SOC Analyst Resume Examples And Templates for Cybersecurity Response Experts

Olivia Carter

Soc Analyst (Security Operations Center)

[email protected] | +1 (312) 555-1122 | Chicago, Illinois, USA

Profile

SOC Analyst with over 7 years of progressive experience monitoring, detecting, investigating, and responding to cyber threats in enterprise environments. Expert in SIEM engineering, incident response operations, threat intelligence integration, and freelance vulnerability assessments. Known for reducing incident response time by 50 percent and improving the detection coverage across AWS, Azure, Linux, and Windows systems. Proven ability to architect detection rules, develop internal playbooks, and mentor junior analysts.

Education

Bachelor of Science in Information Security
Illinois Institute of Technology, Chicago, IL
Graduated: May 2016

Master of Science in Cybersecurity and Digital Forensics
DePaul University, Chicago, IL
Graduated: May 2018

Licenses & Certifications

• Certified SOC Analyst (CSA) – EC Council
• GIAC Certified Incident Handler (GCIH)
• CompTIA Security+
• Certified Ethical Hacker (CEH)
• Splunk Certified Power User / Splunk Certified Admin
• Microsoft Certified: Azure Security Engineer Associate

Work Experience

SOC Senior Analyst
CyberGuard Security Services, Chicago, IL
June 2020 – Present

• Lead Tier 2 and Tier 3 security operations including triage, containment, eradication, and recovery for over 500 corporate assets within a global manufacturing environment.
• Developed and tuned over 200 SIEM detection rules in Splunk and IBM QRadar, reducing false positives by 40 percent and increasing detection accuracy.
• Created custom Python and PowerShell scripts that automated malware triage tasks, reducing manual investigation time by 60 percent.
• Directed threat hunting activities using both commercial and open source threat intelligence feeds, discovering and isolating APT activities targeting supply chain systems.
• Mentored a team of four junior SOC analysts, delivering weekly training sessions in log analysis, incident escalation procedures, and communication protocols.

SOC Analyst
SecureWave Technologies, Chicago, IL
August 2016 – May 2020

• Monitored security alerts across Windows, Linux, Office365, Azure AD, endpoints, firewalls and IDS/IPS systems with average weekly alert volume of 30,000 events.
• Investigated security incidents using forensic techniques, memory analysis and host log correlation to confirm and remediate threats.
• Coordinated incident response activities with stakeholders, internal IT teams, and external vendors to perform root cause analysis and remediation.
• Documented incident findings and communicated technical and non-technical summaries to senior leadership and external auditors.
• Participated in 10+ tabletop exercises and live incident simulations, improving readiness and coordination with IT and executive teams.

Skills

• SIEM Tools: Splunk, QRadar, ArcSight
• Endpoint Security Platforms: SentinelOne, CrowdStrike, Carbon Black
• Incident Response & Digital Forensics
• Threat Intelligence & Threat Hunting
• Scripting in Python, PowerShell, Bash
• Log Analysis: Windows Event Logs, Linux Syslog, AWS CloudTrail
• Network Protocol Analysis: Wireshark, Zeek
• Cloud Security: AWS, Azure monitoring and alerting
• Vulnerability Assessment & Penetration Testing
• Team Collaboration, Documentation, Training

Achievements

• Reduced Mean Time to Detect (MTTD) by 50 percent through improved SIEM tuning and playbook standardization.
• Triaged and responded to a ransomware attack within two hours, limiting impact to less than 1 percent of global infrastructure.
• Built internal SOC knowledge base with over 150 documented incidents and response steps now used company–wide.
• Recognized as SOC Analyst of the Quarter four times between 2018 and 2021.

Volunteer Experience

• Cybersecurity Mentor – Girls Who Code (2019–Present)
• Incident Response Volunteer – Open Security Foundation (2018–Present)

References

Available upon request.

Languages

• English – Native
• Spanish – Professional working proficiency
• French – Conversational

Hobbies

• Capture the Flag (CTF) cybersecurity competitions – actively competing to improve threat detection skills.
• Home lab automation – building threat simulation networks using open source tools.
• Tech blogging – writing deep-dive posts on incident response and SIEM tuning techniques.
• Community volunteering – teaching basic cybersecurity hygiene workshops at local schools.

Courses

• Advanced Threat Hunting with Splunk
• Cyber Threat Intelligence and Analysis – SANS Institute
• Digital Forensics and Incident Response – EC Council
• Cloud Security Monitoring – Pluralsight

Internships

• Security Operations Intern – Federal Credit Union, Chicago, IL – Summer 2015
  • Monitored firewall logs and investigated suspicious network activity.
  • Assisted in updating incident response documentation.
  • Learned ticketing workflows and escalations with IT teams.
• Cybersecurity Analyst Intern – TechStartups Inc, Chicago, IL – Summer 2014
  • Performed vulnerability scans using Nessus and OpenVAS.
  • Compiled weekly threat intelligence reports for SOC team.
  • Conducted basic forensic imaging and analysis under supervision.

Extra Curricular

Active member of the local BSides Chicago community where I regularly participate in workshops on intrusion detection systems, malware reverse engineering, and threat intelligence sharing. I helped organize quarterly CTF events that attracted over 200 participants and coordinated with sponsors to provide proof-of-concept labs and prize support. I also lead a cybersecurity book club that meets monthly to discuss advanced incident response methodologies and SIEM best practices. My spontaneous practice of live‑fire simulations in virtual labs helps maintain hands‑on skills in real‑world scenarios.