The SOC Analyst executes and helps to create operational processes for consistent monitoring of ... CompTIA CySA+ certification/ or a CompTIA Security+ (or other relevant IAT Level II/III ...
The SOC Analyst executes and helps to create operational processes for consistent monitoring of ... CompTIA CySA+ certification/ or a CompTIA Security+ (or other relevant IAT Level II/III ...
The SOC Analyst executes and helps to create operational processes for consistent monitoring of ... CompTIA CySA+ certification/ or a CompTIA Security+ (or other relevant IAT Level II/III ...
The SOC Analyst executes and helps to create operational processes for consistent monitoring of ... CompTIA CySA+ certification/ or a CompTIA Security+ (or other relevant IAT Level II/III ...
SOC Analyst
Crownsville, MD · On-site
The SOC Analyst executes and helps to create operational processes for consistent monitoring of ... CompTIA CySA+ certification/ or a CompTIA Security+ (or other relevant IAT Level II/III ...
SOC Analyst
Crownsville, MD · On-site
The SOC Analyst executes and helps to create operational processes for consistent monitoring of ... CompTIA CySA+ certification/ or a CompTIA Security+ (or other relevant IAT Level II/III ...
SOC Analyst & Incident Response Lead
OR · On-site +1
Provide expert-level guidance to Tier 1 and Tier 2 SOC analysts; coach and mentor to raise team capabilities. * Correlate threat intelligence with incident data to understand adversary behavior and ...
SOC Analyst & Incident Response Lead
OR · On-site +1
Provide expert-level guidance to Tier 1 and Tier 2 SOC analysts; coach and mentor to raise team capabilities. * Correlate threat intelligence with incident data to understand adversary behavior and ...
The SOC Analyst executes and helps to create operational processes for consistent monitoring of ... CompTIA CySA+ certification/ or a CompTIA Security+ (or other relevant IAT Level II/III ...
The SOC Analyst executes and helps to create operational processes for consistent monitoring of ... CompTIA CySA+ certification/ or a CompTIA Security+ (or other relevant IAT Level II/III ...
Candidate must have a minimum of 1-2 years of experience as an analyst in a SOC or similar environment. * Working knowledge of various SOC tools and their usage for detecting intrusion attempts.
Candidate must have a minimum of 1-2 years of experience as an analyst in a SOC or similar environment. * Working knowledge of various SOC tools and their usage for detecting intrusion attempts.
SOC Analyst
Alexandria, VA · On-site
$150K - $165K/yr
The SOC Analyst will be responsible for monitoring, analyzing, investigating, and responding to ... DoD 8570 IAT Level II (or higher) certifications prior to start date (CompTIA Sec+, SSCP etc)
SOC Analyst
Alexandria, VA · On-site
$150K - $165K/yr
The SOC Analyst will be responsible for monitoring, analyzing, investigating, and responding to ... DoD 8570 IAT Level II (or higher) certifications prior to start date (CompTIA Sec+, SSCP etc)
SOC Analyst
Alexandria, VA · On-site
$150K - $165K/yr
The SOC Analyst will be responsible for monitoring, analyzing, investigating, and responding to ... DoD 8570 IAT Level II (or higher) certifications prior to start date (CompTIA Sec+, SSCP etc)
SOC Analyst
Alexandria, VA · On-site
$150K - $165K/yr
The SOC Analyst will be responsible for monitoring, analyzing, investigating, and responding to ... DoD 8570 IAT Level II (or higher) certifications prior to start date (CompTIA Sec+, SSCP etc)
SOC Analyst
Alexandria, VA · On-site
$150K - $165K/yr
The SOC Analyst will be responsible for monitoring, analyzing, investigating, and responding to ... DoD 8570 IAT Level II (or higher) certifications prior to start date (CompTIA Sec+, SSCP etc)
SOC Analyst
Alexandria, VA · On-site
$150K - $165K/yr
The SOC Analyst will be responsible for monitoring, analyzing, investigating, and responding to ... DoD 8570 IAT Level II (or higher) certifications prior to start date (CompTIA Sec+, SSCP etc)
Candidate must have a minimum of 1-2 years of experience as an analyst in a SOC or similar environment. * Working knowledge of various SOC tools and their usage for detecting intrusion attempts.
Candidate must have a minimum of 1-2 years of experience as an analyst in a SOC or similar environment. * Working knowledge of various SOC tools and their usage for detecting intrusion attempts.
SOC Analyst
Alexandria, VA · On-site
$150K - $165K/yr
The SOC Analyst will be responsible for monitoring, analyzing, investigating, and responding to ... DoD 8570 IAT Level II (or higher) certifications prior to start date (CompTIA Sec+, SSCP etc)
SOC Analyst
Alexandria, VA · On-site
$150K - $165K/yr
The SOC Analyst will be responsible for monitoring, analyzing, investigating, and responding to ... DoD 8570 IAT Level II (or higher) certifications prior to start date (CompTIA Sec+, SSCP etc)
SOC Analyst
Durham, NC · On-site
Candidate must have a minimum of 1-2 years of experience as an analyst in a SOC or similar environment. * Working knowledge of various SOC tools and their usage for detecting intrusion attempts.
SOC Analyst
Durham, NC · On-site
Candidate must have a minimum of 1-2 years of experience as an analyst in a SOC or similar environment. * Working knowledge of various SOC tools and their usage for detecting intrusion attempts.
SOC Analyst
Buffalo, NY · On-site +1
$68K - $80K/yr
We are in search of a talented SOC Analyst to join Cegeka's Modern SOC As SOC Analyst you are a key ... Security related certifications (such as GIAC, CompTIA, CEH, Blue Team Level 1/2) are a plus. * You ...
Quick apply
SOC Analyst
Buffalo, NY · On-site +1
$68K - $80K/yr
We are in search of a talented SOC Analyst to join Cegeka's Modern SOC As SOC Analyst you are a key ... Security related certifications (such as GIAC, CompTIA, CEH, Blue Team Level 1/2) are a plus. * You ...
SOC Analyst
Denver, CO · On-site
Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.
SOC Analyst
Denver, CO · On-site
Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.
SOC Analyst
Buffalo, NY · On-site +1
$68K - $85K/yr
We are in search of a talented SOC Analyst to join Cegeka's Modern SOC As SOC Analyst you are a key ... Security related certifications (such as GIAC, CompTIA, CEH, Blue Team Level 1/2) are a plus. * You ...
Quick apply
SOC Analyst
Buffalo, NY · On-site +1
$68K - $85K/yr
We are in search of a talented SOC Analyst to join Cegeka's Modern SOC As SOC Analyst you are a key ... Security related certifications (such as GIAC, CompTIA, CEH, Blue Team Level 1/2) are a plus. * You ...
Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.
Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.
SOC Analyst
Baltimore, MD · On-site
$31.25 - $40.87/hr
Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.
SOC Analyst
Baltimore, MD · On-site
$31.25 - $40.87/hr
Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.
SOC Analyst
Denver, CO · On-site
$31.25 - $40/hr
Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.
SOC Analyst
Denver, CO · On-site
$31.25 - $40/hr
Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.
Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.
Candidate must have a minimum of 2-4 years of experience as an analyst in a SOC or similar environment. * Working knowledge of SOC tools and their usage for detecting intrusion attempts.
SOC Tier 2 Analyst
Portland, OR · On-site
They are seeking a SOC Tier 2 Analyst to support security operations by investigating escalated alerts, coordinating incident responses, and improving detection processes. Responsibilities : • ...
SOC Tier 2 Analyst
Portland, OR · On-site
They are seeking a SOC Tier 2 Analyst to support security operations by investigating escalated alerts, coordinating incident responses, and improving detection processes. Responsibilities : • ...
Level Two Soc Analyst information
See salary details
$35.5K - $43.8K
2% of jobs
$43.8K - $52.1K
3% of jobs
$52.1K - $60.5K
12% of jobs
$60.5K - $68.8K
7% of jobs
$69.5K is the 25th percentile. Wages below this are outliers.
$68.8K - $77.1K
9% of jobs
$77.1K - $85.4K
5% of jobs
$85.4K - $93.7K
3% of jobs
$93.7K - $102K
6% of jobs
The median wage is $104.1K / yr.
$102K - $110.4K
6% of jobs
$110.4K - $118.7K
2% of jobs
$122.2K is the 75th percentile. Wages above this are outliers.
$118.7K - $127K
43% of jobs
$35.5K
$99.2K
$127K
How much do level two soc analyst jobs pay per year?
As of Jun 16, 2026, the average yearly pay for level two soc analyst in the United States is $99,157.00, according to ZipRecruiter salary data. Most workers in this role earn between $72,000.00 and $126,500.00 per year, depending on experience, location, and employer.
What is the difference between Level Two Soc Analyst vs Level One Soc Analyst?
| Aspect | Level Two Soc Analyst | Level One Soc Analyst |
|---|---|---|
| Certifications | CompTIA Security+, CEH, CISSP (preferred) | CompTIA Security+ or equivalent |
| Work Environment | Advanced security operations center, handling complex incidents | Entry-level monitoring and alert analysis |
| Responsibilities | Analyzing complex threats, escalating incidents, and guiding junior staff | Monitoring alerts, initial incident detection, basic analysis |
The main difference between a Level Two Soc Analyst and a Level One Soc Analyst lies in experience, responsibilities, and complexity of tasks. Level Two analysts handle more complex security incidents, require advanced certifications, and often guide Level One staff. Level One analysts focus on basic monitoring and alert analysis. Both roles are essential in a security operations team, but Level Two analysts bring deeper expertise and problem-solving skills.
What cities are hiring for Level Two Soc Analyst jobs? Cities with the most Level Two Soc Analyst job openings:
What states have the most Level Two Soc Analyst jobs? States with the most job openings for Level Two Soc Analyst jobs include:
Job description
About DMI
DMI is a leading provider of digital services and technology solutions, headquartered in Tysons Corner, VA. With a focus on end-to-end managed IT services, including managed mobility, cloud, cybersecurity, network operations, and application development, DMI supports public sector agencies and commercial enterprises around the globe. Recognized as a Top Workplace, DMI is committed to delivering secure, ef?cient, and cost-effective solutions that drive measurable results. Learn more at
About the Opportunity
DMI, LLC is looking for a Security Operations Center (SOC) Analyst with hands-on experience monitoring, detecting, and analyzing threats and cybersecurity events to identify and defend against validated intrusion events . Daily work includes monitoring network and system security events, conducting threat hunting through event data and activity logs, developing alarms for suspicious or malicious activity, escalating alerts to clients, and preparing reports to summarize detected activities.
The SOC Analyst executes and helps to create operational processes for consistent monitoring of client environments and should be familiar with a variety of security tools and technologies. The SOC Analyst additionally works to support the Incident Response Team by conducting monitoring and analysis during incident management engagements.
Duties and Responsibilities:
Qualifications
Education and Years of Experience:
Desired Skills and Qualifications:
Background Requirements: Successful completion of a Fingerprint background investigation.
Physical Requirements: None required for this position.
Location: Crownsville, MD (100% onsite) 3 PM -11:30 PM ET
Working at DMI
DMI is a diverse, prosperous, and rewarding place to work. Our culture is shaped by five core values that guide how we work, grow, and succeed together:
These values aren't just ideals-they show up in how we support every part of your well-being:
DMI values employees for their talents and contributions, and we take pride in helping our customers achieve their goals. Because when we live our values, we all win together.
***************** No Agencies Please *****************
Applicants selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information. ship may be required for some positions.
DMI is a leading provider of digital services and technology solutions, headquartered in Tysons Corner, VA. With a focus on end-to-end managed IT services, including managed mobility, cloud, cybersecurity, network operations, and application development, DMI supports public sector agencies and commercial enterprises around the globe. Recognized as a Top Workplace, DMI is committed to delivering secure, ef?cient, and cost-effective solutions that drive measurable results. Learn more at
About the Opportunity
DMI, LLC is looking for a Security Operations Center (SOC) Analyst with hands-on experience monitoring, detecting, and analyzing threats and cybersecurity events to identify and defend against validated intrusion events . Daily work includes monitoring network and system security events, conducting threat hunting through event data and activity logs, developing alarms for suspicious or malicious activity, escalating alerts to clients, and preparing reports to summarize detected activities.
The SOC Analyst executes and helps to create operational processes for consistent monitoring of client environments and should be familiar with a variety of security tools and technologies. The SOC Analyst additionally works to support the Incident Response Team by conducting monitoring and analysis during incident management engagements.
Duties and Responsibilities:
- The shift is day, evening, or night shift .
- Monitor, protect, and defend the enterprise perimeter against malicious network traffic.
- Monitor, protect, and defend internal networks and hosts against ongoing and emerging threats.
- Enrich monitoring logs with contextual operation data from functional areas correlate events and identify security issues, threats, and vulnerabilities
- Conduct security event analysis and validation, triage validated incidents, perform initial containment where feasible, research incident and enrich incident case documentation, and escalate the incident for further analysis, containment, and eradication.
- Review and analyze threat intelligence information and proactively search application, system, network logs to hunt for and thwart relevant threats identified threats.
- Prepare and perform shift handover briefing to communicate completed and pending activities, and relay situational awareness information.
- Contribute to the development and maintenance of SOC Standard Operating Procedures (SOPs) and Concept of Operations (CONOPS) to establish and continuously improve organization's operating knowledge base.
- Participate in post-incident activities and contribute to lessons learned to improve security operations.
- Provide support in preparation of management threat reports and briefings, and recommendations.
- Provide sound technical recommendations that enable remediation of security issues.
- Partner with security engineering to develop and refine SIEM correlation rules.
- Utilize advanced threat models, SIEM use cases, and incident response playbooks.
Qualifications
Education and Years of Experience:
- Bachelor's degree from an accredited college or university with a major in computer science, information systems, engineering, business, or a related scientific or technical disciplines . Master's Degree is preferred.
- CompTIA CySA+ certification/ or a CompTIA Security+ (or other relevant IAT Level II/III Certification) along with one of the following:
- CEH
- CFR
- CCNA Cyber Ops
- CCNA-Security
- GCIA
- GCIH
- GICSP
- Cloud+
- SCYBER
- PenTest+
- CEH
- Experience analyzing intrusion events such phishing emails, malware, privileges misuse, traffic indicating potential malicious activities such DoS/DDoS, brute force, data loss through exfiltration/ inadvertent disclosure.
- Applied experience of threat analysis model/frameworks such Cyber Kill Chain, MITRE ATT&CK, Diamond Model, Pyramid of Pain etc.
- Working knowledge of advanced threat Tactics, Techniques and Procedures (TTPs).
- Applied experience with network traffic analysis with tools like Wireshark
- Applied experience with a variety of Opensource threat research tools/platforms such as Virus Total
- Working knowledge of network and security architecture principles such as defense-in-depth
- Experience with proprietary security protection/detections tools such as Firewall, Host and Network IDS/IPS, Anti-Virus, EDR, URL Filtering Gateways, Email Filtering Gateways, DLP tools, and SIEM tools such as Splunk etc.
- Capable of working independently, establishing priorities and managing task completion within set SLAs
- Able to communicate effectively through writing, speaking, and presenting to client technical representatives.
- Team player capable of productively contributing to the client mission by supporting fellow teammates in a dynamic growing and changing environment.
Desired Skills and Qualifications:
- Experience with mid-to-advance level malware analysis
- Experience creating detailed queries and scripts, such as regular expressions, for log, event and correlation analysis.
- Experience scripting in Python, PowerShell, VBScript
Background Requirements: Successful completion of a Fingerprint background investigation.
Physical Requirements: None required for this position.
Location: Crownsville, MD (100% onsite) 3 PM -11:30 PM ET
Working at DMI
DMI is a diverse, prosperous, and rewarding place to work. Our culture is shaped by five core values that guide how we work, grow, and succeed together:
- Do What's Right - We lead with honesty and integrity.
- Own the Outcome - We take responsibility and deliver.
- Deliver for Our Customers - We are relentless about delivering value.
- Think Bold, Act Smart - We innovate with purpose.
- Win Together - We collaborate and celebrate our success.
These values aren't just ideals-they show up in how we support every part of your well-being:
- Convenience/Concierge - Virtual health visits, commuter perks, pet insurance, and entertainment discounts that make life easier.
- Development - Annual performance reviews, tuition assistance, and internal career growth opportunities to help you thrive.
- Financial - Generous 401(k) matches, life and disability insurance, and financial wellness tools to support your future.
- Recognition - Annual awards, service anniversaries, referral bonuses, and peer-to-peer shoutouts that spotlight your achievements.
- Wellness - Healthcare coverage, wellness programs, flu shots, and biometric screenings to support your health.
DMI values employees for their talents and contributions, and we take pride in helping our customers achieve their goals. Because when we live our values, we all win together.
***************** No Agencies Please *****************
Applicants selected may be subject to a government security investigation and must meet eligibility requirements for access to classified information. ship may be required for some positions.
About Digital Management
Sourced by ZipRecruiter
Company size
1,001 - 5,000 Employees
Headquarters location
Bethesda, MD, US
Year founded
2002