Cybersecurity certification cost & salary table 2026
74 cybersecurity certifications, ranked by salary midpoint by default. Click any column header to re-sort by cost, study time, or salary. Sources: ISC2, ISACA, EC-Council, CompTIA, GIAC, Offensive Security, and INE published rates as of 2026; salary ranges synthesized from Robert Half, Burning Glass, and Indeed labor data with cross-checks against Kudelski Security and IANS Research.
A single sortable view of every cert in the catalog — useful for budget planning, study sequencing, or comparing similar credentials across providers.
| Certification | Level | Cost | Study time | Salary range | Track |
|---|---|---|---|---|---|
| AWS Certified Security - Specialty · AWS | Advanced | $300 exam fee | 4-8 weeks study time | $190,000 - $240,000 | Cloud Security |
| AAISM (ISACA Advanced in AI Security Management) · ISACA | Advanced | $749 exam fee | 6-12 months study time | $180,000 - $220,000 | AI & Machine Learning Security |
| GCAD (GIAC Cloud Security Architecture and Design) · GIAC | Advanced | $2,995 course + $499 exam | 5 days intensive + 3-4 weeks prep | $165,000 - $225,000 | Security Architecture & Design |
| CISSP (Certified Information Systems Security Professional) · ISC2 | Advanced | $749 exam fee | 6-12 months study time | $160,000 - $220,000 | Management & Governance |
| ISSAP (Information Systems Security Architecture Professional) · ISC2 | Advanced | $749 exam fee | 6-12 months study time | $165,000 - $215,000 | Management & Governance |
| GDSA (GIAC Defensible Security Architecture) · GIAC | Advanced | $2,995 course + $499 exam | 5 days intensive + 3-4 weeks prep | $160,000 - $220,000 | Security Architecture & Design |
| ISSAP (Information Systems Security Architecture Professional) · ISC2 | Advanced | $749 exam fee | 6-12 months study time | $165,000 - $215,000 | Security Architecture & Design |
| GSLC (GIAC Security Leadership Certification) · GIAC | Advanced | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $160,000 - $220,000 | Security Architecture & Design |
| ISSMP (Information Systems Security Management Professional) · ISC2 | Advanced | $749 exam fee | 6-12 months study time | $160,000 - $210,000 | Management & Governance |
| OSEE (OffSec Exploitation Expert) · OffSec | Advanced | $1,499 course + $165 exam | 4-5 months intensive study | $150,000 - $220,000 | Offensive Security |
| CCSP (Certified Cloud Security Professional) · ISC2 | Advanced | $749 exam fee | 6-12 months study time | $160,000 - $210,000 | Cloud Security |
| CBSE (Certified Blockchain Security Expert) · 101Blockchains | Advanced | $499 exam fee | 6-12 weeks study time | $150,000 - $220,000 | Blockchain & Crypto Security |
| CQSA (Certified Quantum Security Analyst) · NICCS/Tonex | Advanced | $1500 - $2000 training + exam | 2-4 weeks intensive training | $150,000 - $220,000 | Quantum & Post-Quantum Security |
| CISM (Certified Information Security Manager) · ISACA | Advanced | $765 exam fee | 6-12 months study time | $155,000 - $210,000 | Management & Governance |
| GMLE (GIAC Machine Learning Engineer) · GIAC | Advanced | $2,995 course + $499 exam | 5-7 days intensive + 2-3 weeks prep | $160,000 - $200,000 | AI & Machine Learning Security |
| CRISC (Certified in Risk and Information Systems Control) · ISACA | Advanced | $765 exam fee | 4-8 months study time | $150,000 - $200,000 | Management & Governance |
| OSEP (OffSec Experienced Penetration Tester) · OffSec | Advanced | $1,299 course + $165 exam | 3-4 months intensive study | $140,000 - $200,000 | Offensive Security |
| CIPM (Certified Information Privacy Manager) · IAPP | Advanced | $499 exam fee | 6-12 months study time | $140,000 - $200,000 | Compliance & Privacy |
| GICSP (GIAC Global Industrial Cyber Security Professional) · GIAC | Advanced | $2,995 course + $499 exam | 5 days intensive + 3-4 weeks prep | $140,000 - $200,000 | Specialized Security Domains |
| CGRC (Certified in Governance, Risk and Compliance) · ISC2 | Advanced | $599 exam fee | 4-8 months study time | $130,000 - $190,000 | Management & Governance |
| CRTP (Certified Red Team Professional) · Altered Security | Advanced | $399 course + $399 exam | 3-4 weeks study time | $130,000 - $190,000 | Offensive Security |
| GREM (GIAC Reverse Engineering Malware) · GIAC | Advanced | $2,995 course + $499 exam | 5 days intensive + 3-4 weeks prep | $130,000 - $190,000 | Digital Forensics & Incident Response |
| S-CDPO (Certified Data Protection Officer) · SECO-Institute | Advanced | $300 exam fee | 4-6 weeks study time | $130,000 - $190,000 | Compliance & Privacy |
| ECDE (EC-Council Certified DevSecOps Engineer) · EC-Council | Intermediate | $1,100 exam fee | 6-10 weeks study time | $135,000 - $185,000 | DevSecOps & Secure Development |
| CSSLP (Certified Secure Software Lifecycle Professional) · ISC2 | Advanced | $599 exam fee | 6-12 months study time | $135,000 - $185,000 | DevSecOps & Secure Development |
| CQCA (Certified Quantum Cybersecurity Analyst) · Tonex Training | Intermediate | $2000 - $3000 training + exam | 2-day intensive course | $130,000 - $190,000 | Quantum & Post-Quantum Security |
| CompTIA SecAI+ · CompTIA | Intermediate | $392 exam fee | 4-8 weeks study time | $140,000 - $170,000 | AI & Machine Learning Security |
| GPEN (GIAC Penetration Tester) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $125,000 - $185,000 | Offensive Security |
| GDAT (GIAC Defending Advanced Threats) · GIAC | Advanced | $2,995 course + $499 exam | 5 days intensive + 3-4 weeks prep | $130,000 - $180,000 | Defensive Security |
| AZ-500 (Azure Security Engineer) · Microsoft | Intermediate | $165 exam fee | 4-6 weeks study time | $130,000 - $180,000 | Cloud Security |
| CBSP (Certified Blockchain Security Professional) · Blockchain Council | Intermediate | $299 exam fee | 4-8 weeks study time | $130,000 - $180,000 | Blockchain & Crypto Security |
| CDP (Certified DevSecOps Professional) · Practical DevSecOps | Intermediate | $399 exam fee | 4-8 weeks study time | $130,000 - $180,000 | DevSecOps & Secure Development |
| CISA (Certified Information Systems Auditor) · ISACA | Advanced | $765 exam fee | 6-12 months study time | $120,000 - $180,000 | Management & Governance |
| OSCP (OffSec Certified Professional) · OffSec | Intermediate | $999 course + $165 exam | 2-3 months intensive study | $120,000 - $180,000 | Offensive Security |
| Google Cloud Security Engineer · Google | Intermediate | $200 exam fee | 4-6 weeks study time | $125,000 - $175,000 | Cloud Security |
| CDPSE (Certified Data Privacy Solutions Engineer) · ISACA | Intermediate | $599 exam fee | 4-8 weeks study time | $125,000 - $175,000 | Compliance & Privacy |
| CAISP (Certified AI Security Professional) · Practical DevSecOps | Intermediate | $399 exam fee | 4-6 weeks study time | $130,000 - $160,000 | AI & Machine Learning Security |
| GCED (GIAC Certified Enterprise Defender) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $120,000 - $170,000 | Defensive Security |
| GCFE (GIAC Certified Forensic Examiner) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $120,000 - $170,000 | Digital Forensics & Incident Response |
| GLIR (GIAC Linux Incident Responder) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $120,000 - $170,000 | Digital Forensics & Incident Response |
| CIPP (Certified Information Privacy Professional) · IAPP | Intermediate | $499 exam fee | 4-8 weeks study time | $120,000 - $170,000 | Compliance & Privacy |
| Palo Alto PCNSE (Certified Network Security Engineer) · Palo Alto Networks | Intermediate | $400 exam fee | 4-8 weeks study time | $120,000 - $170,000 | Vendor-Specific |
| Check Point CCSE (Certified Check Point Security Expert) · Check Point | Intermediate | $400 exam fee | 4-8 weeks study time | $120,000 - $170,000 | Vendor-Specific |
| Microsoft AZ-104 (Azure Administrator) · Microsoft | Intermediate | $165 exam fee | 4-6 weeks study time | $120,000 - $170,000 | Vendor-Specific |
| GCTI (GIAC Cyber Threat Intelligence) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $120,000 - $170,000 | Specialized Security Domains |
| GWAPT (GIAC Web Application Penetration Tester) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $115,000 - $170,000 | Offensive Security |
| ECSA (EC-Council Certified Security Analyst) · EC-Council | Intermediate | $1,100 exam fee | 6-10 weeks study time | $115,000 - $165,000 | Offensive Security |
| GCDA (GIAC Certified Detection Analyst) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $115,000 - $165,000 | Defensive Security |
| GCFA (GIAC Certified Forensic Analyst) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $115,000 - $165,000 | Digital Forensics & Incident Response |
| GNFA (GIAC Network Forensic Analyst) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $115,000 - $165,000 | Digital Forensics & Incident Response |
| GSNA (GIAC Systems and Network Auditor) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $115,000 - $165,000 | Compliance & Privacy |
| Cisco CCNA Security · Cisco | Intermediate | $330 exam fee | 4-8 weeks study time | $115,000 - $165,000 | Vendor-Specific |
| Fortinet NSE (Network Security Expert) · Fortinet | Intermediate | $350 exam fee | 4-6 weeks study time | $115,000 - $165,000 | Vendor-Specific |
| IBM Security Certified Specialist · IBM | Intermediate | $350 exam fee | 4-6 weeks study time | $115,000 - $165,000 | Vendor-Specific |
| Juniper JNCIS-SEC (Juniper Networks Certified Internet Specialist - Security) · Juniper | Intermediate | $350 exam fee | 4-6 weeks study time | $115,000 - $165,000 | Vendor-Specific |
| GMOB (GIAC Mobile Device Security Analyst) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $115,000 - $165,000 | Specialized Security Domains |
| GAWN (GIAC Assessing and Auditing Wireless Networks) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $115,000 - $165,000 | Specialized Security Domains |
| CEH (Certified Ethical Hacker) · EC-Council | Intermediate | $1,100 exam fee | 6-10 weeks study time | $110,000 - $160,000 | Offensive Security |
| GCIA (GIAC Certified Intrusion Analyst) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $110,000 - $160,000 | Defensive Security |
| CND (EC-Council Certified Network Defender) · EC-Council | Intermediate | $1,100 exam fee | 6-10 weeks study time | $110,000 - $160,000 | Defensive Security |
| CHFI (EC-Council Computer Hacking Forensic Investigator) · EC-Council | Intermediate | $1,100 exam fee | 6-10 weeks study time | $110,000 - $160,000 | Digital Forensics & Incident Response |
| Red Hat RHCE (Red Hat Certified Engineer) · Red Hat | Intermediate | $480 exam fee | 6-12 weeks study time | $110,000 - $160,000 | Vendor-Specific |
| GOSI (GIAC Open Source Intelligence) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $110,000 - $160,000 | Specialized Security Domains |
| GCIH (GIAC Certified Incident Handler) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $105,000 - $155,000 | Defensive Security |
| GMON (GIAC Continuous Monitoring Certification) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $105,000 - $155,000 | Defensive Security |
| GSOC (GIAC Security Operations Certified) · GIAC | Intermediate | $2,995 course + $499 exam | 5 days intensive + 2-3 weeks prep | $100,000 - $150,000 | Defensive Security |
| CCSK (CSA Certificate of Cloud Security Knowledge) · Cloud Security Alliance | Entry-Level | $395 exam fee | 2-4 weeks study time | $100,000 - $140,000 | Cloud Security |
| BFC (Blockchain Fundamentals Certified) · EC-Council | Entry-Level | $199 exam fee | 2-4 weeks study time | $100,000 - $140,000 | Blockchain & Crypto Security |
| S-DPF (Data Protection Foundation) · SECO-Institute | Entry-Level | $200 exam fee | 2-3 weeks study time | $95,000 - $130,000 | Compliance & Privacy |
| eJPT (eLearnSecurity Junior Penetration Tester) · INE Security | Entry-Level | $200 exam fee | 2-4 weeks for beginners | $95,000 - $120,000 | Foundational Certifications |
| CompTIA Security+ · CompTIA | Entry-Level | $392 exam fee | 3-6 months typical study time | $89,636 - $110,000 | Foundational Certifications |
| CSX-F (Cyber Security Fundamentals) · ISACA | Entry-Level | $195 exam fee | 3-4 weeks study time | $85,000 - $100,000 | Foundational Certifications |
| Certified in Cybersecurity (CC) · ISC2 | Entry-Level | $329 exam fee | 4-8 weeks study time | $85,000 - $95,000 | Foundational Certifications |
| S-ITSF (IT-Security Foundation) · SECO-Institute | Entry-Level | $200 exam fee | 2-3 weeks study time | $80,000 - $95,000 | Foundational Certifications |
How this table is sourced
Cost is the published exam fee in USD where available; "study time" is a midpoint of the published recommended range. Salary is the midpoint of typical-range data. None of these numbers are precise — they're directional, useful for comparison, and refreshed against public sources annually. For specific salary by region or company stage, the CISO salary calculator is more granular for leadership roles, and the cert match quiz personalizes the picks.
Frequently asked questions
Which cybersecurity certification has the highest salary?
By midpoint salary in 2026, the highest-paying cybersecurity certifications are: CISSP-ISSAP and CISSP-ISSMP (advanced architect/manager concentrations, $180-220k+), GIAC GSE (Security Expert, $200k+), OSEE (Offensive Security Exploitation Expert, $180-200k), and CCISO (Certified CISO, $190-250k+). The earlier certs (Security+, CySA+, CC) sit at $70-100k. Highest-cert salaries reflect 8-15 years of experience that the cert assumes, not the credential itself.
What's the cheapest entry-level cybersecurity certification?
ISC2 CC (Certified in Cybersecurity) is free — both the training and the exam — through ISC2's One Million Certified in Cybersecurity initiative. It's the lowest-friction entry credential. CompTIA Security+ ($399) is the most widely-recognized entry-level cert and is the default for US government / DoD-aligned roles. Google Cybersecurity Certificate (~$49/month via Coursera, 3-6 months) is a strong vocational alternative.
Is CISSP worth the cost in 2026?
Yes if you have 4-5+ years of security experience and are targeting senior IC, management, or CISO-track roles. CISSP unlocks roughly $20-40k in mid-career salary lift on average and is a hard requirement on many leadership job descriptions. Below ~4 years of experience the CISSP Associate path is fine but the cert delivers less ROI than Security+ → CySA+ → a specialization (CCSP, OSCP, GCIH). Total cost (exam + study + maintenance): roughly $1,200-2,500 in year one.
How long does it take to study for CISSP?
Most candidates with 4+ years of broad security experience study 120-200 hours over 3-6 months. Pace varies wildly: some pass after 80 hours, others need 300+. The eight domains span breadth (security architecture, asset security, comms/network, IAM, security assessment, ops, software dev sec, plus governance) so candidates with narrow specializations need more time on weak domains. The exam itself is 3-4 hours, 125-175 adaptive questions.
Which cybersecurity certification opens cloud security jobs?
Three certs dominate cloud security hiring in 2026: AWS Certified Security Specialty (most-asked-for in AWS shops, $300 exam), Google Professional Cloud Security Engineer ($200 exam), and (ISC)² CCSP (vendor-neutral, $599 exam). For a first cloud-security cert, follow the cloud your target employer uses — most shops list one specific cloud-platform cert by name. CCSP is the right backup if you don't know which cloud you'll land in.
Are cybersecurity certifications worth it in 2026?
Yes for the first 5-7 years of a security career. Certs are the cheapest, fastest way to clear automated ATS resume filters and to signal capability when you don't have credible experience yet. After ~7 years, your project portfolio, breach response history, and references replace certs as the dominant credential. Mid- and senior-career candidates still maintain CISSP / CCSP / OSCP because they're table-stakes on senior job descriptions — not because new ones unlock new comp.
Where to go from here
- Full education roadmap — same 70+ certs grouped by 14 career tracks (foundational, offensive, defensive, cloud, AI security, management, forensics, compliance, DevSecOps, quantum, architecture, more).
- Cert match quiz — 7 questions, scores your fit across the full catalog, returns top-5 matches with reasons.
- CISO salary calculator — leadership comp by stage, industry, and geography.
- Security+ vs CISSP — the most-asked comparison guide.
- CISSP / CCISO / CISM study guide — for the leadership track.