SOC EDR-Centric Response – Work extensively with EDR tools (primary alert source) to detect and analyse modern threats Fine-Tuning & Reporting – Tune SIEM andSOAR systems for accuracy, and deliver clear, actionable incident reports Technical Threat Intelligence – Stay ahead of emerging attack vectors, especially those identified via EDR; apply this … and supporting security tools Strong technical knowledge of TCP/IP, OSI model, Windows/Linux , and cloud environments (Azure, AWS, O365) Familiarity with SOARand scripting for automation (Kusto, SQL, Regex) Excellent communication skills and a proactive, composed approach under pressure Join a team that’s reshaping cyber defence More ❯
SOC EDR-Centric Response – Work extensively with EDR tools (primary alert source) to detect and analyse modern threats Fine-Tuning & Reporting – Tune SIEM andSOAR systems for accuracy, and deliver clear, actionable incident reports Technical Threat Intelligence – Stay ahead of emerging attack vectors, especially those identified via EDR; apply this … and supporting security tools Strong technical knowledge of TCP/IP, OSI model, Windows/Linux , and cloud environments (Azure, AWS, O365) Familiarity with SOARand scripting for automation (Kusto, SQL, Regex) Excellent communication skills and a proactive, composed approach under pressure Join a team that’s reshaping cyber defence More ❯
ECS Resource Group are currently working in partnership with a global managed service provider, assisting them with searching for a SOAR Developer on a contract basis. The successful candidate will be working with a Telecoms end client across various projects. Key Responsibilities: Work closely with security analysts and engineers to … detect and address security gaps by implementing automation workflows that enhance security operations. Evaluate and enhance CSOC workflows and processes by integrating automation through SOAR tools and technologies. Creating and implementing custom scripts to automate current detection andresponse workflows. Requirements: Experience of threat detection andresponse methodologies Excellent background … with tools such as SIEM & SOAR Excellent understanding of cyber security principles Good background with SOAR platforms such as Splunk Phantom, Siemplify & IBM Resilient Telecommunications background Further job details available upon request. More ❯
ECS Resource Group are currently working in partnership with a global managed service provider, assisting them with searching for a SOAR Developer on a contract basis. The successful candidate will be working with a Telecoms end client across various projects. Key Responsibilities: Work closely with security analysts and engineers to … detect and address security gaps by implementing automation workflows that enhance security operations. Evaluate and enhance CSOC workflows and processes by integrating automation through SOAR tools and technologies. Creating and implementing custom scripts to automate current detection andresponse workflows. Requirements: Experience of threat detection andresponse methodologies Excellent background … with tools such as SIEM & SOAR Excellent understanding of cyber security principles Good background with SOAR platforms such as Splunk Phantom, Siemplify & IBM Resilient Telecommunications background Further job details available upon request. More ❯
ECS Resource Group are currently working in partnership with a global managed service provider, assisting them with searching for a SOAR Developer on a contract basis. The successful candidate will be working with a Telecoms end clientacross various projects. Key Responsibilities: Work closely with security analysts and engineers to detect … and address security gaps by implementing automation workflows that enhance security operations. Evaluate and enhance CSOC workflows and processes by integrating automation through SOAR tools and technologies. Create and implement custom scripts to automate current detection andresponse workflows. Requirements: Experience of threat detection andresponse methodologies. Excellent background with … tools such as SIEM & SOAR. Excellent understanding of cyber security principles. Good background with SOAR platforms such as Splunk Phantom, Siemplify & IBM Resilient. Telecommunications background. Further job details available upon request. Please note, due to internal capabilities it will be difficult for us to take internal calls regarding your application More ❯
ECS Resource Group are currently working in partnership with a global managed service provider, assisting them with searching for a SOAR Developer on a contract basis. The successful candidate will be working with a Telecoms end clientacross various projects. Key Responsibilities: Work closely with security analysts and engineers to detect … and address security gaps by implementing automation workflows that enhance security operations. Evaluate and enhance CSOC workflows and processes by integrating automation through SOAR tools and technologies. Create and implement custom scripts to automate current detection andresponse workflows. Requirements: Experience of threat detection andresponse methodologies. Excellent background with … tools such as SIEM & SOAR. Excellent understanding of cyber security principles. Good background with SOAR platforms such as Splunk Phantom, Siemplify & IBM Resilient. Telecommunications background. Further job details available upon request. Please note, due to internal capabilities it will be difficult for us to take internal calls regarding your application More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
portsmouth, hampshire, south east england, United Kingdom
Arcus Search
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
oxford district, south east england, United Kingdom
Arcus Search
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
south west london, south east england, United Kingdom
Arcus Search
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
crawley, west sussex, south east england, United Kingdom
Arcus Search
I35 Location: Remote Responsibilities: Collaborate with delivery teams and the client to develop SOC playbooks supporting both SIEM and SOC operations. Design and implement SOAR workflows to automate incident response processes. Configure correlation searches and alerting mechanisms, optimising rules to minimise false positives. Serve as the Subject Matter Expert (SME … Assist in the integration of SIEM alerts with Jira, enabling streamlined alert tracking and incident management. Define and configure alert severity levels within SIEM, SOAR, and Jira to align with established Service Level Agreements (SLAs). Build and customise dashboards to support real-time reporting and incident response activities. If More ❯
