Hybrid/Remote Penetration Testing Job Trends, Salaries & Related Skills

Penetration Testing
UK > Work from Home

The table below provides summary statistics and salary benchmarking for remote or hybrid work requiring Penetration Testing skills. It covers permanent job vacancies from the 6 months leading up to 9 March 2026, with comparisons to the same periods in the previous two years.

	6 months to 9 Mar 2026	Same period 2025	Same period 2024
Rank	309	303	328
Rank change year-on-year	-6	+25	+73
Permanent jobs citing Penetration Testing	83	121	238
As % of all permanent jobs with remote/hybrid work options	0.50%	0.86%	0.80%
As % of the Processes & Methodologies category	0.59%	0.90%	0.86%
Number of salaries quoted	65	93	206
10^th Percentile	£42,500	£52,500	£41,250
25^th Percentile	£48,165	£61,250	£48,750
Median annual salary (50^th Percentile)	£60,000	£70,000	£60,000
Median % change year-on-year	-14.29%	+16.67%	-11.11%
75^th Percentile	£77,500	£88,750	£87,500
90^th Percentile	£97,500	£95,000	£105,000
UK median annual salary	£72,500	£69,750	£64,902
% change year-on-year	+3.94%	+7.47%	-6.21%

All Process & Methodology Skills
Work from Home

Penetration Testing falls under the Processes and Methodologies category. For comparison with the information above, the following table provides summary statistics for all permanent job vacancies with remote or hybrid options requiring process or methodology skills.

Permanent vacancies with a requirement for process or methodology skills	14,111	13,408	27,557
As % of all permanent jobs with a WFH option	85.24%	95.41%	92.21%
Number of salaries quoted	9,199	8,890	22,844
10^th Percentile	£31,250	£34,750	£34,000
25^th Percentile	£42,500	£46,250	£42,500
Median annual salary (50^th Percentile)	£60,000	£62,500	£57,500
Median % change year-on-year	-4.00%	+8.70%	-8.00%
75^th Percentile	£80,000	£81,250	£75,772
90^th Percentile	£100,000	£102,500	£95,000
UK median annual salary	£55,000	£60,000	£55,000
% change year-on-year	-8.33%	+9.09%	-11.78%

Penetration Testing
Job Vacancy Trend for Remote/Hybrid Jobs

Historical trend showing the proportion of permanent IT job postings citing Penetration Testing and offering remote or hybrid work options relative to all permanent IT jobs advertised.

Penetration Testing
Salary Trend for Remote/Hybrid Jobs

Salary distribution trend for jobs with remote/hybrid work options citing Penetration Testing.

Penetration Testing
Salary Histogram for Remote/Hybrid Jobs

Salary distribution for jobs with remote/hybrid work options citing Penetration Testing over the 6 months to 9 March 2026.

Penetration Testing salary histogram for jobs with remote/hybrid work options

Penetration Testing
Top 30 Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs

For the 6 months to 9 March 2026, Penetration Testing job roles required the following skills and capabilities in order of popularity. The figures indicate the absolute number of co-occurrences and as a proportion of all permanent jobs with hybrid or remote work options and a requirement for Penetration Testing.

1	55 (66.27%)	Cybersecurity
2	34 (40.96%)	ISO/IEC 27001
3	32 (38.55%)	Incident Response
4	28 (33.73%)	CREST Certified
5	25 (30.12%)	OSCP
6	23 (27.71%)	Information Security
7	22 (26.51%)	AWS
7	22 (26.51%)	Microsoft
8	21 (25.30%)	Security Cleared
9	20 (24.10%)	CISSP
9	20 (24.10%)	Firewall
9	20 (24.10%)	GDPR
10	19 (22.89%)	Azure
10	19 (22.89%)	Degree
11	16 (19.28%)	Burp Suite

11	16 (19.28%)	Metasploit
11	16 (19.28%)	SC Cleared
11	16 (19.28%)	SIEM
12	15 (18.07%)	Cyber Essentials
12	15 (18.07%)	Nmap
12	15 (18.07%)	Problem-Solving
12	15 (18.07%)	Red Team
13	14 (16.87%)	Actionable Insight
13	14 (16.87%)	Actionable Recommendations
13	14 (16.87%)	Offensive Security
14	13 (15.66%)	Application Security
14	13 (15.66%)	CHECK Team Member
14	13 (15.66%)	Disaster Recovery
14	13 (15.66%)	Nessus
14	13 (15.66%)	Python

Penetration Testing
Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs by Category

The following tables expand on the one above by listing co-occurrences grouped by category. They cover the same employment type, locality and period, with up to 20 co-occurrences shown in each category:

Application Platforms
1	3 (3.61%)	Microsoft Exchange
1	3 (3.61%)	SharePoint
2	1 (1.20%)	Confluence

Applications
1	3 (3.61%)	Microsoft Excel
1	3 (3.61%)	Microsoft Office

Cloud Services
1	22 (26.51%)	AWS
2	19 (22.89%)	Azure
3	10 (12.05%)	GCP
4	4 (4.82%)	Entra ID
5	3 (3.61%)	IBM Cloud
5	3 (3.61%)	Microsoft 365
5	3 (3.61%)	Mimecast
5	3 (3.61%)	Power Platform
6	2 (2.41%)	SaaS
7	1 (1.20%)	Amazon EKS
7	1 (1.20%)	AWS CloudFormation
7	1 (1.20%)	Azure DevOps
7	1 (1.20%)	Azure Monitor
7	1 (1.20%)	Azure Sentinel
7	1 (1.20%)	GitHub

Communications & Networking
1	20 (24.10%)	Firewall
2	11 (13.25%)	TCP/IP
3	8 (9.64%)	Network Security
4	7 (8.43%)	VPN
5	5 (6.02%)	Wireshark
6	4 (4.82%)	Ethernet
6	4 (4.82%)	Wi-Fi
7	3 (3.61%)	Cisco ISE
7	3 (3.61%)	Cisco Nexus
7	3 (3.61%)	DMARC
7	3 (3.61%)	Intrusion Detection
7	3 (3.61%)	VLAN
8	2 (2.41%)	DNS
8	2 (2.41%)	HTTP
9	1 (1.20%)	ICMP
9	1 (1.20%)	Modbus
9	1 (1.20%)	SSH
9	1 (1.20%)	Wireless

Database & Business Intelligence
1	3 (3.61%)	Power BI
1	3 (3.61%)	Tableau

Development Applications
1	16 (19.28%)	Burp Suite
1	16 (19.28%)	Metasploit
2	1 (1.20%)	IDA Disassembler
2	1 (1.20%)	JIRA

General
1	42 (50.60%)	Social Skills
2	14 (16.87%)	Retail
3	13 (15.66%)	Banking
4	12 (14.46%)	Public Sector
5	11 (13.25%)	Inclusion and Diversity
6	9 (10.84%)	Analytical Skills
7	8 (9.64%)	Finance
8	7 (8.43%)	Law
9	4 (4.82%)	Electronics
10	3 (3.61%)	Marketing
11	1 (1.20%)	Back Office
11	1 (1.20%)	Documentation Skills
11	1 (1.20%)	Financial Institution
11	1 (1.20%)	Investment Banking
11	1 (1.20%)	Legal
11	1 (1.20%)	Manufacturing

Job Titles
1	22 (26.51%)	Tester
2	21 (25.30%)	Penetration Tester
3	14 (16.87%)	Security Specialist
4	11 (13.25%)	Senior
5	10 (12.05%)	Security Manager
6	9 (10.84%)	Analyst
7	8 (9.64%)	IT Manager
7	8 (9.64%)	Senior Penetration Tester
7	8 (9.64%)	Senior Tester
8	7 (8.43%)	Threat Intelligence Specialist
9	5 (6.02%)	Head of Professional Services
9	5 (6.02%)	Security Analyst
9	5 (6.02%)	Security Engineer
10	4 (4.82%)	Auditor
10	4 (4.82%)	Cybersecurity Analyst
10	4 (4.82%)	Cybersecurity Engineer
10	4 (4.82%)	Data Analyst
10	4 (4.82%)	IT Auditor
10	4 (4.82%)	Lead
10	4 (4.82%)	Security Consultant

Libraries, Frameworks & Software Standards
1	1 (1.20%)	.NET
1	1 (1.20%)	JSON

Miscellaneous
1	23 (27.71%)	Security Posture
2	12 (14.46%)	Cyber Threat
3	7 (8.43%)	Cyber Defence
3	7 (8.43%)	Insider Threat
4	6 (7.23%)	Mobile App
5	4 (4.82%)	Analytical Mindset
5	4 (4.82%)	Data Centre
5	4 (4.82%)	Enterprise Software
5	4 (4.82%)	Operational Technology
5	4 (4.82%)	Security Operations Centre
5	4 (4.82%)	Self-Motivation
6	3 (3.61%)	Cloud Native
6	3 (3.61%)	Cyberattack
6	3 (3.61%)	PKI
7	2 (2.41%)	Public Cloud
8	1 (1.20%)	Driving Licence
8	1 (1.20%)	Linux Command Line
8	1 (1.20%)	Raspberry Pi
8	1 (1.20%)	Renewable Energy
8	1 (1.20%)	Web Conferencing

Operating Systems
1	10 (12.05%)	Windows
2	9 (10.84%)	Android
2	9 (10.84%)	Apple iOS
2	9 (10.84%)	Linux
3	3 (3.61%)	Unix
3	3 (3.61%)	Windows Server
4	1 (1.20%)	Kali Linux
4	1 (1.20%)	Mac OS

Processes & Methodologies
1	55 (66.27%)	Cybersecurity
2	32 (38.55%)	Incident Response
3	23 (27.71%)	Information Security
4	16 (19.28%)	SIEM
5	15 (18.07%)	Problem-Solving
5	15 (18.07%)	Red Team
6	14 (16.87%)	Actionable Insight
6	14 (16.87%)	Offensive Security
7	13 (15.66%)	Application Security
7	13 (15.66%)	Disaster Recovery
8	12 (14.46%)	Cloud Security
8	12 (14.46%)	Ethical Hacking
8	12 (14.46%)	SDLC
9	11 (13.25%)	Threat Modelling
9	11 (13.25%)	Vulnerability Management
10	10 (12.05%)	Decision-Making
10	10 (12.05%)	Security Testing
10	10 (12.05%)	Threat Intelligence
11	9 (10.84%)	Reverse Engineering
11	9 (10.84%)	Security Monitoring

Programming Languages
1	13 (15.66%)	Python
2	8 (9.64%)	C
2	8 (9.64%)	C++
2	8 (9.64%)	Java
3	7 (8.43%)	Go
4	4 (4.82%)	PowerShell
5	3 (3.61%)	C#
5	3 (3.61%)	R
5	3 (3.61%)	SQL
6	2 (2.41%)	Bash
7	1 (1.20%)	JavaScript
7	1 (1.20%)	Perl
7	1 (1.20%)	Ruby

Qualifications
1	28 (33.73%)	CREST Certified
2	25 (30.12%)	OSCP
3	21 (25.30%)	Security Cleared
4	20 (24.10%)	CISSP
5	19 (22.89%)	Degree
6	16 (19.28%)	SC Cleared
7	13 (15.66%)	CHECK Team Member
8	12 (14.46%)	CCNA
8	12 (14.46%)	Cisco Certification
9	11 (13.25%)	CEH
10	10 (12.05%)	CompTIA Security+
10	10 (12.05%)	GPEN
10	10 (12.05%)	Microsoft Certification
10	10 (12.05%)	Microsoft Certified Professional
11	9 (10.84%)	Cyber Scheme
11	9 (10.84%)	GIAC
12	7 (8.43%)	CISMP
12	7 (8.43%)	MCSE
13	5 (6.02%)	CCNP
13	5 (6.02%)	GCIA

Quality Assurance & Compliance
1	34 (40.96%)	ISO/IEC 27001
2	20 (24.10%)	GDPR
3	15 (18.07%)	Cyber Essentials
4	14 (16.87%)	Actionable Recommendations
5	9 (10.84%)	Cyber Essentials PLUS
5	9 (10.84%)	NIST
5	9 (10.84%)	PCI DSS
6	6 (7.23%)	GRC
7	3 (3.61%)	Data Quality
7	3 (3.61%)	NCSC
8	1 (1.20%)	Accessibility
8	1 (1.20%)	NIST 800
8	1 (1.20%)	QA
8	1 (1.20%)	SOC 2

System Software
1	7 (8.43%)	Active Directory
2	3 (3.61%)	VMware ESXi
2	3 (3.61%)	VMware Infrastructure

Systems Management
1	15 (18.07%)	Nmap
2	13 (15.66%)	Nessus
3	8 (9.64%)	Kubernetes
4	3 (3.61%)	CSIRT
4	3 (3.61%)	Proxmox
5	2 (2.41%)	Terraform
6	1 (1.20%)	Microsoft Intune
6	1 (1.20%)	Single Sign-On

Vendors
1	22 (26.51%)	Microsoft
2	10 (12.05%)	Cisco
3	3 (3.61%)	CheckPoint
3	3 (3.61%)	Fortinet
3	3 (3.61%)	IBM
3	3 (3.61%)	Okta
3	3 (3.61%)	Oracle
3	3 (3.61%)	Sophos
3	3 (3.61%)	Splunk
3	3 (3.61%)	Veeam
3	3 (3.61%)	VMware
3	3 (3.61%)	Zscaler
4	2 (2.41%)	Qualys
5	1 (1.20%)	Google

Penetration TestingUK > Work from Home

All Process & Methodology SkillsWork from Home

Penetration TestingJob Vacancy Trend for Remote/Hybrid Jobs

Penetration TestingSalary Trend for Remote/Hybrid Jobs

Penetration TestingSalary Histogram for Remote/Hybrid Jobs

Penetration TestingTop 30 Co-Occurring Skills & Capabilities in Remote/Hybrid Jobs

Penetration TestingCo-Occurring Skills & Capabilities in Remote/Hybrid Jobs by Category