26 to 40 of 40 SOAR Jobs in the UK

Response: Act as a technical escalation point for high-priority security incidents, employing EDR and SIEM tools for swift containment. Automate Security Processes: Develop Security Orchestration, Automation, and Response (SOAR) workflows to minimise manual intervention and enhance response efficiency. Conduct Threat Hunting: Utilise specialised queries to proactively identify undetected malicious ...

hybrid environments Oversee patching, upgrades, and platform performance Drive platform improvements and engineering enhancements Support detection engineering, tuning, and platform optimisation Lead automation and SOAR initiatives to improve efficiency Collaborate with SOC providers on SIEM governance and data ingestion Ensure platforms meet regulatory and compliance requirements Maintain engineering documentation, standards ...

documents for security solutions. Strong understanding of Security Operations/SOCs. Hyperscaler experience (AWS, Azure, GCP); Professional Cloud Architect cert preferred. SIEM/SOAR tooling (e.g., Google SecOps/Chronicle). EDR/XDR/NDR experience (e.g., Crowdstrike, Corelight, Microsoft Defender XDR). What's on Offer Permanent ...

and optimisation of technologies such as Zscaler, Netskope, Prisma Access, or similar platforms • Oversee integration of Zero Trust solutions with identity providers, SIEM/SOAR tooling, endpoint security, and cloud environments • Conduct architecture reviews, threat modelling exercises, gap assessments, and security strategy workshops • Lead proof-of-concept exercises, vendor evaluations ...

controls aligned with the NIST Cyber Security Framework. What you'll be doing: Maintain and optimise SOC PROTECT, DETECT, and RESPOND toolsets, including SIEM, SOAR, and vulnerability scanning tools. Support the development, configuration, and automation of security tooling to enhance threat detection and incident response. Conduct forensic analysis, malware reverse … and continuous process improvement. Maintain knowledge of current cyber threats and emerging trends. What you'll bring: Proven hands-on experience with SIEM and SOAR platforms such as Trend, Elastic, or SolarWinds. Strong understanding of Windows and Linux OS, log collection, and threat detection techniques. Ability to create and modify ...

and recommend remediation. Implement and maintain AWS security controls aligned to ISO 27001, NIST and cloud security best practices. Proficiency in building/configuring SOAR platforms such as Shuffler and Tracecat. Develop security automation tooling, scripts, and infrastructure as code processes to streamline security operations. Take ownership of security engineering … Integration into DevOps Workflow for UK Within 6 months: Continuous Improvement Initiatives Security Incident Management Integration into DevOps Workflow for EMEA/ANZ Complete SOAR implementation What’s in it for you? We operate a Flexible Working Policy and we would like for you to work from our London ...

infrastructure. Familiarity with frameworks such as MITRE ATT&CK. Ability to analyse threats and translate them into detection capability. Nice to have: Experience with SOAR (Logic Apps/Splunk SOAR). Detection-as-code or CI/CD pipeline experience. Scripting in PowerShell, Python or similar. Experience with Git-based ...

technical complexity into clear business outcomes Confidence presenting to both technical and non-technical stakeholders A solid understanding of modern security architectures, including SIEM, SOAR, and managed security services Exposure to advanced security domains such as DDoS protection, WAF, IAM, EDR, MDM, and vulnerability management Continuous learning is a core ...

engineering, cloud security, incident response, vulnerability management, and security architecture.Key Responsibilities Design, implement, and improve security controls across cloud and enterprise infrastructure Enhance SIEM, SOAR, and EDR/XDR capabilities including alerting, tuning, and integrations Build intelligent detection and response workflows Develop automation solutions using scripting and AI-assisted tooling … Monitor emerging threats and recommend improvements to security posture Technical EnvironmentThe team works across a modern cloud-first stack with exposure to: SIEM/SOAR platforms EDR/XDR tooling AWS cloud environments Identity & Access Management Vulnerability Management Security Automation & Scripting CSPM tooling AI-assisted security operations What ...

Responsibilities Monitor, investigate and respond to security incidents across secure environments Develop and tune SIEM detection rules and correlation logic Support SIEM and SOAR tooling optimisation and automation Integrate and onboard log sources to improve visibility across systems Conduct threat analysis, including TTPs and IOCs Carry out network and host … develop and tune detection rules and alerts Experience with incident response and threat analysis Knowledge of MITRE ATT&CK, IOCs, and TTPs Familiarity with SOAR tools and automation Scripting experience (e.g. Python, PowerShell, Bash) is beneficial Why Apply? Opportunity to work on a mission-critical defence programme Gain exposure ...

Experience in the security Software-as-a-Service (SaaS) landscape. Preferred qualifications: Experience in IT infrastructure and cloud and digital transformations. Experience in SIEM, SOAR, security operations, and related product knowledge. Understanding of cloud services and infrastructure. Ability to work in fast-paced environments with ambiguous problems, deploying first principles ...

Zoomcar is seeking a SecOps Business Development Manager to drive sales for Security Operations solutions across the UK&I region. The ideal candidate will manage the sales lifecycle, develop internal relationships, and collaborate effectively with ...

operational efficiency Investigate security incidents and drive root cause analysis and remediation Implement and manage tools such as Microsoft Defender, Nessus, and SIEM/SOAR platforms Develop secure cloud templates and baseline configurations Partner with engineering teams to embed secure coding and DevSecOps practices Stay up to date with emerging … environments Deep understanding of Azure security, DevOps, and automation Hands-on experience with EDR/DLP tools (e.g. Microsoft Defender) Experience with SIEM/SOAR platforms Knowledge of frameworks such as ISO 27001, NIST, and CIS Strong troubleshooting and problem-solving skills Ability to manage multiple priorities in a fast ...

workflows (detect, investigate, respond, remediate) Acting as the senior security authority within a cross-functional AI engineering squad Designing integration approaches across SIEM, SOAR, EDR and cloud security platforms Translating real SOC processes into automatable, agent-driven workflows Identifying high-value security automation opportunities with SOC and Security Engineering teams … leadership, Detection Engineering or Incident Response roles Track record of leading SOC transformation, security automation or security platform programmes Strong understanding of SIEM, SOAR, EDR and enterprise security operations Experience designing or delivering large-scale security automation initiatives (e.g. SOAR, detection pipelines, response automation) Familiarity with tools such as Splunk ...

through hands-on experience in SecOps tools and incident response. The ideal candidate will engineer and optimise platforms like SIEM, EDR/XDR, and SOAR, as well as develop detections to improve visibility. Strong SecOps background and technical cybersecurity knowledge are essential. The position offers a rate ...