OT monitoring solutions. Build OT-specific detection andresponse capabilities, including custom playbooks. Technology Implementation Oversee global deployment of SIEM (e.g., Splunk, Graylog, Wazuh), SOAR, EDR, and Threat Intel platforms. Vendor & Team Management Act as the primary contact for the outsourced SOC provider; manage SLAs and vendor performance. Build and … NIST, ISO, GDPR). Stay ahead of evolving cyber threats and trends. Ideal Candidate Strong Linux and open-source experience. Technical expertise with SIEM, SOAR, EDR, and OT protocols Familiar with SCADA/ICS environments and MITRE ATT&CK framework. Skilled in incident response, threat hunting, SLA management, and executive More ❯
OT monitoring solutions. Build OT-specific detection andresponse capabilities, including custom playbooks. Technology Implementation Oversee global deployment of SIEM (e.g., Splunk, Graylog, Wazuh), SOAR, EDR, and Threat Intel platforms. Vendor & Team Management Act as the primary contact for the outsourced SOC provider; manage SLAs and vendor performance. Build and … NIST, ISO, GDPR). Stay ahead of evolving cyber threats and trends. Ideal Candidate Strong Linux and open-source experience. Technical expertise with SIEM, SOAR, EDR, and OT protocols Familiar with SCADA/ICS environments and MITRE ATT&CK framework. Skilled in incident response, threat hunting, SLA management, and executive More ❯
london, south east england, United Kingdom Hybrid / WFH Options
Intaso
OT monitoring solutions. Build OT-specific detection andresponse capabilities, including custom playbooks. Technology Implementation Oversee global deployment of SIEM (e.g., Splunk, Graylog, Wazuh), SOAR, EDR, and Threat Intel platforms. Vendor & Team Management Act as the primary contact for the outsourced SOC provider; manage SLAs and vendor performance. Build and … NIST, ISO, GDPR). Stay ahead of evolving cyber threats and trends. Ideal Candidate Strong Linux and open-source experience. Technical expertise with SIEM, SOAR, EDR, and OT protocols Familiar with SCADA/ICS environments and MITRE ATT&CK framework. Skilled in incident response, threat hunting, SLA management, and executive More ❯
GSOC) helps defend KPMG and its clients from cyber-attacks, through timely detection, investigation and remediation of potential threats. What will you be doing? SOAR Playbook Development, Programming new API Integrations, developing new automation tasks and maintenance. Responsible for installation, management, maintenance, and support of GSOC tools hosted on multiple … Amazing Extras: Preferred experience in a Security Operations environment Preferred experience with recognized SIEM solutions, preferably Azure Sentinel Preferred experience with developing and configuring SOAR tools such as XSOAR or Azure Logic Apps with Azure Functions Preferred experience with Query Languages, preferably KQL Preferred a good working knowledge of Microsoft More ❯
GSOC) helps defend KPMG and its clients from cyber-attacks, through timely detection, investigation and remediation of potential threats. What will you be doing? SOAR Playbook Development, Programming new API Integrations, developing new automation tasks and maintenance. Responsible for installation, management, maintenance, and support of GSOC tools hosted on multiple … Amazing Extras: Preferred experience in a Security Operations environment Preferred experience with recognized SIEM solutions, preferably Azure Sentinel Preferred experience with developing and configuring SOAR tools such as XSOAR or Azure Logic Apps with Azure Functions Preferred experience with Query Languages, preferably KQL Preferred a good working knowledge of Microsoft More ❯
the integration and utilization of these key security tools. Responsibilities include designing and optimizing SIEM rules for superior threat detection and incident management, deploying SOAR tools for automated security responses, and ensuring robust API security. The engineer will oversee the performance andsecurity posture of our platforms, customize client reports … XDR products Strong background in SIEM rule design and optimization Extensive experience in implementing and overseeing Endpoint Detection andResponse (EDR) solutions Experience with SOAR tools and automated securityresponse implementations Familiarity with API security protocols and measures Ability to analyze large amounts of data from various sources to solve More ❯
Winchester, Hampshire, United Kingdom Hybrid / WFH Options
Evalian
in creation and maintenance of security processes, playbooks, and documentation to standardise SOC operations. Design and implement automation workflows and integrations using Logic Apps, SOAR platforms, and scripting to enhance SOC efficiency. Assist in the monitoring and investigation of security alerts when required, supporting the SOC team. Contribute to the … security monitoring. Experience in developing KQL queries, custom detection rules. Familiarity with automationand integration tools such as Logic Apps, Power Automate, or other SOAR platforms. Knowledge of cloud security, particularly Azure, AWS, and Google Cloud. Excellent documentation skills and process-building capabilities. Great communication skills and ability to work More ❯
SOC EDR-Centric Response – Work extensively with EDR tools (primary alert source) to detect and analyse modern threats Fine-Tuning & Reporting – Tune SIEM andSOAR systems for accuracy, and deliver clear, actionable incident reports Technical Threat Intelligence – Stay ahead of emerging attack vectors, especially those identified via EDR; apply this … and supporting security tools Strong technical knowledge of TCP/IP, OSI model, Windows/Linux , and cloud environments (Azure, AWS, O365) Familiarity with SOARand scripting for automation (Kusto, SQL, Regex) Excellent communication skills and a proactive, composed approach under pressure Join a team that’s reshaping cyber defence More ❯
SOC EDR-Centric Response – Work extensively with EDR tools (primary alert source) to detect and analyse modern threats Fine-Tuning & Reporting – Tune SIEM andSOAR systems for accuracy, and deliver clear, actionable incident reports Technical Threat Intelligence – Stay ahead of emerging attack vectors, especially those identified via EDR; apply this … and supporting security tools Strong technical knowledge of TCP/IP, OSI model, Windows/Linux , and cloud environments (Azure, AWS, O365) Familiarity with SOARand scripting for automation (Kusto, SQL, Regex) Excellent communication skills and a proactive, composed approach under pressure Join a team that’s reshaping cyber defence More ❯
SOC EDR-Centric Response – Work extensively with EDR tools (primary alert source) to detect and analyse modern threats Fine-Tuning & Reporting – Tune SIEM andSOAR systems for accuracy, and deliver clear, actionable incident reports Technical Threat Intelligence – Stay ahead of emerging attack vectors, especially those identified via EDR; apply this … and supporting security tools Strong technical knowledge of TCP/IP, OSI model, Windows/Linux , and cloud environments (Azure, AWS, O365) Familiarity with SOARand scripting for automation (Kusto, SQL, Regex) Excellent communication skills and a proactive, composed approach under pressure Join a team that’s reshaping cyber defence More ❯
SOC EDR-Centric Response – Work extensively with EDR tools (primary alert source) to detect and analyse modern threats Fine-Tuning & Reporting – Tune SIEM andSOAR systems for accuracy, and deliver clear, actionable incident reports Technical Threat Intelligence – Stay ahead of emerging attack vectors, especially those identified via EDR; apply this … and supporting security tools Strong technical knowledge of TCP/IP, OSI model, Windows/Linux , and cloud environments (Azure, AWS, O365) Familiarity with SOARand scripting for automation (Kusto, SQL, Regex) Excellent communication skills and a proactive, composed approach under pressure Join a team that’s reshaping cyber defence More ❯
SOC EDR-Centric Response – Work extensively with EDR tools (primary alert source) to detect and analyse modern threats Fine-Tuning & Reporting – Tune SIEM andSOAR systems for accuracy, and deliver clear, actionable incident reports Technical Threat Intelligence – Stay ahead of emerging attack vectors, especially those identified via EDR; apply this … and supporting security tools Strong technical knowledge of TCP/IP, OSI model, Windows/Linux , and cloud environments (Azure, AWS, O365) Familiarity with SOARand scripting for automation (Kusto, SQL, Regex) Excellent communication skills and a proactive, composed approach under pressure Join a team that’s reshaping cyber defence More ❯
workshops, represent the project at key meetings such as the ADF, TDAs etc. Represent the project across all technical discussions relating to Splunk, Onboarding, SOAR, Attack Analyzer etc. Essential: Splunk SOAR SIEM Engineering and Architecture skills, specifically in Splunk SaaS. Full end to end experience of delivery lifecycle experience for More ❯
Company Description: About Us McDonald's has run its business in the UK since 1974 and currently operates over 1500 restaurants across the UK and Ireland, serving almost four million customers each day. McDonald's is one of the UK More ❯
technical challenges and proposing solutions or get-well plans. • Learns constantly about the Fortinet technology and products being deployed as part of the Fortinet SOAR solution. • Provides technical guidance or recommendations to engineers or consultants in charge of the delivery. • Performs risk management to minimize project risks. • Creates and maintains … . • Experience with SOC or NOC environments. A good understanding of SOC deployment or operation and/or typical SOC solutions or technologies (e.g. SOAR, SIEM, orchestrationandautomation, threat intelligence, incident response) would be a plus. • Proven ability to handle technical escalations, working closely with both technical and business More ❯
