1 to 25 of 52 Remote Permanent SOAR Jobs

qualifications: Bachelor's degree or equivalent practical experience. 10 years of experience with Security Operations (SecOps) toolset including Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), Threat Intelligence and Endpoint Detection and Response (EDR) tools. Experience engaging with, and presenting to, technical stakeholders and executive leaders. … SIEM/SOAR implementations. You will also be familiar with technologies such as Security Operations (SecOps) toolset including Security Information and Event Management (SIEM), Security Orchestration, Automation, and Response (SOAR), Threat Intelligence and Endpoint Detection and Response (EDR) tools. You will present to customer and channel executives in business and More ❯

A Splunk SOAR Engineer is an individual who can operate independently and will be entrusted with delivering success for Optiv + ClearShark's customers to achieve predetermined goals aligned with a statement of work. To be successful in this role, a Level I/III Engineer will be expected to … issue resolution and compliance reporting to lower time on detection, time on mitigation for security organizations. Integrate Splunk Mission Control, Splunk Security Orchestration, Automation Response (SOAR), and/or other customer approved security product applications utilizing Enterprise Security. Utilize data thresholds, trend-based conditions and behavioral pattern recognition. Client Engagement … across services. What we're looking for Active TS/SCI clearance with FSP required. Proven experience with Splunk SOAR (formerly Phantom) or similar security orchestration, automation, and response (SOAR) platforms. Strong background in developing and maintaining automation playbooks and scripts. Security Certification (i.e, Security+, CISSP, etc) required. Experience operating More ❯

management and threat protection Security automation and DevSecOps integration Security Operations SOC transformation and cloud-native security ops Threat detection with XDR, NDR, and SOAR platforms Incident response planning and threat intelligence integration Regulatory alignment for DORA, NIS2, and UK-specific mandates Risk frameworks tailored by industry (FS, critical infrastructure More ❯

playbook development, and integration with other solutions Proven experience with the Microsoft Defender security stack and Microsoft Online ecosystem Knowledge of other SIEM and SOAR solutions is a plus (Q-radar, Palo Alto, Splunk ) Proven professional experience in a SOC or security-related role Understanding of the MITRE ATT&CK More ❯

effective security operations processes, ensuring continuous improvement across security tools and services. • Support an effective security operations environment using tools such as Microsoft Sentinel, SOAR, EDR/XDR, and PAM. • Achieve reductions in repetitive alerts and improve the time taken to investigate and resolve incidents. Proactive Risk Remediation: • Identify, analyse More ❯

individual who is committed to making a difference in the field of cybersecurity, we enc Basic Qualifications: • Extensive experience with SOC operations including SIEM, SOAR, threat hunting, incident investigation, endpoint protection, standard frameworks, Microsoft 365 security, and strategic planning. • Strong knowledge of cyber threat landscape, vulnerability assessments, incident response, and More ❯

program. Tool Deployment: • Lead the configuration of a new insider threat detection tool. • Ensure seamless integration with existing security systems, such as SIEM and SOAR solutions. • Collaborate with vendors and IT teams to customize the tool for organization-specific use cases. Threat Detection and Analysis: •Monitor user and entity behavior More ❯

Define program metrics and reporting frameworks Tool Deployment Lead configuration of the insider threat detection tool Ensure seamless integration with existing systems (e.g., SIEM, SOAR) Collaborate with vendors and IT to tailor tools to organizational needs Threat Detection and Analysis Monitor UEBA for suspicious behavior and policy violations Conduct investigations More ❯

have some of the following skills and experience: Experience in Cyber Threat Intelligence Experience in Threat Hunting Experience with the Microsoft Sentinel SIEM/SOAR platform Proficient in writing KQL Strong understanding of threat intelligence principles and practices. Strong understanding of security risk management Understanding of threat modelling Knowledge of More ❯

technologic solutions to big companies. What we look for? We are seeking a talented and experienced Information Security Architect with a strong focus on SOAR to join our Information Security team. The ideal candidate will be adept at developing and implementing automated security solutions to protect our systems and data. … communication between security tools and systems. Build new and edit existing automation to high standards of reliability, efficiency and error-handling. Implement and manage Security Orchestration, Automation, and Response (SOAR) platforms to streamline and automate incident response activities, including but not limited to Palo Alto Cortex XSOAR, Splunk Phantom, IBM … cloud security (AWS, Azure, GCP) and container security (Docker, Kubernetes). Experience with API development and integration, including RESTful APIs. Proficiency in implementing and managing SOAR platforms (e.g., Palo Alto Cortex XSOAR, Splunk Phantom, IBM Resilient, Cyware, Microsoft Logic Apps, ThreatConnect). Hands-on experience with Microsoft Defender for Endpoint More ❯

network protocols, including TCP, UDP, DNS, HTTP, HTTPS, SSH, and FTP Top Secret clearance Bachelor's degree in Engineering or Computer Science Splunk, Splunk SOAR Phantom, Security+, CEH, or CISSP certification Clearance: Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access More ❯

Current experience working with a SOC environment Microsoft Sentinel: Development and tuning of custom analytic rules. Workbook creation and dashboarding. Automation using Playbooks and SOAR integration. Kusto Query Language (KQL): Writing complex, efficient queries for advanced threat hunting and detection. Correlating data across key tables (e.g., SignInLogs, SecurityEvent, OfficeActivity, DeviceEvents More ❯

cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure More ❯

cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure More ❯

cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure More ❯

cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure More ❯

cloud security services (Defender for Cloud, Azure Sentinel, Key Vault, APIM) Strong advocate of Zero Trust models and secure development practices Experienced in SIEM & SOAR, ideally with tools like Rapid7 Excellent communicator with the ability to influence at all levels Passionate about cloud innovation and continuous security improvement Microsoft Azure More ❯

improvements. Oversee the development and execution of security monitoring processes and incident response plans. - Cloud-based workloads, security logging, automation Automate tasks within the SOAR environment to enhance operational efficiency. Participate in typical on-call rotation for security issue escalation. What you'll need: High School diploma or G.E.D. with More ❯

improvements. Oversee the development and execution of security monitoring processes and incident response plans. - Cloud-based workloads, security logging, automation Automate tasks within the SOAR environment to enhance operational efficiency. Participate in typical on-call rotation for security issue escalation. What you'll need: High School diploma or G.E.D. with More ❯

improvements. Oversee the development and execution of security monitoring processes and incident response plans. - Cloud-based workloads, security logging, automation Automate tasks within the SOAR environment to enhance operational efficiency. Participate in typical on-call rotation for security issue escalation. What you'll need: High School diploma or G.E.D. with More ❯

improvements. Oversee the development and execution of security monitoring processes and incident response plans. - Cloud-based workloads, security logging, automation Automate tasks within the SOAR environment to enhance operational efficiency. Participate in typical on-call rotation for security issue escalation. What you'll need: High School diploma or G.E.D. with More ❯

improvements. Oversee the development and execution of security monitoring processes and incident response plans. - Cloud-based workloads, security logging, automation Automate tasks within the SOAR environment to enhance operational efficiency. Participate in typical on-call rotation for security issue escalation. What you'll need: High School diploma or G.E.D. with More ❯

improvements. Oversee the development and execution of security monitoring processes and incident response plans. - Cloud-based workloads, security logging, automation Automate tasks within the SOAR environment to enhance operational efficiency. Participate in typical on-call rotation for security issue escalation. What you'll need: High School diploma or G.E.D. with More ❯

improvements. Oversee the development and execution of security monitoring processes and incident response plans. - Cloud-based workloads, security logging, automation Automate tasks within the SOAR environment to enhance operational efficiency. Participate in typical on-call rotation for security issue escalation. What you'll need: High School diploma or G.E.D. with More ❯

improvements. Oversee the development and execution of security monitoring processes and incident response plans. - Cloud-based workloads, security logging, automation Automate tasks within the SOAR environment to enhance operational efficiency. Participate in typical on-call rotation for security issue escalation. What you'll need: High School diploma or G.E.D. with More ❯