Hey there—glad you’ve landed on this deep‑dive into cybersecurity salary trends over the past 20 years. I’m Camille Durand, a security architect who’s been living and breathing InfoSec since my first SOC analyst gig back in 2008. I’ve seen pay go from modest five‑figures to well into six‑figures, driven by new threats, wild breach headlines, and an ever‑growing talent gap. Pull up a chair and I’ll walk you through the numbers, the geography, the market forces, and share hard‑earned advice you won’t find in a textbook.
1. Nominal Salary Growth (2005–2025)
Here’s the quick summary in nominal (raw) dollars—no inflation adjustment—so you can see the sticker shock for yourself:
| Year | Median Salary (InfoSec Analyst) |
|---|---|
| 2010 | ~$79,370 |
| 2015 | ~$93,250 |
| 2020 | ~$103,590 |
| 2024 | $124,910 |
Pro tip: When I landed my first analyst role in 2009, I was thrilled to break $60K. By 2019, that same title often started above $90K in major markets.
2. Geographic Hotspots
Not all ZIP codes are created equal. Here’s how location influences pay:
- West Coast (CA, WA)
- Avg. cybersecurity salary: ~$135K
- Silicon Valley roles often top $150K even at entry level.
- Northeast (NY, MA, DC area)
- Avg.: ~$140–147K
- Finance and federal contracting drive premiums.
- Midwest & South
- Avg.: ~$110–120K
- Growing hubs (Austin, Atlanta) narrowing the gap.
- Lower‑cost regions
- Avg.: ~$90–100K
- Smaller firms/universities.
Insider note: I once took a 15% pay cut to move from NYC to Denver—worst financial decision ever, but best quality‑of‑life move!
3. Job Demand & Growth
Organizations can’t hire fast enough:
- 33% projected growth for InfoSec Analysts (2023–2033) – BLS
- ~470,000 openings in 2023–24 – CompTIA
- Supply meets only ~83% of demand – CyberSeek
Why it matters: I’ve watched posting counts double after each big breach. If you’re certified and can talk threat intel, recruiters will chase you.
4. Education & Certifications
Most roles ask for a bachelor’s in CS or equivalent, but:
- Entry certifications: CompTIA Security+
- Mid/senior: CISSP, CISM, cloud‑security certs
- Specialties: OSCP for pentesting, CCSP for cloud
My journey: I passed Security+ on my second try (lots of late‑night cram sessions). That cert got my resume past HR filters—then my passion closed the deal.
5. Expert Tips for Career Growth
- Network in niche communities. Join local BSides or ISSA chapters.
- Build a lab. Hands‑on AWS/Azure security labs impress hiring managers.
- Write & teach. Blog about a recent attack or host a webinar—visibility = leverage.
- Re‑certify early. Stay on top of cert expiry; it’s your ticket to consistent raises.
Conclusion
Over the last 20 years, US cybersecurity salaries have soared, driven by an insatiable demand and evolving threat landscape. Location, certifications, and specialized skills create wide pay ranges—from around $70K to over $200K for architects. My own path—from a junior analyst in 2008 to a security architect today—mirrors this growth. If you’re plotting your next move, focus on hands‑on skills, strategic certs, and the markets where you want to live and work. The numbers speak: cybersecurity expertise remains one of the best investments you can make in your career.
