11 of 11 Remote/Hybrid SOAR Jobs in England

experience in cybersecurity or information security roles Strong understanding of network protocols, operating systems and enterprise security technologies Experience implementing and managing SIEM and SOAR platforms Knowledge of cybersecurity frameworks such as NIST, ISO27001, CIS benchmarks and Cyber Essentials Experience with threat intelligence frameworks such as MITRE ATT&CK and ...

enrichment, and define standardised and automated containment workflows. Develop and manage operational procedures and reporting methodology. Manage and oversee security technology platforms (e.g. SIEM, SOAR, EDR, and email security). Monitor ongoing control performance and coordinate remediation where gaps are found. Automate operation procedures and reporting processes and integrate outputs ...

working directly with security tooling in live environments Cloud security (Microsoft 365, Azure, AWS) Strong technical exposure to security tooling, such as: SIEM/SOAR, EDR/XDR, vulnerability scanners, patch management, CASB, DLP Good firewall experience Solid understanding of networking fundamentals (TCP/IP, firewall policies, VPNs) Desirable experience ...

environments • Configure and optimise security policies including DLP, CASB, FWaaS, segmentation, and secure web access • Integrate Zero Trust solutions with identity providers, SIEM/SOAR platforms, and endpoint security tooling • Conduct threat modelling, risk assessments, and security architecture reviews • Troubleshoot complex deployment and access issues across enterprise environments • Provide technical ...

management skills. Desirable Skills Local Government, NHS, Housing or wider Public Sector experience. Defender XDR, Defender for Endpoint, Defender for Identity and Entra ID. SOAR, Logic Apps or security automation experience. Contract Details 6-Month Contract Inside IR35 Hybrid Working (2 Days Onsite) Immediate Start Preferred An excellent opportunity ...

Excellent communication and stakeholder management skills Ability to work independently while contributing to a wider technical team Desirable Experience CrowdStrike certifications Exposure to SIEM, SOAR, XDR or MDR environments Experience with Microsoft Defender, Sentinel, Splunk, Exabeam or similar technologies Background working within a consultancy, MSSP, security vendor or professional services ...

and optimisation of technologies such as Zscaler, Netskope, Prisma Access, or similar platforms • Oversee integration of Zero Trust solutions with identity providers, SIEM/SOAR tooling, endpoint security, and cloud environments • Conduct architecture reviews, threat modelling exercises, gap assessments, and security strategy workshops • Lead proof-of-concept exercises, vendor evaluations ...

infrastructure. Familiarity with frameworks such as MITRE ATT&CK. Ability to analyse threats and translate them into detection capability. Nice to have: Experience with SOAR (Logic Apps/Splunk SOAR). Detection-as-code or CI/CD pipeline experience. Scripting in PowerShell, Python or similar. Experience with Git-based ...

technical complexity into clear business outcomes Confidence presenting to both technical and non-technical stakeholders A solid understanding of modern security architectures, including SIEM, SOAR, and managed security services Exposure to advanced security domains such as DDoS protection, WAF, IAM, EDR, MDM, and vulnerability management Continuous learning is a core ...

engineering, cloud security, incident response, vulnerability management, and security architecture.Key Responsibilities Design, implement, and improve security controls across cloud and enterprise infrastructure Enhance SIEM, SOAR, and EDR/XDR capabilities including alerting, tuning, and integrations Build intelligent detection and response workflows Develop automation solutions using scripting and AI-assisted tooling … Monitor emerging threats and recommend improvements to security posture Technical EnvironmentThe team works across a modern cloud-first stack with exposure to: SIEM/SOAR platforms EDR/XDR tooling AWS cloud environments Identity & Access Management Vulnerability Management Security Automation & Scripting CSPM tooling AI-assisted security operations What ...

operational efficiency Investigate security incidents and drive root cause analysis and remediation Implement and manage tools such as Microsoft Defender, Nessus, and SIEM/SOAR platforms Develop secure cloud templates and baseline configurations Partner with engineering teams to embed secure coding and DevSecOps practices Stay up to date with emerging … environments Deep understanding of Azure security, DevOps, and automation Hands-on experience with EDR/DLP tools (e.g. Microsoft Defender) Experience with SIEM/SOAR platforms Knowledge of frameworks such as ISO 27001, NIST, and CIS Strong troubleshooting and problem-solving skills Ability to manage multiple priorities in a fast ...