26 to 46 of 46 SOAR Jobs in the UK

Zero Trust Client configuration and rollout, including secure network and data access. Integrate Zero Trust solutions with identity providers (Entra AD, Okta), SIEM/SOAR systems, endpoint platforms, and data repositories. Assisting infrastructure teams in migrating legacy VPN, proxy, and firewall solutions to cloud native Zero Trust models, and supporting ...

documents for security solutions. Strong understanding of Security Operations/SOCs. Hyperscaler experience (AWS, Azure, GCP); Professional Cloud Architect cert preferred. SIEM/SOAR tooling (e.g., Google SecOps/Chronicle). EDR/XDR/NDR experience (e.g., Crowdstrike, Corelight, Microsoft Defender XDR). What's on Offer Permanent ...

documents for security solutions. Strong understanding of Security Operations/SOCs. Hyperscaler experience (AWS, Azure, GCP) Professional Cloud Architect cert preferred. SIEM/SOAR tooling (e.g., Google SecOps/Chronicle). EDR/XDR/NDR experience (e.g., Crowdstrike, Corelight, Microsoft Defender XDR). What's on Offer Permanent ...

with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24×7 detection, response, threat hunting), DFIR, purple-team ...

Implement identity access control measures and DLP controls Respond to Tier 3 security incidents Monitor threat intelligence Participate in pentests Engineer Microsoft Sentinel detections & SOAR playbooks Senior Cyber Security Engineer: Technical Experience XDR - Palo Alto Cortex Microsoft Security: Defender of Endpoint, Identity, Cloud Apps, Office 365 Azure AD Microsoft Purview ...

and optimisation of technologies such as Zscaler, Netskope, Prisma Access, or similar platforms • Oversee integration of Zero Trust solutions with identity providers, SIEM/SOAR tooling, endpoint security, and cloud environments • Conduct architecture reviews, threat modelling exercises, gap assessments, and security strategy workshops • Lead proof-of-concept exercises, vendor evaluations ...

build a bigger picture and provide suitable remediation steps for customers. Monitoring our SIEM (Security Incident and Event Management) and SOAR (Security Orchestration, Automation and Response) tools to detect suspicious events and abnormal activities. . Triaging events through validating suspicious events and incidents by use of dedicated tools. . Ability ...

build a bigger picture and provide suitable remediation steps for customers. Monitoring our SIEM (Security Incident and Event Management) and SOAR (Security Orchestration, Automation and Response) tools to detect suspicious events and abnormal activities. . Triaging events through validating suspicious events and incidents by use of dedicated tools. . Ability ...

hybrid environments Oversee patching, upgrades, and platform performance Drive platform improvements and engineering enhancements Support detection engineering, tuning, and platform optimisation Lead automation and SOAR initiatives to improve efficiency Collaborate with SOC providers on SIEM governance and data ingestion Ensure platforms meet regulatory and compliance requirements Maintain engineering documentation, standards ...

projects. Assisting with Zero Trust Client configuration and rollout, including secure network and data access. Integrate Zero Trust solutions with identity providers, SIEM/SOAR systems, endpoint platforms, and data repositories. Assisting infrastructure teams in migrating legacy VPN, proxy, and firewall solutions to cloud native Zero Trust models, and supporting ...

projects. Assisting with Zero Trust Client configuration and rollout, including secure network and data access. Integrate Zero Trust solutions with identity providers, SIEM/SOAR systems, endpoint platforms, and data repositories. Assisting infrastructure teams in migrating Legacy VPN, Proxy, and Firewall solutions to cloud native Zero Trust models, and supporting ...

Trust technologies, while managing project teams and vendor relationships to ensure successful delivery. Leading integration of Zero Trust solutions with identity providers, SIEM/SOAR systems, and endpoint platforms, presenting technical solutions to clients and supporting pre-sales activities. Conducting proof-of-concept evaluations, vendor bake-offs and technical validation ...

Trust technologies, while managing project teams and vendor relationships to ensure successful delivery. Leading integration of Zero Trust solutions with identity providers, SIEM/SOAR systems, and endpoint platforms, presenting technical solutions to clients and supporting pre-sales activities. Conducting proof-of-concept evaluations, vendor bake-offs and technical validation ...

fine-tuning Managing App segmentation and connector deployment. Zero Trust Client Connector configuration and rollout. Integrating Zero Trust solutions with identity providers, SIEM/SOAR systems, and endpoint platforms. Collaborating with infrastructure teams to migrate legacy VPN, proxy, and firewall solutions to cloud native Zero Trust models. Conducting proof ...

fine-tuning Managing App segmentation and connector deployment. Zero Trust Client Connector configuration and rollout. Integrating Zero Trust solutions with identity providers, SIEM/SOAR systems, and endpoint platforms. Collaborating with infrastructure teams to migrate Legacy VPN, Proxy, and Firewall solutions to cloud native Zero Trust models. Conducting proof ...

and recommend remediation. Implement and maintain AWS security controls aligned to ISO 27001, NIST and cloud security best practices. Proficiency in building/configuring SOAR platforms such as Shuffler and Tracecat. Develop security automation tooling, scripts, and infrastructure as code processes to streamline security operations. Take ownership of security engineering … Integration into DevOps Workflow for UK Within 6 months: Continuous Improvement Initiatives Security Incident Management Integration into DevOps Workflow for EMEA/ANZ Complete SOAR implementation What’s in it for you? We operate a Flexible Working Policy and we would like for you to work from our London ...

controls aligned with the NIST Cyber Security Framework. What you'll be doing: Maintain and optimise SOC PROTECT, DETECT, and RESPOND toolsets, including SIEM, SOAR, and vulnerability scanning tools. Support the development, configuration, and automation of security tooling to enhance threat detection and incident response. Conduct forensic analysis, malware reverse … and continuous process improvement. Maintain knowledge of current cyber threats and emerging trends. What you'll bring: Proven hands-on experience with SIEM and SOAR platforms such as Trend, Elastic, or SolarWinds. Strong understanding of Windows and Linux OS, log collection, and threat detection techniques. Ability to create and modify ...

infrastructure. Familiarity with frameworks such as MITRE ATT&CK. Ability to analyse threats and translate them into detection capability. Nice to have: Experience with SOAR (Logic Apps/Splunk SOAR). Detection-as-code or CI/CD pipeline experience. Scripting in PowerShell, Python or similar. Experience with Git-based ...

technical complexity into clear business outcomes Confidence presenting to both technical and non-technical stakeholders A solid understanding of modern security architectures, including SIEM, SOAR, and managed security services Exposure to advanced security domains such as DDoS protection, WAF, IAM, EDR, MDM, and vulnerability management Continuous learning is a core ...

Responsibilities Monitor, investigate and respond to security incidents across secure environments Develop and tune SIEM detection rules and correlation logic Support SIEM and SOAR tooling optimisation and automation Integrate and onboard log sources to improve visibility across systems Conduct threat analysis, including TTPs and IOCs Carry out network and host … develop and tune detection rules and alerts Experience with incident response and threat analysis Knowledge of MITRE ATT&CK, IOCs, and TTPs Familiarity with SOAR tools and automation Scripting experience (e.g. Python, PowerShell, Bash) is beneficial Why Apply? Opportunity to work on a mission-critical defence programme Gain exposure ...

through hands-on experience in SecOps tools and incident response. The ideal candidate will engineer and optimise platforms like SIEM, EDR/XDR, and SOAR, as well as develop detections to improve visibility. Strong SecOps background and technical cybersecurity knowledge are essential. The position offers a rate ...