26 to 36 of 36 SOAR Jobs in the UK

enterprise IGA architecture. Strong understanding of identity life cycle management, access governance, and Zero Trust security principles. Hands-on experience integrating SailPoint with SIEM, SOAR, PAM, and directory platforms. Experience contributing to enterprise architecture and security governance frameworks. Contract Details: Duration: 6 months Initially Day Rate: £600 per day (Inside ...

and improving detection across SIEM and EDR platforms. Proactive threat hunting across cloud infrastructure, applications, and CI/CD environments. Building and maintaining automation and response playbooks using SOAR tooling. Working closely with DevOps, infrastructure and engineering teams to improve security posture and response capability. Reducing alert fatigue, improving logging ...

such as SIEM, SOC, Vulnerability Management. The role will require you to manage and maintain on-premises infrastructure technologies, including: Firewall administration. SIEM and SOAR platforms. Network troubleshooting. Vulnerability management. Oversee and enhance security within the Microsoft 365 stack. The ideal candidate would have experience in: Firewall management (Check Point … Palo Alto preferred). SIEM and SOAR platforms (Splunk SOAR, LogRhythm). Vulnerability management (Tenable). Network troubleshooting (Cisco desirable). Microsoft 365 security stack (required). Microsoft Defender On prem and Cloud experience (Azure ...

including infrastructure, data ingestion pipelines, and cloud security posture components. Lead the implementation and optimization of Microsoft security technologies such as Sentinel , Defender XDR , SOAR , and integrations involving DevOps (IDE/CI/CD) and Cribl . Develop advanced security analytics, threat intelligence models, and monitoring capabilities for cloud and … best practices, and innovation within the enterprise security architecture domain. Required Skills & Expertise Deep expertise in enterprise security technologies, especially: Microsoft Sentinel Defender XDR SOAR DevOps security (IDE/CI/CD) Cribl Strong hands-on experience with: Azure Security services Cloud Security Posture Management (CSPM) Data ingestion frameworks Security ...

with enterprise architecture standards, secure by design principles, and regulatory requirements. - development of data ingestion, telemetry, and integration patterns between Darktrace, Defender, SIEM/SOAR tools, and existing security stacks. - production of architecture decision records, design patterns, and technical documentation for long-term maintainability. - Leading technical delivery workstreams, providing direction … across both platforms. - Coordinate testing, validation, and acceptance of detection capabilities, including simulation of realistic attack techniques. - Integrate Darktrace and Defender outputs into SIEM, SOAR, and ticketing systems. - Work with SOC and automation teams to design playbooks, response workflows, and escalation paths. - Ensure centralised logging, enrichment, and context tagging ...

teams during major incidents, drive containment and recovery, and own post-incident reviews and playbooks. The role includes mentoring CIRT analysts , enhancing SIEM/SOAR automation, and continuously improving processes using frameworks such as MITRE ATT&CK, NIST 800-61, and PCI DSS. What this job is really about Owning … runbook.? You've used InsightIDR or another MDR/SIEM platform for rule creation, tuning and dashboards, and you're not afraid of SOAR tools like InsightConnect or Cortex XSOAR.? Python or PowerShell are part of your toolkit, and retail networks, POS systems, and cloud infrastructure don't intimidate you. ...

highly regulated environment, ideally in finance/banking. - Extensive knowledge of performing architecture reviews and driving cyber transformation programmes. - Strong knowledge of SIEM, SOAR, EDR/XDR, threat intelligence platforms, logging and monitoring frameworks. - Excellent communication and stakeholder management skills. Responsibilities - Perform a detailed analysis of the organisation's existing … cyber security operations. - Map out the current architecture, identifying strengths, weaknesses, gaps and inefficiencies. - Advise senior leadership on SecOps strategy, covering tooling, SIEM/SOAR use, incident response maturity, vendor consolidation and internal capability development. - Create actionable remediation plans and strategic roadmaps for long-term cyber resilience. What you need ...

months, ideally in regulated or high-availability environments. End-to-End Programme Ownership Full lifecycle ownership of major initiatives including MDR consolidation, SIEM, SOAR, and security data lake deployments , delivering measurable business outcomes. Formal RFP & Vendor Management Expertise Proven experience authoring RFPs, evaluating vendors, and overseeing complex onboarding and integration. … clear understanding of what succeeds (and fails) under real-world pressure. Vendor-Neutral Technical Leadership Ability to navigate and apply leading MDR, SIEM, SOAR, and data lake technologies agnostically to the problem being solved. AI & Automation Proficiency Practical experience implementing agentic assistance and managing semi-autonomous security systems. Security Architecture ...

platforms and customer environments Oversee the full incident lifecycle detection, response, escalation, post-incident review Ensure effective use and optimisation of SIEM and SOAR platforms (Splunk, Sentinel, QRadar) Drive operational consistency using ITIL-aligned processes and CREST-aligned best practices Act as the senior point of contact for customers and … operating SOC services across multiple customers and security environments Deep understanding of incident management, escalation, and service delivery under pressure Knowledge of SIEM/SOAR tooling, ideally Splunk and/or Microsoft Sentinel Strong working knowledge of NIST, MITRE ATT&CK, ISO 27001, CREST, and ITIL Confident communicator, able ...

Role: SOC -Security Platform Engineer Location: London Salary: Competitive salary and package dependent on experience Career Level: Specialist Please Note: Any offer of employment is subject to satisfactory BPSS and the candidate being granted a ...

lead technical expert during enterprise sales cycles (Fortune 500 focus) Run discovery calls, deliver customized demos, handle deep technical objections Translate complex MDR/SOAR/SOC/Security Ops concepts into customer-friendly value props Build and maintain technical proof-of-concept (POC) environments Collaborate with Product and Engineering … sales Sales Engineer role at a cybersecurity company Prior experience in a SOC (e.g., Security Analyst, Threat Analyst, Security Engineer) Strong knowledge of MDR, SOAR, SOC tooling, and Security Operations Comfortable leading enterprise deals > $200k+, with Fortune 500 customers Technical credibility combined with sales acumen; you know how to close ...