20 of 20 SOAR Jobs in the UK

identify trends, and deliver actionable security insights. Strong track record in threat detection, incident management, and escalation handling. Hands-on experience managing SIEM and SOAR platforms such as Splunk, Microsoft Sentinel, or Elastic. Skilled in coaching analysts, building high-performing teams, and managing effective shift models. Confident communicator with ...

Runbook development Working knowledge of detection engineering, false positive improvements Capability to tune SIEM rules or create custom detections Scripted automation experience e.g. Python, SOAR, PowerShell Threat modelling and Hunting methodologies ...

Oversee log ingestion pipelines, integrations and onboarding across hybrid environments Provide technical leadership across Microsoft Sentinel, Defender and Azure security services Drive automation and SOAR capability using Logic Apps and playbooks Work closely with detection engineers and threat hunters to enable effective use cases Manage supplier relationships and ensure services ...

understanding of cloud security (IaaS, PaaS, SaaS, CASB, Zero Trust, micro-segmentation) Broad knowledge of security technologies (firewalls, IDS/IPS, endpoint protection, SIEM, SOAR, DLP, PKI, cryptography) Solid understanding of IAM concepts (RBAC, ABAC, PAM, SSO) Strong analytical skills with the ability to interpret complex technical information Good understanding ...

define and report meaningful security metrics to demonstrate risk reduction and operational performance. Knowledge of automation techniques for repetitive security tasks (e.g., using SOAR tools or scripting). Knowledge of threat intelligence and proactive threat hunting. Desirable Familiarity with cloud security operations (Azure and AWS). Understanding of compliance requirements ...

define and report meaningful security metrics to demonstrate risk reduction and operational performance. · Knowledge of automation techniques for repetitive security tasks (e.g., using SOAR tools or scripting). · Knowledge of threat intelligence and proactive threat hunting. Desirable · Familiarity with cloud security operations (Azure and AWS). · Understanding of compliance requirements ...

solutions within large enterprise environments 8+ years of experience with Security Operations Center (SOC) tooling, processes, and workflows Hands-on technical mastery across SIEM, SOAR, EDR, cloud security, and threat intelligence Ability to conceive, architect, and develop effective correlation and detection rules Familiarity with a range of SIEM technologies, such ...

follows and complies with IT and Information Security policies and regulatory standards. Help configure and keep current the integration of IAM technologies with SIEM, SOAR, Service Desk and other tools. Work closely with relevant vendors to ensure optimised use of the supplied technologies and professional services. Serve as an escalation ...

and Python). Experience with PAM concepts, access control models, and security frameworks (e.g., NIST, ISO 27001, CIS). Experience integrating PAM with SIEM, SOAR, and DevOps pipelines. Architectural and solution design skills, enterprise-scale PAM deployments. Cloud certifications, such as AWS Certified Security, Azure Security Engineer or Google Cloud ...

security controls into Terraform and other IaC workflows Champion shift-left practices-enabling developers to self-remediate issues during build and coding stages Build SOAR playbooks to automate response and remediation workflows Experience Requirements 3+ years in Cybersecurity and CNAP-focused roles Deep AWS security expertise: IAM, Organizations, SCPs, cloud ...

Integrate security controls into Terraform and other IaC workflows Champion shift-left practicesenabling developers to self-remediate issues during build and coding stages Build SOAR playbooks to automate response and remediation workflows Experience Requirements 3+ years in Cybersecurity and CNAP-focused roles Deep AWS security expertise: IAM, Organizations, SCPs, cloud ...

Manage the full content lifecycle: design test deploy monitor tune retire, with version control and rollback. Automate workflows and configurations using CI/CD, SOAR, scripting and IaC tools (Terraform, Ansible). Ensure platform performance, stability and reliability, including capacity planning, high availability, disaster recovery and proactive monitoring. What ...

role, you should have: 7+ years of sales experience in IT/Cyber Security Experience in selling cybersecurity technologies and solutions such as SIEM, SOAR, Threat Intelligence, BAS, Threat Hunting, EDR, NDR, cloud security, and vulnerability management Understanding of SaaS/Cloud Go-to-market Proven track record of success ...

Defender suite (Defender for Endpoint, Identity, Cloud, etc.). Proven track record in security monitoring, incident response, and alert troubleshooting . Working knowledge of SOAR platforms (preferably within Sentinel or similar). Understanding of threat detection, log analysis, and automation within Microsoft's security ecosystem. Experience with Tenable is beneficial … Microsoft Sentinel and Microsoft Defender . Perform detailed security event analysis and correlation, escalating incidents where necessary. Develop and optimise SOAR (Security Orchestration, Automation and Response) playbooks to enhance incident response and efficiency. Collaborate with wider IT and security teams to improve threat detection, incident handling, and response processes. Apply ...

Cisco, Fortinet, CrowdStrike, Netskope, F5, Akamai, and CyberArk Familiarity with security frameworks (ISO 27001, NIST, GDPR) and concepts like Zero Trust, SASE, SIEM/SOAR Familiarity with leading vendors and solutions across security, networking, and compliance frameworks Ability to engage confidently with C-level stakeholders and translate technical concepts into ...

Cisco , Fortinet , CrowdStrike , Netskope , F5 , Akamai , and CyberArk Familiarity with security frameworks (ISO 27001, NIST, GDPR) and concepts like Zero Trust, SASE, SIEM/SOAR Familiarity with leading vendors and solutions across security, networking, and compliance frameworks Ability to engage confidently with C-level stakeholders and translate technical concepts into ...

members of the team to protect the client's systems against cyber threats. Lead in the identification and the creation, maintenance and troubleshooting of SOAR playbooks, automations and enrichments. Apply critical thinking to solve unique problems in the information security space. Enhancing the processes around interacting with large datasets … framework. Good knowledge of enterprise computing technologies. Skills Understanding of enterprise networking and computing Knowledge of Python 3 programming language Demonstrable experience in using SOAR tooling and its application Application of data science against large datasets involving unstructured data and designing data models Knowledge of using SIEM platforms to identify ...

variety of day to day activities including: vulnerability management, patch management, email security and mobile device management assessing cyber threats, using SIEM & SOAR tools penetration testing continuous improvement, ensuring documentation is maintained in line with best-practice/standards support on project work About you Applicants for the Cyber Security ...

Security, Cyber, SOAR, XSOAR, PALO ALTO CORTEX, ENGINEER Security Orchestration, Automation & Response (SOAR) Engineer As a Security Engineer, your knowledge and expertise to play a key role in developing and implementing the capability to detect and prevent security threats and enable a faster and more effective response. Technical Skills: Hands … experience with cyber security tools and solutions (ideally SOAR platforms and Threat intelligence platforms) Experience working and developing using Python Understanding of REST APIs and demonstrate ability to develop and interact with REST API Understanding of the MITRE ATT&CK framework (or equivalent) and emerging threat actor tactics, techniques, and ...

technical scoping, bid responses, service demonstrations, and stakeholder presentations Essential Duties Security Platform Deployment & Optimisation Deploy, configure, and tune SOC technologies across SIEM, EDR, SOAR, and log pipeline tooling Develop and maintain documentation to support repeatable, high-quality delivery Customer Engagement & Delivery Lead the implementation of engineering workstreams, balancing customer … choices and balances customer needs with service feasibility Critical Competencies – Technical Fit Security Tooling & Architecture – Deep understanding of SOC-aligned technologies across SIEM, EDR, SOAR, log pipelines, and detection tooling. Telemetry and Log Management – Ability to design and deliver scalable architectures for data ingestion, correlation, and automation Networking & Infrastructure – Strong ...