SOC Engineer

Title: Senior SOAR Engineer

Type: Contract - 6 months initial

Location: Remote / Occasional travel to Site

Rate: £500 per day Inside IR35

Overview

We are seeking a senior SOAR security engineer on behalf of our client. You will join the Security Orchestration, Automation and Response (SOAR) team to design, develop, and implement automated detection and response solutions within the Splunk platform. The role focuses on leveraging advanced analytics, scripting, and automation to support incident response and threat management, protecting critical national infrastructure from cyber disruption.

Responsibilities

· Collaborate with incident response teams to identify and implement automation opportunities.

· Develop and deploy SOAR automations for detection and response.

· Serve as a subject matter expert in security automation and data analytics.

· Produce system analytics and document changes per Change Management best practices.

· Recommend, develop, and release new use cases to optimize SOAR capabilities.

· Mentor junior team members and perform quality assurance on automation work.

· Participate in special projects and contribute to continuous improvement initiatives.

Requirements

· Strong experience with Splunk, Splunk Enterprise Security, Splunk SOAR, and Splunk UBA.

· Solid understanding of security incident response and security frameworks (MITRE ATT&CK, NIST)

· Experience with scripting/programming (Python, Java, Perl, etc.) and big data analytics.

· Familiarity with Windows, Linux/UNIX systems, databases, and multi-petabyte data lakes.

· Excellent analytical, communication, and organizational skills.