23 of 23 Permanent SOAR Jobs in England

Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/ ...

inform detection strategies. Maintain detailed incident records and conduct post-incident reviews. Technical Skills Hands-on experience with SIEM, EDR, IDS/IPS, and SOAR platforms. Strong knowledge of operating systems (Windows, Linux), network protocols, and packet analysis tools. Familiarity with scripting languages (Python, Bash, PowerShell). Experience with cloud ...

Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/ ...

highly desirable. Experience with security automation and orchestration, including the use of scripting languages (such as PowerShell or Python) and SOAR platforms to streamline incident response, automate repetitive tasks, and enhance overall security operations. Strong knowledge of security technologies (e.g., firewalls, IDS/IPS, EDR, SIEM) Technical bachelor’s degree ...

insight into IT architecture, hybrid/cloud models, and security methodologies. Advice on security tooling includes Firewalls, IDS/IPS, CDN, Endpoint Protection, SIEM, SOAR, DLP, PKI and cryptography. Provide security guidance for cloud models such as IaaS, PaaS, SaaS, CASB, Zero Trust and micro-segmentation. Demonstrate a strong understanding ...

need from you? Deep expertise in securing cloud platforms (AWS, Azure, GCP) with a focus on financial services Proven experience with tools like SIEM, SOAR, IDS/IPS, and cloud-native security solutions Strong understanding of encryption protocols, key management systems, and IAM best practices Hands-on experience with container ...

firewall management and security principles. Experience with security monitoring tools such as PRTG, Nagios and backup solutions like Veeam is beneficial, as with SIEM & SOAR technologies such as Elastic, Splunk, Phantom Virtualisation & Automation : Knowledge of virtualisation technologies like VMWare, Hyper-V, and Proxmox, along with experience in PowerShell, Python, Ansible ...

solutions within large enterprise environments 8+ years of experience with Security Operations Center (SOC) tooling, processes, and workflows Hands-on technical mastery across SIEM, SOAR, EDR, cloud security, and threat intelligence Ability to conceive, architect, and develop effective correlation and detection rules Familiarity with a range of SIEM technologies, such ...

solutions within large enterprise environments 8+ years of experience with Security Operations Center (SOC) tooling, processes, and workflows Hands-on technical mastery across SIEM, SOAR, EDR, cloud security, and threat intelligence Ability to conceive, architect, and develop effective correlation and detection rules Familiarity with a range of SIEM technologies, such ...

Azure and AWS (GCP desirable). Develop Infrastructure-as-Code using Terraform, Ansible, or similar tools. Build and maintain security integrations between SIEM, SOAR, EDR/XDR, and case management systems. Embed security into CI/CD pipelines and support secure SDLC practices, including container and application security. Enhance ...

follows and complies with IT and Information Security policies and regulatory standards. Help configure and keep current the integration of IAM technologies with SIEM, SOAR, Service Desk and other tools. Work closely with relevant vendors to ensure optimised use of the supplied technologies and professional services. Serve as an escalation ...

and Python). Experience with PAM concepts, access control models, and security frameworks (e.g., NIST, ISO 27001, CIS). Experience integrating PAM with SIEM, SOAR, and DevOps pipelines. Architectural and solution design skills, enterprise-scale PAM deployments. Cloud certifications, such as AWS Certified Security, Azure Security Engineer or Google Cloud ...

role, you should have: 7+ years of sales experience in IT/Cyber Security Experience in selling cybersecurity technologies and solutions such as SIEM, SOAR, Threat Intelligence, BAS, Threat Hunting, EDR, NDR, cloud security, and vulnerability management Understanding of SaaS/Cloud Go-to-market Proven track record of success ...

Cisco, Fortinet, CrowdStrike, Netskope, F5, Akamai, and CyberArk Familiarity with security frameworks (ISO 27001, NIST, GDPR) and concepts like Zero Trust, SASE, SIEM/SOAR Familiarity with leading vendors and solutions across security, networking, and compliance frameworks Ability to engage confidently with C-level stakeholders and translate technical concepts into ...

Cisco, Fortinet, CrowdStrike, Netskope, F5, Akamai, and CyberArk Familiarity with security frameworks (ISO 27001, NIST, GDPR) and concepts like Zero Trust, SASE, SIEM/SOAR Familiarity with leading vendors and solutions across security, networking, and compliance frameworks Ability to engage confidently with C-level stakeholders and translate technical concepts into ...

continuous learning and technical excellence. Oversee the full lifecycle of security incidents — from detection through to resolution and review. Manage and optimise SIEM and SOAR platforms (Splunk, Sentinel, Elastic) to enhance detection and automation capabilities. Drive continuous improvement through ITIL-aligned processes and adherence to CREST standards. Oversee vulnerability management … operations in a 24×7 or multi-client environment. Strong background in incident management, threat detection, and escalation processes. Technical depth across SIEM/SOAR tooling, preferably Splunk or Microsoft Sentinel. A passion for developing teams — coaching analysts and building collaborative, high-performing cultures. Strong understanding of frameworks and standards ...

and 1-2-1s You have a deep understanding of threat vectors, attack methodologies and defensive measures, along with firsthand expertise with SIEM, SOAR, EDRs and forensic tools You have strong business acumen with a good understanding of resource allocation, cost management and aligning business objectives with technical strategy ...

variety of day to day activities including: vulnerability management, patch management, email security and mobile device management assessing cyber threats, using SIEM & SOAR tools penetration testing continuous improvement, ensuring documentation is maintained in line with best-practice/standards support on project work About you Applicants for the Cyber Security ...

such as SIEM, SOC, Vulnerability Management. The role will require you to manage and maintain on-premises infrastructure technologies, including: Firewall administration. SIEM and SOAR platforms. Network troubleshooting. Vulnerability management. Oversee and enhance security within the Microsoft 365 stack. The ideal candidate would have experience in: Firewall management (Check Point … Palo Alto preferred). SIEM and SOAR platforms (Splunk SOAR, LogRhythm). Vulnerability management (Tenable). Network troubleshooting (Cisco desirable). Microsoft 365 security stack (required). Microsoft Defender On prem and Cloud experience (Azure ...

and the ability to work independently. Day-to-day of the role: Manage and maintain on-premises infrastructure technologies including firewall administration, SIEM and SOAR platforms, network troubleshooting, and vulnerability management. Oversee and enhance security within the Microsoft 365 stack. Collaborate with team members on complex projects while independently owning … Skills & Qualifications: Proven experience in infrastructure or security engineering roles. Expertise in firewall management (Check Point, Palo Alto preferred). Proficiency with SIEM and SOAR platforms (Splunk SOAR, LogRhythm). Strong skills in vulnerability management (Tenable). Competence in network troubleshooting (Cisco desirable). In-depth knowledge of the Microsoft ...

Responsibilities: Manage and maintain on-premises infrastructure technologies, specifically acting as a Subject Matter Expert (SME). Responsible for Firewall administration, SIEM and SOAR platforms, and Vulnerability management. Oversee and enhance security measures within the Microsoft 365 stack. Collaborate with team members on complex projects while independently owning specific technical … domains. Perform network troubleshooting and respond effectively under pressure in a fast-paced environment. Key Skills: Check Point, Palo Alto, Splunk SOAR, LogRhythm, Tenable, Cisco, Microsoft 365, PowerShell, Firewalls, SIEM, SOAR, Vulnerability Management, Network Security, NSD. How to apply: Please either apply through this advert or emailing me directly ...

Manager - Microsoft, SIEM, Defender XDR, SOAR, Entra ID - Hybrid - Bucks - £competitive Can you demonstrate strong leadership experience within a SOC or managed security environment? Do you have deep expertise in Microsoft security technologies? Can you handle complex incidents and drive continuous service improvement. We are partnered with one of Microsoft … Sentinel, Defender XDR, Entra ID and Microsoft 365 security signals M365 audit & contextual logs Drive optimisation, tuning, and governance across SIEM/XDR/SOAR platforms. Lead major incident escalations and guide proactive threat hunting. Collaborate with Product, Engineering, Customer Success, and TAM teams to evolve MXDR services. Contribute ...

Role: SOC -Security Platform Engineer Location: London Salary: Competitive salary and package dependent on experience Career Level: Specialist Role Description The SOC Tooling Engineer is responsible for technical enablement and configuration management of SOC tools ...