Professional Resume Template for

SOC Analyst

Liam R. Hayes

Dallas, TX

(214) 555-0143

liam.hayes@email.com

linkedin.com/in/liam-hayes | github.com/liamhayes

Professional Summary

Vigilant Security Operations Center (SOC) Analyst with 5 years of experience monitoring, detecting, and mitigating cyber threats in enterprise environments. Expertise includes configuring SIEM alerts, managing incident response workflows, and performing network traffic analysis. Successfully reduced average threat detection times by 32% and cut system containment durations by 28 minutes through automated SOAR playbook deployment. Skilled in mapping alerts to the MITRE ATT&CK framework and analyzing logs across multi-cloud environments. Proficient with Splunk, Microsoft Sentinel, CrowdStrike Falcon, Wireshark, and Tenable Nessus.

Work Experience

Security Operations Center (SOC) Analyst — Aegis Cyber Defense

Dallas, TX | January 2024 – Present

  • Monitored SIEM alerts via Microsoft Sentinel across 4,500 endpoints, investigating and resolving over 120 critical security incidents annually with zero data breaches.
  • Configured 15 custom SOAR playbooks in Palo Alto Cortex XSOAR, reducing mean time to detect (MTTD) by 34% and mean time to respond (MTTR) by 42 minutes.
  • Analyzed and mitigated 850+ phishing campaigns and email-based threats using Proofpoint, decreasing employee clicks on malicious links by 64% over a 12-month period.
  • Conducted weekly vulnerability scans using Tenable Nessus across 250 virtual servers, patch-managing 94% of critical vulnerabilities within standard SLA targets.

Associate Security Analyst — Sentinel Threat Solutions

Fort Worth, TX | August 2021 – December 2023

  • Analyzed firewall and intrusion detection logs using Splunk Enterprise for a network of 12,000 active users, identifying and containing 45 malware infections.
  • Mapped 300+ alert signatures to the MITRE ATT&CK framework, which increased the security operations team's detection coverage of advanced persistent threats by 22%.
  • Drafted 18 standard operating procedures (SOPs) for incident response containment workflows, reducing average onboarding times for new tier-1 analysts by 30%.
  • Coordinated quarterly security awareness training and simulated phishing runs for 1,500 staff, lowering the baseline susceptibility rate from 18% down to 4.2%.

Education

Bachelor of Science in Cybersecurity

University of Texas at Dallas · Richardson, TX · 2021

Skills

SIEM, Splunk, Microsoft Sentinel, QRadar, EDR, CrowdStrike Falcon, SentinelOne, Incident Response, Threat Hunting, MITRE ATT&CK, Wireshark, TCP/IP, Tenable Nessus, Qualys, Palo Alto Cortex XSOAR, Proofpoint, Active Directory, Linux, Python, Bash, NIST CSF, ISO 27001, Firewall Administration, Log Analysis

Projects

SOAR Automation Implementation

Role: Lead Analyst

Tools: Palo Alto Cortex XSOAR, Splunk, Python, PhishER

Automated containment protocols for high-fidelity phishing alerts, reducing manual analyst triage times by 75% and containment execution to under 3 minutes.

EDR Agent Deployment and Optimization

Role: Deployment Co-Lead

Tools: CrowdStrike Falcon, Active Directory GPO, PowerShell

Deployed EDR endpoints to 3,200 remote workstations over 4 weeks, improving real-time network visibility and response capabilities from 60% to 99.8%.

Certifications

  • CompTIA Security+ (2021)
  • CompTIA Cybersecurity Analyst (CySA+) (2023)
  • GIAC Certified Incident Handler (GCIH) (2025)

Additional information

  • Languages: English (Native), German (Conversational)
  • Volunteer Work: Mentoring high school students in local Capture the Flag (CTF) security competitions (2023-present)
  • Availability: 2 weeks notice

Ready to use this template?

Customize this template

Job Market Insights

Market data and opportunities for

SOC Analyst

Job Market Insights

$92,000

-

$138,000

Avg:

$115,000

Growth Outlook:

The demand for Information Security Analysts (including SOC Analysts) is projected to grow by 32% from 2024 to 2034, far outstripping the average growth rate for all occupations. The relentless expansion of digital commerce, cloud services, and sophisticated cyberattacks drives this surge. Organizations must expand their security operations to continuously monitor networks, manage vulnerabilities, and rapidly contain intrusions. Certified professionals skilled in SIEM, SOAR, and cloud platform defense are highly positioned to secure long-term roles.

32% growth over 10 years

Key Skills Required

Focus on these skills when customizing your resume for recruiter screenings.

Hands-on experience monitoring security events using SIEM tools like Splunk or Microsoft Sentinel || Proven track record of configuring alert thresholds and managing security incident lifecycles || Understanding of operating system security, TCP/IP networking, and common attack vectors mapped to the MITRE ATT&CK framework || Direct experience deploying and managing EDR tools such as CrowdStrike Falcon or SentinelOne || Familiarity with SOAR playbook configurations or scripting languages like Python and PowerShell to automate task workflows

Search Jobs

Explore live openings for

SOC Analyst

roles and tailor your resume to match the market demand.

Search

FAQ

Common questions about the

SOC Analyst

position

What does a Security Operations Center (SOC) Analyst do?
What are the core technical tools used by a SOC Analyst?
Which certifications are most valuable for a SOC Analyst?
What is the career progression for a SOC Analyst?
What is the difference between EDR and SIEM?
How does the MITRE ATT&CK framework help a SOC Analyst?
Use this template