Security Orchestration, Automation & Response (SOAR) Engineer | Palo Alto Cortex XSOAR, Python, Rest API's, Linux & Windows | Up to £1000 Inside | 2 Days p/ week in London
We are seeking an experienced Security Orchestration, Automation & Response (SOAR) Engineer to strengthen cyber threat detection and automation capabilities within a leading financial organisation. This role combines hands-on technical expertise with strategic security automation and orchestration across modern platforms.
You will work closely with detection, response, and engineering teams to design, build, and optimise security workflows — enabling faster, more effective incident response and reducing manual effort through automation.
Key Responsibilities:
* Develop and enhance security detections and automations across SOAR platforms (ideally Palo Alto Cortex XSOAR)
* Create and maintain playbooks and integrations to improve incident response and operational efficiency
* Collaborate across teams to improve detection coverage and response workflows
* Monitor emerging threats and translate attacker TTPs into actionable detections and automated mitigations
Key Skills & Experience:
* Hands-on experience with Palo Alto Cortex XSOAR or other SOAR platforms
* Strong knowledge of threat detection and response engineering
* Familiarity with MITRE ATT&CK framework
* Proficiency in Python for automation and integration development
* Experience with query languages (KQL or similar)
* Understanding of REST APIs and ability to develop and consume them
* Experience working in Azure environments
* Strong background in Windows, Linux, and macOS administration
Security Orchestration, Automation & Response (SOAR) Engineer | Palo Alto Cortex XSOAR, Python, Rest API's, Linux & Windows | Up to £1000 Inside | 2 Days p/ week in London