the latest security threats, threat actors, and the tactics and techniques adopted. Proven experience with programming languages such as Python, Rust, C++, or others. Knowledge of SecOps tooling (SIEM, SOAR, Threat Intelligence). More ❯
Strong Understanding of Security Operations working within or alongside Security Operations Centre(s) Experience working in all hyperscaler environments, preferably holding Professional Cloud Architect Certification Experience with multiple SIEM & SOAR Tooling, preferably Google SecOps (formerly Chronicle/Simplify) Experience with EDR/XDR and NDR Tooling, preferably Crowdstrike, Corelight, Microsoft Defender XDR Connect to your business - Technology and Transformation Distinctive More ❯
serve as the technical lead, drive key security initiatives, and play a pivotal role in mentoring junior team members. Key Responsibilities Monitor, manage, and respond to threats via SIEM, SOAR, and EDR platforms Conduct vulnerability scans and support remediation and risk mitigation efforts Oversee WAF, DDoS, VPN, and perimeter firewalls Manage Email and Web Security Gateways Administer MFA, SSO, PAM More ❯
serve as the technical lead, drive key security initiatives, and play a pivotal role in mentoring junior team members. Key Responsibilities Monitor, manage, and respond to threats via SIEM, SOAR, and EDR platforms Conduct vulnerability scans and support remediation and risk mitigation efforts Oversee WAF, DDoS, VPN, and perimeter firewalls Manage Email and Web Security Gateways Administer MFA, SSO, PAM More ❯
cloud environments. Non-Human Identity (NHI) Management: Managing access for automated systems and applications. Integration with other security tools: Integrating PAM with other security solutions, such as SIEM andSOAR platforms. Compliance: Understanding and adherence to relevant securityand compliance regulations. Teamwork and Collaboration: PAM engineers often work as part of a larger security team. More ❯
data lake that consolidates legacy attempts at visibility and provides first-in-market speed, scale, and performance while reducing the cost of security analytics. Anomali combines ETL, SIEM, XDR, SOAR, and the largest repository of global intelligence in one efficient platform. Protect and drive your business with better productivity and talent retention. Do more with less. Be Different. Be the More ❯
for new security tools Help define and measure control effectiveness Required Skills & Experience Certifications: AZ-500, SC-200, SC-900, CompTIA Security+, CISSP, GCIA, GCIH, GCFA, CCSP Experience with SOAR playbooks, YARA rules, STIX, and YAML Participation in red/purple team exercises. 3+ years in a Security Engineer, SOC Analyst, or similar role Hands-on experience with Microsoft Sentinel … NIST, Kill Chain) Experience with EDR, DLP, Proxy, and SEG tools Desirable Qualifications Certifications: AZ-500, SC-200, SC-900, CompTIA Security+, CISSP, GCIA, GCIH, GCFA, CCSP Experience with SOAR playbooks, YARA rules, STIX, and YAML Participation in red/purple team exercises. Please apply within for further details - Alex Reeder Harvey Nash More ❯
leveraging tools such as Azure/Entra ID, Jamf, and Intune to maintain strong security postures. Design and implement scalable automation workflows across ITSM and ITAM use cases using SOAR platforms like Tines, as well as scripting tools such as Bash, Python, Terraform, and Ansible to streamline routine IT operations. You have hands-on experience with cloud platforms (AWS, Azure More ❯
and streamline processes. Automate secure design reviews and integrate security checks into pull request workflows and CI/CD pipelines. Build and manage security operations automation, including data pipelines, SOAR workflows, and log aggregation for improved threat detection. Collaborate with development andsecurity teams to ensure seamless adoption of security automation. Continuously refine automation strategies to optimize security effectiveness andMore ❯
Future Security Intelligence data and running projects and teams to support this function. What you'll bring as an Engineer: Experience in managing complex customer solutions - like combined SIEM, SOARand TIP solutions with on-prem or cloud deployments This role is highly technical and you will have spent time in Security Operation Centers or Managed Service Providers. Experience with … an integrations expert, implementing bleeding edge security intelligence technology to support information security teams and customer types including Threat Intelligence, Security Operations, Incident Response, and Developer teams using SIEM, SOAR, TIP integrations on tools like Splunk, Anomali, Palo Alto XSOAR, Azure etc. Design and Implementation of Recorded Future Security Intelligence data in customer environment Understand and drive customers cyber securityMore ❯
Here's what you'll be doing: When you join Simply Business, you'll protect us from threat actors who attempt to evade our cyber defenses. This is a hands-on technical position where you'll play an important role More ❯
perfect role for you. Key Responsibilities Lead security incident responseand threat detection efforts, prioritising the protection of customer data and experience Build automated detection and remediation workflows using SOAR, SIEM, and scripting (Python, SQL) Apply deep cloud security knowledge (AWS, Azure) to secure ecommerce, mobile apps, APIs, and in-store systems Collaborate with Fraud and Customer Experience teams to … during critical events Key requirements: Proven Experience: 4+ years in Security Operations or Incident Response, ideally in ecommerce, retail, or fintech environments Technical Depth: Hands-on expertise with SIEM, SOAR, EDR, automation tools, Python, SQL, and cloud-native security tooling Cloud Security: Strong knowledge of AWS and Azure, especially services like WAF, Shield, IAM, and API Gateway Forensic Skills: Experience … is Exciting Purpose-Driven Impact: Your work directly protects customer data, accounts, and transactions—making every wellness journey safer. Cutting-Edge Tools: Leverage a modern stack including AWS, Azure, SOAR, SIEM, EDR, and cloud-native security solutions. Cross-Team Collaboration: Partner with Fraud, Customer Experience, Engineering, and Digital to stop threats before they start. Automation-Led Security: Drive rapid detection More ❯
team, and manage relationships with 3rd party vendors including the SOC providers Build and embed incident response plans, playbooks, and operational standards for the function Drive maturity across SIEM, SOARandsecurity tooling, ensuring alignment with the latest threat landscape Provide cyber security leadership across new and existing technology programmes Lead response to major incidents, and provide guidance to executive … cyber security leadership roles (10–15 years total, with 5+ in senior management) Proven ability to build security operations capability in a global organisation. Strong technical knowledge across SIEM, SOAR, CASB, DLP, endpoint protection, cloud security, firewalls, etc. Prior hands-on experience in security engineering or architecture is highly desirable Exceptional knowledge of global compliance frameworks (NIST, ISO 27001, PCI More ❯
Manchester, Lancashire, England, United Kingdom Hybrid / WFH Options
VIQU Limited
team, and manage relationships with 3rd party vendors including the SOC providers Build and embed incident response plans, playbooks, and operational standards for the function Drive maturity across SIEM, SOARandsecurity tooling, ensuring alignment with the latest threat landscape Provide cyber security leadership across new and existing technology programmes Lead response to major incidents, and provide guidance to executive … cyber security leadership roles (10–15 years total, with 5+ in senior management) Proven ability to build security operations capability in a global organisation. Strong technical knowledge across SIEM, SOAR, CASB, DLP, endpoint protection, cloud security, firewalls, etc. Prior hands-on experience in security engineering or architecture is highly desirable Exceptional knowledge of global compliance frameworks (NIST, ISO 27001, PCI More ❯
time. - Drive efforts to automate and accelerate the detection andresponse processes. - Ensure integration of input from the deployed suite of security tools to SOC systems (e.g. SIEM/SOAR), including, but not limited to, IDS/IPS, End Point Protection, MDR/XDR, PAM, MFA, DNS Security, and cloud security posture management. Required Skills/Experience: - 8+ years of … and architecture - Experience working with cloud security technologies (AWS, Azure DevOps, Kubernetes, GCP, etc) including cloud log analysis, monitoring, detection, and incident response. - Experience with SOC use of SIEM, SOAR, IDS/IPS, DLP, and Endpoint security. Senior SOC Engineer/SOC Technical Lead (Incident Response) In accordance with the Employment Agencies and Employment Businesses Regulations 2003, this position is More ❯
City of London, London, Walbrook, United Kingdom Hybrid / WFH Options
Langley James IT Recruitment
IT Security team, reporting to the IT Security Officer, to implement and maintain robust security across their infrastructure. Key responsibilities include managing WAF/DDoS, security gateways, SIEM/SOAR/EDR, firewalls, MFA/SSO, MDM/MAM, vulnerability scans, and incident response. Key Responsibilities: Manage WAF/DDoS, web/email security gateways, SIEM/SOAR/EDR More ❯
frameworks. Knowledge of one or more programming languages with the ability to review and implement secure code. Strong understanding of securityautomation, orchestration, and continuous monitoring tools (e.g., SIEM, SOAR). The other stuff we are looking for We'd also love you to bring; Deep understanding of application security, including secure coding practices, OWASP Top 10, and API security … frameworks. Knowledge of one or more programming languages with the ability to review and implement secure code. Strong understanding of securityautomation, orchestration, and continuous monitoring tools (e.g., SIEM, SOAR). What's in it for you Our goal is to celebrate our people, their lives and everything in-between. We aim to create a culture that empowers everyone to More ❯
Central London, London, United Kingdom Hybrid / WFH Options
Marlin Selection
be a hands-on leader in securing the business against evolving threats. Key Responsibilities Manage and optimise enterprise-grade security tools: WAF, DDoS, email and web security gateways, SIEM, SOAR, EDR, MFA, SSO, IDS/IPS, PAM and more. Perform vulnerability assessments and penetration test remediation. Deliver Cyber Security Awareness Training across the business. Lead ad-hoc security initiatives and … strong technical expertise across multiple areas of cybersecurity and infrastructure, especially in the following: Essential Experience: Hands-on with: CrowdStrike EDR Mimecast Duo & Okta Palo Alto firewalls SIEM/SOAR platforms (e.g., Rapid7, CrowdStrike) InTune, Conditional Access Entra ID/Active Directory, GPO VPN, MFA, MDM/MAM Desirable Experience: Working knowledge of tools such as: Imperva WAF Cisco Secure More ❯
You will need to login before you can apply for a job. This boutique financial services firm is seeking a senior security engineer to implement and maintain its security tooling and systems. As part of a small security team (3 More ❯