13 of 13 SOAR Jobs in the North of England

working directly with security tooling in live environments Cloud security (Microsoft 365, Azure, AWS) Strong technical exposure to security tooling, such as: SIEM/SOAR, EDR/XDR, vulnerability scanners, patch management, CASB, DLP Desirable experience: Microsoft Defender, Purview and M365 E5 security capabilities Privileged Access Management (PAM) tooling Background ...

levels of cyber investment including governance, tooling and staffing within the CSOC Essential skills & experience Proven experience managing Security Event Monitoring operations — SIEM/SOAR, antivirus, network and host IDS/IPS Strong working knowledge of NCSC incident response processes, GDPR, NIS regulations and MITRE ATT&CK Experience in threat ...

levels of cyber investment including governance, tooling and staffing within the CSOC Essential skills & experience Proven experience managing Security Event Monitoring operations — SIEM/SOAR, antivirus, network and host IDS/IPS Strong working knowledge of NCSC incident response processes, GDPR, NIS regulations and MITRE ATT&CK Experience in threat ...

CISM, AWS Security Specialty or ISO 27001 Lead Implementer. Experience with WAF and bot management in a production e-commerce context. Familiarity with SIEM, SOAR or security automation tooling. Exposure to ISO 27001 implementation or SOC 2 readiness programmes. Experience with multi-cloud security across Azure and GCP. Background ...

across multiple environments Create, tune, and improve detection rules and use cases to identify threats quickly Support incident triage, investigations, and response activities Build SOAR-style workflows to improve response speed, consistency, and efficiency Cloud Security Implement and enhance security controls across AWS and Azure environments Review cloud configurations … Experience with SIEM platforms such as Microsoft Sentinel, Elastic, Splunk, or similar Strong knowledge of detection engineering, alert tuning, and log management Experience with SOAR or security automation tooling Scripting skills in Python and/or PowerShell Experience with EDR, endpoint security, and identity controls Good knowledge of networking, firewalls ...

troubleshooting issues, and ensuring reliable performance across both Linux and Windows platforms. Alongside core system administration duties, you'll support security tooling (SIEM and SOAR), ensuring systems are correctly configured to collect, process, and deliver accurate data. You'll also help onboard new systems and data sources, ensuring they integrate ...

Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage … governance and compliance teams. Ensure the design, tuning, and optimisation of detection rules, alerts, and correlation logic across security platforms. Drive automation initiatives using SOAR to improve response speed and reduce operational workload. Maintain robust coverage across cloud, on premise, network, and endpoint environments. Build capability through training, certifications, and ...

Configure security incident types, response playbooks, task automation, SLAs, notifications, and escalation rules. Integration & Automation Integrate ServiceNow SIR with security tools such as SIEM, SOAR, EDR, vulnerability scanners, and threat intelligence platforms. Enable automated ingestion of security alerts and events from multiple sources into ServiceNow. Develop workflow automations, Flow Designer … within ServiceNow SecOps. Strong understanding of security incident response frameworks (e.g. NIST, ISO 27035). Experience integrating ServiceNow with security tools such as SIEM, SOAR, or EDR platforms. Solid ServiceNow development skills, including Flow Designer, business rules, UI policies, client scripts, and integrations. Experience with REST APIs and data ingestion ...

Configure security incident types, response playbooks, task automation, SLAs, notifications, and escalation rules. Integration & Automation Integrate ServiceNow SIR with security tools such as SIEM, SOAR, EDR, vulnerability scanners, and threat intelligence platforms. Enable automated ingestion of security alerts and events from multiple sources into ServiceNow. Develop workflow automations, Flow Designer … within ServiceNow SecOps. Strong understanding of security incident response frameworks (eg NIST, ISO 27035). Experience integrating ServiceNow with security tools such as SIEM, SOAR, or EDR platforms. Solid ServiceNow development skills, including Flow Designer, business rules, UI policies, client scripts, and integrations. Experience with REST APIs and data ingestion ...

Configure security incident types, response playbooks, task automation, SLAs, notifications, and escalation rules. Integration & Automation Integrate ServiceNow SIR with security tools such as SIEM, SOAR, EDR, vulnerability scanners, and threat intelligence platforms. Enable automated ingestion of security alerts and events from multiple sources into ServiceNow. Develop workflow automations, Flow Designer … within ServiceNow SecOps. Strong understanding of security incident response frameworks (eg NIST, ISO 27035). Experience integrating ServiceNow with security tools such as SIEM, SOAR, or EDR platforms. Solid ServiceNow development skills, including Flow Designer, business rules, UI policies, client scripts, and integrations. Experience with REST APIs and data ingestion ...

incident response lifecycle (detection through to recovery and post-incident review) Overseeing threat detection, vulnerability management, and cyber defence capabilities Driving improvements across SIEM, SOAR, EDR/XDR, and security tooling Ensuring robust monitoring, alerting, and response across cloud, network, and endpoint environments Partnering with Infrastructure, Cloud, and Risk teams … risks, and KPIs to senior stakeholders What We're Looking For Proven experience leading a Security Operations or SOC function Strong understanding of SIEM, SOAR, EDR/XDR, IDS/IPS, and security tooling Experience managing incident response and threat management in complex environments Strong knowledge of frameworks such ...

Role Description: This role focuses on supporting and maintaining Red Hat Linux servers, troubleshooting system issues, and assisting with the operation of SIEM and SOAR technologies. It involves monitoring data collection and analysis processes, onboarding data sources, and ensuring that cyber tools receive accurate and consistent information. The position also … and deliver efficient, reliable cybersecurity services. Assisting and Monitoring RedHat Linux Servers. Troubleshooting Linux systems to identify and escalate technical. Assisting & supporting SIEM/SOAR technologies. Monitoring systems for data collection, indexing, and analysis . Please be aware that this is NOT a SOC role. Core Duties: Detecting and diagnosing ...

Security Consultant/Engineer - Fortinet, NSE7, SIEM, SOAR, LAN - £55,000 - £75,000 - NW England Do you want to be one of the Fortinet experts within a Fortinet Expert Partner? Do you want to work on some of the most exciting SecOps projects out there? Do you want … escalation when needed Be able to undergo DBS clearance. NPPV3 - will need to be undertaken post probation. Security Consultant/Engineer - Fortinet, NSE7, SIEM, SOAR, LAN - £55,000 - £75,000 - NW England ...