Friday, October 27, 2023

10 Popular Certifications in Cybersecurity [ 2023] in US (Updated)

10 Popular Certifications in Cybersecurity [ 2023] in US
10 certifications in cybersecurity that companies look for

Most people who work in cybersecurity have at least a bachelor’s degree in computer science. However, many companies prefer to hire people who also have a certification to show that they know best practices. There are hundreds of certifications, ranging from general to vendor-specific and from beginner to expert.

Sites for Free Certified Training 2022-2023

Before you spend your time and money on a certification, you should make sure it will give you an edge in your career. Here’s how many US job postings on three different sites ask for these cybersecurity certifications.

Is it worth it to get a certification in cybersecurity?

(ISC)2 did a survey and found that 70% of cybersecurity professionals in the US were required by their employers to have a certification. According to the same study, security certification can also lead to a $18,000 pay increase. Having the right credentials can also make you more appealing to both recruiters and hiring managers [2].

How to choose a certification in cybersecurity
Getting certified in cybersecurity can prove that you know what you’re doing and help you move up in your career. Here are some things to think about when deciding what kind of certification you want.

How much you have done: Start with a certification that fits with the skills you already have. Invest in a certification you know you can get, and use it to move up in your career and get more difficult certifications. If you are new to IT, check out these certificates and certifications for beginners.

Cost: Getting certified usually costs several hundred dollars or more, and there are also fees to keep it up to date. The right certification can help you get a better job or earn more money, but it’s important to spend your money wisely.

First steps for getting into cybersecurity

Many of the most sought-after certifications require or at least suggest that you have some cybersecurity or IT experience. If you want to work in this in-demand field as part of your career, you can start getting the experience you need right now.

Computer science is a good field to study.

Even though you don’t need a degree to be successful in cybersecurity—8% of professionals surveyed only had a high school diploma—getting one can help you build a strong foundation. If you have a bachelor’s or master’s degree in computer science or a related field, you may not need as much work experience to get some of the best certifications.

Students who don’t have a background in computer science can get an Ivy League Master of Computer and Information Technology from the University of Pennsylvania. Before you apply, take a class to see if this program is right for you.

  1. Professional in Information Systems Security (CISSP)

The cybersecurity professional organization (ISC)2’s CISSP certification is one of the most sought-after credentials in the field. Getting your CISSP shows that you know a lot about IT security and can plan, implement, and keep an eye on a cybersecurity program.

This advanced certification is for security professionals with a lot of experience who want to move up in their careers in roles such as:

$181,529 per year for the chief information security officer

Administrator of security: $61,655

IT security engineer salary: $99,946

Senior security consultant salary: $108,379

Analyst of information security: $85,083

Requirements: To be able to take the CISSP exam, you must have worked in at least two of eight cybersecurity domains for at least five years. These are Security and Risk Management, Asset Security, Security Architecture and Engineering, Communication and Network Security, Identity and Access Management, Security Assessment and Testing, Security Operations, and Software Development Security.

A degree in computer science that takes four years counts as one year of work. You can also count part-time jobs and paid internships.

Price: $749 (US)
2.Auditor of Information Systems who is Certified (CISA)

This certification from the IT professional group ISACA shows that you know how to evaluate security holes, design and implement controls, and report on compliance. It is one of the best certifications for getting a job in cybersecurity auditing.

The CISA is made for mid-level IT workers who want to move up and get jobs like:

IT audit manager – $109,050

Auditor of cybersecurity: $77,583

Analyst of information security: $83,109

IT security engineer salary: $99,946

IT project manager – $94,137

Manager of the compliance program: $91,915

Requirements: You must have at least five years of experience in auditing, controlling, securing, or assuring IT or IS. One or two years of experience can be replaced by a two- or four-year degree.

Members pay $575 and non-members pay $760.

  1. Manager of Information Security Who Is Certified (CISM)

With the CISM certification, also from ISACA, you can prove that you know how to manage information security. This includes topics like governance, program development, and program, incident, and risk management.

Getting your CISM could be a good way to move from the technical side of cybersecurity to the management side. The CISM is used in the following jobs:

IT manager – $105,134

Officer of security for information systems: $80,751

$79,429 for a consultant on information risk

Information Security Director: $153,898

Manager of data governance – $107,126

To take the CISM exam, you must have worked in information security management for at least five years. You can meet up to two years of this requirement by having general experience with information security. You can also skip one or two years if you already have a valid certification or a graduate degree in a field related to information security.

Members pay $575 and non-members pay $760.

Specialization of the University System of Georgia

Taking care of cyber security

  1. The CompTIA Security+

CompTIA Security+ is an entry-level security certification that verifies the core skills needed in any cybersecurity job. With this certification, you can show that you know how to evaluate an organization’s security, monitor and secure cloud, mobile, and Internet of Things (IoT) environments, understand laws and regulations related to risk and compliance, and find and deal with security incidents.

Getting certified as Security+ can help you in jobs like:

System administrator: $75,676

Help desk manager – $80,298

Security engineer: $92,117 per year

Cloud engineer – $102,622

Administrator of security: $61,655

IT auditor – $74,108

$88,568 for a software developer

Requirements: There are no hard and fast rules about who can take the Security+ exam, but you should have your Network+ certification and at least two years of IT experience with a focus on security before you try.

Cost: $370

  1. Ethical Hacker Who Is Certified (CEH)

Ethical hacking, also called “white hat hacking,” “penetrating testing,” or “red team,” is when organizations are hacked in a legal way to try to find weaknesses before hackers do. The CEH Certified Ethical Hacker certification is given by the EC-Council. Get it to show that you know how to do penetration testing, find attack vectors and prevent attacks.

The CEH certification helps you think like a hacker and be more proactive about security. Think about this credential for jobs like:

$90,673 for a penetration tester

Analyst of cyber incidents: $62,445

Analyst of threat intelligence: $101,393

Security architect in the cloud: $125,252

Engineer in cyber security: $91,933

Requirements: You can take the CEH exam if you’ve worked in information security for two years or if you’ve taken an official EC-Council course.

Cost: $950 to $1,199, depending on where you take the test.

  1. Certification for GIAC Security Essentials (GSEC)

This certification from the Global Information Assurance Certification (GIAC) is an entry-level security credential for people with some experience in information systems and networking. Getting this certification proves that you know how to do security tasks like active defense, network security, cryptography, responding to incidents, and cloud security.

If you know a little bit about IT and want to move into cybersecurity, you might want to take the GSEC exam. The skills shown on the GSEC are used in the following jobs:

Manager of IT security – $119,246

Forensic computer analyst: $76 419

$90,673 for a penetration tester

Administrator of security: $61,655

IT auditor – $74,108

Software development engineer – $128,410

To take the GSEC exam, you don’t have to do anything in particular. Start off on the right foot by getting some experience with information systems or computer networking.

Cost: $2,499 (includes two practice tests) (includes two practice tests)

  1. Certified Practitioner in Systems Security (SSCP)

With this (ISC)2 intermediate security credential, you can show employers that you know how to design, implement, and monitor a secure IT infrastructure. The exam tests your knowledge of access controls, identifying and analyzing risks, security administration, responding to incidents, cryptography, and the security of networks, communications, systems, and applications.

The SSCP is made for IT professionals who work directly with the security systems or assets of a company. This certification is good for jobs such as:

Engineer in charge of network security: $107,889

System administrator -$78,885

Systems engineer – $111,721

Analyst of security: $83,167

Database administrator – $84,034

Consultant in security: $106,486

Candidates for the SSCP must have worked for at least a year in one or more of the testing areas for pay. This can also be done with a bachelor’s or master’s degree from a program related to cybersecurity.

Cost: $249
8. CompTIA Advanced Security Practitioner Plus (CASP+)

The CASP+ is for people who work in cybersecurity and have advanced skills but want to keep working in technology (as opposed to management). The test covers advanced topics like enterprise security domain, risk analysis, software vulnerability, securing cloud and virtualization technologies, and cryptographic techniques.

The CASP+ can lead to more advanced jobs in architecture, risk management, and integrating enterprise security. Possible job titles include:

Architect of security: $126,281

Security engineer: $92,117 per year

$119,261 per year for an application security engineer

The salary for a technical lead analyst is $101,493.

Vulnerability analyst – $94,391

Requirements: Taking the CASP+ exam does not have any formal requirements. CompTIA only recommends it for IT administrators with at least ten years of experience in IT security (including five years of broad hands-on experience with security).

Cost: $466

  1. Incident Handler Certified by GIAC (GCIH)

By getting the GCIH, you prove that you understand offensive operations, such as common attack techniques and vectors, and that you can find attacks, respond to them, and defend yourself against them. The test for certification covers how to deal with incidents, how to investigate computer crimes, hacker exploits, and hacker tools.

Anyone who works in incident response should get this certification. Some possible job titles are:

Handler of security incidents: $48.757

Architect of security: $126,281

System administrator – $78,885

Requirements: There are no formal requirements to take the GCIH exam, but you should know about security concepts, networking protocols, and the Windows Command Line.

Cost: $2,499 (includes two practice tests) (includes two practice tests)

  1. Certified Professional in Offensive Security (OSCP)

One of the most popular certifications for penetration testers is the OSCP from Offensive Security. The exam checks how well you can break into a number of target machines in different ways and write detailed penetration test reports for each attack.

The OSCP is good for jobs such as:

$97,465 for a penetration tester

Hacker with good intentions – $105,548

$57,612 for a threat researcher

Analyst of application security: $96,140

Requirements: Taking the test doesn’t have any formal requirements. Offensive Security suggests that you know how to network, use Linux, write scripts in Bash, Perl, or Python, and that you have taken the Penetration Testing with Kali course.

Starting at $999 (The basic package includes the Penetration Testing with Kali Linux (PWK/PEN-200) course, 30 days of lab access, and one exam attempt.)