26 to 33 of 33 SOAR Jobs in the UK

Incident Response (SIR), Vulnerability Response (VR), Threat Intelligence, and Configuration Compliance . Design and deliver integrations between ServiceNow and cybersecurity tools such as SIEM, SOAR, EDR platforms, threat intelligence feeds, and CMDB. Collaborate with cybersecurity, IT operations, and engineering teams to design secure workflows for incident response, vulnerability management, and … ServiceNow workflows, scripting, CMDB, Discovery, and integrations (REST/SOAP, MID Server) . Experience integrating ServiceNow with third-party cybersecurity platforms such as SIEM, SOAR, and endpoint security tools. Strong stakeholder engagement skills with the ability to work across security leadership, IT teams, and enterprise architects . Familiarity with security ...

security strategy. Apply foundational security principles to new technologies and unconventional scenarios while enabling organisational objectives. What We're Looking For SIEM/SOAR: Proficiency in SIEM concepts, data source integration, and creating SOAR runbooks. Security Stack : Hands-on with EDR, XDR, WAF, and email security solutions. Preferred Vendors: Experience ...

requirements Create and refine SIEM correlation rules, dashboards, and reports to enhance proactive threat detection and monitoring Build, deploy, and maintain automated playbooks across SOAR and related security platforms Integrate threat intelligence sources, security tools, and custom logic into automated workflows Continuously tune and optimise SIEM rules and SOAR playbooks … improve detection accuracy and reduce false positives Integrate internal and third-party systems with SIEM and SOAR platforms using APIs and custom connectors Support ongoing sprint activities, daily progress updates, and ad-hoc engineering tasks to improve SOC service delivery Contribute to post-incident reviews by developing new detections and ...

Your responsibility is to ensure Security technologies and services, spanning SOC operations, SIEM/XDR/EDR, Vulnerability & Exposure Management, and Security Automation & Orchestration (SOAR) are aligned to the client's strategy and objectives, adopted effectively, and continuously improved to enhance client experience and satisfaction. Provide high level SME knowledge … systems (Windows/Linux), Active Directory/identity management, and permissions-based controls. Hands-on experience designing detection content, use cases, tuning, suppression, and SOAR workflows, with understanding of data pipelines and connector optimisation. Proven track record in technical account management, client-facing technical leadership, or equivalent, with ownership ...

analysis of incidents across both IT and OT environments, with impact on critical operations. Maintain and tune enterprise tooling including Defender XDR, SIEM/SOAR, automation playbooks and detection logic. Contributing to improvements in monitoring coverage, false positive reduction and detection fidelity. Work collaboratively across departments, acting as a trusted … Broad IT infrastructure knowledge: servers, endpoints, virtualisation, networking, firewalls, hybrid cloud environments and remote access technologies. Strong proficiency and technical capability across SIEM/SOAR and Microsoft Security suite. Able to embrace change and continuously looks for ways to enhance system security, SOC efficiency and overall resilience. Strong analytical, communication ...

team across onboarding and live service activity • Own technical delivery during customer onboarding and transition • Oversee Sentinel connector deployment, Defender integration, rule tuning and SOAR playbooks • Ensure structured service handover into SOC operations with clear documentation • Act as escalation point for complex engineering issues in live environments • Maintain SLA adherence … Microsoft Sentinel and Defender XDR • Deep understanding of Azure security architecture and ingestion strategy • Proven experience configuring connectors and tuning detection rules • Experience with SOAR platforms • Strong KQL capability • Ability to manage competing priorities in fast-paced environments • Experience managing ingestion costs or cloud service optimisation • Confident customer communication Desirable ...

technical design for Network Security services, including: Zero Trust Network Access (ZTNA) NGFW, NAC, IDS/IPS Proxy services SIEM/SOAR integrations Define and assure non-functional requirements (availability, scalability, performance, security, operability) Maintain architecture diagrams, security workflows, threat models, and integration contracts aligned with governance standards (e.g. NIST … operating enterprise network security platforms Deep hands-on expertise in one or more of: ZTNA, NGFW, NAC, IDS/IPS Proxy services SIEM/SOAR integrations Strong understanding of Zero Trust Architecture and policy-based access control Proven DevSecOps, IaC, and CI/CD experience Solid grounding in ITIL, major ...

Role: SOC -Security Platform Engineer Location: London Salary: Competitive salary and package dependent on experience Career Level: Specialist Please Note: Any offer of employment is subject to satisfactory BPSS and the candidate being granted a ...