SOC Analyst II

SOC Analyst II

If you're passionate about building a better future for individuals, communities, and our country—and you're committed to working hard to play your part in building that future—consider WGU as the next step in your career.

Driven by a mission to expand access to higher education through online, competency-based degree programs, WGU is also committed to being a great place to work for a diverse workforce of student-focused professionals. The university has pioneered a new way to learn in the 21st century, one that has received praise from academic, industry, government, and media leaders. Whatever your role, working for WGU gives you a part to play in helping students graduate, creating a better tomorrow for themselves and their families.

The salary range for this position takes into account the wide range of factors that are considered in making compensation decisions including but not limited to skill sets; experience and training; licensure and certifications; and other business and organizational needs.

At WGU, it is not typical for an individual to be hired at or near the top of the range for their position, and compensation decisions are dependent on the facts and circumstances of each case. A reasonable estimate of the current range is:

Grade:
Technical 407

Pay Range: $ - $

The current information security landscape is technically complex and constantly evolving. As a SOC Analyst II, you will use advanced security expertise to protect applications, systems, and networks by detecting, analyzing, and responding to security threats. You will work closely with infrastructure, cloud, and business teams to strengthen defensive capabilities and continuously improve security operations.

• Provide second shift SOC security coverage (9-hour shift, including a 1-hour lunch break) at the Raleigh office from 5:00pm ET to 2:00am ET, or at the SLC office from 3:00pm MT to 12:00am MT.
• Serve as a lead analyst on one or more security efforts such as incident response, digital forensics, penetration testing, automation and integration, PKI infrastructure, or code security
• Provide expertise across multiple information security domains and mentor less experienced analysts as needed
• Monitor, analyze, and respond to security events using SIEM, IDS/IPS, EDR, DLP, endpoint protection, and firewall technologies
• Investigate security incidents including phishing, malware, and anomalous endpoint or network behavior
• Perform incident handling, digital forensics, continuous monitoring, and intrusion detection and prevention
• Collaborate with architects, risk professionals, and other security partners to implement preventive, detective, and corrective controls
• Develop, maintain, and improve security documentation, processes, and operational runbooks

• 3+ years of Security Operations Center experience
• Strong knowledge of security frameworks and regulations including NIST, ISO, PCI-DSS, FERPA, GLBA, GDPR, HIPAA, FTC, and privacy laws
• Experience working with AWS core services including networking, storage, database, and identity
• Working knowledge of integrating security controls throughout CI/CD pipelines and cloud environments
• Experience analyzing SIEM, network, system, and IDS alert logs and tuning detection content
• Familiarity with MITRE ATT&CK framework and use case and alert development aligned to it
• Proficiency with scripting and automation using languages such as Python or Bash
• Excellent analytical, problem-solving, and written and verbal communication skills

• 8 years of Security Operations Center experience
• Advanced experience with penetration testing, threat detection engineering, or digital forensics
• Experience developing security documentation and end-user operating manuals
• Industry-recognized security certifications such as CISSP, GIAC, ISACA, CCSP, CCSK, or AWS security certifications

Equivalent relevant experience performing the essential functions of this role may be considered in place of formal education. Generally, one year of relevant experience may substitute for one year of education at the hiring manager's discretion.