What are the Most Important SOC Skills?
As I sat and thought about the two most important SOC analyst skills, I started to write them down, and my list turned into eight items. This is What are the Most Important SOC Skills?
This is my list of examples of the content that I have covered so far.
Cybersecurity Analysis
Operating System fundamentals & Networking fundamentals
Networking (people) & Effective Communication
Scripting (not necessarily full development)
Cloud Technologies (AWS, Azure, Terraform, Serverless)
SOC Analyst Projects
As I looked over this list, I had to recategorize skills into two categories. Hard technical skills and soft skills, then pick one from each category as being a SOC analyst is a delicate and equal balance of the two. Hard technical skills can sometimes be trained much faster than easier than soft skills. Technical skills can be taught by reading, studying, and following a clearly defined learning path, whereas learning soft skills is often trial and error and practice over time.
Hard Technical Skills
The award for the most valuable hard technical skill goes to networking because you can get by with not knowing how to use Active Directory for a while, and no employer will expect you to know already how to conduct a security analysis (it will give you the edge!). Both of these require a prerequisite of networking fundamentals.
Soft Skills
In the age of remote work and the duties of a SOC analyst, the most valuable soft skill award goes to understanding. So much of our daily lives consist of reading and writing emails, security analysis, instant messages, text messages, LinkedIn, and everywhere else. It isn't easy to get lost on different pages over text sometimes. People tend to be less verbose with their thoughts over text because it takes longer to type them out than to speak. The mobile phone is the worst. Yet so much of our lives are directed with a lesser form of understanding other people.
Conclusion
As you can see, the most essential thing a SOC analyst can learn is how to communicate. Whether that be computers talking to computers or pinging your teammates on chat, you’re communicating all day long. No system can have security when it is open to talking to others; that is the breath of life into cybersecurity. The cybersecurity industry exists because computers are interconnected. Mastering the basics of communication will lead to a foundation built on cement; it doesn’t change much.
How to learn these skills
Gaining the CompTia Network+ certification is an excellent start in learning networking. The best way to learn to improve and provide more clarity in reading and writing is to get a blog on Medium. Then, get a subscription to Grammarly and study the changes they suggest. If you just continue to use Grammarly like it's intended, it will force you to start thinking about how you're communicating, and for me, I wrote in more ambiguity than I thought. It wasn't as clear as I thought, Also, as a practice, any word that you come across that you aren’t familiar with, don’t just ignore it… look it up! Not in the Oxford (Google) but in Merriam-Webster. Merriam-Webster’s new word requirements are much stricter and the Merriam-Webster should be your go-to. If the definition doesn’t fit the context, then you can even try that word on Urban Dictionary, but never let a sentence go by that you didn’t comprehend.
As my challenge to you, I will give you the single magic question to ask to jump-start your soft skills journey,
"How did you come to that conclusion?"
Sit for a minute and think how impactful that would have been in resolving your last misunderstanding and how often you or someone you know has been misunderstood.
Don’t breeze over these suggestions. No one wants to hear that networking and understanding are the most important skills, but they are true, and the time spent studying them will surely pay off.
Take your time learning how computers talk, and how SOC analysts talk by reading and writing, and remember to ask the magic question every single time.
Communication is a grossly undervalued skill among tech nerds.

Tyler Wall is the founder of Cyber NOW Education. He holds bills for a Master of Science from Purdue University and CISSP, CCSK, CFSR, CEH, Sec+, Net+, and A+ certifications. He mastered the SOC after having held every position from analyst to architect and is the author of three books, 100+ professional articles, and ten online courses specifically for SOC analysts.
You can connect with him on LinkedIn.
You can sign up for a Lifetime Membership of Cyber NOW® with a special deal for 15% off with coupon code "KB15OFF" which includes all courses, certification, the cyber range, the hacking lab, webinars, the extensive knowledge base, forums, and spotlight eligibility, to name a few benefits.
Download the Azure Security Labs eBook from the Secure Style Store. These labs walk you through several hands-on fun labs in Microsoft Azure, leaving you with the know-how to create a gig in Fiverr or Upwork to start your cybersecurity freelancing.
Some of our free resources include the Forums, the Knowledge Base, our True Entry Level SOC Analyst Jobs, Job Hunting Application Tracker, Resume Template, and Weekly Networking Checklist. Ensure you create an account or enter your email to stay informed of our free giveaways and promos, which we often offer.
Check out my latest book, Jump-start Your SOC Analyst Career: A Roadmap to Cybersecurity Success, 2nd edition, published June 1st, 2024, and winner of the 2024 Cybersecurity Excellence Awards and a finalist in the Best Book Awards. If you enjoy audiobooks, I suggest the Audible version, but you can also get it in beautiful paperback, kindle, or PDF versions. The downloadable PDF version can be grabbed here
Comments