𧩠1 – Intermediate Generalist Certifications (Cybersecurity Fundamentals)
Generalist certifications at the intermediate level are designed for professionals who already understand the basics of cybersecurity and are ready to expand their capabilities. These credentials focus on more technical and practical aspects of cybersecurity, such as system security, network operations, risk assessment, compliance frameworks, and advanced threat management. They are ideal for individuals who want to move beyond entry-level roles and into more specialized or leadership-focused positions within IT and security teams.
Unlike beginner certifications that often focus on awareness and foundational concepts, intermediate generalist certifications require stronger technical understanding, problem-solving ability, and often some hands-on experience. These certifications are either vendor-neutral or recognized across industries and sectors. Many also map to job roles defined by the NICE Cybersecurity Workforce Framework.
Completing one or more of these certifications can serve as a launchpad into security analyst, infrastructure security, or compliance positionsβand can also act as prerequisites or strong foundations for advanced certifications like CISSP, CISM, or OSCP.
These certifications deepen foundational knowledge with a broader and more practical focus on systems, networks, and real-world defense mechanisms.
| Certification | Organization |
|---|---|
| π’ CompTIA Cybersecurity Analyst (CySA+) | CompTIA |
| π’ ISC2 Systems Security Certified Practitioner (SSCP) | ISC2 |
| π’ ISACA Cybersecurity Practitioner (CSXP) | ISACA |
| π’ GIAC Security Essentials Renewal (GSEC Renewal) | GIAC / SANS |
| π’ Mile2 Cyber Security Analyst (C)SA | Mile2 |
| π’ Cisco CCNA Security (Discontinued but relevant) | Cisco |
| π’ TΓV Rheinland Cybersecurity Practitioner | TΓV Rheinland |
| π’ ISO/IEC 27001 Lead Implementer (technical focus) | PECB / BSI / TΓV / Bureau Veritas |
π‘ Tip: These certifications work best for professionals with 1β3 years of experience in IT or security roles. They can also act as transition points into specialized areas such as offensive, defensive, or cloud security.
| Certification | Duration | Cost | Prerequisites | Avg. Salary (USD) | Europe Salary Range | USA Salary Range |
|---|---|---|---|---|---|---|
| CompTIA Cybersecurity Analyst (CySA+) | 90 minutes (exam) | $392 | Recommended: Network+, Security+, or 3β4 years in security | $107,522 | $39,000β$91,000 | $51,000β$117,000 |
| ISC2 SSCP | 180 minutes (exam) | $249 | 1 year experience in 1 of 7 domains; basic networking | $94,948 | $102,298 | $108,153 |
| ISACA CSXP | Varies (~2β3 days) | $575β$1,200 | Basic IT knowledge; security experience preferred | Not available | Not available | Not available |
| GIAC GSEC Renewal | 4β5 days (training) | $1,899 | GSEC or equivalent; 1β2 years of experience | $84,000 | $111,250 | $134,166 |
| Mile2 C)SA | 3β5 days (course + exam) | $500β$900 | Basic networking and security knowledge | $63,780 | Not available | Not available |
| Cisco CCNA Security (Discontinued) | 120 minutes (exam) | ~$300 | Recommended: CCNA | $124,948 | $39,902 | $89,925 |
| TΓV Rheinland Cybersecurity Practitioner | Varies by provider | $500β$1,200 | Usually open to IT professionals | Not available | $68,000 | $119,042 |
| ISO/IEC 27001 Lead Implementer | 3β5 days (training + exam) | $1,200β$2,500 | Experience in ISMS or security management | $99,851 | $33,079 | Not available |