%)	Red Team
5	15 (18.52%)	SIEM
6	14 (17.28%)	Application Security
6	14 (17.28%)	Offensive Security
7	13 (16.05%)	SDLC
8	12 (14.81%)	Actionable Insight
8	12 (14.81%)	Cloud Security
9	11 (13.58%)	Ethical Hacking
9	11 (13.58%)	Threat Modelling
10	10 (12.35%)	Decision-Making
10	10 (12.35%)	Disaster Recovery
10	10 (12.35%)	Security Testing
10	10 (12.35%)	Threat Intelligence
11	9 (11.11%)	Reverse Engineering
11	9 (11.11%)	Vulnerability Management
12	8 (9.88%)	Open Source

Programming Languages
1	15 (18.52%)	Python
2	8 (9.88%)	C
2	8 (9.88%)	C++
2	8 (9.88%)	Java
3	7 (8.64%)	Go
4	4 (4.94%)	R
4	4 (4.94%)	SQL
5	3 (3.70%)	C#
5	3 (3.70%)	PowerShell
6	2 (2.47%)	Bash
7	1 (1.23%)	JavaScript
7	1 (1.23%)	Perl
7	1 (1.23%)	Ruby

Qualifications
1	28 (34.57%)	CREST Certified
2	25 (30.86%)	OSCP
3	23 (28.40%)	CISSP
4	21 (25.93%)	Security Cleared
5	19 (23.46%)	Degree
6	16 (19.75%)	SC Cleared
7	13 (16.05%)	CHECK Team Member
8	12 (14.81%)	CCNA
8	12 (14.81%)	Cisco Certification
9	11 (13.58%)	CEH
9	11 (13.58%)	CompTIA Security+
10	10 (12.35%)	GPEN
10	10 (12.35%)	Microsoft Certification
10	10 (12.35%)	Microsoft Certified Professional
11	9 (11.11%)	Cyber Scheme
11	9 (11.11%)	GIAC
12	7 (8.64%)	CISMP
12	7 (8.64%)	MCSE
13	6 (7.41%)	CISA
13	6 (7.41%)	GCIA

Quality Assurance & Compliance
1	32 (39.51%)	ISO/IEC 27001
2	16 (19.75%)	GDPR
3	14 (17.28%)	Cyber Essentials
4	12 (14.81%)	Actionable Recommendations
5	9 (11.11%)	NIST
6	8 (9.88%)	PCI DSS
7	7 (8.64%)	Cyber Essentials PLUS
8	5 (6.17%)	GRC
9	3 (3.70%)	Data Quality
9	3 (3.70%)	NCSC
10	2 (2.47%)	NIST 800
11	1 (1.23%)	Accessibility
11	1 (1.23%)	QA

System Software
1	7 (8.64%)	Active Directory
2	3 (3.70%)	VMware ESXi
2	3 (3.70%)	VMware Infrastructure

Systems Management
1	15 (18.52%)	Nmap
2	13 (16.05%)	Nessus
3	8 (9.88%)	Kubernetes
4	3 (3.70%)	CSIRT
4	3 (3.70%)	Proxmox
5	1 (1.23%)	Microsoft Intune
5	1 (1.23%)	Single Sign-On
5	1 (1.23%)	Terraform

Vendors
1	21 (25.93%)	Microsoft
2	9 (11.11%)	Cisco
3	4 (4.94%)	Oracle
4	3 (3.70%)	IBM
4	3 (3.70%)	Veeam
4	3 (3.70%)	VMware
5	2 (2.47%)	CheckPoint
5	2 (2.47%)	Fortinet
5	2 (2.47%)	Okta
5	2 (2.47%)	Qualys
5	2 (2.47%)	Sophos
5	2 (2.47%)	Splunk
5	2 (2.47%)	Zscaler
6	1 (1.23%)	Google

Penetration TestingUK > Work from Home

All Process & Methodology SkillsWork from Home

Penetration TestingJob Vacancy Trend for Remote/Hybrid Jobs

Penetration TestingSalary Trend for Remote/Hybrid Jobs

Penetration TestingSalary Histogram for Remote/Hybrid Jobs

Penetration TestingTop 30 Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs

Penetration TestingCo-Occurring Skills & Capabilities in Remote/Hybrid Jobs by Category