Soc Analyst Resume Sample
Work Experience
- Capable of working independently and involving senior analysts as necessary
- Communicate the severity of the threat and recommendations for remediation to the customer and other cyber security personnel through written and verbal media
- Follow detailed processes and procedures to analyze, escalate, and assist in remediation of critical information security incidents
- Configuring and monitoring Security Information and Event Management (SIEM) platform for security alerts. Integrate and work with the firm’s Managed Security Services Provider (MSSP) services
- Serve as the SOC’s initial point of contact for all users
- Scan and monitor system vulnerabilities on servers and infrastructure devices using a Threat and Vulnerability security solution
- Provide strategic and tactical direction and consultation on information security and compliance. Participate in security planning and analyst activities. Work in combination with IT Delivery Lead/Manager to ensure security is engaged in projects
- Basic Incident Response and Investigation and escalation
- Availability for rotating on-call shifts
- Windows Batch File Scripting - understanding
- Windows PowerShell Scripting – understanding
- VB Scripting - Understanding
- TCP/IP - understanding
- SFTP connectivity fault finding
- File Encryption technologies (PGP etc.)
- Basic SMTP – understanding
- Develop processes and procedures for the information security governance program, including control document reviews, participant assessment preparation, meeting coordination, assessment finding mediation, assisting control owner with remediation plan development, tracking findings through remediation, progress monitoring, reporting and escalation
- Engage directly with the business to gather a full understanding of project scope and business requirements. Provide security-related guidance on business processes. Work closely with IT and development teams to design secure infrastructure solutions and applications, facilitating the implementation of protective and mitigating controls
- Perform security monitoring and reporting, analyze security alerts and escalate security alerts to local support teams
- Lead and respond to security incidents and investigations and targets reviews of suspect areas. Consult on teams to resolve issues that are uncovered by various internal and third party monitoring tools. Identify and resolve root causes of security-related problems
- Develop and deliver security awareness and compliance training programs. Conduct knowledge transfer training sessions to security operations team upon technology implementation
- Ongoing review of SIEM dashboards, system, application logs, and custom monitoring tools
- Malware and threat analysis
Education
Professional Skills
- Strong written communication skills and presentation skills
- Effective written and verbal communication skills with good analytical skills
- Strong collaborative skills and proven ability to work in a diverse team of security professionals
- A high proficiency level in specific job related skills is required accuracy and attention to detail skills
- Incident Response - critical thinking, problem solving, and excellent communication skills around IT incidents
- Strong documenting and technical writing skills
- Strong analytical, problem solving, and consulting skills with knowledge of Information Security and related technologies
How to write Soc Analyst Resume
Soc Analyst role is responsible for security, analytical, interpersonal, reporting, customer, refining, analysis, events, technical, leadership.
To write great resume for soc analyst job, your resume must include:
- Your contact information
- Work experience
- Education
- Skill listing
Contact Information For Soc Analyst Resume
The section contact information is important in your soc analyst resume. The recruiter has to be able to contact you ASAP if they like to offer you the job. This is why you need to provide your:
- First and last name
- Telephone number
Work Experience in Your Soc Analyst Resume
The section work experience is an essential part of your soc analyst resume. It’s the one thing the recruiter really cares about and pays the most attention to.
This section, however, is not just a list of your previous soc analyst responsibilities. It's meant to present you as a wholesome candidate by showcasing your relevant accomplishments and should be tailored specifically to the particular soc analyst position you're applying to.
The work experience section should be the detailed summary of your latest 3 or 4 positions.
Representative Soc Analyst resume experience can include:
- Excellent communication skills to effectively annotate findings in both written and oral form
- Strong analytical, problem solving and consulting skills with knowledge of
- Very good communication skills in English, both orally and in writing
- Strong analytical and investigation skills & active threat hunting and adversary tracking
- Continue to develop technical skills to expand one’s knowledge and understanding of key Information Security controls
- Knowledge and skills in one or more of, but not limited to, the following tools: NetWitness, Splunk - Wireshark - FireEye
Education on a Soc Analyst Resume
Make sure to make education a priority on your soc analyst resume. If you’ve been working for a few years and have a few solid positions to show, put your education after your soc analyst experience. For example, if you have a Ph.D in Neuroscience and a Master's in the same sphere, just list your Ph.D. Besides the doctorate, Master’s degrees go next, followed by Bachelor’s and finally, Associate’s degree.
Additional details to include:
- School you graduated from
- Major/ minor
- Year of graduation
- Location of school
These are the four additional pieces of information you should mention when listing your education on your resume.
Professional Skills in Soc Analyst Resume
When listing skills on your soc analyst resume, remember always to be honest about your level of ability. Include the Skills section after experience.
Present the most important skills in your resume, there's a list of typical soc analyst skills:
- Excellent customer service skills and presentation skills
- Self-motivated, detail-oriented, strong analytical and problem solving skills
- Experience leading incident responses, demonstrating a solid understanding of incident handling processes and procedures
- Log parsing and analysis skill set and previous experience developing and refining correlation rules
- Proven experience of creating and implementing cyber threat remediation plans
- Prior experience creating and maintain operational reports for Metrics
List of Typical Experience For a Soc Analyst Resume
Experience For SOC Analyst Resume
- 14 Skill in reading and interpreting signatures (e.g., Snort)
- 24 Skill in recognizing and categorizing types of vulnerabilities and associated attacks
- Experience configuring and modifying access control systems (ex: Lenel, Multi-Max, C-Cure, Honeywell, etc.)
- Experience with Nessus for enterprise scanning and providing recommendations for corrective actions
- Experience working in fast paced environments, and the ability to manage workload even during times of stress or escalated activity
- Knowledge of (or a strong desire to learn) common networking services and protocols (TCP/IP, SSH, FTP, DNS, DHCP, SMTP, SSL, etc.)
- Rudimentary understanding of (or a strong desire to learn) common security technologies (IDS, Firewall, SIEM, etc.)
Experience For Senior SOC Analyst Resume
- Experience in security monitoring and analysis, incident response
- 25 Skill in detecting host and network-based intrusions via intrusion detection technologies
- Generate, validate, and disseminate Playbooks/Runbooks to endure Security Best Practices and procedures
- Experience in the Information security field
- Demonstrate attention to detail and an analytical mindset to solve problems
- Validate incident containment and remediation recommendations provided to Customers
- Engage with Customers to build and maintain good, professional relationships
- Prioritize and coordinate vulnerability remediation activities
- Experience in Information Security, Incident Response, etc. (or related field)
Experience For SOC Analyst Warsaw Resume
- Guide technical knowledge of and experience fixing TCP/IP networks
- BA/BS in Information Security or equivalent work experience required
- Experience with information systems and capable of managing records projects using both electronic and manual systems is required
- Experience with Firewalls, routers, and event remediation
- Skill in recognizing and categorizing types of vulnerabilities and associated attacks
- Skill in detecting host and network-based intrusions via intrusion detection technologies
Experience For Junior SOC Analyst Resume
- Collaborate with Level 3 Analysts to keep SOC tools and applications in good health and hygiene
- Enthusiasm for information security and demonstrated ability to learn about new threats without guidance
- Experience with Signature development/management (e.g. Snort rules, Yara rules)
- Experience with protocol analysis and tools (e.g. Wireshark, Gigastor, Netwitness, etc.)
- General IT Experience Required 2 Years
- Previous security experience
- Experience with NIDS/HIPS/EDR infrastructure & tools
Experience For AWS SOC Analyst Resume
- Splunk experience
- Experience managing cases with enterprise SIEM systems like ArcSight, Splunk or Sourcefire
- Experience with Windows file system and registry functions or NIX operating systems and command line tools
- Experience and knowledge of packet flow, TCP/UDP traffic, firewall technologies, IDS technologies, proxy technologies, antivirus, spam, and spyware solutions
- Monitoring and analyzing events with a Security Information Event Monitoring (SIEM) system
- Monitoring and analyzing SIEM, UBA, network traffic, Intrusion Detection Systems (IDS), security events and logs
- Working as part of a team with similar tasked Analysts in a diverse, engaging, supportive and respectful manner
Experience For Intern, SOC Analyst Resume
- Monitoring and escalating logged Security Events
- Monitoring log streaming continuity
- Writing and optimizing IDS signatures (preferably
- Monitoring, identifying vulnerabilities
- Operating system certification (Windows Server Administration) or proof of training (certificate)
- Understanding of best security practices/incident management
Experience For x SOC Analyst Resume
- Maintaining documentation of policies and procedures
- Participating in the vulnerability management program
- Identifying opportunities that can improve the efficiency of SOC processes across the environment
- Implementing procedures to address new requirements
- Working rotational shifts (1st, 2nd, 3rd)
- Taking ownership highly technical investigations
- Understanding of how DNS functions
- Identifying information security incidents
- Supporting computer security incident response team activities
Experience For SOC Analyst Level Resume
- Understanding of threat vectors as well as exfiltration techniques is desired
- Understanding of security concepts and techniques
- Scripting languages and technologies (Python, Ruby, Java)
- Networking and/or Security certifications, such as: CompTIA Network+, Security+, SANS GCIA, SANS GCIH, or ISC2 CISSP
- Initiating escalation procedures if triggers and threshold are met
Experience For V-soc Analyst Resume
- Working knowledge of current cyber threat landscape (e.g. threat actors, APT, cyber-crime, etc.)
- Working knowledge of Windows and Unix/Linux
- Working knowledge of Firewall and Proxy technology
- Reviewing alerts generated by detection infrastructure for false positive alerts and modify alerts as needed
- Developing dashboards and reports to identify potential threats, suspicious/anomalous activity, malware, etc
- Maintaining documentation of logic, rules, policies, and procedures
Experience For Is Soc Analyst Resume
- Provide leadership and technical guidance in project planning, task definition, estimating, reporting, scheduling, documentation, and workflow
- Utilize the SIEM for researching and creating alerts, dashboards and reporting
- Responsible for documenting the incident life cycle, conduction, escalation, and providing support during cyber incidents
- Responsible for creating and updating existing playbooks and runbooks
- Analyst is responsible for handling or assisting in forensic or IR process, procedures, and acquisitions
List of Typical Skills For a Soc Analyst Resume
Skills For SOC Analyst Resume
- Applying scientific and analytical skills, develop big data algorithms for detection and reporting of threats against the organization and sector
- Experience in a professional technical support role or equivalent experience, working with relevant technologies
- Proven experience working in a Security Operations Centre or IT Security Team
- Proven experience of playing a key role in a cyber incident response process
- Solid Network experience (Protocols, Ports, Router, Switch)
- Effectively communicate with hosting and registrar companies worldwide by email and phone
- Effectively communicates with hosting and registrar companies worldwide by email and phone
- Demonstrates experience and understanding of cyber risks and threats related to cyber attackers
Skills For Senior SOC Analyst Resume
- Strong working experience with TCP/IP networking
- Strong Incident Management skill and ITIL knowledge
- Strong problem resolution and analytical skill
- Communicate effectively (team spirit) with customers, colleagues, and management
- IDS Log analysis skills
- Understanding of firewalls and intrusion prevention/detection systems including the ability to demonstrate a mature understanding of networking best practices
Skills For SOC Analyst Warsaw Resume
- Networking: Strong understanding of enterprise-level networks, networking protocols, devices, and architecture
- Prioritizing and differentiating between potential incidents and false alarms
- Using the big data toolset, analyze security incidents for evidence of malicious behaviour
- Robust troubleshooting and problem-solving ability including, analytical thinking and a strong attention to detail
- Can demonstrate a detailed understanding of networking, operating systems, and current threats, vulnerabilities, and attack trends
- Experience in using, configuring and tuning a SIEM
- Demonstrable experience in directing technical teams and coordinating with senior stakeholders & executives during management of critical security incidents
- Experience reading and understanding system data, including, but not limited to, security event logs, system logs, and firewall logs
Skills For Junior SOC Analyst Resume
- Experience with global routing/networking technologies (GRE, BGP, ASN routing)
- Experience developing, deploying and maintaining SIEM rules
- Experience with global routing and networking technologies (GRE, BGP, ASN routing)
- Experience deploying security tools such as IDS/IPS, Firewalls, Access Management, Antivirus, Web Filtering etc
- Demonstrated knowledge of networking (TCP/IP, topology, and security), operating systems (Windows/UNIX), and web technologies (IIS, Apache)
- Experience leading and directing security incident response
- Experience configuring and modifying access control systems (ex: Lenel, Multi-Max, C-Cure, Honeywell, etc.)
- Experience reporting to C-level executives on SOC Operations, Incident Response efforts, and developing projects
- Project experience delivering Vulnerability Assessments and Penetration Testing Services for external clients
Skills For AWS SOC Analyst Resume
- Experience working in a SOC role monitoring firewalls
- Experience monitoring logs using SIEM tools such as Splunk
- Experience with Windows OS troubleshooting including remote access and Windows command line
- In depth experienced with the following technologies: leading SIEM technologies, IDS/IPS, network- and host- based firewalls, data leakage protection (DLP)
- Experience implementing and managing SIEM tools
- Experience with Splunk - preferably proficient with Splunk's Search Processing Language (SPL), developing correlation rules, dashboards, and custom searches
- Experience with Splunk preferably proficient with Splunks Search Processing Language (SPL), developing correlation rules, dashboards, and custom searches
- Experience performing security analysis using Security and Incident Event Management (SIEM) technologies systems
- Respond to incidents by analysing digital evidence and ensure proper documentation and tracking
Skills For Intern, SOC Analyst Resume
- Experience supporting corporate customers in production environments, working with relevant technologies
- Two years of experience with information systems and capable of managing records projects using both electronic and manual systems is required
- Enterprise Systems Surveillance or NOC monitoring experience
- Moderate experience with scripting
- EDiscovery Experience using NUIX, EnCase, Relativity or other tools
Skills For x SOC Analyst Resume
- Previous experience with Database concepts and Scripting
- Experience working in a SOC within the financial sector
- Experience working with RSA Security Analytics/Netwitness
- Experience hunting proactively for threats within an enterprise environment
- Experience investigating computer network intrusions and incident response in an enterprise environment, preferably in a Security Operations Center (SOC)
- Experience with scripting languages such as Python or Powershell is desired
- Experience with creating automated log correlations in Splunk or a similar tool to identify anomalous and potentially malicious behavior
- Experience with the Windows file system and registry functions or NIX operating systems and command line tools
Skills For SOC Analyst Level Resume
- Security configuration experience with at least one of the following platforms: Windows server, Windows desktop, Ubuntu, Red-hat, Mac OSX
- Experience working in a SOC environment
- Experience supporting corporate customers in production environment
- Assist in managing all security operations tool health and effectiveness
- Assist with internal/external audits, HR, and legal inquiries as needed; maintains strong working relationships with these groups
- Good knowledge of IT Security issues inherent in corporate environments e.g: Phishing, DDoS attacks Malware, etc
- Experience with shell scripting, regular expressions (Windows or nix)
Skills For V-soc Analyst Resume
- At least 3 months of experience with at least two of the following
- Work experience performing security analyst related functions
- Previous experience working within an operations center
- Experience with event analysis leveraging SIEM tools (e.g. Splunk, ArcSight),
- Experience in an enterprise environment with any of the following: ArcSight, Sourcefire, TrendMicro DDI, Splunk, Hadoop
- Experience in System or Network Administration, Penetration Testing or Application Development
- Experience in analyzing events and incidents related to computer security
- Experience investigation intrusions, identifying insider threats, and incident response
Skills For Is Soc Analyst Resume
- Experience with investigation intrusions, identifying insider threats, and incident response
- Cyber Threat and Intelligence gathering and analysis experience
- Proficient experience protecting endpoints to determine and track infections to machines
- Proficient experience working with incident response and playbooks
- Experience with multiple Operating Systems (Linux, Windows)
- Experience within network engineering and intrusion detection systems
- Experience as a security analyst performing incident response or triage
List of Typical Responsibilities For a Soc Analyst Resume
Responsibilities For SOC Analyst Resume
- Experience with the following tools: SIEM, IDS, Firewalls, Netwitness, Splunk, MIR, Open Source Tools
- Experience in the Information security field
- SIEM experience – with knowledge of content creation (rules, alerts, etc.)
- SOC or MSSP experience
- Advanced protocol analysis experience (Wireshark, Gigastor, Netwitness, etc.)
- Advanced incident investigation and response skill set
Responsibilities For Senior SOC Analyst Resume
- Experience with TCP/IP and knowledgeable with common standard IP protocols such as ARP, IP, ICMP, TCP, UDP, SIP, etc
- Multi-task, coordinate, prioritize, and work under pressure
- Provide intrusion detection expertise to support timely and effective decision making
- Strong understanding of security incident management, malware management and vulnerability management processes
- Security monitoring experience with one or more SIEM technologies – IBM QRadar, LogRhythm, Splunk and intrusion detection and prevention technologies
- Self-starter, work independently and adjust to changing priorities, critical and strategic thinker, negotiator and consensus builder
- Previous experience working within an operations center
- Experience with investigation intrusions
- SOC or MSSP experience with at least 1 year in an in-depth technical role
Responsibilities For SOC Analyst Warsaw Resume
- Experience as a Security/Network Administrator or equivalent knowledge
- Good knowledge in cybersecurity trend and technologies
- SOC experience
- Previous experience within a Cyber/security role
- Strong collaborative style to enable success across multiple partners
- Participates in priority calls to present findings and mitigation suggestions to resolve incidents
- Monitoring, tracking, and analyzing networks/systems for potential security violations/anomalies and respond to all such incidents
- Understanding of network environments including TCP/IP, WANs, LANs, and commonly used Internet protocols such as SMTP, HTTP, FTP, POP, LDAP
- Assisting as required with Security, Risk, Compliance and Service reporting
Responsibilities For Junior SOC Analyst Resume
- Responding to incidents where a detailed understanding of the monitored estate is required and is beyond the capabilities of the Support Analysts
- Monitoring and auditing client systems to ensure the protection of those systems, information resources, and data within
- Developing advanced queries and alerts to detect adversary actions
- Leading investigations and response efforts into advanced/targeted attacks
- Hunting for and identify threat actor groups and their techniques, tools, and processes
- Providing expert analytic investigative support of large scale and complex security incidents
- Performing Root Cause Analysis of security incidents for further enhancement of alert catalog
- Conducting analysis of network traffic and host activity across a wide array of technologies and platforms
Responsibilities For AWS SOC Analyst Resume
- Compiling detailed investigation and analysis reports for internal SOC consumption and delivery to management
- Analyzing network traffic, IDS/IPS/DLP events, packet capture, and FW logs
- Analyzing event and incidents report by security solutions
- Working with each SME to continue improve the organization information security posture
- Working with external threat intelligence provider to review security alert and vulnerabilities
Responsibilities For Intern, SOC Analyst Resume
- Monitoring and ensure regulatory compliance [for example, data privacy law]
- Leading incident responders in the steps to take to investigate and resolve computer security incidents
- Supporting Analysts in the resolution of incidents where the defined procedure for an incident cannot be followed but escalation is not appropriate
- Working with all teams to investigate potential security violations, respond, and report accordingly
- Working HTTP/HTTPS knowledge
- Provide F5 customers with outstanding, rapid reaction to real-time alerts regarding phishing, malware and other security attacks
- Responsible for upholding F5’s Business Code of Ethics and for promptly reporting violations of the Code of other company policies
Responsibilities For x SOC Analyst Resume
- Create scheduled Customer reporting, from existing reports, where appropriate
- Familiarity with network and endpoint security applications and tools including network scanning tools, NIDS/HIDS, firewalls and web proxies
- Show us your troubleshooting/problem-solving ability
- Packet manipulation and crafting like hping, scapy, and iptables
- Create designs/technical specifications that align business needs with technical solutions while considering emerging security technologies
Responsibilities For SOC Analyst Level Resume
- In implementing and supporting information security infrastructure and solutions
- Perform incident handling following ITIL best practices
- Develops end-to-end security solutions leveraging existing or new capabilities, patterns, and/or processes
- Assist F5 clients with onboarding and provisioning
- Undaunted by, and quickly capable of, coming up to speed on new and developing technologies
Responsibilities For V-soc Analyst Resume
- Proficient knowledge in interpreting and constructing queries
- Act as designated lead on customer onboarding projects to ensure a successful transition to SOC for security monitoring services
- Responsible for upholding F5’s Business Code of Ethics and promptly reporting violations of the Code or other company policies
- Responsible for the monitoring and auditing of U.S. Federal client systems to ensure the protection of those systems, information resources, and data within
- Prepare reports & distribute in readiness for Customer tuning calls
- Execute Customer SIEM Portal provisioning
- Conduct production security monitoring for all information systems
- Perform security testing and evaluation
- Provide feedback to SOC management and engineers on existing and new use cases to be configured within in the SIEM
Responsibilities For Is Soc Analyst Resume
- Assist with root cause analysis of major or recurring cybersecurity incidents
- Produce summary reporting of client-identified key security metrics
- Perform real-time monitoring of security events in the SIEM
- Incident management, response, and reporting. Document and track investigation activities through incident lifecycle
- Update and maintain standard operating procedures and other technical documentation to improve overall SOC functions
- Provide examples of your awesome technical support capabilities working with meaningful technologies
- Detailed protocol analysis using tools like tcpdump, tshark, and Wireshark