SOAR Engineer/Analyst (Google SecOps)

Contract Role - SOAR Engineer/Analyst (Google SecOps) - Leeds/Remote - 12 Months Initial - Inside IR35

We are seeking a skilled SOAR Engineer/Analyst responsible for designing, developing, implementing, and maintaining automation playbooks to improve incident response efficiency within the Security Operations Centre utilizing Google SecOps

Role Overview:
* Job Title: SOAR Engineer/Analyst (Google SecOps)
* Location: Leeds/Remote
* Contract Type: Contract
* Duration: 12 months initially
* Sector: Healthcare.

Required Skills & Qualifications
* Bachelor's degree in Computer Science, Cybersecurity, or related discipline, or equivalent hands-on experience.
* 2-5 years of experience in security operations or security engineering.
* Hands-on experience with SOAR platforms (eg, Cortex XSOAR, Splunk SOAR, IBM Resilient).
* Strong familiarity with:
o Google SecOps/Chronicle
o Darktrace (AI-based threat detection)
o CrowdStrike Falcon platform
* Scripting experience in Python, PowerShell, or Bash.
* Experience with REST APIs and JSON for tool integration.
* Working knowledge of incident response frameworks and MITRE ATT&CK.
* Strong problem-solving, critical thinking, and communication skills.

Desirable Qualifications
* Experience with CI/CD for playbook development and version control (eg, Git).
* Familiarity with other SOC tools (eg, ServiceNow, Jira, Splunk, Elastic, SentinelOne).
* Security certifications such as:
SOAR-specific certifications (eg, Cortex XSOAR Certified Engineer)
o CrowdStrike Certified Falcon Responder
o Google Cybersecurity Certificate
o General security certs (eg, CySA+, GCIH, CISSP)

Please feel free to contact myself - Daisy Nguyen at Gibbs Consulting/Atrium UK for a confidential chat to know more details about the role.

Please also note: Due to the volume of applications received for positions, it will not be possible to respond to all applications and only applicants who are considered suitable for interview will be contacted.