Salary guide · 2026
Penetration Tester salary guide
Benchmark penetration tester pay across the UK, Germany and the US. Updated from live Haystack market data.
- UK£65k–£90k
- Germany€70k–€95k
- United States$120k–$165k
Mid-level base salary
Salary benchmark
Pay across the band - at a glance
Base benchmarks across the UK, Germany and US. Drill into a country below for localised ranges.
GBP · base salary
Junior
£45k–£60k
Mid
£65k–£90k
Senior
£95k–£135k
EUR · base salary
Junior
€45k–€65k
Mid
€70k–€95k
Senior
€100k–€140k
USD · base salary
Junior
$85k–$110k
Mid
$120k–$165k
Senior
$175k–$250k
Side-by-side
Penetration Tester salary by country
Base salary in local currency. US runs materially higher, especially in the Bay Area and NYC, where TC > base.
| Metric | United Kingdom | Germany | United States |
|---|---|---|---|
| Junior (0–3 yrs) | £45k–£60k | €45k–€65k | $85k–$110k |
| Mid (3–6 yrs) | £65k–£90k | €70k–€95k | $120k–$165k |
| Senior (6+ yrs) | £95k–£135k | €100k–€140k | $175k–$250k |
| Typical notice | 1–2 months | 3 months | 2 weeks |
| Cities live | 8 | 8 | 8 |
10–20%
Specialist skill premium
Candidates with specialist skills like Burp Suite, Metasploit, Web AppSec, Cloud Pentest reliably command 10–20% above generalists at the same seniority - and offers close faster.
Where the talent lives
Penetration Tester pay by city
Hotter colours mean higher local pay vs the country average. Click any city for a localised benchmark.
UK
8 cities · GBPDE
8 cities · EURSalary context
The penetration tester hiring playbook
Penetration Tester specialist or generalist - which should you hire?
The honest answer depends on the half-life of your penetration tester surface area. If you expect to keep investing in Burp Suite and Metasploit work over the next 18-24 months, a specialist penetration tester will out-deliver a generalist on day-30 throughput and stakeholder confidence.
If your team is under ten people, or penetration tester responsibilities are spread across two or three roles already, hire a strong generalist who has shipped this work in anger at least twice. The cross-disciplinary pattern recognition will pay for itself the first time priorities collide.
On Haystack we surface both - filtered by whether the candidate self-identifies as a penetration tester specialist and verified against their last two roles. Expect to pay around £65k–£90k for a mid-level UK hire, scaling toward £95k–£135k for senior.
What strong penetration testers actually bring
A great penetration tester is not the one with the longest CV - it is the one who has owned a hard Burp Suite call and changed how they work because of how it landed. Across the engineering hires we have placed in 2025-2026, the same patterns keep showing up.
- Active mentorship of at least one other penetration tester or adjacent role - usually a junior - within the first quarter.
- Versioned, observable penetration tester work - measurable outputs, structured logs of decisions, and a clear rollback path on every change.
- Documented trade-off notes on the calls they made, including the option they rejected and why.
- An opinion on what NOT to do with Burp Suite, backed by an example where adding it would have hurt the team.
Red flags when interviewing penetration testers
Every discipline has its own pattern of plausible-sounding answers that fall apart in production. For penetration testers, these are the patterns that most often correlate with a six-month regret hire on the employer side.
- Cannot name a single penetration tester project where they removed scope rather than added it.
- Defines "senior penetration tester" purely by years of experience, not by the scope of decisions they own.
- Lists Burp Suite on the CV but cannot describe a single trade-off they hit in production - all framework, no friction.
- Treats the penetration tester role as a job title rather than a problem to solve - no opinion on what they would change about how the discipline is typically practised.
What to expect in the first 30 days from a Haystack penetration tester hire
By week one, the new penetration tester should have shipped a small, low-risk artefact to production or a stakeholder - a docs fix, a small process change, a first review on someone else's work. The goal is to validate the loop, not to ship anything heroic.
By week two, the penetration tester is shadowing the active workstreams, attending standups in observe-mode, and asking pointed questions about why specific decisions were made. If they are not asking those questions, the hire is going to plateau.
By day 30, they own one cleanly-scoped slice of the penetration tester surface area, have published a public ramp-up doc, and are the named point of contact for stakeholders inside that slice. Every Haystack employer gets a structured onboarding template, so you are not reinventing the playbook each hire.
Keep exploring
Drill in further
Per-country guides and other tools for hiring this role.
Context
What drives penetration tester pay?
Penetration testers turn 'we think we are secure' into 'here are the eight things to fix this quarter'.
Pay varies primarily with seniority, location, and sector. The UK and Germany cluster within ~10% of each other on base salary; the US runs materially higher - particularly in the Bay Area and New York, where total compensation (base, bonus, equity) is the more meaningful benchmark.
Hiring a penetration tester?
Get matched with vetted, interview-ready candidates and skip the cold sourcing.