ZipRecruiter

Log In

1

Security Operations Center Analyst Jobs in Delaware

Dexian

SOC Analyst

Wilmington, DE · On-site

Onsite 5 days a week in Wilmington, DE JOB SUMMARY The Security Operations Center (SOC) Analyst is responsible for identifying, analyzing, and supporting events and incidents that may impact ...

Allere

Cyber Cloud Engineer

Wilmington, DE · Hybrid

... Operations team responsible for monitoring, analyzing, and investigating security alerts to ... Center (SOC), Cybersecurity, Technical Helpdesk, or Network Administration role preferred

System One

Security Engineer II

Milford, DE · On-site

Provide guidance and training to Level 1 analysts; collaborate with IT, DevOps, and cross-functional teams on security concerns. * Conduct forensic analysis on compromised systems to identify attack ...

Burris Logistics

Security Engineer II

Milford, DE · On-site

Work closely with Level 1 analysts to provide guidance and training * Collaborate with IT, DevOps, and other teams to address cross-functional security concerns * Perform forensic analysis on ...

Burris Logistics

Security Engineer II

Milford, DE

Work closely with Level 1 analysts to provide guidance and training * Collaborate with IT, DevOps, and other teams to address cross-functional security concerns * Perform forensic analysis on ...

Burris Logistics

Security Engineer II

Milford, DE · On-site

Work closely with Level 1 analysts to provide guidance and training * Collaborate with IT, DevOps, and other teams to address cross-functional security concerns * Perform forensic analysis on ...

Walgreens

Emerging Store Manager

Bridgeville, DE · On-site

Supports Store Manager in leveraging data, analysis, and team member input to make fact-based ... the Security Operations Center. * Complies with all company policies and procedures, manages ...

Walgreens

Emerging Store Manager

Hockessin, DE · On-site

Supports Store Manager in leveraging data, analysis, and team member input to make fact-based ... the Security Operations Center. * Complies with all company policies and procedures, manages ...

New

Walgreens

Emerging Store Manager

Hockessin, DE

Supports Store Manager in leveraging data, analysis, and team member input to make fact-based ... the Security Operations Center. * Complies with all company policies and procedures, manages ...

New

Walgreens

Emerging Store Manager

Middletown, DE · On-site

Supports Store Manager in leveraging data, analysis, and team member input to make fact-based ... the Security Operations Center. * Complies with all company policies and procedures, manages ...

Walgreens

Emerging Store Manager

Newark, DE · On-site

Supports Store Manager in leveraging data, analysis, and team member input to make fact-based ... the Security Operations Center. * Complies with all company policies and procedures, manages ...

next page

Showing results 1-20

All JobsSecurity Operations Center Analyst JobsSecurity Operations Center Analyst Jobs in Delaware

Security Operations Center Analyst information

See Delaware salary details

$17

$36

$70

How much do security operations center analyst jobs pay per hour?

As of Jun 21, 2026, the average hourly pay for security operations center analyst in Delaware is $36.89, according to ZipRecruiter salary data. Most workers in this role earn between $22.60 and $43.80 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Security Operations Center Analyst, and why are they important?

To thrive as a Security Operations Center Analyst, you need a strong understanding of cybersecurity principles, network protocols, and incident response, often backed by a relevant degree or certifications like CompTIA Security+ or CISSP. Familiarity with SIEM tools (e.g., Splunk, QRadar), intrusion detection systems, and ticketing platforms is essential for effective monitoring and analysis. Attention to detail, analytical thinking, and clear communication help SOC Analysts excel in identifying threats and collaborating with IT teams. These skills are crucial to quickly detecting, investigating, and mitigating security incidents, protecting organizational assets from cyber threats.

How much is a SOC analyst paid?

A Security Operations Center (SOC) analyst's salary typically ranges from $60,000 to $100,000 annually, depending on experience, certifications, and location. Entry-level positions may start lower, while experienced analysts with certifications like CISSP or CEH can earn higher salaries, especially in high-demand areas or with specialized skills in threat detection and incident response.

What are the most common challenges Security Operations Center Analysts face during daily operations?

Security Operations Center (SOC) Analysts often deal with a high volume of alerts, many of which may be false positives, requiring keen analytical skills to prioritize genuine threats. Staying updated on evolving cyber threats and attack patterns is another challenge, as adversaries continuously adapt their tactics. Additionally, SOC Analysts frequently work in high-pressure environments where quick, accurate decision-making is crucial, and collaboration with IT, incident response teams, and management is essential to ensure coordinated defense efforts.

What are Security Operations Center (SOC) Analysts?

Security Operations Center (SOC) Analysts are cybersecurity professionals who monitor, detect, and respond to security threats within an organization’s IT environment. They analyze security alerts, investigate incidents, and coordinate responses to mitigate risks and protect sensitive data. SOC Analysts use specialized tools to track suspicious activities, implement security measures, and ensure compliance with security policies. Their work is crucial in defending organizations against cyberattacks and maintaining overall information security.

How much does a SOC analyst salary?

A Security Operations Center (SOC) analyst typically earns between $60,000 and $100,000 annually, depending on experience, certifications, and location. Entry-level positions may start lower, while experienced analysts with certifications like CISSP or CEH can earn higher salaries, especially in high-demand areas or with specialized skills in threat detection and incident response.

What does a security operations center analyst do?

A Security Operations Center (SOC) analyst monitors and analyzes security alerts and incidents to protect an organization’s information systems. They use tools like SIEM systems, investigate potential threats, and respond to security breaches to ensure network security and compliance. Strong analytical skills, knowledge of cybersecurity threats, and relevant certifications are often required for this role.

What is the difference between Security Operations Center Analyst vs Security Analyst?

AspectSecurity Operations Center AnalystSecurity Analyst
CertificationsCompTIA Security+, CEH, CISSP (preferred)CompTIA Security+, CISSP, CISA (preferred)
Work EnvironmentMonitoring security alerts in a SOC, 24/7 shiftsAnalyzing security data, conducting risk assessments
Employer & Industry UsagePrimarily in security operations centers, cybersecurity firmsVarious industries including finance, healthcare, government

The Security Operations Center Analyst focuses on real-time monitoring and incident response within a SOC environment, often working in shifts. In contrast, a Security Analyst typically conducts broader security assessments, policy development, and risk analysis across organizations. Both roles require similar certifications and are integral to cybersecurity teams, but their daily tasks and work settings differ.

What Does a Security Operations Center Analyst Do?

A security operations center analyst works on the cybersecurity team at an organization to proactively defend the organization's database, website, servers, and network. In this role you control the security alerts and ensure that each alert is taken care of before the threat of hackers gaining access to your company's information is realized. You may run an investigation if you see similar threats repeatedly to see who is attempting to attack your systems and why. Your other duties may include keeping and analyzing a security log, coordinating with other analysts or security team members, and assessing company vulnerability.

Is SOC analyst a high paying job?

A Security Operations Center (SOC) analyst typically earns a competitive salary that varies by experience, location, and certifications such as CompTIA Security+ or CISSP. Entry-level positions may start lower, but experienced analysts with specialized skills can earn higher wages, making it a well-compensated role in cybersecurity.
More about Security Operations Center Analyst jobs
What are popular job titles related to Security Operations Center Analyst jobs in Delaware? For Security Operations Center Analyst jobs in Delaware, the most frequently searched job titles are:
What job categories do people searching Security Operations Center Analyst jobs in Delaware look for? The top searched job categories for Security Operations Center Analyst jobs in Delaware are:
What cities in Delaware are hiring for Security Operations Center Analyst jobs? Cities in Delaware with the most Security Operations Center Analyst job openings:
What are popular job titles related to Security Operations Center Analyst jobs in DE? For Security Operations Center Analyst jobs in DE, the most frequently searched job titles are:
Security Operations Center Analyst jobs near you
Infographic showing various Security Operations Center Analyst job openings in Delaware as of June 2026, with employment types broken down into 1% As Needed, 75% Full Time, 21% Part Time, and 3% Contract. Highlights an 96% Physical, 1% Hybrid, and 3% Remote job distribution, with an average salary of $76,741 per year, or $36.9 per hour.
Director, Security Operations

Director, Security Operations

University of Delaware

Newark, DE • On-site

Other

Posted 19 days ago

University Of Delaware rating

5.9

Company rating: 5.9 out of 10

Based on 18 frontline employees who took The Breakroom Quiz

492nd of 538 rated colleges and universities

Job description

Director, Security Operations

Apply now Job no: 502903
College / VP Area: Vice President for IT
Work type: Staff
Location: Newark, DE
Categories: Information Technology, Full Time

Curious about the full value of working at UD? In addition to salary, our Total Rewards benefits and Compensation Estimator give you a clear view of the complete package.

Pay Grade: 33S
 
Context of Job
The Director of Security Operations is a senior cybersecurity leader responsible for designing, executing, and continually improving the institution's security operations capabilities. This role provides strategic and hands-on leadership across the Security Operations Center, incident response, digital forensics, vulnerability management, endpoint detection and response (EDR/XDR), firewall and network security, and coordination with Managed Detection and Response (MDR) providers.
The Director works closely with central IT, schools and colleges, legal counsel, privacy, compliance, and external investigators to ensure effective detection, response, investigation, and recovery from cybersecurity incidents in a complex higher-education environment that includes on-premises, cloud, and research systems. This role is accountable for ensuring cybersecurity operations balance risk reduction with usability and operational needs across academic, administrative, research, and affiliated units.
The Director, Security Operations and SOC, reports to the Chief Information Security Officer (CISO).

Major Responsibilities:

Security Operations & SOC Leadership
  • Establish and lead a mature, outcomes-driven SOC operating model aligned with higher education risk, academic openness, and regulatory requirements.
  • Define SOC strategy, operating procedures, escalation models, and service maturity roadmap.
  • Lead, mentor, and develop SOC analysts, incident responders, and security engineers across distributed campus environments.
  • Provide operational leadership supporting multiple schools, colleges, research units, and administrative systems.
  • Ensure technical security controls, processes, and services operate effectively to support prevention, detection, response, and recovery capabilities.
  • Act as a change agent, driving the adoption of new security technologies and operational processes to improve cyber resilience.
  • Lead multiple security operations teams and initiatives concurrently, prioritizing service improvement projects based on risk and value.
  • Threat Detection, MDR & EDR/XDR
  • Own threat detection and response across networks, endpoints, servers, cloud platforms, and SaaS environments.
  • Serve as the primary institutional owner for MDR services, ensuring alignment with internal SOC workflows, SLAs, and escalation paths.
  • Oversee EDR/XDR platforms, detection tuning, threat hunting, and response automation.
  • Validate detection coverage using frameworks such as MITRE ATT&CK.

Incident Response, Forensics & Investigations
  • Lead security incident response activities, including containment, eradication, recovery, and post-incident analysis.
  • Develop, maintain, and regularly test incident response plans (IRP), playbooks, and tabletop exercises.
  • Oversee digital forensics investigations, including endpoint, network, log, and cloud-based forensic analysis.
  • Coordinate litigation holds, evidence preservation, and chain-of-custody requirements in collaboration with Legal, Compliance, and Privacy offices.
  • Act as the primary security liaison with external investigators, law enforcement, cyber insurance carriers, and third-party forensic firms when required.
  • Ensure proper documentation and reporting for regulatory, legal, and institutional requirements.
  • Oversee digital forensics activities, including endpoint, network, cloud, and application-level investigations.
  • Coordinate with Legal, Privacy, and Compliance teams to support litigation holds, evidence preservation, and regulatory inquiries.
  • Engage and manage external investigators, cyber insurance partners, and third-party forensic firms during major incidents.
  • Ensure incident response activities support post-incident reporting, lessons learned, and operational improvements.
  • Cloud & Modern Infrastructure Security
  • Lead security operations for cloud platforms (e.g., Azure, GCP, AWS), including incident response and forensic investigations in cloud-native environments.
  • Partner with system, network, HPS, infrastructure, and enterprise application teams to integrate security logging, monitoring, and response into cloud and hybrid architectures.
  • Oversee security operations for SaaS platforms commonly used in higher education.
  • Provide oversight for application and platform security testing, including secure development practices and DevSecOps integration.
  • Support cloud-native forensic investigations and security monitoring across IaaS, PaaS, and SaaS platforms.
  • Ensure security operations integrate with modern application delivery pipelines and enterprise platforms.

Firewall & Network Security Ownership
  • Own and manage the campus Palo Alto next-generation firewall environment, including:
  • Architecture and design
  • Rulebase governance and segmentation
  • Secure zone and enclave design
  • Change management and performance optimization
  • Design firewall and network security solutions that balance academic access, research needs, and institutional risk.
  • Collaborate closely with network engineering teams to enforce security controls across campus and data centers.

Vulnerability Management
  • Own the enterprise vulnerability management program, including scanning, risk-based prioritization, remediation tracking, and reporting.
  • Coordinate remediation efforts across central IT, distributed school IT teams, and system owners.
  • Integrate vulnerability data into SOC detection and response workflows.
  • Oversee vulnerability, configuration, and attack surface management programs across endpoints, servers, cloud workloads, and applications.
  • Ensure vulnerability remediation efforts are risk-based, measurable, and aligned with institutional priorities.

Governance, Risk & Compliance
  • Ensure security operations align with relevant frameworks and regulations (e.g., NIST, HIPAA, FERPA, PCI-DSS).
  • Support audits, risk assessments, and compliance reviews through operational evidence and reporting.
  • Partner with institutional leadership to translate technical risk into business and academic impact.

Metrics, Reporting & Executive Communication
  • Define and track SOC metrics (e.g., MTTD, MTTR, alert quality, incident trends).
  • Provide clear, actionable security reporting to senior leadership, CIO/CISO, and governance committees.
  • Communicate incident impact, response actions, and risk posture in non-technical terms.
  • Serve as a senior advisor to executive leadership, schools, colleges, and research units on cybersecurity operational risk.
  • Oversee service delivery commitments, including internal and external SLAs, ensuring operational and financial targets are met.
  • Champion collaboration across IT, academic units, healthcare, and research environments to embed security into operations.
  • Recruit, mentor, and develop high-performing cybersecurity professionals, building both technical depth and leadership capacity.
  • Ensure team skills evolve to support future operational and threat landscape needs.

Vendor, Budget & Program Management
  • Manage SOC-related vendors, tools, and service providers, including MDR, EDR, SIEM, forensic tools, and firewall platforms.
  • Oversee budgeting, procurement, and lifecycle management for security operations technologies.
  • Continuously evaluate and improve tools, automation, and processes.
  • Design and execute multi-year security operations roadmaps aligned with institutional strategy and regulatory obligations.
  • Develop and manage the security operations budget, ensuring effective allocation of resources and measurable return on investment (ROI).
  • Evaluate the value, cost, and risk reduction impact of security initiatives to guide prioritization and funding decisions.
 
Qualifications:
  • Bachelor's degree in cybersecurity, information technology, computer science, or a related field.
     
  • Eight years of progressive experience in cybersecurity operations, including 5+ years in security leadership roles.
  • Demonstrated experience leading SOC, incident response, digital forensics, and enterprise security operations.
  • Hands-on experience with EDR/XDR, SIEM, firewalls (Palo Alto preferred), vulnerability management, and cloud security.
  • Experience coordinating forensic investigations, litigation holds, and working with external investigators.
  • Proven ability to lead security operations in complex, decentralized environments such as higher education.
  • Strong leadership, communication, and stakeholder management skills.

Notice of Non-Discrimination and Equal Opportunity
The University of Delaware does not discriminate against any person on the basis of race, color, national origin, sex, gender identity or expression, sexual orientation, genetic information, marital status, disability, religion, age, veteran status or any other characteristic protected by applicable law in its employment, educational programs and activities, admissions policies, and scholarship and loan programs as required by Title IX of the Educational Amendments of 1972, the Americans with Disabilities Act of 1990, Section 504 of the Rehabilitation Act of 1973, Title VII of the Civil Rights Act of 1964, and other applicable statutes and University policies. The University of Delaware also prohibits unlawful harassment including sexual harassment and sexual violence.

Applications close:

Back to search results Apply now Refer a friend

Whatsapp Facebook LinkedIn Email App

What University Of Delaware employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

Apply