SOAR Engineer
SOAR Engineer
Employer Active
Job Alert
You will be updated with latest job alerts via email
Share
Job Alert
You will be updated with latest job alerts via email
Job Description
Line of Service
AssuranceIndustry/Sector
Not ApplicableSpecialism
Cybersecurity & PrivacyManagement Level
Senior AssociateJob Description & Summary
About the role
Our Managed Cyber Defence (MCD) team provides a 24x7x365 security managed service to our clients led from the UK and supported by a follow the sun delivery model. Our services include endpoint detection and response (EDR) network threat detection (NTD) as well as fully managed SOC & extended detection and response (XDR) services.
We partner with leading technology providers such as Microsoft Palo Alto Networks Google Cloud Security and utilise the experience of our Threat Intelligence & Incident Response practices to create fully managed detection and response capabilities for our clients.
What your days will look like
As a Senior Associate within the Managed Cyber Defense Team in Glasgow and Edinburgh you will be responsible for the day to day delivery of various client projects in the managed security services area with a particular strong focus on all things SOAR.
Roles and responsibilities:
Supporting primary service activities such as automation development playbook design system implementation and maintenance including producing documentation and reports
Support service management team by producing statistics reports and supporting material in understanding team productivity client challenges and track internal projects.
Supporting the development and onboarding activities of new clients to MCD service.
Provide support to the Service Delivery Manager in troubleshooting client issues
Act as a first point of escalation in the incident management process in the event of an outage. In addition to acting as an escalation contact for project management.
Assist the learning and development goals of the team manage training plans and foster personal development time for the team.
This role is for you if:
You have experience using PaaS / IaaS components from cloud providers such as Google Cloud Platform (GCP).
You have experience using data storage solutions such as Elasticsearch and analysis techniques including Cloud Dataflow and BigQuery (or equivalent).
You have experience of Linux administration and orchestration technologies such as puppet and terraform.
You have experience of building testing deploying and maintaining automation in a variety of platforms such as SOAR.
You are comfortable liaising with teams to collect requirements prioritise tasks and plan development sprints balancing development of new capability with maintenance of existing systems.
You have experience of Palo Alto XSOAR and/or Google Chronicle
You have excellent communication skills both oral (for interviews/meetings presentations) and written (for designing and writing engaging reports which communicate recommendations and actions succinctly and clearly convey the message in a way which is appropriate for the audience).
Education (if blank degree and/or field of study not specified)
Degrees/Field of Study required:Degrees/Field of Study preferred:Certifications (if blank certifications not specified)
Required Skills
Optional Skills
Accepting Feedback Accepting Feedback Active Listening Analytical Thinking Cloud Security Communication Conducting Research Creativity Cyber Defense Cyber Threat Intelligence Embracing Change Emotional Regulation Empathy Encryption Inclusion Information Security Intellectual Curiosity Intelligence Analysis Intelligence Report Intrusion Detection Intrusion Detection System (IDS) IT Operations Learning Agility Malware Analysis Malware Detection Tools 16 moreDesired Languages (If blank desired languages not specified)
Travel Requirements
Up to 60Available for Work Visa Sponsorship
YesGovernment Clearance Required
NoJob Posting End Date
Employment Type
Full-Time
