Penetration Tester Salary in United States during 2022

Salary details

The average Penetration Tester salary lies between USD 110,000 and USD 175,000 in the United States. It represents the overall compensation/gross salary amount for the working year (before deductions like social security, taxes and other contributions), not including equity/stock options or similar benefits.

Region represents the primary country of residence of an employee during the year (or residence for tax purposes). All data shown are full-time equivalent (FTE) salaries. Part-time salary information has been extrapolated to its FTE value.

Last updated: Nov. 24, 2024

Salary trend

Top 20 Job Tags for Penetration Tester roles

The three most common job tag items assiciated with Penetration Tester job listings are Pentesting, Vulnerabilities and OSCP. Below you find a list of the 20 most occuring job tags in 2022 and the number of open jobs that where associated with them during that period:

Pentesting | 113 jobs Vulnerabilities | 91 jobs OSCP | 72 jobs Cloud | 60 jobs Python | 58 jobs Linux | 52 jobs Application security | 51 jobs Scripting | 49 jobs Windows | 40 jobs OWASP | 38 jobs Security assessment | 36 jobs Java | 34 jobs Computer Science | 34 jobs Network security | 33 jobs AWS | 32 jobs GPEN | 32 jobs Cryptography | 30 jobs Compliance | 29 jobs Burp Suite | 28 jobs Offensive security | 28 jobs

Top 20 Job Perks/Benefits for Penetration Tester roles

The three most common job benefits and perks assiciated with Penetration Tester job listings are Career development, Health care and Flex hours. Below you find a list of the 20 most occuring job perks or benefits in 2022 and the number of open jobs that where offering them during that period:

Career development | 52 jobs Health care | 33 jobs Flex hours | 29 jobs Startup environment | 25 jobs 401(k) matching | 23 jobs Competitive pay | 20 jobs Salary bonus | 20 jobs Team events | 19 jobs Flex vacation | 13 jobs Equity / stock options | 12 jobs Insurance | 12 jobs Parental leave | 11 jobs Conferences | 10 jobs Gear | 5 jobs Wellness | 3 jobs Fitness / gym | 3 jobs Home office stipend | 3 jobs Unlimited paid time off | 3 jobs Travel | 1 jobs Relocation support | 1 jobs

Salary Composition

The salary for a Penetration Tester in the United States typically consists of a base salary, performance bonuses, and additional remuneration such as stock options or profit-sharing. The base salary is the largest component, often making up 70-80% of the total compensation package. Bonuses can vary significantly depending on the company and industry, ranging from 10-20% of the base salary. Additional remuneration, such as stock options, is more common in tech companies and startups, especially in regions like Silicon Valley. In larger corporations or financial institutions, bonuses might be more substantial, reflecting the company's profitability and the individual's performance.

Increasing Salary

To increase your salary as a Penetration Tester, consider specializing in a niche area of cybersecurity, such as cloud security, IoT security, or application security. Gaining expertise in these areas can make you more valuable to employers. Additionally, pursuing advanced certifications like the Offensive Security Certified Expert (OSCE) or Certified Information Systems Security Professional (CISSP) can enhance your credentials. Networking within the industry and attending conferences can also open up opportunities for higher-paying roles. Finally, consider moving into a managerial or consultancy position, which often comes with higher compensation.

Educational Requirements

Most employers require a bachelor's degree in computer science, information technology, or a related field for a Penetration Tester role. Some positions may accept candidates with an associate degree or relevant experience, but a bachelor's degree is generally preferred. Advanced degrees, such as a master's in cybersecurity, can be advantageous and may lead to higher-level positions or increased salary potential.

Helpful Certifications

Certifications are highly valued in the cybersecurity field. Some of the most beneficial certifications for a Penetration Tester include:

• Certified Ethical Hacker (CEH)
• Offensive Security Certified Professional (OSCP)
• GIAC Penetration Tester (GPEN)
• Certified Information Systems Security Professional (CISSP)
• Offensive Security Certified Expert (OSCE)

These certifications demonstrate your technical skills and commitment to the field, making you a more attractive candidate to employers.

Required Experience

Typically, employers look for candidates with at least 2-5 years of experience in cybersecurity or a related field. Experience in network security, system administration, or software development can be particularly relevant. Hands-on experience with penetration testing tools and methodologies is crucial. Internships, co-op programs, or entry-level positions in IT security can provide valuable experience and help you build a strong foundation for a career in penetration testing.

Related salaries

Want to contribute?