Penetration Tester Salary: Your 2024 Guide

Penetration testers, also known as white hat hackers or ethical hackers, identify vulnerabilities to help organizations secure their systems, data, and devices. Taking proactive measures, also known as offensive security, help organizations protect against cyber attacks. Read on to learn more about penetration tester salaries and the factors that determine them.

Read more: How to Become a Penetration Tester: Career Guide

Penetration tester salary

According to Glassdoor, the average salary for penetration testers in the US was $156,000 as of November 2024 [1]. This figure includes base salary and additional pay, which may represent profit-sharing, commissions, or bonuses. Various factors can influence your salary as a pen tester, including experience, skills, certifications, industry, and location. You can learn more about each of the factors that impact your earning potential in the following sections.

Read more: Ethical Hacker Salary (2025): What You'll Make and Why

Experience

As you gain more professional experience, your earning power tends to also increase. The approximate average salary you can anticipate based on your years of experience is as follows [1]:

• Entry level penetration tester salary (0-1 year): $97,000

• Junior penetration tester salary (1-3 years): $112,000

• Mid-level penetration tester salary (4-6 years): $129,000

• Senior penetration tester salary (7-9 years): $141,000

Read more: Your Guide to Cybersecurity Careers

In-demand skills

Certain skills or specializations can lead to higher pay and increase your competitiveness in the job market. Here are a few commonly requested skills for this role according to Payscale, alongside average salaries [2]:

• Vulnerability assessment: $97,841

• Network security management: $79,047

• Security testing and auditing: $97,293

Read more: 15 Essential Skills for Cybersecurity Analysts

Certified penetration tester salary

Earning relevant certifications can increase your income potential, as organizations often value certified professionals who can significantly strengthen their cybersecurity initiatives. Below are some industry-recognized certifications and Professional Certificates worth exploring: 

• Certified Ethical Hacker (CEH)

• GIAC Penetration Tester (GPEN)

• Google Cybersecurity Professional Certificate

• Google Cloud Cybersecurity Professional Certificate

• IBM and ISC2 Cybersecurity Specialist Professional Certificate

• Licensed Penetration Tester (LPT)

• GIAC Exploit Researcher and Advanced Penetration Tester (GXPN)

Read more: 4 Ethical Hacking Certifications to Boost Your Career

Industry

The industry you choose to work in can also influence your annual income. Below is a list of industries that tend to offer high salaries for penetration testers, based on Glassdoor data as of November 2024 [1]:

• Agriculture: $162,000

• Personal consumer services: $153,000

• Financial services: $148,000

• Health care: $147,000

Location

Your income can vary considerably based on your geographic location, with certain cities offering salaries above average. If you're open to relocating, exploring location-specific salary data can help you make an informed decision. However, keep in mind, if you live in a location with a high cost of living, you’ll require a higher salary than you would in a location with a lower cost of living to afford the same lifestyle.

Highest-paying cities for penetration testers 

The following are top-paying cities for penetration testers in the US [3]:

• McLean, VA: $162,677

• New York, NY: $148,729 

• Denver, CO: 138,449

• Washington, DC: $131,691

• Seattle, WA: $127,557

Company 

Pay varies between firms based on several factors, including company size, financial health, and your level of experience and expertise. Company policies can further impact pay variations. In essence, the differences in pay between companies are influenced by a combination of factors, and it's vital to consider these elements when evaluating job offers and negotiating your compensation.

Highest-paying companies for penetration testers

The following list highlights salary ranges for top-paying companies for in the US as of November 2024, according to Glassdoor [1]:

• Microsoft: $147-$216,000

• Apple: $141-$224,000

• IBM: $112-$162,000

• Coalfire: $108-$162,000

Demand for penetration testers

CompTIA reported 19,197 job openings for penetration testers in the last twelve month period. Related job titles to consider include security analyst, ethical hacker, and vulnerability assessment analyst [4].

Prepare for a role in penetration testing with Coursera

If you're already in a cybersecurity role and considering transitioning into penetration testing, consider enrolling in IBM's Penetration Testing, Threat Hunting, and Cryptography course, where you'll learn fundamentals like test planning, reporting methods, and industry-standard techniques.

If you’re interested in starting a career in cybersecurity, consider the Google Cybersecurity Professional Certificate on Coursera. This program is designed ​​to help individuals with no previous experience find their first job in the field of cybersecurity. The courses cover topics such as security models, tools that are used to access and address threats,