1 to 25 of 44 Remote SOAR Jobs

qualifications: Bachelor's degree or equivalent practical experience. 10 years of experience with Security Operations (SecOps) toolset including Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), Threat Intelligence and Endpoint Detection and Response (EDR) tools. Experience engaging with, and presenting to, technical stakeholders and executive leaders. … SIEM/SOAR implementations. You will also be familiar with technologies such as Security Operations (SecOps) toolset including Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), Threat Intelligence and Endpoint Detection and Response (EDR) tools. You will present to customer and channel executives in business and More ❯

software delivery lifecycle. A key part of this position will also involve mentoring an internal engineer, developing structured security policies, and managing Sentinel, Defender and SOAR solutions for automated threat response. Additionally, the role requires liaising with third-party support partners to coordinate security solutions, manage incidents, and enhance overall … stage. Cloud Security Implementation: Leverage Azure Security Centre, Microsoft Defender for Cloud, and Microsoft Sentinel for advanced security monitoring. Threat Detection & SOAR Automation: Oversee Security Orchestration, Automation, and Response (SOAR) solutions including SOC Prime. Network & Application Security: Manage Web Application Firewalls (WAF) and Intrusion Prevention Systems (IPS). Vulnerability & Penetration … for post-contract continuity. Required Strong expertise in Azure cloud security, Microsoft Defender, and Microsoft Sentinel. Proven experience in SOAR technologies for security automation and response orchestration. Hands-on experience with penetration testing, vulnerability assessments, and security scanning. Experience implementing and managing WAF, IPS, and DNS security solutions. Extensive experience More ❯

A Splunk SOAR Engineer is an individual who can operate independently and will be entrusted with delivering success for Optiv + ClearShark's customers to achieve predetermined goals aligned with a statement of work. To be successful in this role, a Level I/III Engineer will be expected to … issue resolution and compliance reporting to lower time on detection, time on mitigation for security organizations. Integrate Splunk Mission Control, Splunk Security Orchestration, Automation Response (SOAR), and/or other customer approved security product applications utilizing Enterprise Security. Utilize data thresholds, trend-based conditions and behavioral pattern recognition. Client Engagement … across services. What we're looking for Active TS/SCI clearance with FSP required. Proven experience with Splunk SOAR (formerly Phantom) or similar security orchestration, automation, and response (SOAR) platforms. Strong background in developing and maintaining automation playbooks and scripts. Security Certification (i.e, Security+, CISSP, etc) required. Experience operating More ❯

management and threat protection Security automation and DevSecOps integration Security Operations SOC transformation and cloud-native security ops Threat detection with XDR, NDR, and SOAR platforms Incident response planning and threat intelligence integration Regulatory alignment for DORA, NIS2, and UK-specific mandates Risk frameworks tailored by industry (FS, critical infrastructure More ❯

ll escalate complex issues to your technical referent within the team. For example, you will: Proactively monitor security alerts and events on SIEM/SOAR platforms, ensuring timely detection of threats. Perform log analysis and investigate potential security incidents. Conduct root cause analysis of breaches following documented procedures. Support security More ❯

playbook development, and integration with other solutions Proven experience with the Microsoft Defender security stack and Microsoft Online ecosystem Knowledge of other SIEM and SOAR solutions is a plus (Q-radar, Palo Alto, Splunk ) Proven professional experience in a SOC or security-related role Understanding of the MITRE ATT&CK More ❯

individual who is committed to making a difference in the field of cybersecurity, we enc Basic Qualifications: • Extensive experience with SOC operations including SIEM, SOAR, threat hunting, incident investigation, endpoint protection, standard frameworks, Microsoft 365 security, and strategic planning. • Strong knowledge of cyber threat landscape, vulnerability assessments, incident response, and More ❯

have some of the following skills and experience: Experience in Cyber Threat Intelligence Experience in Threat Hunting Experience with the Microsoft Sentinel SIEM/SOAR platform Proficient in writing KQL Strong understanding of threat intelligence principles and practices. Strong understanding of security risk management Understanding of threat modelling Knowledge of More ❯

network protocols, including TCP, UDP, DNS, HTTP, HTTPS, SSH, and FTP Top Secret clearance Bachelor's degree in Engineering or Computer Science Splunk, Splunk SOAR Phantom, Security+, CEH, or CISSP certification Clearance: Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access More ❯

will be responsible for the delivery of SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. … SIEM management. Experience with cloud security tools and platforms (e.g. Azure, AWS Google Cloud) and their integration into SOC operations. Vendor-specific certifications for SOAR platforms (e.g., Sentinel SOAR, Splunk SOAR, Palo Alto Cortex XSOAR). Experience contributing to large-scale, sprint-based, security automation and detection engineering projects. Nice More ❯

will be responsible for the delivery of SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. … SIEM management. Experience with cloud security tools and platforms (e.g. Azure, AWS Google Cloud) and their integration into SOC operations. Vendor-specific certifications for SOAR platforms (e.g., Sentinel SOAR, Splunk SOAR, Palo Alto Cortex XSOAR). Experience contributing to large-scale, sprint-based, security automation and detection engineering projects. Nice More ❯

will be responsible for the delivery of SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. … SIEM management. Experience with cloud security tools and platforms (e.g. Azure, AWS Google Cloud) and their integration into SOC operations. Vendor-specific certifications for SOAR platforms (e.g., Sentinel SOAR, Splunk SOAR, Palo Alto Cortex XSOAR). Experience contributing to large-scale, sprint-based, security automation and detection engineering projects. Nice More ❯

and applications. Lead the design, implementation and optimisation of SIEM solutions (e.g. Splunk, Sentinel). Integrate SIEM systems with other security tools like EDR, SOAR and threat intelligence feeds. Skills Extensive experience in Cyber Security, with a significant portion in a leadership role. A background in SOC engineering tools combined More ❯

and applications. Lead the design, implementation and optimisation of SIEM solutions (e.g. Splunk, Sentinel). Integrate SIEM systems with other security tools like EDR, SOAR and threat intelligence feeds. Skills Extensive experience in Cyber Security, with a significant portion in a leadership role. A background in SOC engineering tools combined More ❯

cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure More ❯

cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure More ❯

cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure More ❯

cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure More ❯

years of experience in Cyber Security Proficient with programming in Python, Rust, C/C++, or other relevant language Experience using SIEM tools, SOAR/Orchestration tools, EDR tools, Penetration Test or Vulnerability Assessment tools, or Incident Response procedures and tools Understanding of cybersecurity threats and countermeasures Advanced knowledge and More ❯

configuration, deployment, monitoring and response utilising seamless integrations between services and automated playbooks to reduce response times to potential threats - our SOC, SIEM and SOAR initiatives Internal Training and Readiness Assist in designing and leading regular security training of our staff to maintain best in class security awareness Lead table More ❯

experience of learning, adapting and utilising different security technologies, including but not limited to private and cloud infrastructure. Technical knowledge and experience with SIEM, SOAR, IDPS, DDoS, Malware Protection, Vulnerability Management, and Application Security tooling, etc. Knowledge of Information Security frameworks (CIS, NIST, NCSC CAF), supporting processes and toolsets. Ability More ❯

experience of learning, adapting and utilising different security technologies, including but not limited to private and cloud infrastructure. Technical knowledge and experience with SIEM, SOAR, IDPS, DDoS, Malware Protection, Vulnerability Management, and Application Security tooling, etc. Knowledge of Information Security frameworks (CIS, NIST, NCSC CAF), supporting processes and toolsets. Ability More ❯

UK research and education community. Your focus will be on managing and enhancing our SIEM (Security Information and Event Management), SOAR (Security Orchestration, Automation, and Response), and threat intelligence platforms. You will also collaborate with our threat intelligence teams to develop effective methods for integrating and automating our SIEM, SOAR … attend conferences, and take an active role in taskforces set up to further the development of technologies. Key Skills and Experience: Experience with SIEM, SOAR, and threat intelligence platforms. Operational experience working in an appropriate technical subject area or operational experience providing or supporting front line network services. Experience in More ❯

to threats, investigation, and triage of day-to-day security events. Key requirements Experience in deploying security related IaC projects at scale. Familiarity with SOAR and optimisation of Security Controls using automation. Experience working with multi cloud environments (specifically AWS and Azure). Incident response and threat hunting experience. Strong More ❯

helping customers get the most out of the platform’s capabilities. If you’ve got solid knowledge of the cyber ecosystem (think SIEM, EDR, SOAR, AD, firewalls, etc.) and a knack for digging into insider threat scenarios, read on. What you’ll be doing: Leading threat detection and response projects More ❯