promptly to security incidents as part of an incident response team. Implement metrics and dashboards to provide visibility of the Enterprise infrastructure. Utilize the SOAR platform for playbook automationand case management to streamline team processes. Produce documentation to ensure repeatability and standardization of security operating procedures. Develop innovative investigative more »
Leeds, West Yorkshire, United Kingdom Hybrid / WFH Options
Confidential
a coaching capacity Work with other teams within BAE to improve services on the basis of customer needs. Produce new workflows for automation into SOAR tools for common attack types. Continually improve the service and review use cases and propose changes and enhancements in line with the changing threat. Requirements more »
Microsoft Sentinel and LogRhythm '€¢In-depth experience with Microsoft Sentinel, including use case and rule development, workbook/playbook creation, KQL & Logic Apps/SOAR '€¢Experience in managing Microsoft Sentinel as an MSSP, including Lighthouse, and management and multi-customer environments using DevOps About Capita Technology and Software Solutions (TSS more »
Microsoft Sentinel and LogRhythm In-depth experience with Microsoft Sentinel, including use case and rule development, workbook/playbook creation, KQL & Logic Apps/SOAR Experience in managing Microsoft Sentinel as an MSSP, including Lighthouse, and management and multi-customer environments using DevOps About Capita Technology and Software Solutions (TSS more »
Reading, England, United Kingdom Hybrid / WFH Options
Vallum Associates
building dashboards/au- tomating common tasks) Preferred: • Experience in designing systems against a zero-trust architecture. • Experience with designing SOC architectures (ie SIEM, SOARand vulnerability management solutions). • Expert-level certification in either AWS or Azure, with a Security specialization. • Experience in working within regulated environments, such as more »
combination of existing knowledge resources and independent research. Understand Threat Intelligence and its use in an operational environment Produce new workflows for automation into SOAR tools for common attack types. Continually improve the service and review use cases and propose changes and enhancements in line with the changing threat. SOC more »
detection/prevention systems. Proficiency in securing operating systems such as Windows, Linux, and macOS. Knowledge of large-scale security technology deployments (SIEM/SOAR/EDR/NDR). Ability to lead technical teams and manage service providers effectively. Familiarity with threat intelligence sources and incident prioritization. Understanding of more »
promptly to security incidents as part of an incident response team. Establish metrics and dashboards to enhance visibility of the Enterprise infrastructure. Utilise the SOAR platform to automate playbooks and streamline case management processes. Produce comprehensive documentation to ensure the repeatability and standardisation of security procedures. Innovate investigative methodologies using more »
security experience with a strong understanding of security concepts, principles and best practice You're experienced with security tools and technologies e.g. Splunk, SIEM, SOAR, EDR, NDR You have a good knowledge of Linux and associated scripting languages e.g. Python, bash, PowerShell You have an infrastructure/systems engineering background more »
PaaS, SaaS) in particular AWS, MS Sentinel and Defender Good understanding of Security Operations and related security tools such as Firewalls, VPN Gateway, SIEM, SOAR, EDR, MDR, UEBA, DLP Good understanding and practical experience of Cyber Security Frameworks and standards such as NCSC security principles, NIST Framework, ISO 27001, ISO27005 more »
cyber security experience with a strong understanding of security concepts, principles and best practice You're experienced with security tools and technologies e.g. SIEM, SOAR, EDR, NDR You have a good knowledge of Linux and associated scripting languages e.g. Python, bash, PowerShell Ideally you will have cloud security experience, although more »
within Secuirty Engineering · Understanding of Security Operations · Experience with security toolsets such as (but not limited to) SIEM, cloud security (zero trust, CASB ect), SOAR, CVM tools. Desirable skills: · Experience with using Zscaler · Experience with using CrowdStrike. · Experience with using Qualys CVM. If you are ready to take the next more »
in security automation. Mondas delivers bespoke Cyber Security Solutions, helping our clients streamline their incident responseand recovery process with our automated approach to SOAR, SIEM & XDR. Our Sales and Marketing team is the heartbeat of our business and has been crucial to the year on year growth we have more »
in security automation. Mondas delivers bespoke Cyber Security Solutions, helping our clients streamline their incident responseand recovery process with our automated approach to SOAR, SIEM & XDR. Our Sales and Marketing team is the heartbeat of our business and has been crucial to the year on year growth we have more »
related field AND 5+ years sales and negotiation experience or related work or internship experience. 3+ years' experience selling Security Solutions (EDR, XDR, SIEM, SOAR) to MSSP and MSP customers. Additional Or Preferred Qualifications (PQs) Bachelor's degree in business management, Information Technology, Marketing (or equivalent) or related field ANDmore »
need: · Extensive experience of working within a SOC or adjacent role. · Experienced in responding to cyber incidents. · Conversant with common security tooling (E.g., SIEM, SOAR, EDR, NDR). · Understanding of threat actors, their tactics, techniques, and procedures. · Understanding of security event data, the value of different data sources and tools more »
threat actors, and the tactics and techniques adopted. Proven experience with programming - Python, Rust, C++ or other major languages Knowledge of SecOps tooling (SIEM, SOAR, TI). more »
involved in setting up and configurating the systems, log parser creation, python scripting & debugging, Linux admin, Azure/GCP admin, supporting investigations/analysis, SOARand API-based integrations/connections. This is an opportunity to work alongside cyber SME’s and run with a strong level of security, innovation … troubleshooting Liasing with senior stakeholders, support teams and technical partners Provide technical documentation Skills required for the Cyber Security/SOC Engineer: SIEM andSOAR deployment and support Technical expertise in Cloud and Network technologies Python Scripting Experience in Windows, Linux, MacOS and Identity technologies such as Entra ID Strong more »