26 to 44 of 44 SOAR Jobs in the UK

technical escalation point for high-priority security incidents, utilizing EDR and SIEM tools for rapid containment. Automation: Develop "SOAR" workflows (Security Orchestration, Automation, and Response) to reduce manual intervention and improve response times. Threat Hunting: Proactively search for undetected malicious activity using specialized queries. Training. Build up the Crowdstrike, Splunk ...

documents for security solutions. Strong understanding of Security Operations/SOCs. Hyperscaler experience (AWS, Azure, GCP); Professional Cloud Architect cert preferred. SIEM/SOAR tooling (e.g., Google SecOps/Chronicle). EDR/XDR/NDR experience (e.g., Crowdstrike , Corelight, Microsoft Defender XDR). What's on Offer Permanent ...

with clear RACI and coherent operating model. Govern the security tooling strategy and operating model (build vs. buy vs. MSSP); maximize value from SIEM, SOAR, IAM, PAM, EDR, DLP, DSPM, and CTI platforms. Security Operations & Incident Response Accountable for SOC performance (24×7 detection, response, threat hunting), DFIR, purple-team ...

Advanced knowledge of SIEM operations, detection engineering, and RBA Experience with large-scale data ingestion, enrichment, and pipeline design Familiarity with automation tools, SOAR, Terraform/Ansible, and CI/CD Excellent communication, stakeholder management, and problem-solving skills This is a great opportunity to play a key role ...

insurance, medical cover) Are you an experienced Splunk SME looking for a new challenge? Do you have a strong background in Splunk, IAM and SOAR with a high-level understanding of wider Splunk ecosystem, along with Incident Management, Python and Powershell skills? Here at ARM, we are recruiting … This includes designing and implementing detection use cases, tuning alerts, and developing dashboards that provide clear, actionable insights for security operations teams. Experience with SOAR and UEBA technologies is advantageous but not essential. This role suits someone who enjoys working in a client-facing environment, solving complex challenges, and contributing ...

insurance, medical cover) Are you an experienced Splunk SME looking for a new challenge? Do you have a strong background in Splunk, IAM and SOAR with a high-level understanding of wider Splunk ecosystem, along with Incident Management, Python and Powershell skills? Here at ARM, we are recruiting … This includes designing and implementing detection use cases, tuning alerts, and developing dashboards that provide clear, actionable insights for security operations teams. Experience with SOAR and UEBA technologies is advantageous but not essential. This role suits someone who enjoys working in a client-facing environment, solving complex challenges, and contributing ...

Are you a proven DV-cleared security expert ready to lead cutting-edge projects that make a real impact? Join our dynamic team as an Information Security Specialist and play a pivotal role in shaping ...

Operations team and primary relationship with any outsourced SOC solution ensuring 24/7 monitoring and response coverage. Oversee cyber defence capabilities including SIEM, SOAR, EDR/XDR, threat intelligence, and identity protection. Develop and maintain operational procedures, playbooks, and response frameworks. Direct the full incident response lifecycle: detection, triage … governance and compliance teams. Ensure the design, tuning, and optimisation of detection rules, alerts, and correlation logic across security platforms. Drive automation initiatives using SOAR to improve response speed and reduce operational workload. Maintain robust coverage across cloud, on premise, network, and endpoint environments. Build capability through training, certifications, and ...

Incident Response Engineer (MDR SIEM SOAR AWS) Remote UK to £80k Are you a tech savvy Senior Security Engineer with strong Incident Response experience? You could be progressing your career in a senior, hands-on Senior Security Engineer role as part of a friendly and supportive international team ...

detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation rules … content in complex environments Strong documentation and stakeholder communication skills Desirable Relevant certifications such as Splunk Enterprise Security, GIAC GCDA, or similar Experience with SOAR platforms and automation workflows Background in threat hunting or incident response If you are a detection-focused cyber security professional who thrives on building high ...

during live security incidents Develop and maintain SOC playbooks and automation workflows Analyse firewall alerts and support configuration troubleshooting Tune SIEM, EDR, XDR, and SOAR tools to reduce false positives Maintain detailed incident documentation and lessons learned Provide mentoring and technical guidance to Tier 1 analysts Skills & Experience Required Proven … security operations environment Strong understanding of cyber threats, attack techniques, and defensive controls Hands-on experience with SIEM, EDR, XDR, and SOAR platforms Solid networking knowledge (TCP/IP, firewalls, common protocols) Strong analytical and problem-solving skills Excellent written and verbal communication skills Ability to manage multiple incidents effectively ...

capable of transforming security telemetry into actionable threat intelligence. As a technical specialist, you will play a key role in endpoint security, incident response, SOAR automation, and threat hunting, working closely with a SOC partner and internal stakeholders. Key Responsibilities Endpoint Security (CrowdStrike Falcon) Lead the deployment, configuration, and ongoing … security incidents Use EDR and SIEM tooling to investigate, contain, and remediate threats Map detection and response activities to the MITRE ATT&CK framework SOAR & Automation Design and implement SOAR workflows to automate response actions Reduce manual analyst effort and improve mean-time-to-respond (MTTR) Threat Hunting Conduct proactive ...

and security posture assessments Advise clients on security improvements, best practice, and threat mitigation strategies Work closely with internal teams to enhance automation and SOAR workflows Operational Improvement Develop and refine SOC processes, procedures, and response playbooks Track SOC performance metrics and identify opportunities for efficiency and quality improvement Ensure … experience in a SOC or security operations environment Previous experience in a technical leadership or senior analyst role Strong hands-on knowledge of SIEM, SOAR, EDR, firewalls, and threat intelligence platforms Practical experience handling security incidents, threat hunting, and investigations Solid understanding of attacker tactics, techniques, and frameworks such ...

and security posture assessments Advise clients on security improvements, best practice, and threat mitigation strategies Work closely with internal teams to enhance automation and SOAR workflows Operational Improvement Develop and refine SOC processes, procedures, and response playbooks Track SOC performance metrics and identify opportunities for efficiency and quality improvement Ensure … security operations environment xehkeey Previous experience in a technical leadership or senior analyst role Strong hands-on knowledge of SIEM, SOAR, EDR, firewalls, and threat intelligence platforms Practical experience handling security incidents, threat hunting, and investigations Solid understanding of attacker tactics, techniques, and frameworks such as MITRE ATT&CK Proven ...

Role As our Senior Security Analyst, you will own the evolution of our security posture. Youll be the driving force behind our SIEM/SOAR capabilities and the guardian of our SOC 2 Type II and ISO 27001 standards. Key Responsibilities: Security Operations: Lead monitoring, detection, and incident response … internal and client-facing systems. SIEM/SOAR Ownership: Enhance and automate our Azure Sentinel capabilities. Incident Response: Investigate real-world threats (malware, phishing, cloud misconfigurations) and ensure rapid remediation. Vulnerability Management: Conduct regular assessments, penetration testing, and risk analysis. Compliance & GRC: Maintain SOC 2 Type II accreditation and lead ...

solution design and development for security operations Experience with Architecture Frameworks (ideally TOGAF) and developing HLD and LLD documents Technical expertise in SIEM and SOAR tooling, such as Google SecOps or similar Proficiency with EDR, XDR, and NDR tools like Crowdstrike or Microsoft Defender Experience working within Agile, DevOps … submit (subject to required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Security Operations Architect, Cyber Security, SIEM, SOAR, EDR, XDR, Solution Design, TOGAF, HLD, LLD, Google SecOps ...

Incident Response Engineer (MDR SIEM SOAR AWS) Remote UK to £80k Are you a tech savvy Senior Security Engineer with strong Incident Response experience? You could be progressing your career in a senior, hands-on Senior Security Engineer role as part of a friendly and supportive international team … you. About you: You're an Incident Response Engineer with MDR experience (Managed Detection and Response) You have hands-on experience with SIEM and SOAR platforms, Crowdstrike (or similar EDR/XDR solutions) and MDM solutions You have strong AWS and Kubernetes (K8s) and Amazon EKS experience You have scripting ...

Security Analyst - CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender Our leading global law firm client are currently looking to take on a new Security Analyst (CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender) to join their team … days per week in London and offer a great deal of autonomy and technical exposure. This Security Analyst (CISSP, CISM, CEH, EDR, SIEM, SOAR, IDS/IPS, TCP/IP, Defender) role, will be responsible for the day to day operations of existing security solutions and uses tools to identify ...

lead technical expert during enterprise sales cycles (Fortune 500 focus) Run discovery calls, deliver customized demos, handle deep technical objections Translate complex MDR/SOAR/SOC/Security Ops concepts into customer-friendly value props Build and maintain technical proof-of-concept (POC) environments Collaborate with Product and Engineering … sales Sales Engineer role at a cybersecurity company Prior experience in a SOC (e.g., Security Analyst, Threat Analyst, Security Engineer) Strong knowledge of MDR, SOAR, SOC tooling, and Security Operations Comfortable leading enterprise deals > $200k+, with Fortune 500 customers Technical credibility combined with sales acumen; you know how to close ...