26 to 43 of 43 SOAR Jobs in the UK

improve customer security posture across Azure and Microsoft 365 environments Design and deploy solutions across identity, endpoint, email and cloud security Support SIEM and SOAR implementations using Microsoft technologies Work on securing modern tools including Microsoft Copilot and AI driven services Produce clear technical documentation including low level designs and ...

Centres (SOC), including leadership or managerial responsibilities. Strong technical knowledge of SIEM platforms such as LogRhythm, Splunk, Microsoft Sentinel, or similar. Experience working with SOAR, EDR/XDR, and threat detection technologies. Strong understanding of incident response frameworks and cybersecurity best practices. Experience managing security incidents, investigations, and response coordination. ...

build a bigger picture and provide suitable remediation steps for customers. Monitoring our SIEM (Security Incident and Event Management) and SOAR (Security Orchestration, Automation and Response) tools to detect suspicious events and abnormal activities. . Triaging events through validating suspicious events and incidents by use of dedicated tools. . Ability ...

build a bigger picture and provide suitable remediation steps for customers. Monitoring our SIEM (Security Incident and Event Management) and SOAR (Security Orchestration, Automation and Response) tools to detect suspicious events and abnormal activities. . Triaging events through validating suspicious events and incidents by use of dedicated tools. . Ability ...

documents for security solutions. Strong understanding of Security Operations/SOCs. Hyperscaler experience (AWS, Azure, GCP); Professional Cloud Architect cert preferred. SIEM/SOAR tooling (e.g., Google SecOps/Chronicle). EDR/XDR/NDR experience (e.g., Crowdstrike , Corelight, Microsoft Defender XDR). What's on Offer Permanent ...

controls. Contribute to post-incident reviews, root-cause analysis, and long-term posture improvements. Integrations & Automation Maintain integrations with Jira/ADO, SIEM/SOAR, Slack/Teams, and CMDB/GRC. Automate workflows for enrichment, prioritisation, ticketing, and reporting. Partner with Engineering to build auto-remediation playbooks for safe ...

future of detection across an evolving security landscape. What to expect in the role : Strong technical background in Security solutions, Detection Engineering, SIEM, SOAR, security tooling etc. Experience onboarding logs, tuning detections, and understanding how a SIEM works. Understanding of cloud and network security fundamentals. Ability to lead a high ...

develop their cyber security operations capability. The role will oversee SOC operations, threat detection, and incident response, while driving improvements across security monitoring, automation, and response processes. Key experience required: Strong experience in cyber security operations Strong experience of leading or mentoring SOC teams Strong knowledge of incident response and … threat detection Experience with SIEM platforms such as LogRhythm, Splunk, or Microsoft Sentinel Familiarity with SOAR platforms, EDR/XDR tools (eg CrowdStrike, Defender, SentinelOne) and cloud security monitoring across Azure, AWS, or GCP Understanding of frameworks such as National Institute of Standards and Technology guidance, International Organization for Standardization ...

develop their cyber security operations capability. The role will oversee SOC operations, threat detection, and incident response, while driving improvements across security monitoring, automation, and response processes. Key experience required: Strong experience in cyber security operations Strong experience of leading or mentoring SOC teams Strong knowledge of incident response and … threat detection Experience with SIEM platforms such as LogRhythm, Splunk, or Microsoft Sentinel Familiarity with SOAR platforms, EDR/XDR tools (eg CrowdStrike, Defender, SentinelOne) and cloud security monitoring across Azure, AWS, or GCP Understanding of frameworks such as National Institute of Standards and Technology guidance, International Organization for Standardization ...

detection efficacy, reducing false positives, and ensuring robust coverage against evolving threat landscapes. Key Responsibilities Design and implement detection use cases across SIEM and SOAR platforms using threat intelligence and incident data Develop, map, and maintain detection logic aligned to MITRE ATT&CK frameworks Continuously tune and optimise correlation rules … content in complex environments Strong documentation and stakeholder communication skills Desirable Relevant certifications such as Splunk Enterprise Security, GIAC GCDA, or similar Experience with SOAR platforms and automation workflows Background in threat hunting or incident response If you are a detection-focused cyber security professional who thrives on building high ...

investigated, and mitigated promptly. You'll also take ownership of improving operational maturity tuning alerts to reduce false positives, implementing automation through scripting or SOAR tooling, integrating threat intelligence, and establishing meaningful security metrics that clearly demonstrate risk reduction and performance to stakeholders across IT and the wider business. CYBER … Alert tuning and optimisation to reduce false positives * Ability to define, measure, and report on security KPIs and risk metrics * Knowledge of automation techniques (SOAR tools, scripting) * Understanding of threat intelligence and proactive threat hunting * Strong communication and stakeholder engagement skills DESIRABLE * Familiarity with Azure and AWS security operations * Understanding ...

Monitor & Respond - Investigate and resolve security alerts and incidents across the SOC environment Analyse & Protect - Conduct threat analysis and security monitoring using SIEM/SOAR platforms Develop & Improve - Contribute to detection rule development and SOC tooling enhancements Automate & Optimise - Support automation and configuration improvements within the SOC Test & Assure - Assist … within a Security Operations Centre (SOC) Strong experience in security monitoring, alert investigation, and incident response Proven experience working with SIEM and/or SOAR platforms including log analysis and event monitoring Experience with Microsoft server technologies and Azure environments Familiarity with vulnerability management tools and security testing practices Understanding ...

facing impact. The role: Monitor, investigate, and respond to alerts from SOC tools, including SIEM platforms Develop and optimise automation workflows and playbooks using SOAR tools Lead and support incident response, including mitigation and remediation activities Contribute to the continuous improvement of SOC operations Help design and develop new cyber … communicate technical concepts to both technical and non-technical audiences Previous experience in a SOC Analyst or Cyber Advisory role Desirable Skills Experience with SOAR platforms and security automation Scripting skills (Python, PowerShell, or similar) Malware analysis and threat investigation Knowledge of frameworks such as the Cyber Kill Chain Experience ...

Incident Response (SIR), Vulnerability Response (VR), Threat Intelligence, and Configuration Compliance . Design and deliver integrations between ServiceNow and cybersecurity tools such as SIEM, SOAR, EDR platforms, threat intelligence feeds, and CMDB. Collaborate with cybersecurity, IT operations, and engineering teams to design secure workflows for incident response, vulnerability management, and … ServiceNow workflows, scripting, CMDB, Discovery, and integrations (REST/SOAP, MID Server) . Experience integrating ServiceNow with third-party cybersecurity platforms such as SIEM, SOAR, and endpoint security tools. Strong stakeholder engagement skills with the ability to work across security leadership, IT teams, and enterprise architects . Familiarity with security ...

requirements Create and refine SIEM correlation rules, dashboards, and reports to enhance proactive threat detection and monitoring Build, deploy, and maintain automated playbooks across SOAR and related security platforms Integrate threat intelligence sources, security tools, and custom logic into automated workflows Continuously tune and optimise SIEM rules and SOAR playbooks … improve detection accuracy and reduce false positives Integrate internal and third-party systems with SIEM and SOAR platforms using APIs and custom connectors Support ongoing sprint activities, daily progress updates, and ad-hoc engineering tasks to improve SOC service delivery Contribute to post-incident reviews by developing new detections and ...

solution design and development for security operations Experience with Architecture Frameworks (ideally TOGAF) and developing HLD and LLD documents Technical expertise in SIEM and SOAR tooling, such as Google SecOps or similar Proficiency with EDR, XDR, and NDR tools like Crowdstrike or Microsoft Defender Experience working within Agile, DevOps … submit (subject to required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Security Operations Architect, Cyber Security, SIEM, SOAR, EDR, XDR, Solution Design, TOGAF, HLD, LLD, Google SecOps ...

Head of SOC - Microsoft, SIEM, Defender XDR, SOAR, Entra ID - UK Homebased - £80,000 - £100,000 Can you demonstrate strong leadership experience within a SOC or managed security environment? Do you have deep expertise in Microsoft security technologies? Can you handle complex incidents and drive continuous service improvement. … Sentinel, Defender XDR, Entra ID and Microsoft 365 security signals M365 audit & contextual logs Drive optimisation, tuning, and governance across SIEM/XDR/SOAR platforms. Lead major incident escalations and guide proactive threat hunting. Collaborate with Product, Engineering, Customer Success, and TAM teams to evolve MXDR services. Contribute ...

Role: SOC -Security Platform Engineer Location: London Salary: Competitive salary and package dependent on experience Career Level: Specialist Please Note: Any offer of employment is subject to satisfactory BPSS and the candidate being granted a ...