1

Level 2 Soc Analyst Jobs (NOW HIRING)

SOC Analyst

Alexandria, VA · On-site

$150K - $165K/yr

The SOC Analyst will be responsible for monitoring, analyzing, investigating, and responding to ... DoD 8570 IAT Level II (or higher) certifications prior to start date (CompTIA Sec+, SSCP etc)

Candidate must have a minimum of 1-2 years of experience as an analyst in a SOC or similar environment. * Working knowledge of various SOC tools and their usage for detecting intrusion attempts.

Candidate must have a minimum of 1-2 years of experience as an analyst in a SOC or similar environment. * Working knowledge of various SOC tools and their usage for detecting intrusion attempts.

Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.

SOC Analyst

Buffalo, NY · On-site +1

$68K - $85K/yr

We are in search of a talented SOC Analyst to join Cegeka's Modern SOC As SOC Analyst you are a key ... Security related certifications (such as GIAC, CompTIA, CEH, Blue Team Level 1/2) are a plus. * You ...

Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.

About the role Concept Plus is seeking a SOC Analyst to support the Enterprise Cybersecurity ... Must meet IAT Level II baseline (Security+ CE, CySA+, CASP+, GSEC, SSCP, CND, CCNA Security, CCNP ...

Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.

SOC Analyst

Baltimore, MD · On-site

$31.25 - $40.87/hr

Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.

SOC Analyst

Denver, CO · On-site

$31.25 - $40/hr

Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.

Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.

SOC Analyst

Buffalo, NY · On-site +1

$68K - $85K/yr

We are in search of a talented SOC Analyst to join Cegeka's Modern SOC As SOC Analyst you are a key ... Security related certifications (such as GIAC, CompTIA, CEH, Blue Team Level 1/2) are a plus. * You ...

Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.

The Tier 3 SOC Analyst serves as an escalation point for Tier 1 and Tier 2 Analysts within the SOC and provides advanced analytical and investigation support for complex incidents to assist in ...

Work closely with SOC Analysts II, SecurityEngineers, and IT teams to support investigations and strengthenoverall security posture. Own the remediation lifecycle for identified vulnerabilities ...

Work closely with SOC Analysts II, Security Engineers, and IT teams to support investigations and strengthen overall security posture. Own the remediation lifecycle for identified vulnerabilities ...

next page

Showing results 1-20

Level 2 Soc Analyst information

See salary details

$33K

$76.3K

$124K

How much do level 2 soc analyst jobs pay per year?

As of Jul 5, 2026, the average yearly pay for level 2 soc analyst in the United States is $76,273.00, according to ZipRecruiter salary data. Most workers in this role earn between $57,500.00 and $90,000.00 per year, depending on experience, location, and employer.

What is the difference between Level 2 Soc Analyst vs Level 1 Soc Analyst?

AspectLevel 2 Soc AnalystLevel 1 Soc Analyst
CertificationsCompTIA Security+, CEH, CISSP (preferred)CompTIA Security+ or equivalent
Work EnvironmentAdvanced security operations center, handling complex incidentsEntry-level monitoring and alert analysis
ResponsibilitiesAnalyzing security alerts, escalating incidents, and providing guidanceMonitoring alerts, initial triage, and basic incident response

The main difference between a Level 2 Soc Analyst and a Level 1 Soc Analyst lies in experience, responsibilities, and complexity of tasks. Level 2 analysts handle more complex security incidents, perform detailed analysis, and often guide Level 1 analysts. They typically hold additional certifications and have a deeper understanding of security tools and procedures.

What are the key skills and qualifications needed to thrive as a Level 2 SOC Analyst, and why are they important?

To thrive as a Level 2 SOC Analyst, you need strong analytical skills, a solid understanding of cybersecurity principles, and experience with incident detection and response, typically supported by a relevant degree or certifications like CompTIA Security+ or CISSP. Familiarity with SIEM platforms (such as Splunk or QRadar), intrusion detection systems, and ticketing tools is crucial for efficient threat monitoring and investigation. Attention to detail, problem-solving abilities, and effective communication are essential soft skills for collaborating with IT teams and escalating security incidents. These skills ensure timely identification, analysis, and mitigation of security threats to protect organizational assets.

What are the main challenges Level 2 SOC Analysts face when prioritizing and escalating security incidents?

Level 2 SOC Analysts often encounter challenges in differentiating between true security threats and benign anomalies, especially when dealing with high volumes of alerts. Prioritizing incidents requires strong analytical skills and a deep understanding of the organization’s environment to assess potential impact. Effective escalation involves clear communication with both internal teams and external stakeholders, ensuring that critical incidents are addressed promptly while minimizing false positives. Continuous learning and situational awareness are key to managing these responsibilities efficiently.

What are Level 2 SOC Analysts?

Level 2 SOC Analysts are cybersecurity professionals who monitor, analyze, and respond to security incidents within an organization's Security Operations Center (SOC). They handle more complex threats and escalated incidents that require deeper investigation compared to entry-level analysts. Their responsibilities include performing in-depth analysis of security alerts, conducting root cause investigations, and coordinating with other teams to remediate threats. Level 2 analysts also support continuous improvement of security monitoring processes and may mentor junior analysts.

What is L1 L2 L3 SOC analyst?

A Level 2 SOC analyst is a cybersecurity professional who handles more complex security incidents than Level 1 analysts, often performing deeper analysis, threat hunting, and using advanced tools. Level 3 analysts are senior experts responsible for resolving the most difficult issues, developing security strategies, and guiding Level 1 and 2 teams. These roles typically require technical skills, certifications like CompTIA Security+ or CISSP, and experience with security information and event management (SIEM) systems.

How much does a Tier 2 SOC analyst make in the US?

A Tier 2 SOC analyst in the US typically earns between $60,000 and $90,000 annually, depending on experience, location, and certifications such as CompTIA Security+ or CISSP. They often work in security operations centers, handling incident response and threat analysis with tools like SIEM systems.

What is a level 2 SOC analyst?

A Level 2 SOC analyst is a cybersecurity professional responsible for monitoring security alerts, investigating incidents, and escalating complex threats to higher-level analysts. They typically use security information and event management (SIEM) tools and have skills in threat detection, analysis, and incident response. This role often requires relevant certifications and experience in cybersecurity operations.

Can you make $500,000 a year in cyber security?

A Level 2 SOC Analyst typically earns between $60,000 and $100,000 annually, depending on experience and location. Reaching a $500,000 salary usually requires senior roles, management positions, or specialized skills such as threat hunting or security architecture, often combined with certifications like CISSP or CISA. High salaries are more common in executive or consulting roles within cybersecurity.
More about Level 2 Soc Analyst jobs
What cities are hiring for Level 2 Soc Analyst jobs? Cities with the most Level 2 Soc Analyst job openings:
What states have the most Level 2 Soc Analyst jobs? States with the most job openings for Level 2 Soc Analyst jobs include:
Infographic showing various Level 2 Soc Analyst job openings in the United States as of June 2026, with employment types broken down into 1% As Needed, 82% Full Time, and 17% Part Time. Highlights an 83% Physical, 6% Hybrid, and 11% Remote job distribution, with an average salary of $76,273 per year, or $36.7 per hour.

$150K - $165K/yr

Full-time

Posted yesterday


Job description

Description:


Position Summary

Northern Technologies Group (NTG) is seeking a highly motivated Security Operations Center (SOC) Analyst to support a mission-critical cybersecurity operations environment. The SOC Analyst will be responsible for monitoring, analyzing, investigating, and responding to cybersecurity events and incidents across enterprise networks and systems. This role requires experience in incident response, cyber defense operations, threat detection, and security monitoring within a Security Operations Center (SOC).


The ideal candidate will possess strong analytical skills, experience working with enterprise security tools, and a deep understanding of cyber threat actor tactics, techniques, and procedures (TTPs).


Essential Duties and Responsibilities
  • Monitor and analyze security alerts generated from endpoints, IDS/IPS systems, NetFlow data, SIEM platforms, and custom security sensors.
  • Identify, investigate, and respond to potential cybersecurity incidents and compromises across customer networks and endpoints.
  • Perform detailed analysis of large-scale log data and correlate information across multiple data sources during incident investigations.
  • Escalate validated threats and incidents to senior SOC personnel while providing detailed supporting evidence.
  • Document investigative findings, actions taken, and recommendations within case management and knowledge management systems.
  • Create, maintain, and distribute incident reports to customers, stakeholders, and leadership.
  • Support Cyber Network Defense (CND) operations through protection, detection, response, and sustainment activities.
  • Participate in shift operations supporting a 24x7 mission-essential environment.
  • Maintain awareness of emerging cyber threats, attack vectors, and adversary TTPs.
  • Contribute to knowledge sharing, mentoring, training, and continuous improvement initiatives.
Minimum Qualifications (Knowledge, Skills, and Abilities)
  • Must be a U.S. Citizen.
  • Must possess an active DoD Top Secret/ SCI security clearance
  • Bachelor’s degree and 8+ years of relevant experience, Additional military service and relevant experience may substitute for degree requirements. Candidates without a degree must possess a minimum of 12 years of relevant experience.
  • Minimum 2 years of incident handling and incident response experience.
  • Minimum 2 years of Security Operations Center (SOC) experience.
  • Experience supporting Cyber Network Defense (CND) operations within a Computer Incident Response organization.
  • Demonstrated understanding of Cyber threat lifecycles, Attack vectors and exploitation methodologies, Adversary tactics, techniques, and procedures (TTPs)
  • Strong knowledge of: TCP/IP networking, Network protocols and ports, Traffic analysis, System administration, OSI model, Defense-in-depth security principles
  • Ability to work independently in a fast-paced operational environment.
  • DoD 8570 IAT Level II (or higher) certifications prior to start date (CompTIA Sec+, SSCP etc)
  • Must also obtain a DoD 8570 CSSP-Analyst certification within six months of hire (CEH, CySA+, GCIA)
Preferred Qualifications
  • Experience analyzing large volumes of: Security logs, NetFlow data, Full Packet Capture (PCAP), Network forensic artifacts
  • Hands-on experience with enterprise SIEM platforms such as: Splunk, ArcSight, QRadar, McAfee Enterprise Security Management (Nitro), LogLogic.
  • Experience with: IDS/IPS technologies, Host-Based Security Systems (HBSS), Endpoint security tools, Malware analysis techniques
  • Unix/Linux command-line proficiency.
  • Scripting or programming experience.
  • Familiarity with: MITRE ATT&CK Framework, Cyber Kill Chain Methodology, Intelligence-Driven Defense concepts
Physical Demands and Work Environment

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodations may be made to enable individuals with disabilities to perform these functions.


While performing the duties of this position, the employee is regularly required to talk or hear. The employee frequently is required to use hands or fingers, handle or feel objects, tools, or controls. The employee is occasionally required to stand; walk; sit; and reach with hands and arms. The employee must occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this position include close vision, distance vision, and the ability to adjust focus. The noise level in the work environment is usually low to moderate.


Northern Technologies Group is an equal opportunity employer. We do not discriminate based on race, color, religion, sex, national origin, disability, age, or any other protected status under federal, state, or local law.


Travel

10%


Shift

Day Shift


Note

The company is an Equal Opportunity Employer, drug free workplace, and complies with ADA regulations as applicable.

This job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice. Employees will be required to follow any other job-related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments. This document does not create an employment contract, implied or otherwise, other than an “at will” relationship.


The salary range listed represents a good faith estimate and is provided in compliance with applicable pay transparency laws. The final compensation offered will be determined based on a variety of factors, including your skills, experience, qualifications, internal equity, and market conditions.

Requirements: