The global penetration testing market reached an estimated $2.74 billion in 2025 and is on a trajectory toward $6–7 billion by 2033, driven by regulatory pressure, expanding attack surfaces, and a fundamental shift in how organizations think about security assurance. Regulatory mandates are hardening testing requirements across every major sector, artificial intelligence is reshaping both the attack surface and the testing toolkit, and the once-a-year assessment model is giving way to continuous, integrated programs. This report examines those forces and what they mean for security leaders.
DORA is fully in force as of January 2025, NIS2 implementation is accelerating, and PCI DSS v4.0's expanded testing requirements became mandatory in March 2025. Finance, healthcare, and critical infrastructure can no longer treat testing as optional.
Critical vulnerabilities in web applications increased 150% in 2024 versus the prior year. Broken access control remains the #1 finding for the third consecutive OWASP cycle, and cloud misconfiguration underlies 99% of cloud-related breaches.
Over 70% of organizations have adopted some form of Penetration Testing as a Service. PTaaS is growing at 29.1% CAGR - more than double the overall market - by delivering real-time visibility, continuous coverage, and platform integrations point-in-time assessments cannot.
AI and LLM deployments have created a new attack surface most testing programs do not cover. Simultaneously, AI-augmented tools enable faster reconnaissance and more consistent coverage - when deployed responsibly alongside qualified testers.
AI-augmented tooling partially offsets the availability gap, but the same capabilities are available to attackers. Providers who have not integrated AI meaningfully into their methodology risk falling behind the threat actors their clients are defending against.
The penetration testing market has moved beyond its niche origins as a compliance checkbox and into mainstream security strategy. Sustained double-digit growth, the emergence of dedicated PTaaS platforms, and increasing board-level visibility have transformed the market in a short period of time.
Sources: Fortune Business Insights; Grand View Research; Cognitive Market Research. 2033 bar shown at the $6.25–7.41B blended midpoint.
Penetration Testing as a Service has emerged as the fastest-growing segment in the market, with a projected 29.1% CAGR through 2029 - more than double the rate of traditional project-based testing. PTaaS platforms grew from approximately $118M in 2024 to an anticipated $301M by 2029 as organizations increasingly demand the real-time visibility, platform integrations, and continuous coverage that legacy engagements cannot provide.
Illustrative split of global market share. North America leads on regulated-industry density; Asia-Pacific carries the highest growth rate; European growth is accelerating directly from DORA and NIS2 enforcement.
The shift to PTaaS is not just a delivery preference - it reflects a fundamental change in how security teams want to consume testing. Buyers increasingly expect findings to surface in real time, integrate with existing ticketing and CI/CD workflows, and persist as tracked items rather than static PDFs. Providers who cannot meet these expectations will struggle to compete for the enterprise segment.
The single most significant near-term demand driver for penetration testing is regulatory enforcement. Three major frameworks reached critical milestones in 2025, and their combined effect is compelling organizations that historically treated testing as discretionary to embed it as a permanent operational requirement.
| Framework | Applies to | Pen-testing requirement | Status |
|---|---|---|---|
| DORA | EU financial entities & ICT third parties | Mandatory Threat-Led Penetration Testing (TLPT) every 3 years; third parties participate on request | In force · Jan 25 |
| NIS2 | EU critical & important sectors (18 categories) | Annual testing recommended for critical systems; incidents reported within 24–72 hours | Active · H2 25 |
| PCI DSS v4.0 | Any org. processing card payments | Expanded scope; authenticated scanning and targeted risk analysis now mandatory | Mandatory · Mar 25 |
| SEC Cyber Rules | US public companies | Material incidents disclosed within 4 business days; annual risk-management disclosure | Active · 24–25 |
| HIPAA / HITECH | US healthcare covered entities | Technical-safeguard controls require periodic evaluation; OCR emphasizes pen testing | Ongoing |
| FedRAMP Rev 5 | US federal contractors | NIST 800-53 Rev 5 controls include annual testing aligned to system categorization | Active |
Sources: European Banking Authority DORA Technical Standards; ENISA NIS2 Guidance; PCI SSC v4.0 Summary of Changes; U.S. SEC Final Rule on Cybersecurity Risk Management.
The regulatory wave is translating directly into budget growth. 85% of organizations increased their penetration testing budgets in 2024, and 87% of CISOs plan to maintain or grow investment through 2025. U.S. enterprises spend approximately $187,000 annually on penetration testing, with large enterprises (10,000+ employees) averaging $216,000.
However, budget pressure is also intensifying: 44% of CISOs cited budget constraints as a key limiting factor in 2025, nearly double the 24% who said the same in 2024. This creates a bifurcating market - organizations are spending more overall but increasingly scrutinising provider value and efficiency. CISOs are looking for providers who can demonstrate clear ROI through remediation tracking, trend data, and continuous coverage, not just an annual report.
DORA is the most prescriptive penetration testing mandate the financial sector has ever faced. It doesn't just require testing - it specifies threat-led methodology (TLPT), mandates third-party tester accreditation, and requires regulators to be involved in scoping for significant institutions. CISOs in scope should verify their chosen providers meet DORA's tester independence and qualification requirements before engagement.
Well-known vulnerability classes persist at alarming rates while cloud and AI-related exposures introduce new risk vectors many programs are not yet configured to address. The top findings of 2024–2025:
| # | Finding category | Prevalence | Severity |
|---|---|---|---|
| 01 | Broken Access Control | #1 OWASP - 3rd consecutive cycle | Critical |
| 02 | Server / Cloud Misconfiguration | 28.4% of web & API engagements | Critical |
| 03 | Cryptographic & TLS Failures | #2 OWASP - encryption weaknesses | High |
| 04 | Injection (SQLi, CMDi, XXE) | #5 OWASP - 38 associated CWEs | Critical |
| 05 | Broken Authentication / Session | #7 OWASP - weak tokens, MFA gaps | High |
| 06 | API: BOLA / Excessive Data Exposure | 29% of API-focused engagements | High |
| 07 | Overly Permissive IAM / Cloud Identity | 82% of cloud breaches: human IAM error | Critical |
| 08 | Unpatched & Vulnerable Components | #6 OWASP - dependency-chain exposure | High |
| 09 | Security Logging & Monitoring Failures | #9 OWASP - detection blind spots | Medium |
| 10 | Insecure Direct Object References | Common in custom web applications | High |
Sources: OWASP Top 10:2025; Deepstrike Penetration Testing Statistics 2025; Appsecure Cloud Security Statistics 2025; Fidelis Security threat research.
The sharp increase in critical and high-severity findings is not simply a reflection of better testing - it indicates that attack surfaces are genuinely expanding faster than defenses. The concentration of severe findings in smaller organizations is particularly notable: mid-market and growth-stage companies carry disproportionate risk relative to their security investment, making them attractive targets for financially motivated threat actors.
An estimated 99% of cloud security failures involve misconfiguration, with 82% attributed to human error in IAM policy design, storage-bucket permissions, or network-security-group rules. For security leaders, this means cloud security assessment should be a standard component of any program - not an optional add-on. Testers should explicitly evaluate IAM posture, storage exposure, workload security, and network configuration across AWS, Azure, and GCP, not just scan for known CVEs.
We consistently see organizations that conduct thorough application and network testing but have never had their cloud environment professionally assessed. Cloud misconfigurations are often invisible to internal teams precisely because they are legitimate configurations - just wrong ones. A qualified cloud security assessment is one of the highest-ROI tests an organization can commission.
Every organization deploying AI applications has introduced a new attack surface traditional testing is not designed to evaluate. The OWASP Top 10 for LLM Applications defines ten AI-specific risks - prompt injection, insecure output handling, training-data poisoning, model extraction. It requires testers with hands-on model-architecture and inference experience, not general-purpose testers applying web techniques to an AI endpoint.
Testers begin from a post-compromise position rather than attempting initial access, answering a question traditional testing often cannot: what can an attacker do once already inside? Starting from a compromised workstation or valid credentials, they evaluate lateral movement, privilege escalation, and the effectiveness of detection and response controls.
Red-team operators execute attack scenarios while the client's SOC observes, attempts detection, and tunes alerting in real time. The deliverable is not a list of findings - it is measurable improvement in detection coverage, validated SIEM rules, and defender skill development.
BAS platforms automate attacker TTPs against live defensive tooling to validate whether SIEM, EDR, and SOAR controls detect and respond correctly. Not a replacement for manual testing, but a meaningful continuous-validation layer between manual engagements.
The annual test is giving way to continuous, program-based models aligned with modern software delivery. 40% growth in continuous-testing adoption was recorded in 2024. For organizations running agile development or frequent cloud changes, point-in-time testing is structurally insufficient.
Supply-chain attacks rose 22% in 2025 and now represent 30% of all security incidents - yet very few testing programs include explicit third-party dependency analysis or simulated supply-chain exploitation. Security leaders should ask prospective providers how they approach supply-chain risk during scoping.
$10K–$35K per engagement. Best for compliance audits, point-in-time assurance, and new-technology assessments. Flat to declining as a share of new contracts.
Pre-purchased day-banks at reduced rates. Best for predictable but variable testing needs across multiple assets. Steady growth - preferred by mid-market.
Platform + tester access on an annual contract. Best for DevSecOps and high-change environments. 29.1% CAGR - fastest-growing segment.
The right procurement model depends on testing frequency, environment volatility, and how findings need to integrate with existing workflows. The table below summarises where each model fits.
| Model | Typical cost | Best fit | Trajectory |
|---|---|---|---|
| Project-Based | $10K–$35K / test | Compliance audits, point-in-time assurance, new-technology assessments | Flat to declining |
| Retainer / Credits | Pre-paid day-bank | Predictable but variable needs across multiple assets; mid-market programs | Steady growth |
| PTaaS Subscription | Annual contract | DevSecOps, high-change and cloud environments requiring continuous coverage | 29.1% CAGR - fastest |
Sources: GigaOm Radar for PTaaS v4 (2025); Deepstrike - Penetration Testing Cost 2026; Pentera - Global State of Pentesting 2025.
There is a significant gap between how frequently organizations want to test and how frequently they actually do. Historically, annual testing was standard; leading organizations have moved to quarterly assessments aligned with major releases; and early adopters of continuous models now test daily or with every release.
The limiting factors are consistent: 48% of organizations report testing less frequently than desired due to tester-availability constraints; 44% cite budget; and a significant portion simply lack the internal program-management capacity to run frequent engagements. PTaaS platforms address all three barriers - on-demand access, predictable subscription costs, and workflow automation that reduces the operational overhead of frequent engagements.
Buyers should align their procurement model to operational reality, not to habit. An organization shipping code weekly but testing annually is accepting a 51-week exposure window between assessments. The right question is not "how much does a pen test cost?" but "what is the cost of the gap between our tests?"
The quality of a penetration test is determined entirely by the skills of the people conducting it. The global talent shortage is therefore not just a market dynamic - it is a direct risk factor for buyers who do not scrutinise tester qualifications carefully.
| Certification | Issuing body | Employer demand | Focus |
|---|---|---|---|
| OSCP | Offensive Security | 35% of employers require | Hands-on exploitation; live lab-based exam |
| OSED / OSEP / OSWE | Offensive Security | High demand, specialised | Advanced exploitation, evasion, web attacks |
| GPEN / GWAPT / GXPN | GIAC / SANS | Strong - enterprise preferred | Network, web app, advanced testing |
| CEH | EC-Council | 30% of employers request | Broad ethical-hacking methodology |
| CREST CRT / CCT | CREST | Required for UK/EU regulated sectors | Assurance-grade testing standards |
| Security+ | CompTIA | 25% of employers request | Foundational - not sufficient for seniors |
Sources: Infosec Institute Top Pentesting Certifications 2025; Research.com Penetration Tester Career Data 2026; Deepstrike Certification Statistics 2025; ISC2 Workforce Study.
The global cybersecurity workforce gap stands at 4.8 million unfilled positions, with penetration testing among the most acutely affected specialisations. This shortage drives up the cost of quality testing and creates conditions where less rigorous providers field under-qualified testers to meet demand - producing a two-tier market.
Tier-one providers with deep, credentialed teams command premium rates and maintain waitlists; lower-cost providers increasingly rely on automation and junior staff. Buyers focused solely on price risk receiving assessments that miss the business-logic and chained-vulnerability findings that require experienced, creative testers to surface.
The appropriate response is not to simply buy the most expensive option - it is to ask the right qualification questions during procurement: Who specifically will work on my engagement? What certifications do they hold? What is the senior-to-junior ratio on a typical project? How does the provider validate tester quality over time? The Lion Security Marketplace evaluation framework formally assesses these dimensions for every listed provider.
Generative AI will reshape the talent challenge, though the direction is not straightforward. AI-augmented tooling can accelerate reconnaissance and help smaller teams cover more ground - but the same capabilities are available to attackers, who already use AI to discover vulnerabilities faster and scale attacks. Whatever delivery model an organization chooses, providers who have not integrated AI meaningfully into their methodology risk falling behind the threat actors their clients are defending against.
Every provider listed on the Lion Security Marketplace is evaluated against a structured framework, giving security leaders confidence that providers meet a defined quality threshold. Criteria are rated Foundational (baseline), Signature (differentiator), or Horizon (forward-looking).
| # | Category | What we evaluate |
|---|---|---|
| 01 | Tester Qualifications & Team Expertise | Certifications, team depth, senior-tester ratios, vertical experience |
| 02 | Testing Scope & Service Coverage | Core + advanced types: AI/LLM, cloud, IoT, purple team, assumed breach, physical |
| 03 | Methodology & Standards Compliance | PTES/OWASP/NIST alignment, MITRE ATT&CK mapping, PCI/SOC 2/HIPAA/DORA support |
| 04 | Platform & Technology Capabilities | Client portal, real-time findings, ASM, AI-assisted testing, CI/CD & SIEM integration |
| 05 | Reporting & Deliverables | Report quality, attack-path narratives, attestation letters, retests, compliance variants |
| 06 | Engagement Operations & Comms | Scoping, critical-finding SLAs, ChatOps, debrief quality, remediation retesting windows |
| 07 | Business & Operational Criteria | Pricing transparency, background screening, data handling, liability insurance, recognition |
| 08 | Core Competency & Focus Areas | Declared specialisations: continuous, red team, AI/LLM, assumed breach, BAS, purple team |
Highest qualification threshold - deep credentialed teams and broad Signature coverage.
Meets all Foundational criteria with meaningful Signature coverage.
Meets the baseline Foundational criteria for marketplace listing.
Tier placement is reviewed annually and adjusted on client feedback, re-evaluation, or material capability changes. The full criteria framework is available from Lion Security as a standalone reference.
The OWASP LLM Top 10 will become as familiar as the web-app Top 10. Providers who cannot demonstrate credible AI/LLM testing will be disqualified by organizations with material AI deployments - most of the enterprise market by end of 2026.
TLPT requirements are specific, auditor-reviewed, and cannot be met with standard commercial tests. In-scope institutions are discovering incumbents don't meet independence and documentation requirements - driving provider switching and consolidation around DORA-credentialed firms.
PTaaS maturity, CI/CD integration, and growing comfort with ongoing assessments will push continuous or quarterly testing into the mainstream enterprise segment. Annual-only programs become a compliance-minimum, not genuine assurance.
As detection investment (SIEM, EDR, SOAR) has grown, whether it actually works has become unavoidable. Mature security-operations teams will fold purple teaming into their annual assurance calendars alongside red and pen testing.
Private-equity interest and rising platform-capability requirements raise the cost of competition. Boutique providers will be acquired or absorbed. Buyers should assess provider stability and roadmap transparency - a provider acquired mid-engagement creates operational risk.
Automated platforms will make aggressive coverage and speed claims. The market will demand clearer disclosure of the human-vs-automated ratio, which finding categories humans validate, and the false-negative rate of automated-only testing for complex business-logic flaws.
All market data, statistics, and findings cited are drawn from independent third-party analyst reports, academic research, and industry studies published between 2024 and early 2026. Figures represent the external research landscape, not proprietary Lion Security data. Future editions will incorporate Marketplace proprietary data - provider assessment scores, aggregated engagement outcomes, and buyer-satisfaction metrics - clearly distinguished from externally sourced data.
| Category | Primary sources cited |
|---|---|
| Market Sizing | Fortune Business Insights; Grand View Research; Cognitive Market Research - Penetration Testing Forecast 2025–2033 |
| PTaaS Growth | GigaOm Radar for PTaaS v4 (2025); Omdia - The Penetration Testing Market in 2025 |
| Vulnerability Data | OWASP Top 10:2025; Deepstrike - 86 Penetration Testing Statistics 2025; Appsecure; Fidelis Security |
| Regulatory Frameworks | EBA DORA Technical Standards; ENISA NIS2 Guidance; PCI SSC v4.0; U.S. SEC Final Cybersecurity Disclosure Rule |
| Buying Patterns | Pentera - Global State of Pentesting 2025; Deepstrike - Penetration Testing Cost 2026; Blaze Infosec |
| Talent & Certs | Infosec Institute; Research.com; Deepstrike; ISC2 Cybersecurity Workforce Study |
| AI & Emerging Threats | OWASP Top 10 for LLM Applications; EPAM; OpenAI Security Research June 2025; MITRE ATLAS |
| Supply Chain | Deepstrike - Supply Chain Attack Statistics 2025; Commvault - Top Cloud Security Threats 2025 |
Lion Security is an offensive cybersecurity research and advisory firm that helps organisations select, compare, and manage penetration testing vendors and solutions. We're vendor-neutral, data-driven, and built by experts who've seen what works and what doesn't. The Lion Security Marketplace brings transparency, rigour, and buyer confidence to procurement - applying a published evaluation standard consistently to every listed provider.
The penetration testing market is transforming faster than most procurement processes can keep up with. Lion Security pre-vets providers against a published standard so security leaders can compare on capability, not just price.