SOC Tier 2 Analyst
Portland, OR · On-site
The SOC Analyst 2 supports the organization's security operations by conducting deeper investigation of escalated alerts, correlating security telemetry, supporting incident response activities, and ...
SOC Tier 2 Analyst
Portland, OR · On-site
The SOC Analyst 2 supports the organization's security operations by conducting deeper investigation of escalated alerts, correlating security telemetry, supporting incident response activities, and ...
SOC Tier 2 Analyst
Portland, OR · On-site
They are seeking a SOC Tier 2 Analyst to support security operations by investigating escalated alerts, coordinating incident responses, and improving detection processes. Responsibilities : • ...
SOC Tier 2 Analyst
Portland, OR · On-site
They are seeking a SOC Tier 2 Analyst to support security operations by investigating escalated alerts, coordinating incident responses, and improving detection processes. Responsibilities : • ...
SOC II Engineer with Security Clearance
Raleigh, NC · Hybrid
$130K - $150K/yr
The SOC II Engineer (Tier II Support) role is ideal for a security-focused engineer with hands-on incident response experience, strong log analysis skills, and an active Secret Clearance.
SOC II Engineer with Security Clearance
Raleigh, NC · Hybrid
$130K - $150K/yr
The SOC II Engineer (Tier II Support) role is ideal for a security-focused engineer with hands-on incident response experience, strong log analysis skills, and an active Secret Clearance.
TestPros is looking for expert level SOC 2 Auditor with experience performing SOC 2 Type 2 ... Conduct Gap analysis and readiness assessments to identify and document gaps in the organization ...
Quick apply
TestPros is looking for expert level SOC 2 Auditor with experience performing SOC 2 Type 2 ... Conduct Gap analysis and readiness assessments to identify and document gaps in the organization ...
Tier 2 Analyst
Washington, DC · On-site
With a strong foundation in SOC operations and incident response, you bring analytical thinking ... We are seeking a Tier 2 Analyst to support enterprise SOC operations by reviewing and responding to ...
Tier 2 Analyst
Washington, DC · On-site
With a strong foundation in SOC operations and incident response, you bring analytical thinking ... We are seeking a Tier 2 Analyst to support enterprise SOC operations by reviewing and responding to ...
Tier 2 Analyst
Washington, DC · Remote
With a strong foundation in SOC operations and incident response, you bring analytical thinking ... We are seeking a Tier 2 Analyst to support enterprise SOC operations by reviewing and responding to ...
Tier 2 Analyst
Washington, DC · Remote
With a strong foundation in SOC operations and incident response, you bring analytical thinking ... We are seeking a Tier 2 Analyst to support enterprise SOC operations by reviewing and responding to ...
SOC 2 Assessor (Part time & Remote)
Sterling, VA · On-site +1
$50 - $90/hr
TestPros is looking for Expert level SOC 2 Auditors with experience performing SOC 2 Type 2 ... Conduct Gap analysis and readiness assessments to identify and document gaps in the organization ...
SOC 2 Assessor (Part time & Remote)
Sterling, VA · On-site +1
$50 - $90/hr
TestPros is looking for Expert level SOC 2 Auditors with experience performing SOC 2 Type 2 ... Conduct Gap analysis and readiness assessments to identify and document gaps in the organization ...
We are seeking a SOC Level 2 Analyst (Q Clearance) for a potential opportunity to provide advanced monitoring, triage and response within a 24/7 Security Operations Center (SOC) environment. This ...
We are seeking a SOC Level 2 Analyst (Q Clearance) for a potential opportunity to provide advanced monitoring, triage and response within a 24/7 Security Operations Center (SOC) environment. This ...
SOC Analyst III
Chandler, AZ · On-site
The Tier 3 SOC Analyst serves as an escalation point for Tier 1 and Tier 2 Analysts within the SOC and provides advanced analytical and investigation support for complex incidents to assist in ...
SOC Analyst III
Chandler, AZ · On-site
The Tier 3 SOC Analyst serves as an escalation point for Tier 1 and Tier 2 Analysts within the SOC and provides advanced analytical and investigation support for complex incidents to assist in ...
The Tier 3 SOC Analyst serves as an escalation point for Tier 1 and Tier 2 Analysts within the SOC and provides advanced analytical and investigation support for complex incidents to assist in ...
The Tier 3 SOC Analyst serves as an escalation point for Tier 1 and Tier 2 Analysts within the SOC and provides advanced analytical and investigation support for complex incidents to assist in ...
We are seeking a Tier 2 Analyst (Secret Clearance) to support enterprise SOC operations by reviewing and responding to escalated tickets from Tier 1. This role applies working knowledge of ...
We are seeking a Tier 2 Analyst (Secret Clearance) to support enterprise SOC operations by reviewing and responding to escalated tickets from Tier 1. This role applies working knowledge of ...
Job Title- Analyst, Healthcare Compliance Project Location - Brentwood, TN or St. louis, MO 2 days ... Maintain audit readiness for SOC 2 Type II, HIPAA, and NCQA by coordinating evidence collection ...
Quick apply
Job Title- Analyst, Healthcare Compliance Project Location - Brentwood, TN or St. louis, MO 2 days ... Maintain audit readiness for SOC 2 Type II, HIPAA, and NCQA by coordinating evidence collection ...
Own the internal SOC 2 Type II evidence collection process, keeping controls audit-ready year-round ... Analysis across the corporate entity and portfolio companies, define RTO/RPO for critical ...
Own the internal SOC 2 Type II evidence collection process, keeping controls audit-ready year-round ... Analysis across the corporate entity and portfolio companies, define RTO/RPO for critical ...
GRC Analyst
San Francisco, CA · On-site
Title: GRC Analyst Location: San Francisco, CA (4 days onsite) Duration: 6+ months Key ... SOC 2, ISO 27001, pentest reports, architecture diagrams, data flows) and identify risks • Drive ...
GRC Analyst
San Francisco, CA · On-site
Title: GRC Analyst Location: San Francisco, CA (4 days onsite) Duration: 6+ months Key ... SOC 2, ISO 27001, pentest reports, architecture diagrams, data flows) and identify risks • Drive ...
GRC Analyst
Phoenix, AZ · On-site
Evaluate vendor controls, documentation, and compliance certifications (SOC 2, ISO, GDPR, etc.). * Analyze shared responsibility models and identify security gaps. * Review controls across IAM ...
Quick apply
GRC Analyst
Phoenix, AZ · On-site
Evaluate vendor controls, documentation, and compliance certifications (SOC 2, ISO, GDPR, etc.). * Analyze shared responsibility models and identify security gaps. * Review controls across IAM ...
Escalate confirmed or high-risk security incidents to Tier 2 analysts or Incident Response teams. * Ensure proper classification and prioritization of alerts according to SOC procedures. * Coordinate ...
Escalate confirmed or high-risk security incidents to Tier 2 analysts or Incident Response teams. * Ensure proper classification and prioritization of alerts according to SOC procedures. * Coordinate ...
Escalate confirmed or high-risk security incidents to Tier 2 analysts or Incident Response teams. Ensure proper classification and prioritization of alerts according to SOC procedures. Coordinate ...
Escalate confirmed or high-risk security incidents to Tier 2 analysts or Incident Response teams. Ensure proper classification and prioritization of alerts according to SOC procedures. Coordinate ...
As a SOC Analyst at viLogics, you are a front-line cyber defender operating within the Total Secure ... Lead real-time response to Tier 1 and Tier 2 security events using viLogics' TSO toolkits ...
Quick apply
As a SOC Analyst at viLogics, you are a front-line cyber defender operating within the Total Secure ... Lead real-time response to Tier 1 and Tier 2 security events using viLogics' TSO toolkits ...
As a SOC Analyst at viLogics, you are a front-line cyber defender operating within the Total Secure ... Lead real-time response to Tier 1 and Tier 2 security events using viLogics' TSO toolkits ...
As a SOC Analyst at viLogics, you are a front-line cyber defender operating within the Total Secure ... Lead real-time response to Tier 1 and Tier 2 security events using viLogics' TSO toolkits ...
Cyber Security Analyst II
Kansas City, MO · On-site
Familiarity with security compliance frameworks (NIST, ISO, SOC 2, CIS, or similar ... Strong analytical, documentation, and communication skills. * Preferred - experience securing or ...
Cyber Security Analyst II
Kansas City, MO · On-site
Familiarity with security compliance frameworks (NIST, ISO, SOC 2, CIS, or similar ... Strong analytical, documentation, and communication skills. * Preferred - experience securing or ...
Soc 2 Analyst information
See salary details
$32K - $41.2K
2% of jobs
$41.2K - $50.5K
7% of jobs
$50.5K - $59.7K
9% of jobs
$64.5K is the 25th percentile. Wages below this are outliers.
$59.7K - $68.9K
12% of jobs
$68.9K - $78.1K
17% of jobs
The median wage is $79.7K / yr.
$78.1K - $87.4K
16% of jobs
$94.8K is the 75th percentile. Wages above this are outliers.
$87.4K - $96.6K
15% of jobs
$96.6K - $105.8K
5% of jobs
$105.8K - $115K
9% of jobs
$115K - $124.3K
4% of jobs
$124.3K - $133.5K
3% of jobs
$32K
$84.2K
$133.5K
How much do soc 2 analyst jobs pay per year?
As of Jun 17, 2026, the average yearly pay for soc 2 analyst in the United States is $84,207.00, according to ZipRecruiter salary data. Most workers in this role earn between $65,000.00 and $98,500.00 per year, depending on experience, location, and employer.
What are the key skills and qualifications needed to thrive as a SOC 2 Analyst, and why are they important?
To thrive as a SOC 2 Analyst, you need a solid understanding of information security principles, risk assessment methodologies, and relevant compliance frameworks, usually supported by a degree in information security or a related field. Familiarity with audit tools, governance, risk, and compliance (GRC) platforms, and certifications such as CISA or CISSP are commonly required. Attention to detail, analytical thinking, and strong communication skills help SOC 2 Analysts effectively interpret controls and coordinate with stakeholders. These competencies are crucial for ensuring organizations meet SOC 2 requirements and maintain trust with clients and regulatory bodies.
What jobs will boom in 2026?
The demand for SOC 2 analysts is expected to grow as cybersecurity and data privacy regulations increase, requiring expertise in compliance, risk management, and security audits. Roles in cybersecurity, cloud security, and IT compliance are also projected to expand significantly by 2026, driven by digital transformation and increasing cyber threats.
What jobs make $10,000 a month without a degree?
A SOC 2 Analyst typically earns less than $10,000 per month without specialized certifications and experience. High-paying roles that can reach or exceed $10,000 monthly without a degree include sales managers, real estate brokers, and certain tech roles like software developers with strong skills and certifications. These positions often require relevant experience, technical skills, or industry-specific knowledge rather than formal degrees.
What is a SOC 2 Analyst?
A SOC 2 Analyst is a professional who specializes in helping organizations achieve and maintain SOC 2 compliance, which is a widely recognized standard for managing customer data based on five trust service criteria: security, availability, processing integrity, confidentiality, and privacy. They assess internal controls, identify potential risks, and ensure that processes meet the requirements for a SOC 2 audit. SOC 2 Analysts also assist with preparing documentation, conducting risk assessments, and working with auditors to address any gaps or findings. Their work is essential for companies that handle sensitive client data and need to demonstrate trustworthiness to clients and partners.
Can you make $500,000 a year in cyber security?
A SOC 2 analyst typically earns between $70,000 and $130,000 annually, depending on experience, certifications, and location. Reaching a $500,000 salary usually requires senior roles, management positions, or specialized expertise in cybersecurity, often combined with leadership responsibilities or consulting work.
What are some common challenges faced by SOC 2 Analysts when preparing for an audit?
SOC 2 Analysts often encounter challenges such as ensuring all relevant security controls are properly documented and consistently followed across departments. Coordinating with various teams to gather evidence and remediate gaps within tight deadlines can also be demanding. Additionally, staying updated on evolving compliance requirements and translating technical controls into auditor-friendly documentation requires strong communication and organizational skills. Proactively addressing these challenges helps ensure a smoother audit process and ongoing compliance.
What is the difference between Soc 2 Analyst vs Security Analyst?
| Aspect | Soc 2 Analyst | Security Analyst |
|---|---|---|
| Certifications | SOC 2, CISSP, CISA | CISSP, Security+, CEH |
| Work Environment | Auditing, compliance, risk assessment | Threat detection, incident response, security monitoring |
| Industry Usage | IT service providers, SaaS companies | Any organization with cybersecurity needs |
While both roles focus on security, a Soc 2 Analyst primarily ensures compliance with SOC 2 standards through audits and assessments, whereas a Security Analyst concentrates on protecting systems from threats and managing security incidents. The Soc 2 Analyst's work is more compliance and audit-oriented, often within service providers, while Security Analysts work across various industries to safeguard digital assets.
What does a SOC 2 analyst do?
A SOC 2 analyst is responsible for assessing and ensuring that an organization’s systems and controls meet SOC 2 standards for security, availability, processing integrity, confidentiality, and privacy. They perform audits, review controls, and prepare reports to demonstrate compliance, often using tools like audit management software and working closely with IT and security teams.
More about Soc 2 Analyst jobs
What are the most commonly searched types of Soc 2 Analyst jobs? The most popular types of Soc 2 Analyst jobs are:
What job categories do people searching Soc 2 Analyst jobs look for? The top searched job categories for Soc 2 Analyst jobs are:
Job description
Everforth ECS is seeking a SOC Tier 2 Analyst to work in our Portland, OR office.
The SOC Analyst 2 supports the organization's security operations by conducting deeper investigation of escalated alerts, correlating security telemetry, supporting incident response activities, and preparing incident summaries and recommendations. This role is the mid-level investigation and response-support tier within the SOC Analyst role family.
The ideal candidate has hands-on SOC or security operations experience, understands common attack techniques and defensive technologies, and can independently investigate security events while coordinating with SOC Analyst 1, SOC Analyst 3, threat intelligence, threat hunting, forensics, engineering, and business stakeholders.
This role involves shift work schedule to support our 24/7 operation, including weekends and holidays. Candidates must be flexible in their availability. While we make every effort to accommodate individual preferences, it's essential to understand that specific shift requests are not guaranteed and are assigned based on operational needs.
Key Responsibilities
Escalated Alert Investigation & Correlation
Incident Response & Coordination Support
Detection, Tuning & Process Improvement Input
Reporting & Documentation
Mentorship & Continuous Improvement
The SOC Analyst 2 supports the organization's security operations by conducting deeper investigation of escalated alerts, correlating security telemetry, supporting incident response activities, and preparing incident summaries and recommendations. This role is the mid-level investigation and response-support tier within the SOC Analyst role family.
The ideal candidate has hands-on SOC or security operations experience, understands common attack techniques and defensive technologies, and can independently investigate security events while coordinating with SOC Analyst 1, SOC Analyst 3, threat intelligence, threat hunting, forensics, engineering, and business stakeholders.
This role involves shift work schedule to support our 24/7 operation, including weekends and holidays. Candidates must be flexible in their availability. While we make every effort to accommodate individual preferences, it's essential to understand that specific shift requests are not guaranteed and are assigned based on operational needs.
Key Responsibilities
Escalated Alert Investigation & Correlation
- Review and investigate alerts escalated by SOC Analyst 1 or automated SOC workflows to validate severity, scope, potential impact, and required response actions.
- Analyze suspicious activity, indicators of compromise, anomalous behavior, and policy violations using logs, endpoint telemetry, network data, identity data, cloud events, and other evidence.
- Correlate evidence across security platforms to identify affected assets, affected accounts, attack paths, timeline of activity, and potential business or mission impact.
- Map observed behaviors to applicable frameworks and threat models such as MITRE ATT&CK when useful for investigation, reporting, or detection improvement.
Incident Response & Coordination Support
- Support containment, eradication, and recovery activities for standard or moderate incidents in alignment with incident response plans and approved playbooks.
- Coordinate with system owners, security engineers, senior analysts, and other technical teams to gather evidence, validate impact, and support response actions.
- Escalate complex, high-impact, evidence-sensitive, or ambiguous incidents to SOC Analyst 3, SOC leadership, Forensics, Threat Hunter, Threat Intelligence Analyst, or other specialized roles as appropriate.
- Maintain accurate incident status, action tracking, and communications during investigation and response activities.
Detection, Tuning & Process Improvement Input
- Analyze recurring alerts, false positives, attack patterns, threat intelligence, vulnerabilities, and emerging tactics to identify opportunities to improve detection and response.
- Recommend updates to correlation rules, alert logic, dashboards, use cases, response playbooks, and triage procedures based on investigation outcomes.
- Operationalize threat intelligence in triage and investigation workflows by applying relevant indicators, adversary behaviors, vulnerabilities, and contextual reporting.
- Provide operational requirements and validation feedback to SOC Analyst 3, SOC Threat Hunter, Senior Splunk Engineer, Splunk Architect/Lead, Security Engineer, and SOC Technical Writer as appropriate.
Reporting & Documentation
- Document investigation activities, evidence, decisions, response actions, and outcomes clearly and accurately.
- Prepare incident summaries, ticket updates, timelines, shift handoff notes, and supporting information for after-action documentation.
- Communicate technical findings in clear operational, business, and risk language for SOC leadership and affected stakeholders.
- Provide evidence summaries and analysis notes that can be used by Forensics or specialized teams when deeper analysis is required.
Mentorship & Continuous Improvement
- Provide escalation guidance, quality feedback, and informal mentoring to SOC Analyst 1 personnel.
- Participate in lessons-learned activities, tabletop exercises, detection reviews, and SOC process improvement efforts.
- Stay current with evolving cyber threats, vulnerabilities, detection techniques, and security operations best practices.
- Contribute to continuous improvement of SOC workflows, investigation checklists, documentation practices, and escalation procedures.
- U.S. Citizenship with ability to obtain and maintain a DOE "L" clearance after start.
- 3-5 years of experience in SOC operations, incident response, security monitoring, threat monitoring, or related technical cybersecurity roles.
- Experience triaging escalated alerts and investigating security events using SIEM, EDR, ticketing, case management, and log analysis tools.
- Intermediate knowledge of Windows, Linux, networking, cloud, identity, endpoint, and application security concepts.
- Working knowledge of common attack techniques, incident response lifecycle activities, escalation procedures, playbooks, and evidence-handling practices.
- Ability to correlate evidence across multiple tools, develop incident timelines, and determine recommended response actions.
- Strong analytical, written documentation, communication, and collaboration skills, including the ability to guide SOC Analyst 1 personnel.