SOC Analyst Salary: Your 2025 Guide

Written by Coursera Staff • Updated on

Learn about a career as a security operations center analyst, where they work, how to qualify, the potential earnings, and the locations that pay the highest.

[Featured Image]: An SOC Analyst responding to a cyber-related threat on a business computer system.

A security operations center analyst, or SOC analyst, is crucial in handling cybersecurity attacks. How valuable is it? The anticipated cost to global businesses from cybercrimes will be $10.29 trillion USD annually by 2025 and 15.63 by 2029, according to Statista, forcing many companies to close their doors permanently if SOC analysts aren’t on board to address the situation [1].

As a result, a SOC analyst salary is competitive. A SOC analyst is an integral part of the modern security team that keeps businesses running smoothly even when severe disruptions occur for companies that understand the value of preventing and addressing cyberattacks.

Placeholder

professional certificate

Google Cybersecurity

Get on the fast track to a career in cybersecurity. In this certificate program, you'll learn in-demand skills, and get AI training from Google experts. Learn at your own pace, no degree or experience required.

4.8

(39,371 ratings)

843,463 already enrolled

Beginner level

Average time: 6 month(s)

Learn at your own pace

Skills you'll build:

Python Programming, Security Information and Event Management (SIEM) tools, SQL, Linux, Intrusion Detection Systems (IDS), Packet Analyzer, Security Hardening, Network Security, Transmission Control Protocol / Internet Protocol (TCP/IP), Network Architecture, Cloud Networks, escalation, resume and portfolio preparation, stakeholder communication, Job preparedness, integrity and discretion, Cybersecurity, Information Security (INFOSEC), Ethics in cybersecurity, NIST Cybersecurity Framework (CSF), Historical Attacks, Computer Programming, Coding, PEP 8 style guide, NIST Risk Management Framework (RMF), Security Audits, Incident Response Playbooks, Authentication, vulnerability assessment, Cryptography, asset classification, threat analysis, Command line interface (CLI), Bash

What does a SOC analyst do?

A SOC analyst is a tech professional responsible for identifying and responding to cyber-related attacks on business computer systems and servers. They work on a dedicated team to create and execute protocols for handling threats and must implement the changes necessary to prevent such incidents.

This work includes:

  • Analyzing the vulnerability of a company’s infrastructure and threat tolerance

  • Staying current with emerging trends regarding cybersecurity

  • Investigating and documenting potential threats and information security issues

  • Determining the safety of new software and hardware to prevent unnecessary risk

  • Crafting formal disaster recovery plans, preferably in advance of concerns

Especially in larger companies and global corporations, SOC analysts are part of a team that includes cybersecurity engineers, security managers, and a chief information security officer. A SOC analyst works to search out potential concerns and, with proper planning, eradicate them before they become costly. This planning includes:

  • Implementing security tools like firewalls, data loss prevention tools, and traffic inspection solutions

  • Utilizing security monitoring tools to investigate suspicious activity

  • Working to reduce downtime and keep businesses operating smoothly

  • Performing system audits to patch levels and access control data

It’s a complex job but an important one that many companies consider crucial to their operations.

Where do SOC analysts work?

SOC analysts may work directly for an organization or a consulting firm that companies hire to handle their security operation needs. Common industries and organizations that need SOC analysts include government agencies, technology companies, financial institutions, educational services, health care, and IT services. 

What does a SOC analyst earn?

A SOC analyst earns an average total pay of $74,871 CAD, according to Glassdoor [2]. This consists of the average base pay of $70,152 CAD a year with $4,719 CAD additional pay that could include bonuses and profit sharing. The Government of Canada’s Job Bank also reports a median annual salary of $90,667 CAD for systems security analysts, a similar role [2].

The earning potential can depend on many factors, including location, company, experience, training, and job title. Education and certifications can also influence salary.

How do I qualify to become a SOC analyst?

Most employers expect SOC analysts to earn a bachelor’s degree in computer science, information technology, or cybersecurity. However, if you have a relevant diploma and work experience, where you have developed the necessary skills, you can also qualify for SOC analyst positions.

These skills include:

  • Excellent communication skills 

  • Mastery of Linux, Windows, IDS, SIEM, CISSP, and Splunk

  • In-depth understanding of information security

  • Ability to defend networks by securing traffic and identifying suspicious activity

  • Knowledge of perpetration testing for systems, networks, and applications to determine the vulnerable status

  • Prevent and limit the impact of security breaches

  • Collect, analyze, and report security data for computer forensics

  • Read and identify parameters of software programs, as well as reverse-engineer malware

Professionals in the information technology field can learn many of these skills through practical experience and by completing additional training and certification programs.

Do I need a certification to practice as a SOC analyst?

While not always required, employers often expect SOC analysts to complete specific certification programs to ensure they can address complex issues during crises. These certification programs include:

  • Certified Information Systems Security Professional (CISSP)

  • EC-Council Certified Ethical Hacker 

  • EC-Council Certified SOC Analyst (CSA)

  • CompTIA Security+

An excellent place to start training as a SOC analyst is by taking In The Trenches: Security Operations Center, a course offered by the EC-Council on Coursera that provides a foundation on enterprise security structure, modern threat and attacker TTPs, the basics of incident response, and a basic primer to Security Onion.

Salary information and variations

Salaries for SOC analysts can vary dramatically due to many factors, including location, employment status, job title, and the experience gained through professional development.

Location and salary

Due to the variability of the cost of living, certain areas of the country offer higher salaries for SOC analysts. Some high-paying provinces and their median annual salaries are [2]:

  • Alberta: $103,106 CAD 

  • British Columbia: $98,467 CAD 

  • Ontario: $90,667 CAD 

  • Quebec: $88,650 CAD 

Employment status and salary

You can classify SOC analyst positions as either Tier 1 or Tier 2, according to the Canadian Centre for Cyber Security. However, in some cases, they may progress to Tier 3. Tier 3 is less common and typically only seen in military or national security work environments. 

Tier 1 SOC analysts are primarily responsible for identifying potential security threats, as well as performing administrative duties, and writing technical reports for management. As a Tier 1 SOC analyst, the necessary knowledge and skills include cloud security, VPN security, cryptography, IT security zoning, and vulnerability management tools. 

Tier 2 SOC analysts are responsible for responding to security threats by implementing the right defence procedures, and performing recovery activities. As a Tier 2 SOC analyst, you will need knowledge of malware analysis, reverse malware engineering, and testing frameworks. Tier 3 analysts take an even more proactive approach to threat management by hunting for potential threats and actively using defence tactics for systems at greater risk.

Experience and salary

Just like the different tiers, experience levels will also determine the salary of a SOC analyst. Here’s a look at how Glassdoor breaks down the average base salaries for different levels of SOC analysts [1]:

  • Entry level (0-1 year): $62,234 CAD

  • Mid-level (4-6 years): $77,884 CAD

  • Senior level (10-14 years): $85,405 CAD

Professional development 

Information technology professionals are life-long learners, as the industry demands that they stay updated on the latest trends and best practices. Cybersecurity can change dramatically in terms of threats and solutions to common problems. 

One tool organizations are implementing to reduce the time span of cybersecurity attacks and minimize the damage they cause is artificial intelligence, which allows Canadian businesses to save an average of $1.74 million CAD per attack [3].

Online courses can provide a flexible opportunity to add more tools to counter an increasingly complex issue. Reading blogs and following local media are also business best practices for SOC analysis work.

Next steps in cybersecurity

SOC analysts play a critical role in their organizations' cybersecurity efforts, ensuring that security systems can effectively identify and respond to threats. This position includes responsibilities such as performing risk assessments and developing strategic response plans.

Start building job-ready skills in cybersecurity with the Google Cybersecurity Professional Certificate on Coursera. Get hands-on experience with industry tools and examine real-world case studies at your own pace. Upon completion, you’ll have a certificate for your resume and be prepared to explore job titles like security analyst, SOC analyst, and more.

Placeholder

professional certificate

Google Cybersecurity

Get on the fast track to a career in cybersecurity. In this certificate program, you'll learn in-demand skills, and get AI training from Google experts. Learn at your own pace, no degree or experience required.

4.8

(39,371 ratings)

843,463 already enrolled

Beginner level

Average time: 6 month(s)

Learn at your own pace

Skills you'll build:

Python Programming, Security Information and Event Management (SIEM) tools, SQL, Linux, Intrusion Detection Systems (IDS), Packet Analyzer, Security Hardening, Network Security, Transmission Control Protocol / Internet Protocol (TCP/IP), Network Architecture, Cloud Networks, escalation, resume and portfolio preparation, stakeholder communication, Job preparedness, integrity and discretion, Cybersecurity, Information Security (INFOSEC), Ethics in cybersecurity, NIST Cybersecurity Framework (CSF), Historical Attacks, Computer Programming, Coding, PEP 8 style guide, NIST Risk Management Framework (RMF), Security Audits, Incident Response Playbooks, Authentication, vulnerability assessment, Cryptography, asset classification, threat analysis, Command line interface (CLI), Bash

Article sources

1

Statista. “Estimated cost of cybercrime worldwide 2018-2029, https://www.statista.com/forecasts/1280009/cost-cybercrime-worldwide.” Accessed December 2, 2024.

Updated on
Written by:
Coursera Staff

Editorial Team

Coursera’s editorial team is comprised of highly experienced professional editors, writers, and fact...

This content has been made available for informational purposes only. Learners are advised to conduct additional research to ensure that courses and other credentials pursued meet their personal, professional, and financial goals.