What Does a SOC Analyst Do?
A SOC (Security Operations Center) analyst monitors security alerts, investigates suspicious activity and responds to threats — the front line of an organisation's cyber defence. It is one of the most common entry points into cybersecurity.
Daily responsibilities
- Monitor security dashboards and alerts
- Triage and investigate suspicious events
- Analyse logs, network and host data
- Escalate confirmed incidents and document findings
SOC tiers
| Tier | Role |
|---|---|
| L1 | Monitoring & initial triage |
| L2 | Deeper investigation & response |
| L3 | Threat hunting & advanced analysis |
Skills and path
You need monitoring, analysis and networking knowledge. Start with CyberOps and follow the SOC roadmap.
Frequently asked questions
What are a SOC analyst's main tasks?
Monitoring alerts, triaging and investigating incidents, analysing logs and network data, and escalating real threats.
What tools do SOC analysts use?
SIEM platforms, intrusion detection systems, endpoint tools and ticketing systems.
What is the salary of a SOC analyst in India?
Entry-level SOC analyst salaries typically start around Rs 3.5-7 LPA and grow with experience.
Related articles
Want hands-on training?
Learn this on real Cisco lab devices with placement support at Attila Technologies, Ahmedabad.