Security Orchestration, Automation & Response (SOAR) Engineer

We are seeking a Security Orchestration, Automation & Response (SOAR) Engineer to help shape and advance our security automation capabilities.

You will play a key role in developing, implementing, and optimising automations that enhance detection, response, and overall security efficiency.

What You Will Do:

• Design and develop security automations and playbooks within Palo Alto Cortex XSOAR (Demisto).

• Collaborate with SOC analysts and security engineers to improve workflows and response processes.

• Integrate multiple security tools and platforms via REST APIs.

• Optimise existing playbooks for scalability, performance, and reliability.

• Work with Python and other Scripting tools to drive automation efficiency.

• Leverage frameworks such as MITRE ATT&CK to enhance detection and response capabilities.

What We Are Looking For:

• Strong hands-on experience with SOAR platforms (ideally Palo Alto Cortex XSOAR).

• Solid development experience in Python.

• Good understanding of REST APIs and their integration into automation workflows.

• Familiarity with MITRE ATT&CK framework or similar.

• Background with Linux/Windows environments and experience working with public cloud (AWS/Azure/GCP).

Details:

• Contract: Initial term (awaiting duration confirmation)

• Rate: TBC (competitive daily rate)

• Location: Hybrid/Office location TBC (UK-based)

• Eligibility: Must be able to work as a contractor in the UK

If you are passionate about security automation and want to be part of a forward-thinking team, we'd love to hear from you.