19 of 19 Permanent SOAR Jobs in the UK excluding London

personal to all of us.” – Julie Sweet, Accenture CEO As a Security Automation Engineer: You will be responsible for developing and optimising Security Orchestration, Automation and Response (SOAR) toolsets. The Security Automation Engineer (SOAR) will drive the maturation of Accenture’s Security Operation Centre (SOC) offerings, integrating security technologies and … security operations or network/infrastructure engineering. We are looking for the following skills and experience: Hands-on experience of developing playbooks with Security Orchestration, Automation and Response (SOAR) platforms, such as Palo Alto XSOAR, Splunk Phantom, Google SecOps SOAR, Microsoft Sentinel (Azure Logic Apps). Knowledge of interacting with ...

Entra ID and Active Directory, overseeing requirements for Conditional Access, MFA, SSO, and PIM. Threat Detection & Incident Response: Own and operate the SIEM/SOAR stack, including Microsoft Sentinel and Defender XDR, to develop detection rules and support forensic investigations. Infrastructure Hardening: Enforce secure baselines across virtualized environments (VMware/ ...

developing and maintaining IT/OT vulnerability management programs and processes. This role performs and leads important tasks specialized at threat hunting, SIEM/SOAR, Network Security and other operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response, security event reporting, and content ...

Center (MSSP) to ensure high‐fidelity alerting and low Mean Time to Resolve (MTTR). Tooling Optimization : Own the security stack (SIEM, EDR, XDR, SOAR). Ensure tools are integrated, automated, and providing maximum ROI rather than just generating “noise.” Automation : Drive a “Detection as Code” philosophy to automate repetitive ...

related services. Integrate security into DevOps pipelines, CI/CD, infrastructure-as-code, and container workflows. Automate threat detection and response using Microsoft Sentinel SOAR, custom playbooks, and telemetry pipelines. Platform Security Oversight Own and optimise endpoint security through Intune, ensuring device compliance and integration with Zero Trust. Harden ...

working directly with security tooling in live environments Cloud security (Microsoft 365, Azure, AWS) Strong technical exposure to security tooling, such as: SIEM/SOAR, EDR/XDR, vulnerability scanners, patch management, CASB, DLP Desirable experience: Microsoft Defender, Purview and M365 E5 security capabilities Privileged Access Management (PAM) tooling Background ...

Previous experience in a SOC or security operations role Strong knowledge of cyber attack techniques and defence strategies Experience with SIEM, EDR, XDR, and SOAR platforms Networking fundamentals including firewalls and protocols Strong analytical and problem-solving ability Certifications (Desirable) Microsoft SC-200 CompTIA Security+ Blue Team Labs Level ...

Previous experience in a SOC or security operations role Strong knowledge of cyber attack techniques and defence strategies Experience with SIEM, EDR, XDR, and SOAR platforms Networking fundamentals including firewalls and protocols Strong analytical and problem-solving ability Certifications (Desirable) Microsoft SC-200 CompTIA Security+ Blue Team Labs Level ...

CISM, AWS Security Specialty or ISO 27001 Lead Implementer. Experience with WAF and bot management in a production e-commerce context. Familiarity with SIEM, SOAR or security automation tooling. Exposure to ISO 27001 implementation or SOC 2 readiness programmes. Experience with multi-cloud security across Azure and GCP. Background ...

needed. Skills & Experience Required: 3+ years of experience as a SOC/Security Engineer within a cloud environment Experience with a range of SIEM, SOAR and vulnerability management tools Experience advising on security best practices and developing SOC playbooks Networking and infrastructure experience, including with Firewalls and IDS/ ...

such as ISO 27001, NIST, and CIS controls Optimise solutions post-deployment (performance tuning, alert optimisation, capacity planning) Integrate security tooling with SIEM/SOAR, ITSM, and automation platforms Mentor junior engineers and contribute to team capability development Support pre-sales activities including solution design, customer engagement, and documentation (SoWs ...

with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24×7 detection, response, threat hunting), DFIR, purple-team ...

excellent interpersonal and communication skills. Any experience of working in/around Security Operation Centres, using and/or managing SIEM/EDR/SOAR platforms, a good understanding of cloud platforms, and a basic ability to script would all be advantageous. Certification - Advantageous but not essential General security (CREST ...

Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage … governance and compliance teams. Ensure the design, tuning, and optimisation of detection rules, alerts, and correlation logic across security platforms. Drive automation initiatives using SOAR to improve response speed and reduce operational workload. Maintain robust coverage across cloud, on premise, network, and endpoint environments. Build capability through training, certifications, and ...

Incident Response Engineer (MDR SIEM SOAR AWS) Remote UK to £80k Are you a tech savvy Senior Security Engineer with strong Incident Response experience? You could be progressing your career in a senior, hands-on Senior Security Engineer role as part of a friendly and supportive international team ...

during live security incidents Develop and maintain SOC playbooks and automation workflows Analyse firewall alerts and support configuration troubleshooting Tune SIEM, EDR, XDR, and SOAR tools to reduce false positives Maintain detailed incident documentation and lessons learned Provide mentoring and technical guidance to Tier 1 analysts Skills & Experience Required Proven … security operations environment Strong understanding of cyber threats, attack techniques, and defensive controls Hands-on experience with SIEM, EDR, XDR, and SOAR platforms Solid networking knowledge (TCP/IP, firewalls, common protocols) Strong analytical and problem-solving skills Excellent written and verbal communication skills Ability to manage multiple incidents effectively ...

and security posture assessments Advise clients on security improvements, best practice, and threat mitigation strategies Work closely with internal teams to enhance automation and SOAR workflows Operational Improvement Develop and refine SOC processes, procedures, and response playbooks Track SOC performance metrics and identify opportunities for efficiency and quality improvement Ensure … experience in a SOC or security operations environment Previous experience in a technical leadership or senior analyst role Strong hands-on knowledge of SIEM, SOAR, EDR, firewalls, and threat intelligence platforms Practical experience handling security incidents, threat hunting, and investigations Solid understanding of attacker tactics, techniques, and frameworks such ...

and security posture assessments Advise clients on security improvements, best practice, and threat mitigation strategies Work closely with internal teams to enhance automation and SOAR workflows Operational Improvement Develop and refine SOC processes, procedures, and response playbooks Track SOC performance metrics and identify opportunities for efficiency and quality improvement Ensure … security operations environment xehkeey Previous experience in a technical leadership or senior analyst role Strong hands-on knowledge of SIEM, SOAR, EDR, firewalls, and threat intelligence platforms Practical experience handling security incidents, threat hunting, and investigations Solid understanding of attacker tactics, techniques, and frameworks such as MITRE ATT&CK Proven ...

Security Analyst - CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender Our leading global law firm client are currently looking to take on a new Security Analyst (CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender) to join their team … days per week in London and offer a great deal of autonomy and technical exposure. This Security Analyst (CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender) role, will be responsible for the day to day operations of existing security solutions and uses tools to identify ...