The most comprehensive interactive cybersecurity certification roadmap — 500+ certifications, salary data across three regions, prerequisite chains, and visual progression paths. Fully browser-based, no installation required.
| Feature | Description |
|---|---|
| 🗂 500+ Certifications | Organized across 4 skill levels and 14 security domains |
| 💰 Salary Data | Min–max ranges for 🇺🇸 USA, 🇪🇺 Europe, and 🇷🇺 CIS — click to switch |
| 🗺 Progression Chains | Click any cert to see what you need before it and what it unlocks |
| 🔀 Combo Paths | OSEP+OSWE+OSED → OSCE³, GSEC+GCIA+GCIH → GSE, and 14 more |
| 🔍 Smart Filters | Filter by level, exam format, cost, and years of experience required |
| 🔎 Search | Instant search by certification name or vendor |
| 🌐 Two Languages | Full English and Russian versions |
| 📴 Offline-ready | Single HTML file — works without internet after download |
┌─────────────────────────────┬─────────────────────────────┐
│ 🌐 Network Security │ ☁️ Cloud Security │
│ 🔑 IAM & Zero Trust │ 🖥 SOC / SecOps │
│ 🏗 Security Architecture │ 🔬 Forensics / DFIR │
│ 📋 GRC / Compliance │ 🗡 Pentest / Red Team Entry │
│ 💣 Red Team / Exploit Dev │ 🧪 AppSec / DevSecOps │
│ 🏭 ICS / OT Security │ 🐧 Linux / *nix / OS │
│ 🕵️ Threat Intel / CTI │ 📊 Management / GRC+ │
└─────────────────────────────┴─────────────────────────────┘
| Level | Who it's for |
|---|---|
| 🟢 Entry | No experience required — starting in cybersecurity |
| 🔵 Intermediate | 1–3 years in IT/security, first specialization |
| 🟠 Advanced | 3–5 years, deep technical expertise |
| 🔴 Expert | 5+ years, elite-tier certifications |
Networking & Firewalls Cisco · Juniper · Palo Alto Networks · Fortinet · Check Point · F5 Networks · WatchGuard · Zscaler · Netskope · Illumio
Cloud Platforms AWS · Microsoft Azure · Google Cloud
Offensive Security / Pentest OffSec (OSCP · OSEP · OSWE · OSED · OSCE³) · Hack The Box (HTB) · TCM Security · INE / eLearnSecurity · CREST · Zero-Point Security · PortSwigger (Burp Suite) · Altered Security
Governance & Management ISC² · ISACA · CompTIA · EC-Council · GIAC / SANS · PECB · EXIN · AXELOS / ITIL · PMI · IAPP · SABSA · TOGAF · SECO-Institute
Operations & Detection Splunk · Elastic · IBM QRadar · CrowdStrike · SentinelOne · Trellix · CyberArk · Okta · Microsoft Defender · Cortex XSIAM
ICS / OT ISA / IEC 62443 · TÜV Rheinland · Dragos · Claroty · OPSWAT
Linux & Infrastructure Red Hat · LPI · Linux Foundation (CNCF) · SUSE · VMware / Broadcom · HashiCorp
Threat Intelligence MITRE ATT&CK Defender · Recorded Future · ThreatConnect · Mandiant / Google
PJPT ──→ eJPT ──→ eCPPT ──→ OSCP ──→ OSEP ─┐
OSWE ─┼──→ OSCE³ 🏆
OSED ─┘
PJPT ──→ PNPT ──→ OSCP ──→ OSEP/OSWE/OSED ──→ OSCE³ 🏆
HTB CBBH ──→ HTB CPTS ──→ HTB CAPE ──→ HTB CWEE
CRTO ──→ CRTO II (Zero-Point Security / RastaMouse)
OSCP ──→ CARTP (Azure Red Team)
OSCP ──→ CAWSP (AWS Red Team)
CREST CPSA ──→ CRT ──→ CCT ──→ CCSAS ──→ CSAM
CompTIA Sec+ ──→ CySA+ ──→ CASP+
CC (free) ──→ SSCP ──→ CISSP ──→ CISSP-ISSAP
──→ CISSP-ISSEP
──→ CISSP-ISSMP
GFACT ──→ GSEC ──→ GCIA ─┐
GCIH ─┼──→ GSE 🏆 (<250 holders worldwide)
┘
GSEC ──→ GPEN ──→ GXPN (Pentest track)
GSEC ──→ GCFE ──→ GCFA (Forensics track)
AWS CP ──→ AWS SAA ──→ AWS CSS (Security Specialty)
──→ AWS SAP (Architect Pro)
AZ-900 ──→ AZ-104 ──→ AZ-500 ──→ SC-100 (Cybersecurity Architect)
SC-900 ──→ SC-200 (SOC Analyst)
SC-300 (Identity)
GCP ACE ──→ GCP PCSE ──→ GCP PCA
ISA CFS ──→ ISA CAP / CRAS / CDS ──→ ISA CE ──→ CSSA 🏆
TÜV COSP ──→ TÜV COSM ──→ TÜV COTCP
ISO 27001 F ──→ Lead Implementer ──→ Lead Auditor
CISA ──→ CISM ──→ CGEIT (ISACA trifecta)
CSX-F ──→ CSX-P ──→ CCOA
ITIL Fdn ──→ ITIL MP ─┐
ITIL SL ───┼──→ ITIL Master 🏆
These are special designations earned by completing multiple certifications:
| Combo | Result | Notes |
|---|---|---|
| OSEP + OSWE + OSED | OSCE³ 🏆 | OffSec Certified Expert 3 — rarest OffSec title |
| GSEC + GCIA + GCIH | GSE 🏆 | GIAC Security Expert — <250 holders worldwide |
| CIPP/E + CIPM + CIPT | FIP | IAPP Fellow of Information Privacy |
| ITIL MP + ITIL SL | ITIL Master | Highest ITIL designation |
| CISSP + ISSAP/ISSEP/ISSMP | CISSP All Concentrations | Full ISC² recognition |
| CISM + CRISC + CGEIT | ISACA Trifecta | Maximum ISACA management status |
- Browse — scroll right across 14 domains, down across 4 skill levels
- Filter — use the top bar:
- Level: Entry → Intermediate → Advanced → Expert
- Format: Theory-only / Lab-based / Theory+Lab
- Cost: Free / <$300 / $300–500 / $500–1000 / >$1000
- Experience: No exp → 1 yr → 2 yr → 3 yr → 5+ yr
- Search — type any cert abbreviation, full name, or vendor name
- Click any cert — bottom panel opens showing:
- Prerequisites (what you need first)
- Full upstream chain
- What this cert unlocks next
- Combo paths if applicable
- Cost, experience, and salary data
- Salary — click the 🇺🇸 USA button to cycle: USA → Europe → CIS region
Salary ranges are based on publicly available data from:
- SANS/ISACA Annual Cybersecurity Salary Surveys (2024–2025)
- LinkedIn Salary Insights
- Glassdoor / Levels.fyi
- HH.ru / Habr Career (CIS region)
- Official vendor job posting aggregates
⚠️ Salaries shown are minimum entry → typical maximum for roles where this certification is the primary or key qualification. Actual compensation varies by location, employer, and experience.
The entire roadmap is a single self-contained HTML file (~200KB) with:
- Vanilla JavaScript — no frameworks, no dependencies
- CSS custom properties for theming
- Google Fonts (loaded from CDN)
- Zero external data calls after initial load
| Metric | Count |
|---|---|
| Total certifications | 500+ |
| Unique vendors | 60+ |
| Security domains | 14 |
| Skill levels | 4 |
| Combo paths defined | 14 |
| Salary data points | 3 regions × 500+ certs |
| Languages | 2 (English, Russian) |
Paul Jerimy's Security Certification Roadmap — the original reference that inspired this project. Paul's work remains the gold standard for cert roadmaps in the industry.
Found a missing certification, incorrect prerequisite, wrong price, or outdated information?
- Open an Issue describing the problem
- Or submit a Pull Request with the fix directly in the HTML file
All contributions welcome — especially for:
- New 2025/2026 certifications
- Updated exam prices
- Corrected prerequisite chains
- Salary data for specific regions
This roadmap is a community reference. Always verify current exam prices, prerequisites, and requirements on the official vendor website before enrolling — certification programs change frequently.
MIT License — free to use, share, and modify with attribution.
If this helped you plan your certification journey, please ⭐ star the repo!
Made with ☕ for the cybersecurity community
