2 of 2 Remote SOAR Jobs in Edinburgh

threat detection, anomaly detection, and behavioural analysis. Playbook Development & Automation Design and implement incident response playbooks for scenarios such as phishing, lateral movement, and data exfiltration. Integrate playbooks with SOAR platforms (e.g., Microsoft Logic Apps, XSOAR) to streamline triage and automate response. Refine playbooks based on threat intelligence and incident insights. Threat Detection & Response Monitor and analyse security alerts and More ❯

security ecosystem, including the Microsoft Defender suite (MDE, MDO, MDA, MDI) and related identity protection technologies (Azure AD Identity Protection, Conditional Access). Proficiency with Microsoft Sentinel (SIEM/SOAR) for security monitoring, detection, and incident response. The ideal candidate will have practical experience configuring, tuning, and maintaining these solutions, analysing alerts and incidents, developing advanced hunting queries (KQL), developing More ❯