1 to 25 of 44 SOAR Jobs in the UK

Incident Response Analyst

Hiring Organisation
INTEC SELECT LIMITED
Location
City of London, London, England, United Kingdom
Employment Type
Full-Time
Salary
£70,000 - £75,000 per annum
inform detection strategies. Maintain detailed incident records and conduct post-incident reviews. Technical Skills Hands-on experience with SIEM, EDR, IDS/IPS, and SOAR platforms. Strong knowledge of operating systems (Windows, Linux), network protocols, and packet analysis tools. Familiarity with scripting languages (Python, Bash, PowerShell). Experience with cloud ...

Senior Security Engineer

Hiring Organisation
Eligo Recruitment
Location
London, South East, England, United Kingdom
Employment Type
Full-Time
Salary
£80,000 per annum
Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/ ...

Senior Network Engineer

Hiring Organisation
Eligo Recruitment
Location
London, South East, England, United Kingdom
Employment Type
Full-Time
Salary
£85,000 per annum
Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/ ...

Tier II SOC Analyst

Hiring Organisation
CyberClan
Location
United Kingdom
Cloud, Azure) Active Directory, Group Policies, PowerShell Endpoint protection applications (Antivirus, Web Filtering, ATP, Encryption) IDP/IPS Systems SIEM tools (such as Splunk) SOAR is an added advantage Knowledge of malware capabilities, attack vectors and impact. Knowledge of the MITRE ATT&CK framework to understand threat actors and ...

SOC Threat Detection Analyst

Hiring Organisation
Certain Advantage
Location
Stevenage, Hertfordshire, United Kingdom
Employment Type
Contract
Contract Rate
£45 - £85/hour Overtime Rate of time and a quarter
Runbook development Working knowledge of detection engineering, false positive improvements Capability to tune SIEM rules or create custom detections Scripted automation experience e.g. Python, SOAR, PowerShell Threat modelling and Hunting methodologies ...

Cyber Threat Specialist

Hiring Organisation
McCabe & Barton
Location
London, United Kingdom
Employment Type
Permanent
Salary
GBP Annual
and respond to security incidents across host, identity, email, SaaS and cloud workloads. Use and tune security tooling such as EDR, DLP, SIEM and SOAR to improve detection and response effectiveness. Apply frameworks such as MITRE ATT&CK and the cyber kill chain to map, detect and disrupt attacker tradecraft. ...

Cyber Security Manager

Hiring Organisation
Peaple Talent
Location
Bath, England, United Kingdom
guidance What We’re Looking For Strong experience in cyber security operations, engineering, or incident response Hands-on expertise with Defender, Sentinel (SIEM/SOAR), Tenable, CASB, and cloud security (AWS/Azure) Experience delivering security improvements and technical control implementation PowerShell or automation scripting skills Solid understanding of frameworks ...

Technology Engineer / Cyber Security / IT Network Infrastructure

Hiring Organisation
PointWire
Location
Bath, Somerset, South West, United Kingdom
Employment Type
Permanent, Work From Home
Salary
£60,000
firewall management and security principles. Experience with security monitoring tools such as PRTG, Nagios and backup solutions like Veeam is beneficial, as with SIEM & SOAR technologies such as Elastic, Splunk, Phantom Virtualisation & Automation : Knowledge of virtualisation technologies like VMWare, Hyper-V, and Proxmox, along with experience in PowerShell, Python, Ansible ...

Senior Security Administrator - Palo Alto

Hiring Organisation
Experis
Location
City of London, London, United Kingdom
Employment Type
Contract
Contract Rate
£200 - £400 per day
Owners Support projects such as: Firewall migrations, data centre moves, cloud connectivity, segmentation initiatives Zero Trust or least privilege initiatives Integration with SIEM/SOAR tooling Required Skills: Strong hands-on experience administering Palo Alto NGFWs in enterprise environments Proven experience with Panorama for centralised policy and device management Understanding ...

Vulnerability Manager

Hiring Organisation
Amtis Professional Ltd
Location
Solihull, West Midlands, United Kingdom
Employment Type
Permanent, Work From Home
Salary
£80,000
and risk-based prioritisation. Experience working in large, complex enterprise environments. Familiarity with regulatory and compliance requirements relevant to vulnerability management. Knowledge of SIEM, SOAR, EDR, and associated security tooling. Strong analytical skills with the ability to translate technical risk into clear, executive-level reporting. Experience supporting incident response and ...

Network, Data and Zero Trust Consultant

Hiring Organisation
Accenture
Location
London, South East, England, United Kingdom
Employment Type
Full-Time
Salary
Competitive salary
Zero Trust Client configuration and rollout, including secure network and data access. Integrate Zero Trust solutions with identity providers (Entra AD, Okta), SIEM/SOAR systems, endpoint platforms, and data repositories. Assisting infrastructure teams in migrating legacy VPN, proxy, and firewall solutions to cloud native Zero Trust models, and supporting ...

OT SOC Engineer

Hiring Organisation
Gold Group
Location
Basingstoke, Hampshire, United Kingdom
Employment Type
Permanent
Salary
£28000 - £35000/annum + Benefits
Basic understanding of: ICS/SCADA systems and OT network architecture. Common OT protocols (Modbus, DNP3, OPC). Experience/Understanding of SIEM/SOAR solutions and OT-specific monitoring platforms (e.g. Nozomi Vantage). Knowledge of network environments (routing/switching/VLANS/Security/Wireless/etc. ...

Remote L3 SOC Analyst - Microsoft XDR/ Defender/ Sentinel

Hiring Organisation
Robert Walters
Location
London, South East, England, United Kingdom
Employment Type
Temporary
Salary
£450 - £500 per day
issues, and drive continuous improvement across SOC processes. Collaborate with engineering, cloud, and cybersecurity teams to enhance log ingestion, telemetry quality, and SIEM/SOAR architecture Produce clear, structured incident reports, threat briefs, and stakeholder updates What you'll bring: Extensive hands-on experience with Microsoft Sentinel (SIEM) and Microsoft … attacker TTPs, threat intelligence sources, and MITRE ATT&CK mapping Proven experience leading major incidents in an enterprise SOC environment Strong understanding of SOAR automation and experience building Logic Apps-based playbooks Ability to interpret log data from diverse sources and build correlation logic that reduces false positives Experience with ...

Cloud Security Engineer

Hiring Organisation
Lynx Recruitment Limited
Location
South West London, London, United Kingdom
Employment Type
Permanent
Salary
£80,000
Integrate security controls into Terraform and other IaC workflows Champion shift-left practicesenabling developers to self-remediate issues during build and coding stages Build SOAR playbooks to automate response and remediation workflows Experience Requirements 3+ years in Cybersecurity and CNAP-focused roles Deep AWS security expertise: IAM, Organizations, SCPs, cloud ...

Cloud Security Engineer

Hiring Organisation
Lynx Recruitment Ltd
Location
London, South East, England, United Kingdom
Employment Type
Full-Time
Salary
£60,000 - £80,000 per annum
security controls into Terraform and other IaC workflows Champion shift-left practices—enabling developers to self-remediate issues during build and coding stages Build SOAR playbooks to automate response and remediation workflows Experience Requirements 3+ years in Cybersecurity and CNAP-focused roles Deep AWS security expertise: IAM, Organizations, SCPs, cloud ...

Senior Security Engineer

Hiring Organisation
Develop
Location
London, United Kingdom
Employment Type
Permanent
Salary
£80,000
security operations. Develop, optimise, and tune KQL queries for detection engineering and threat hunting. Review and enhance security configurations across cloud and SIEM/SOAR platforms. Manage engagements through architecture, deployment, tuning, documentation, and customer enablement. Identify security gaps and recommend improvements across logging, identity, endpoint hardening, cloud posture, and … misconfigurations and optimisation of security deployments. Leverage scripting, APIs, and automation to streamline repeatable tasks. Integrate firewalls, EDR platforms, logging pipelines, and SIEM/SOAR tooling. Customer & Collaboration Act as a trusted technical advisor to security and engineering stakeholders. Communicate complex technical concepts clearly to both technical and non-technical ...

Cyber Security Manager

Hiring Organisation
Venn Group
Location
Harrow, Middlesex, England, United Kingdom
Employment Type
Full-Time
Salary
£65,544 - £72,693 per annum
and DWP MOU Hands-on expertise with Microsoft E5 security and compliance tools Extensive experience with Microsoft Sentinel, including configuration, monitoring and security automation (SOAR) Knowledge and experience of working in ITIL environments Hiring Process: Introductory call/meeting with Venn Group, to discuss your experience and the role ...

SOC Analyst

Hiring Organisation
Addition
Location
Wokingham, Berkshire, England, United Kingdom
Employment Type
Contractor
Contract Rate
£450 - £570 per day
verbal communication for senior stakeholders. Desirable: experience in Critical National Infrastructure (CNI), OT/ICS environments, threat hunting, detection engineering, EDR/NDR/SOAR tools, and basic scripting or query skills (KQL, SQL, Python). Desirable qualifications: cyber security or computer science degree, and certifications such as CompTIA Security+ ...

Security Engineer - SIEM, KQL

Hiring Organisation
Harvey Nash
Location
London, South East, England, United Kingdom
Employment Type
Contractor
Contract Rate
£350 - £400 per day
define and measure control effectiveness Required Skills & Experience Certifications: AZ-500, SC-200, SC-900, CompTIA Security+, CISSP, GCIA, GCIH, GCFA, CCSP Experience with SOAR playbooks, YARA rules, STIX, and YAML Participation in red/purple team exercises. Please apply within for further details - Alex Reeder Harvey Nash 3+ years … Proxy, and SEG tools Desirable Qualifications Certifications: AZ-500, SC-200, SC-900, CompTIA Security+, CISSP, GCIA, GCIH, GCFA, CCSP Experience with SOAR playbooks, YARA rules, STIX, and YAML Participation in red/purple team exercises. Please apply within for further details - Alex Reeder Harvey Nash To From Record ...

Pre-sales Security Consultant

Hiring Organisation
Franklin Fitch
Location
Slough, Berkshire, UK
Employment Type
Full-time
with the ability to translate technical detail into clear business value. Excellent communication and presentation skills. Strong understanding of modern security architectures, including SIEM, SOAR, and Managed Security Services. Exposure to advanced security areas such as DDoS protection, Web Application Firewalls (WAF), Identity and Access Management (IDAM), Endpoint Detection and ...

Pre-sales Security Consultant

Hiring Organisation
Franklin Fitch
Location
London Area, United Kingdom
with the ability to translate technical detail into clear business value. Excellent communication and presentation skills. Strong understanding of modern security architectures, including SIEM, SOAR, and Managed Security Services. Exposure to advanced security areas such as DDoS protection, Web Application Firewalls (WAF), Identity and Access Management (IDAM), Endpoint Detection and ...

Microsoft Security Architect

Hiring Organisation
ECS Resource Group Ltd
Location
London, United Kingdom
Employment Type
Contract
Contract Rate
£400 - £500/day
Analyst) SC-400 (Information Protection Administrator) AZ-500 (Azure Security Engineer) Key Skills: Microsoft Defender Suite (Endpoint, Identity, Cloud Apps) Microsoft Sentinel (analytics rules, SOAR playbooks) Microsoft Purview DSPM (classification, labels, DLP) Zero Trust architecture Nice-to-Have: AI governance/Responsible AI experience CISSP Academic or regulated sector background ...

Lead SOAR Engineer

Hiring Organisation
Experian Ltd
Location
Nottingham, Nottinghamshire, East Midlands, United Kingdom
Employment Type
Permanent
Dublin, Ireland. Learn more at experianplc.com. Internal Grade D/EB8 Job Description Experian's Global Security Operations (GSO) team is seeking a Lead SOAR Engineer to drive the evolution of our security automation strategy and guide junior level engineers. As a leader within the Threat Detection Engineering team … will architect and oversee the development of intelligent SOAR solutions, integrating GenAI and Agentic Frameworks to enable adaptive, context-aware automation. You'll lead Agile CI/CD initiatives, mentor engineers, and collaborate to deliver scalable, secure automation capabilities that enhance Experian's global security posture. Important Responsibilities Lead ...

Network Technical Integration Lead

Hiring Organisation
CBSbutler Holdings Limited trading as CBSbutler
Location
Knutsford, Cheshire, Peover Superior, United Kingdom
Employment Type
Contract
Contract Rate
£550 - £604/day
z2bz0 years' experience across network and security engineering (design, build, operate) Strong troubleshooting across multiple layers: Network Identity Endpoint Proxy SIEM/SOAR Hands-on automation experience (e.g., Ansible, Terraform, GitHub, Azure DevOps) Proven ITIL change leadership experience Major Incident Management (MIM) exposure Desirable Certifications CCNP/CCIE Zscaler Professional ...

Presales Consultant

Hiring Organisation
Franklin Fitch
Location
Manchester Area, United Kingdom
technical complexity into clear business outcomes Confidence presenting to both technical and non-technical stakeholders A solid understanding of modern security architectures, including SIEM, SOAR, and managed security services Exposure to advanced security domains such as DDoS protection, WAF, IAM, EDR, MDM, and vulnerability management Continuous learning is a core ...