1

Soc Analyst Weekend Jobs (NOW HIRING)

The SOC Analyst 1 supports the organization's security operations by monitoring security events ... This role involves shift work schedule to support our 24/7 operation, including weekends and ...

In this role, the SOC Analyst will provide incident response services. These services include ... Ability to work on weekends and after-hours as necessary, especially during security incidents and ...

The SOC Analyst 2 supports the organization's security operations by conducting deeper ... This role involves shift work schedule to support our 24/7 operation, including weekends and ...

You will be required to work one weekend a month. We are now looking for a SOC analyst in our global Cyber Defense Center (CDC). We detect and respond to cyber attacks originating from external ...

As a SOC I Analyst, you will be responsible for monitoring,analyzing, and responding to security alerts to help protect theorganization from cyber threats. You will support the day-to-daysecurity ...

SOC Tier 3 Analyst

Portland, OR · On-site

$88K - $104K/yr

The SOC Analyst 3 supports the organization's security operations by leading complex incident ... This role involves shift work schedule to support our 24/7 operation, including weekends and ...

As a SOC I Analyst, you will be responsible for monitoring, analyzing, and responding to security alerts to help protect the organization from cyber threats. You will support the day-to-day security ...

Leidos' Digital sector has frequent opportunities available for SOC Analysts to join our team in ... Must be willing to perform shift work on site; all shifts include weekend hours and inclement ...

next page

Showing results 1-20

Soc Analyst Weekend information

See salary details

$35.5K

$99.2K

$127K

How much do soc analyst weekend jobs pay per year?

As of Jul 17, 2026, the average yearly pay for soc analyst weekend in the United States is $99,157.00, according to ZipRecruiter salary data. Most workers in this role earn between $72,000.00 and $126,500.00 per year, depending on experience, location, and employer.

What does a SOC Analyst Weekend do?

A SOC (Security Operations Center) Analyst Weekend is responsible for monitoring, detecting, and responding to cybersecurity threats and incidents during weekend shifts. Their primary tasks include analyzing security alerts, investigating suspicious activities, and escalating incidents as needed. They use specialized tools to monitor network traffic, review logs, and ensure the organization's IT environment remains secure during times when fewer staff may be present. SOC Analysts also document incidents, assist in incident response, and contribute to maintaining up-to-date security protocols.

What are the specific challenges of working as a SOC Analyst during weekend shifts?

As a SOC Analyst working weekend shifts, you may encounter unique challenges such as limited immediate support from other departments and a higher likelihood of handling incidents independently. Weekend shifts can also see different patterns of cyber threats, as attackers might target organizations when staffing is reduced. However, this role provides valuable opportunities to develop quick decision-making skills, deepen your technical knowledge, and demonstrate your reliability, which can accelerate your career growth within the security team.

What is the difference between Soc Analyst Weekend vs Soc Analyst Night?

AspectSoc Analyst WeekendSoc Analyst Night
Work ScheduleWeekend shifts, typically Saturday and SundayNight shifts, usually overnight hours during weekdays
CertificationsSame certifications as Soc Analyst Night (e.g., Security+, CEH)Same certifications as Soc Analyst Weekend
Work EnvironmentSecurity operations center during weekendsSecurity operations center during overnight hours
Industry UsageCommon in organizations with 24/7 security needsCommon in organizations with 24/7 security needs

Both roles involve monitoring security alerts and analyzing threats, but the main difference lies in their work schedules. Soc Analyst Weekend works primarily during weekends, while Soc Analyst Night covers overnight weekday shifts. The required skills and certifications are similar, making both roles vital for continuous security coverage.

What are the key skills and qualifications needed to thrive as a SOC Analyst (Weekend), and why are they important?

To thrive as a SOC Analyst (Weekend), you need a solid understanding of cybersecurity principles, threat analysis, and incident response, often backed by a degree in computer science or a related field. Familiarity with SIEM tools (like Splunk or QRadar), intrusion detection systems, and certifications such as CompTIA Security+ or CISSP are typically required. Strong analytical thinking, attention to detail, and effective communication help you excel in high-pressure situations and collaborate with team members. These skills and qualities are critical for quickly identifying threats and protecting an organization’s digital assets during weekend shifts when staffing may be limited.
More about Soc Analyst Weekend jobs
What cities are hiring for Soc Analyst Weekend jobs? Cities with the most Soc Analyst Weekend job openings:
What are the most commonly searched types of Soc Analyst jobs? The most popular types of Soc Analyst jobs are:
What states have the most Soc Analyst Weekend jobs? States with the most job openings for Soc Analyst Weekend jobs include:
What job categories do people searching Soc Analyst Weekend jobs look for? The top searched job categories for Soc Analyst Weekend jobs are:
Infographic showing various Soc Analyst Weekend job openings in the United States as of July 2026, with employment types broken down into 1% Locum Tenens, 1% Internship, 86% Full Time, 6% Part Time, 1% Temporary, and 5% Contract. Highlights an 82% Physical, 5% Hybrid, and 13% Remote job distribution, with an average salary of $99,157 per year, or $47.7 per hour.
SOC Tier 1 Analyst

SOC Tier 1 Analyst

ECS

Portland, OR • On-site

Full-time

Re-posted 28 days ago


Job description

Everforth ECS is seeking a SOC Tier 1 Analyst to work in our Portland, OR office. Note: This position is contingent upon contract award.
The SOC Analyst 1 supports the organization's security operations by monitoring security events, performing first-level alert triage, validating suspicious activity, documenting tickets, and escalating confirmed or higher-risk events using approved runbooks and procedures. This role is the initial monitoring and triage tier within the SOC Analyst role family.
The ideal candidate has foundational cybersecurity or IT operations experience, understands basic security concepts and defensive technologies, and can follow established procedures while communicating clearly with SOC Analyst 2, SOC Analyst 3, incident response, engineering, and other program stakeholders.
This role involves shift work schedule to support our 24/7 operation, including weekends and holidays. Candidates must be flexible in their availability. While we make every effort to accommodate individual preferences, it's essential to understand that specific shift requests are not guaranteed and are assigned based on operational needs.
Key Responsibilities
Security Monitoring & Initial Alert Triage
  • Monitor security events and alerts across SIEM, EDR, IDS/IPS, cloud, network, identity, case management, and other approved security platforms.
  • Perform first-level alert validation to determine whether activity is benign, suspicious, policy-related, or requires escalation.
  • Assign initial severity, scope, affected assets, affected accounts, and potential impact using approved triage criteria and runbooks.
  • Escalate confirmed, ambiguous, high-risk, or complex alerts to SOC Analyst 2, SOC Analyst 3, or SOC leadership according to established procedures.

Ticketing, Documentation & Shift Handoff
  • Create and update incident tickets with clear descriptions, timestamps, evidence references, preliminary findings, and actions taken.
  • Document investigation steps, alert context, decisions, and escalation rationale clearly and accurately.
  • Prepare shift handoff notes and status updates to ensure continuity of monitoring and incident follow-up.
  • Maintain case management hygiene, including accurate categorization, status tracking, and closure documentation for routine alerts.

Incident Response Support
  • Support standard incident response activities under direction of SOC Analyst 2, SOC Analyst 3, incident responders, or SOC leadership.
  • Collect readily available logs, alert details, endpoint information, user information, and other operational evidence needed for escalation.
  • Coordinate basic information requests with system owners, security engineers, and other technical teams as directed.
  • Track escalations and provide status updates until ownership is accepted by the appropriate SOC or specialized role.

Tool Use & Procedure Adherence
  • Use SOC tools such as SIEM, SOAR, EDR, threat intelligence portals, case management systems, and vulnerability platforms in accordance with approved procedures.
  • Follow playbooks, standard operating procedures, evidence-handling expectations, and escalation thresholds consistently.
  • Report suspected data quality issues, missing telemetry, dashboard problems, or tool availability concerns to SOC Analyst 2/3, Splunk engineering, or security engineering teams.
  • Participate in training, drills, tabletop exercises, and lessons-learned activities to improve monitoring and triage performance.

Continuous Learning
  • Stay current with common cyber threats, phishing techniques, malware trends, vulnerabilities, user behavior risks, and security operations best practices.
  • Apply feedback from senior analysts to improve alert validation, documentation quality, and escalation accuracy.
  • Contribute operational observations and recurring alert patterns to process improvement discussions.

  • U.S. Citizenship with ability to obtain and maintain a DOE "L" clearance after start.
  • 1-3 years of experience in cybersecurity, IT operations, help desk, networking, systems administration, or SOC monitoring.
  • Basic experience using SIEM, EDR, ticketing, case management, or log-search tools to review security events or operational alerts.
  • Foundational knowledge of Windows, Linux, networking, cloud, identity, endpoint, and common cyber threat concepts.
  • Ability to follow runbooks, validate alerts, document findings, and escalate issues accurately and promptly.
  • Familiarity with incident escalation procedures, shift handoff practices, and basic evidence-handling expectations.
  • Strong attention to detail, written documentation skills, and ability to communicate clearly with technical teams.