Cybersecurity resumes

Cybersecurity Analyst Resume Examples & Template

Security recruiters filter on certifications, frameworks, and tooling. Your CISSP, Security+, or OSCP belongs in your name line — and the SIEM you actually used belongs in your bullets, not buried under 'Skills'.

Build my cybersecurity resume

Cybersecurity resume example

Morgan Lee, CISSP

Cybersecurity Analyst · SOC Tier 2 / Incident Response

Security analyst with 4 years in a 24/7 SOC. Owned tier-2 escalation queue and the Splunk content-engineering pipeline.

Triaged ~80 alerts/day in Splunk ES; cut mean-time-to-detect 41% by tuning 60+ correlation rules.
Led incident response for a credential-stuffing campaign affecting 12k accounts; contained within 2h, zero data exfil.
Built Sigma → Splunk rule pipeline that shipped 35+ new detections per quarter.
Mapped SOC playbooks to MITRE ATT&CK; lifted ATT&CK coverage from 38% → 71%.

ATS tips for cybersecurity resumes

Put certifications in your name line: 'Morgan Lee, CISSP' — recruiters and ATS both scan for it first.

Reference frameworks by name — NIST CSF, MITRE ATT&CK, ISO 27001, SOC 2 — these are top ATS keywords.

Name the actual tools you used (Splunk, CrowdStrike, SentinelOne) — not 'EDR / SIEM tools'.

Quantify alert volume, MTTD, MTTR, and incident impact.

Top skills for cybersecurity resumes

Hard skills

SIEM (Splunk, Sentinel, Elastic)EDR (CrowdStrike, SentinelOne, Defender)MITRE ATT&CKNIST CSFIncident responseThreat huntingVulnerability managementPython / PowerShell scriptingNetwork forensicsCloud security (AWS / Azure)

Soft skills

Calm under incident pressureCross-team escalationExecutive briefingsDocumentation

Best templates for cybersecuritys

Technical

View template

Modern

View template

Minimal

View template

Executive

View template

Common cybersecurity resume mistakes

Listing certifications you started but didn't pass — recruiters check, and it's an instant red flag.
Generic bullets like 'monitored network traffic' — name the SIEM, alert volume, and detection outcome.
Leaving off the cloud — most modern SOC roles need at least one cloud security keyword (AWS, Azure, GCP).
Forgetting MITRE ATT&CK mappings — it's now a near-universal ATS keyword in security JDs.

Cybersecurity salary insights

Entry-level

$70k – $95k

Mid-level

$105k – $145k

Senior

$155k – $225k+

U.S. base salary ranges, 2025 BLS + (ISC)² Workforce Study.

Frequently asked questions

Do I need CISSP to break into security?

No — Security+ or a hands-on cert like CySA+ or BTL1 is enough for tier-1 SOC roles. CISSP becomes valuable at the 5-year mark when you target senior or architect roles.

Should I list a home lab on my resume?

Yes if you have less than 2 years of professional security experience. Treat it like a project: name the stack, what you detected, and what you learned.

Are red-team and blue-team resumes different?

Yes. Red-team resumes lead with engagements, OSCP/OSEP, and tooling (Cobalt Strike, BloodHound). Blue-team resumes lead with SIEM/EDR, frameworks, and incident metrics.

Ready to build your cybersecurity resume?

Start with our ATS-tested template and let our AI suggest the bullets that get cybersecuritys shortlisted.

Build mine — free See more roles