26 to 50 of 79 SOAR Jobs in the UK

etc). An understanding of cloud-native infrastructure (e.g. microservices, containerisation, Kubernetes, serverless computing). An understanding and/or experience with SIEM, SOAR and EDR. Knowledge and/or understanding of data and analytics in terms of cybersecurity implications. Missing skills? Let us be the judge! BMT are passionate More ❯

language. PREFERRED QUALIFICATIONS - 5+ years experience working in incident response, security operations, security automation tooling, hunting, or threat intelligence. - Familiarity with malware analysis, forensics, SOAR, SIEM platforms, or detection engineering and hunting. Demonstrable subject matter expertise in any of these domains a plus. - Proficiency across a variety of Operating Systems More ❯

Current experience working with a SOC environment Microsoft Sentinel: Development and tuning of custom analytic rules. Workbook creation and dashboarding. Automation using Playbooks and SOAR integration. Kusto Query Language (KQL): Writing complex, efficient queries for advanced threat hunting and detection. Correlating data across key tables (e.g., SignInLogs, SecurityEvent, OfficeActivity, DeviceEvents More ❯

conduct forensic investigations, and support remediation efforts. Vulnerability Management – Identify, assess, and report on security risks, ensuring proactive mitigation strategies. Security Automation & Intelligence – Leverage SOAR platforms and threat intelligence tools to enhance detection capabilities and streamline responses. Collaboration & Communication – Work closely and collaborate with senior analysts and clients to keep More ❯

Center, AzureSentinel). Experiencewith security features and configurations. Proven experience of migrating from Cyber Essentialsto the Cyber Assessment Framework (CAF). Proven experience implementing SOAR services. StrongKnowledge of Windows Server security and Active Directory. Familiaritywith security frameworks and standards (e.g., NIST, ISO 27001). Experiencewith security tools and technologies (e.g. More ❯

Center, AzureSentinel). Experiencewith security features and configurations. Proven experience of migrating from Cyber Essentialsto the Cyber Assessment Framework (CAF). Proven experience implementing SOAR services. StrongKnowledge of Windows Server security and Active Directory. Familiaritywith security frameworks and standards (e.g., NIST, ISO 27001). Experiencewith security tools and technologies (e.g. More ❯

with commercial threat intelligence and/or vulnerability tooling and systems i.e., Recorded Future, Tenable, Panaseer or similar solutions, Threat Intelligence platforms, SIEM and SOAR environments, and the development or implementation of new security tooling and dashboards. Security knowledge and experience : Professional experience in cyber security, specifically threat intelligence, incident More ❯

with technology vendors to optimize security services for peak effectiveness Research and collaborate internally and externally on open-source solutions Automate response processes with SOAR and related technologies Act in a purple team capacity to ensure effectiveness of security systems and controls Participate in cross-functional security functions to help More ❯

edge Security Monitoring & Analytics (SMA) capability to enhance its cyber defence operations. This initiative focuses on modernizing Security Information and Event Management (SIEM) and Security Orchestration, Automation, and Response (SOAR) platforms , leveraging AI/ML-driven threat detection. As a Technical Product Owner , you will drive this transformation by defining … future of Vodafone's SOC modernization. What you'll do Key Responsibilities: Product Ownership & Roadmap: Define and manage the SMA product portfolio , covering SIEM, SOAR, Big Data, Threat Intelligence Platforms (TIP), and Forensics . Stakeholder Collaboration: Engage with Security Architecture, Security Design, and SOC teams to develop and enhance security … understanding of Agile frameworks (SAFe, Scrum, Kanban) with experience in feature and roadmap management . Cyber Security & Engineering Knowledge: Hands-on experience in SIEM, SOAR, infrastructure security, DevOps, and analytics . Cloud & Automation: Proficiency with Kubernetes, GCP (preferred), AWS, Azure, DevOps CI/CD, GitHub Actions, Ansible, Terraform . Operational More ❯

programming or scripting language PREFERRED QUALIFICATIONS - 3+ years experience working in security response, security automation tooling, or threat intelligence - Familiarity with malware analysis, forensics, SOAR, SIEM platforms, and a variety of Operating Systems (MS Windows, Linux, MacOS) - Experience with Amazon Web Services - Meets/exceeds Amazon's leadership principles requirements More ❯

programming or scripting language PREFERRED QUALIFICATIONS 3+ years experience working in security response, security automation tooling, or threat intelligence Familiarity with malware analysis, forensics, SOAR, SIEM platforms, and a variety of Operating Systems (MS Windows, Linux, MacOS) Experience with Amazon Web Services Meets/exceeds Amazon's leadership principles requirements More ❯

to threats, investigation, and triage of day-to-day security events. Key requirements Experience in deploying security related IaC projects at scale. Familiarity with SOAR and optimisation of Security Controls using automation. Experience working with multi cloud environments (specifically AWS and Azure). Incident response and threat hunting experience. Strong More ❯

protocols, and standards. Proficiency with DevOps and DevSecOps tools (e.g. GitLab CI/CD, Ansible, Terraform). Experience with security tools like SIEM/SOAR (preferably Rapid7), IDS/IPS, vulnerability scanners, and code analysis tools (SonarCloud, Snyk, Chekov) Strong knowledge of network security, encryption, identity and access management, and More ❯

years of experience as a SOC/Security Engineer within a cloud environment Strong CrowdStrike experience is needed Experience with a range of SIEM, SOAR and vulnerability management tools Experience advising on security best practices and developing SOC playbooks Networking and infrastructure experience, including with Firewalls and IDS/IPS More ❯

and technology developments. Research and evaluate emerging cybersecurity trends and threats. Monitor for attacks, intrusions, and unusual, unauthorized, or illegal activities. Experienced with SIEM, SOAR and EDR technologies. Able to multi-task, along with strong problem-solving and analytical skills. Strong problem-solving and analytical skills to identify and mitigate More ❯

cyber threat intelligence models and frameworks like the Diamond Model, MITRE ATT&CK etc Familiarity with email security tools and/or SIEM/SOAR tooling like Splunk/Sentinel etc Relevant cyber or intelligence qualifications such as CCTIM, GCTI etc More ❯

cyber threat intelligence models and frameworks like the Diamond Model, MITRE ATT&CK etc Familiarity with email security tools and/or SIEM/SOAR tooling like Splunk/Sentinel etc Relevant cyber or intelligence qualifications such as CCTIM, GCTI etc More ❯

cyber threat intelligence models and frameworks like the Diamond Model, MITRE ATT&CK etc Familiarity with email security tools and/or SIEM/SOAR tooling like Splunk/Sentinel etc Relevant cyber or intelligence qualifications such as CCTIM, GCTI etc JBRP1_UKTJ More ❯

cyber threat intelligence models and frameworks like the Diamond Model, MITRE ATT&CK etc Familiarity with email security tools and/or SIEM/SOAR tooling like Splunk/Sentinel etc Relevant cyber or intelligence qualifications such as CCTIM, GCTI etc JBRP1_UKTJ More ❯

helping customers get the most out of the platform’s capabilities. If you’ve got solid knowledge of the cyber ecosystem (think SIEM, EDR, SOAR, AD, firewalls, etc.) and a knack for digging into insider threat scenarios, read on. What you’ll be doing: Leading threat detection and response projects More ❯

helping customers get the most out of the platform’s capabilities. If you’ve got solid knowledge of the cyber ecosystem (think SIEM, EDR, SOAR, AD, firewalls, etc.) and a knack for digging into insider threat scenarios, read on. What you’ll be doing: Leading threat detection and response projects More ❯

procedures. Requirements: 7+ years in SOC leadership roles. Proven experience designing and operating Security Operations Centers. Hands-on experience with SIEM platforms Expertise implementing SOAR and Threat Intelligence solutions. More ❯

procedures. Requirements: 7+ years in SOC leadership roles. Proven experience designing and operating Security Operations Centers. Hands-on experience with SIEM platforms Expertise implementing SOAR and Threat Intelligence solutions. More ❯

such as NDR/content filtering/FW/IPS/IDS/DDOS, EDR/MDR, DAST/SAST, Identity Access Management, SIEM & SOAR, log management. Preferable experience in Azure, AWS, Defender, Darktrace. Experience and technical knowledge in multiple areas of cyber defence operations. Experience as a Cyber Security More ❯

such as NDR/content filtering/FW/IPS/IDS/DDOS, EDR/MDR, DAST/SAST, Identity Access Management, SIEM & SOAR, log management. Preferable experience in Azure, AWS, Defender, Darktrace. Experience and technical knowledge in multiple areas of cyber defence operations. Experience as a Cyber Security More ❯