26 to 50 of 71 SOAR Jobs in England

Current experience working with a SOC environment Microsoft Sentinel: Development and tuning of custom analytic rules. Workbook creation and dashboarding. Automation using Playbooks and SOAR integration. Kusto Query Language (KQL): Writing complex, efficient queries for advanced threat hunting and detection. Correlating data across key tables (e.g., SignInLogs, SecurityEvent, OfficeActivity, DeviceEvents More ❯

Center, AzureSentinel). Experiencewith security features and configurations. Proven experience of migrating from Cyber Essentialsto the Cyber Assessment Framework (CAF). Proven experience implementing SOAR services. StrongKnowledge of Windows Server security and Active Directory. Familiaritywith security frameworks and standards (e.g., NIST, ISO 27001). Experiencewith security tools and technologies (e.g. More ❯

Center, AzureSentinel). Experiencewith security features and configurations. Proven experience of migrating from Cyber Essentialsto the Cyber Assessment Framework (CAF). Proven experience implementing SOAR services. StrongKnowledge of Windows Server security and Active Directory. Familiaritywith security frameworks and standards (e.g., NIST, ISO 27001). Experiencewith security tools and technologies (e.g. More ❯

with commercial threat intelligence and/or vulnerability tooling and systems i.e., Recorded Future, Tenable, Panaseer or similar solutions, Threat Intelligence platforms, SIEM and SOAR environments, and the development or implementation of new security tooling and dashboards. Security knowledge and experience : Professional experience in cyber security, specifically threat intelligence, incident More ❯

with technology vendors to optimize security services for peak effectiveness Research and collaborate internally and externally on open-source solutions Automate response processes with SOAR and related technologies Act in a purple team capacity to ensure effectiveness of security systems and controls Participate in cross-functional security functions to help More ❯

programming or scripting language PREFERRED QUALIFICATIONS - 3+ years experience working in security response, security automation tooling, or threat intelligence - Familiarity with malware analysis, forensics, SOAR, SIEM platforms, and a variety of Operating Systems (MS Windows, Linux, MacOS) - Experience with Amazon Web Services - Meets/exceeds Amazon's leadership principles requirements More ❯

programming or scripting language PREFERRED QUALIFICATIONS 3+ years experience working in security response, security automation tooling, or threat intelligence Familiarity with malware analysis, forensics, SOAR, SIEM platforms, and a variety of Operating Systems (MS Windows, Linux, MacOS) Experience with Amazon Web Services Meets/exceeds Amazon's leadership principles requirements More ❯

partners and customers. Familiarity with current security technologies including one or more of the following: Next-Generation Anti-virus, Endpoint Detection and Response (EDR), Security Orchestration, Automation, and Response (SOAR), Security Information and Event Management (SIEM, particularly Splunk and/or Splunk Cloud), firewalls, and other core security products. (e.g. More ❯

protocols, and standards. Proficiency with DevOps and DevSecOps tools (e.g. GitLab CI/CD, Ansible, Terraform). Experience with security tools like SIEM/SOAR (preferably Rapid7), IDS/IPS, vulnerability scanners, and code analysis tools (SonarCloud, Snyk, Chekov) Strong knowledge of network security, encryption, identity and access management, and More ❯

years of experience as a SOC/Security Engineer within a cloud environment Strong CrowdStrike experience is needed Experience with a range of SIEM, SOAR and vulnerability management tools Experience advising on security best practices and developing SOC playbooks Networking and infrastructure experience, including with Firewalls and IDS/IPS More ❯

and technology developments. Research and evaluate emerging cybersecurity trends and threats. Monitor for attacks, intrusions, and unusual, unauthorized, or illegal activities. Experienced with SIEM, SOAR and EDR technologies. Able to multi-task, along with strong problem-solving and analytical skills. Strong problem-solving and analytical skills to identify and mitigate More ❯

cyber threat intelligence models and frameworks like the Diamond Model, MITRE ATT&CK etc Familiarity with email security tools and/or SIEM/SOAR tooling like Splunk/Sentinel etc Relevant cyber or intelligence qualifications such as CCTIM, GCTI etc More ❯

cyber threat intelligence models and frameworks like the Diamond Model, MITRE ATT&CK etc Familiarity with email security tools and/or SIEM/SOAR tooling like Splunk/Sentinel etc Relevant cyber or intelligence qualifications such as CCTIM, GCTI etc More ❯

cyber threat intelligence models and frameworks like the Diamond Model, MITRE ATT&CK etc Familiarity with email security tools and/or SIEM/SOAR tooling like Splunk/Sentinel etc Relevant cyber or intelligence qualifications such as CCTIM, GCTI etc JBRP1_UKTJ More ❯

cyber threat intelligence models and frameworks like the Diamond Model, MITRE ATT&CK etc Familiarity with email security tools and/or SIEM/SOAR tooling like Splunk/Sentinel etc Relevant cyber or intelligence qualifications such as CCTIM, GCTI etc JBRP1_UKTJ More ❯

helping customers get the most out of the platform’s capabilities. If you’ve got solid knowledge of the cyber ecosystem (think SIEM, EDR, SOAR, AD, firewalls, etc.) and a knack for digging into insider threat scenarios, read on. What you’ll be doing: Leading threat detection and response projects More ❯

helping customers get the most out of the platform’s capabilities. If you’ve got solid knowledge of the cyber ecosystem (think SIEM, EDR, SOAR, AD, firewalls, etc.) and a knack for digging into insider threat scenarios, read on. What you’ll be doing: Leading threat detection and response projects More ❯

procedures. Requirements: 7+ years in SOC leadership roles. Proven experience designing and operating Security Operations Centers. Hands-on experience with SIEM platforms Expertise implementing SOAR and Threat Intelligence solutions. More ❯

procedures. Requirements: 7+ years in SOC leadership roles. Proven experience designing and operating Security Operations Centers. Hands-on experience with SIEM platforms Expertise implementing SOAR and Threat Intelligence solutions. More ❯

will be responsible for the delivery of SIEM detections and security automations. The successful candidate will be proficient in automation and orchestration tools (e.g., SOAR platforms, scripting languages like Python, PowerShell) and have experience with integrating security tools (e.g., SIEM, EDR, firewalls) APIs, and Case Management tools for data enrichment. … tools and platforms (e.g. Azure, AWS Google Cloud) and their integration into SOC operations. Experience using Microsoft Sentinel SIEM. Other vendor-specific certifications for SOAR platforms (e.g. Splunk SOAR, Palo Alto Cortex XSOAR). Experience contributing to large-scale, sprint-based, security automation and detection engineering projects. "Nice To Have More ❯

and hybrid environments to improve threat visibility. * Security Event Correlation & Automation: Develop advanced correlation rules, alerts, playbooks, and automation workflows using Sentinel, KQL, and SOAR integrations to enhance threat detection and response capabilities. * Cloud Threat Protection: Monitor, analyse, and strengthen security postures across cloud platforms, utilising Defender for Cloud and … and Microsoft Defender for Cloud. * Proficiency in SIEM architecture, security event correlation, log ingestion, and cloud security analytics. * Hands-on experience with security automation (SOAR), threat intelligence platforms, and log parsing techniques. * Strong understanding of MITRE ATT&CK framework, Zero Trust, and cloud security best practices. * Knowledge of Azure, AWS More ❯

objectives Skills and experience we are looking for in our Information Security Officer: Proficiency in security domains, tools and technologies such as DLP, SIEM, SOAR and Vulnerability Management Good working knowledge of network security, firewalls, threat management, endpoint detection and response Ability to identify, assess, and mitigate security risks and More ❯

objectives Skills and experience we are looking for in our Information Security Officer: Proficiency in security domains, tools and technologies such as DLP, SIEM, SOAR and Vulnerability Management Good working knowledge of network security, firewalls, threat management, endpoint detection and response Ability to identify, assess, and mitigate security risks and More ❯

within an MSP environment, with a strong understanding of managed security services. Technical Expertise: Hands-on experience with security technologies such as SIEM, EDR, SOAR, vulnerability and exposure management tooling, threat intelligence, and data security solutions. Pre-Sales & Consulting Experience: Proven experience in a pre-sales, solution consulting, or technical More ❯

of automation processes for security monitoring, alerting, and incident response. This includes developing and maintaining playbooks, workflows, and integrations with SOC tools (SIEM, EDR, SOAR). Incident Response & Threat Analysis: Coordinate and assist in the investigation of security incidents, focusing on both cloud and on-premises environments. Perform root cause … role, with a strong emphasis on automation, threat hunting, and cloud security (AWS, Azure). Technical Expertise: Strong understanding of SOC tools (SIEM, EDR, SOAR) and security automation frameworks. Proficiency in Python, SQL, and cloud infrastructure (AWS, Azure). Experience with cloud-native security services (e.g., WAF, IAM, Shield). More ❯