4 of 4 Remote/Hybrid SOAR Jobs in the South East

identity and access, network, system, data, application, cloud - and multiple product types. Proficiency in data analysis and scripting languages (e.g., PowerShell, Python). Strong Security Orchestration, Automation and Response (SOAR) knowledge. Experienced in Kusto Query Language (KQL) Team leadership experience with great collaboration and stakeholder management skills Candidates must have ...

internal IT, security, infrastructure and OT stakeholders Manage third-party vendors, MSSPs and tooling partners Support selection and implementation of SOC tooling (e.g. SIEM, SOAR, detection and response platforms) Ensure clear operating models, processes and handovers into BAU Track progress, manage issues, and report clearly to senior stakeholders Support ...

and improving detection across SIEM and EDR platforms. Proactive threat hunting across cloud infrastructure, applications, and CI/CD environments. Building and maintaining automation and response playbooks using SOAR tooling. Working closely with DevOps, infrastructure and engineering teams to improve security posture and response capability. Reducing alert fatigue, improving logging ...

with enterprise architecture standards, secure by design principles, and regulatory requirements. - development of data ingestion, telemetry, and integration patterns between Darktrace, Defender, SIEM/SOAR tools, and existing security stacks. - production of architecture decision records, design patterns, and technical documentation for long-term maintainability. - Leading technical delivery workstreams, providing direction … across both platforms. - Coordinate testing, validation, and acceptance of detection capabilities, including simulation of realistic attack techniques. - Integrate Darktrace and Defender outputs into SIEM, SOAR, and ticketing systems. - Work with SOC and automation teams to design playbooks, response workflows, and escalation paths. - Ensure centralised logging, enrichment, and context tagging ...