The cited path

Path to Cybersecurity Analyst

One legible map from a non-tech start to a cybersecurity analyst role — the cert pathway most people follow, with each step’s cited Difficulty Score, real exam cost, and the role’s BLS pay. Click any step to open its cited page; mark steps done to track your progress (saved on this device, no account).

0 of 4 steps marked done
  1. CompTIA A+

    Step 1 · Foundation

    Proves you can set up, support, and troubleshoot computers, operating systems, and basic networks and security. The broad base most career-changers start from.

    Difficulty 30/100 · FoundationalCost ~$548 exam

    With A+ you can already work IT support / help desk (BLS median $61,860) and earn while you finish the path.

  2. CompTIA Network+

    Step 2 · Networking

    How data actually moves — addressing, routing, protocols. The substrate security sits on; analysts read network behavior all day.

    Difficulty 35/100 · ModerateCost ~$399 exam
  3. CompTIA Security+

    Step 3 · Security baseline

    The baseline security credential — threats, controls, cryptography, and compliance. The most-asked-for entry security cert.

    Difficulty 45/100 · ModerateCost ~$439 exam
  4. CompTIA CySA+

    Step 4 · The analyst credential

    Behavioral analytics, threat detection, and incident response — the work a cybersecurity analyst actually does. The hardest step on this path.

    Difficulty 75/100 · HardCost ~$439 exam
  5. Cybersecurity Analyst

    Destination · The role

    BLS reports a national median of $129,180 for Information Security Analysts (SOC 15-1212, OEWS May 2025). Occupation-level pay set by role and location — half earn less, entry-level sits below it, and it is not a salary the certificates produce.

How to read this

A cited path — not the only route, and not a guarantee

This is the pathway CompTIA publishes for cybersecurity, rendered with RoleMath’s cited data. The Difficulty Scores and exam costs are cited and dated; the pay is the occupation’s median (half earn less, entry-level below it), never a salary the certificates produce. People also reach this role through degrees, apprenticeships, and adjacent IT jobs — treat the map as the terrain, then pick the order that fits your background.

The sources

Every number on this map is cited

Difficulty Scores: RoleMath cited Difficulty Score methodology (level + experience + format inputs). Exam fees: CompTIA published prices, retrieved June 2026 (A+ 2026-06-13, Network+ 2026-06-13, Security+ 2026-06-13, CySA+ 2026-06-19). Pay: BLS OEWS, May 2025 (Information Security Analysts 15-1212, national median; computer user support specialists 15-1232 for the IT-support note). Sequence: CompTIA’s published cybersecurity career pathway. The path is descriptive planning context, not a requirement, transition guarantee, or a salary you are promised.

Common questions

Becoming a cybersecurity analyst, answered honestly

What certifications do I need to become a cybersecurity analyst?
A common, vendor-published path is CompTIA A+ → Network+ → Security+ → CySA+. A+ proves broad IT support fundamentals, Network+ adds networking, Security+ is the baseline security credential, and CySA+ is the analyst-level credential (threat detection and incident response). On RoleMath’s cited Difficulty Score these run 30, 35, 45, and 75 out of 100. It is one common route, not the only one and not a guarantee — many analysts also enter through degrees, apprenticeships, or adjacent IT roles.
How much do these cybersecurity certifications cost?
Exam fees, cited to CompTIA and dated: A+ about $548 (two exams), Network+ about $399, Security+ about $439, CySA+ about $439. Training is optional and extra; the cheapest route is self-study plus the exam, and a paid apprenticeship lets you learn while earning. See the certification cost page for full three-year totals.
How much does a cybersecurity analyst earn?
BLS reports a national median of $129,180 for Information Security Analysts (SOC 15-1212, OEWS May 2025). That is occupation-level pay set by the role and location — half earn more and half less, entry-level roles sit below it, and it is not a salary the certificates themselves produce.
Do I have to do every step in order?
No. The sequence builds knowledge logically, but it is planning context, not a rule. Many people work in IT support after A+ and earn while finishing the path; some skip straight to Security+ if they already have IT fundamentals. Use the roadmap to see the terrain and track your own progress — the order that fits your background is the right one.

Build the plan for your situation

This map is the common route. The planner tailors it to the skills you already have. RoleMath sells nothing.