CrawlJobs Logo
Vodafone Logo Vodafone · IT - Software Development

SOAR Developer

United Kingdom, Newbury · Job Posted February 17, 2026
Apply Position
Job Link Share

Job Description

At Vodafone, we’re not just shaping the future of connectivity for our customers – we’re shaping the future for everyone who joins our team. When you work with us, you’re part of a global mission to connect people, solve complex challenges, and create a sustainable and more inclusive world. If you want to grow your career whilst finding the perfect balance between work and life, Vodafone offers the opportunities to help you belong and make a real impact.

Requirements

  • API
  • Web Applications
  • PHP
  • Oracle Database
  • Java
  • JavaScript Libraries/Frameworks
  • SQL
Vodafone - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

SOAR Developer

8 matching positions

Soar Developer

Cyber Defence Operations (CDO) is Vodafone Group’s Cyber Defence Operations Cent...
Location
Location
United Kingdom , Newbury
Salary
Salary:
Not provided
vodafone.com Logo
Vodafone
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of security concepts and practices
  • Proficiency in programming languages such as Python, JavaScript or others commonly utilised in Soar development
  • In-depth knowledge and extensive hands-on experience with Soar platforms such as Splunk Phantom, Siemplify, IBM Resilient or similar tools
  • Knowledge of advanced threat detection and response methodologies alongside tools such as SIEM and SOAR
  • Comprehensive understanding of cybersecurity principles including security operations, incident response and threat intelligence
  • Strong analytical and problem-solving skills
  • Excellent familiarity with standard security frameworks such as MITRE, cyber kill chain and APT campaign strategies
  • Proven ability to work efficiently in fast-paced work environment and manage multiple priorities simultaneously
  • Bachelor’s degree or higher in Cyber Security/Information Technology or related field
  • One or more cyber security certifications such as GCIA, GCIH, GCFA, GNFA, CEH, ECSA preferred
Job Responsibility
Job Responsibility
  • Work closely with security analysts and engineers to detect and address security gaps by implementing automation workflows that enhance security operations
  • Evaluate and enhance CSOC workflows and processes by integrating automation through SOAR tools and technologies
  • Deploy CSOC automation and ensure compatibility with existing detection and response tools
  • Create and implement custom scripts to automate current detection and response workflows
  • Operate and refine the CSOC playbook and workflow automations
  • Requirement Analysis – Collaborating with stakeholders to gather and analyse requirements for the Soar and translating them into actionable development tasks
  • Risk Management – Identifying potential risks and challenges in Soar development projects alongside implementing strategies to mitigate them
  • Vendor Management – Collaborating with external vendors or partners when necessary for tool integration, support or other aspects of SOAR development
What we offer
What we offer
  • Discretionary yearly bonus: 10%
  • Annual leave: 28 days + bank holidays + the opportunity to buy/sell/carry over 5 days/year
  • Charity days: 5 days/year
  • Maternity/adoption leave: 52 weeks out of which the first 13 weeks are fully paid followed by 26 weeks of half pay and 6 months - working 4 days, getting paid 5
  • Paternity leave: 16 weeks fully paid
  • Private pension: You can contribute up to 5% of your basic pay with 2:1 matching from Vodafone up to 10%
  • Access to: private medical, private dental, free health assessments, share save scheme
  • Additional discounts: Vodafone retail, gym, cinema, cycle to work, season ticket loan
  • Fulltime
Read More
Arrow Right
New

A&PS Solution Architect Private Cloud

This role has been designed as ‘Hybrid’ with an expectation that you will work o...
Location
Location
Slovakia , Bratislavský kraj
Salary
Salary:
5000.00 EUR / Month
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Industry experience - 5 years to 10 years
  • Bachelor's degree in computer science or related field, or equivalent experience
  • Ability to understand the customer's business problem, need, or opportunity and to design an IS solution that appropriately addresses the business problem, need, or opportunity
  • Ability to lead a team of two or more consultants in the completion of one or more architecture, requirements, operational, or implementation deliverables
  • Ability to lead the architectural design, development, deployment, and technical quality of medium to large business unit level IT based solutions (typically within multiple technology or specialty areas)
  • Be able to provide architectural direction for multiple medium sized projects concurrently
  • Understands and applies information system or operational solution related modeling methods and tools
  • Can validate/evaluate if an information systems or operational architecture meets technical requirements and specifications
  • Familiar with multiple architectural, development and operational methodologies (e.g., Zachman, TOGAF, ITSM, ...)
  • Applies appropriate methodologies and SME knowledge to resolve complex business issues
Job Responsibility
Job Responsibility
  • Architect custom solutions of project and program or operational scope
  • Architect reusable solutions of project or operational scope
  • Customize reusable solutions of project and program or operational scope
  • Capture and share architectural IP at the project and program level
  • Oversee the implementation and governance of architectures of project and program or operational scope
  • Contribute to the Architect profession worldwide and across the company businesses
  • Develop for client technically feasible long-term IT strategies and plans
  • Assess business impact of specific technologies/strategies
  • Identify and address technical or operational risks
  • Provide review/input on project activities for medium to large business unit level projects
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Soc Analyst

Location
Location
United Kingdom , Cambridge
Salary
Salary:
Not provided
roku.com Logo
Roku
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong understanding of SIEM, EDR, cloud security services (e.g., AWS GuardDuty), and various security technologies
  • Experience in automation and development of automated playbooks and associated processes in security orchestration, automation and response (SOAR) environments
  • Experience in the creation of incident response plans and leading incident response efforts and post incident reporting when required
  • Threat intelligence, knowledge of tactics, techniques, and procedures (TTPs) utilised by threat actors and how to generate and deploy mitigation strategies
  • Vulnerability management, monitoring, reporting and engagement with necessary stakeholders to ensure timely remediation
  • Can demonstrate strong understanding of network security principles and encryption technologies
  • Experience of security change management processes and procedures
  • Demonstrate experience of risk assessment and advisory capabilities on both internal systems and products/solutions from third party vendors (SaaS, AI etc)
  • Experience in contributing to the development, implementation and management of security policies and procedures
  • Strong knowledge of security frameworks and industry best practices – such as ISO 270001, NIST, PCI-DSS and others
Job Responsibility
Job Responsibility
  • Supporting the design and implementation of information security systems and frameworks including threat prevention, detection and mitigation tools
  • Manage, maintain and optimize security information and event management (SIEM) platforms and associated security infrastructure
  • Detect and respond to information security incidents, investigate security incidents, identify attack vectors, and lead containment/eradication/recovery efforts
  • Create detailed incident reports, lead post-incident reviews, document lessons learned, and contribute to compliance reporting
  • Hunt for undetected threats, tune security tools, refine detection rules, and address false positives
  • Vulnerability management, analysis, oversee the vulnerability management lifecycle and reporting, support prioritization and advise relevant stakeholders on vulnerability status and postures
  • Identify risks in new and existing projects and environments and support the implementation of necessary security controls to meet business needs
  • Support the implementation of security orchestration, automation and response (SOAR) playbooks and procedures in order to improve response times and ensure consistent approach to incidents
  • Provide mentorship and support to more junior analysts, act as escalation point for complex issues
  • Support in testing and evaluation of security products and solutions
What we offer
What we offer
  • Global access to mental health and financial wellness support and resources
  • healthcare (medical, dental, and vision)
  • life, accident, disability, commuter, and retirement options (401(k)/pension)
  • Fulltime
Read More
Arrow Right

Staff Security Analyst, Threat Intelligence

We are building an elite team, applying frontier technologies to the world’s big...
Location
Location
United States , Menlo Park
Salary
Salary:
191000.00 - 225000.00 USD / Year
robinhood.com Logo
Robinhood
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 8–12+ years of total experience, including 3–5+ years operating at a senior or staff-level scope in threat intelligence, brand protection, or cyber investigations
  • Hands-on experience tracking criminal ecosystems tied to phishing, scams, impersonation, fraud, and infrastructure abuse, and the ability to move from isolated indicators to campaign- and actor-level analysis
  • Deep familiarity with domain registration patterns, DNS and certificate transparency analysis, cloud and hosting abuse across providers (e.g., AWS, GCP, Azure, VPS), and attacker monetization methods
  • Experience using OSINT tooling, SQL, Python, notebooks, SIEM or SOAR platforms, OpenCTI, and case management systems to analyze data and automate workflows
  • Ability to translate complex technical threats into clear business risk for technical teams and executive audiences through strong written and verbal communication
  • Experience mentoring others or leading initiatives across teams, with a high level of accountability and sound risk judgment in ambiguous situations
Job Responsibility
Job Responsibility
  • Proactively hunt and map criminal ecosystems targeting Robinhood and its customers, then translate intelligence into scalable systems and coordinated defenses that disrupt adversaries before they cause harm
  • Build and operationalize a comprehensive "Universe of Threats" by identifying, tracking, and prioritizing adversaries across phishing, scams, impersonation, fraud, and infrastructure abuse
  • Establish and mature a proactive threat intelligence lifecycle by developing industry partnerships, collaborating with trusted peers and federal authorities, and cultivating online personas to generate early warning capabilities that protect Robinhood’s business operations
  • Investigate attacker infrastructure across domains, DNS, certificate transparency logs, cloud providers, and telecom platforms, and convert findings into concrete detections, controls, and customer protections
  • Coordinate threat actor infrastructure takedowns with hosting providers, domain registrars, cloud platforms, and other infrastructure partners to disrupt adversary operations at scale
  • Design and automate intelligence workflows using OSINT tooling, enrichment pipelines, data analysis tools, and case management systems to scale analysis and reporting
  • Partner directly with Detection & Response, Automation, Customer Trust & Safety (Fraud and Financial Crimes), Security Engineering, Corporate Security, Risk, and executive leaders to prioritize threats based on measurable business risk
What we offer
What we offer
  • Challenging, high-impact work to grow your career
  • Performance-driven compensation with multipliers for outsized impact, bonus programs, equity ownership, and 401(k) matching
  • Best-in-class benefits to fuel your work, including 100% paid health insurance for employees with 90% coverage for dependents
  • Lifestyle wallet — a highly flexible benefits spending account for wellness, learning, and more
  • Employer-paid life & disability insurance, fertility benefits, and mental health benefits
  • Time off to recharge including company holidays, paid time off, sick time, parental leave, and more
  • Exceptional office experience with catered meals, events, and comfortable workspaces
  • Fulltime
Read More
Arrow Right

Domain Consultant 2 - Cortex Cloud

As a Domain Consultant for SOC Transformation you will be the expert for our Cor...
Location
Location
Germany , Munich
Salary
Salary:
Not provided
paloaltonetworks.com Logo
Palo Alto Networks
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in Security Operations or presales/ sales engineering within SIEM, SOAR, SOC, and/or endpoint environments
  • Solid understanding of Security Operations Center processes
  • Experience working with customers, with a client-centric approach and problem solving skills
  • Scripting experience is a plus - Python preferred
Job Responsibility
Job Responsibility
  • Collaborate with account teams to recommend and develop customer solutions within your assigned specialization area
  • Present to customers as our expert at all levels in the customer hierarchy, from practitioner to senior leadership
  • Lead and support customer demonstrations that showcase our unique value proposition
  • Scope and Lead Proof of Value (PoV) projects for prospective customers based on best practices to ensure technical win in your assigned opportunities
  • Drive high technical validation and PoV win rates within your assigned specialization area
  • Architect solutions that will help our customers strengthen and simplify their security posture
  • Accelerate technical validation of proposed solutions within your specialization
  • Document High-Level Design and Key Use Cases to ensure proper implementation and value realization of Palo Alto Networks Solutions
  • Help our customers build and develop further their services around Cortex solutions
  • Lead conversations about industry trends and emerging changes to the security landscape
  • Fulltime
Read More
Arrow Right

SIEM/SOC Leader

Our team is looking for a motivated and experienced SIEM/SOC Leader (Security in...
Location
Location
Greece , Athens
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor in Engineer in Computer Science or equivalent.
  • Minimum 8 years of experience in the field.
  • Strong hands-on experience with SIEM platforms (engineering, operations, and use-case development).
  • Solid understanding of log management, including ingestion, parsing, normalization, and correlation.
  • Experience with common log sources (OS, network, IAM, endpoint, cloud, and application logs).
  • Knowledge of detection engineering, SOC operations, and incident triage processes.
  • Familiarity with threat intelligence and enrichment techniques.
  • Experience with scripting and automation (e.g., Python) and API integrations.
  • Working knowledge of query languages such as KQL, SPL, or SQL-like.
  • Understanding of ITIL-based service management (incident, problem, change processes).
Job Responsibility
Job Responsibility
  • Own and manage the end-to-end SIEM service, including onboarding of log sources, detection use cases, and continuous improvements.
  • Define and maintain the SIEM operating model, backlog, priorities, and delivery roadmap.
  • Ensure SIEM platform health (log ingestion, parsing, normalization, storage, performance, retention, and capacity).
  • Manage integrations (log collectors, APIs, cloud connectors) and oversee upgrades and maintenance.
  • Develop and maintain detection rules, correlation logic, dashboards, and analytics.
  • Govern the full detection lifecycle (design, build, test, deploy, tune, retire).
  • Improve detection quality by reducing false positives and enhancing alert accuracy.
  • Integrate and operationalize threat intelligence (IoCs, TTPs) and enrich detections with contextual data.
  • Ensure alerts are actionable, with clear triage guidance, severity levels, and response playbooks.
  • Collaborate with SOC and Incident Response teams on incident handling, escalations, and post-incident improvements.
What we offer
What we offer
  • Health insurance for the employee and one dependent family member (100% paid by NTT DATA)
  • Meal vouchers of 120€ per month (x12)
  • Corporate mobile phone: subscription & device
  • Teleworking equipment allowance
  • Udemy Account
  • Access to Open Up mental health service
  • 28 days of paid annual leave consisting of your legal holidays and compensation days
  • Fulltime
Read More
Arrow Right

Senior Information Security Engineer - CTFC

Wells Fargo is seeking a Senior Information Security Engineer.
Location
Location
India , Bengaluru
Salary
Salary:
Not provided
https://www.wellsfargo.com/ Logo
Wells Fargo
Expiration Date
June 29, 2026
Flip Icon
Requirements
Requirements
  • 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
  • 4+ years of hands-on experience in Cyber Security, with a strong focus on Security Operations
  • 4+ years of experience working with enterprise SIEM platforms, preferably Splunk, including use case development, log analysis, and alert tuning
  • Solid understanding of cybersecurity frameworks and methodologies, including the Cyber Kill Chain, MITRE ATT&CK, and NIST frameworks
  • Proven experience in Security Incident Response, including detection, investigation, containment, mitigation, and remediation processes
  • Advanced knowledge of networking concepts, protocols, and security standards, along with deep understanding of Linux/Unix and Windows OS internals and system configurations
  • Strong analytical and problem-solving skills, with the ability to correlate events and identify potential threats across diverse environments
  • Bachelor’s and/or Master’s degree in computer science, Information Systems, or a related field
  • Industry-recognized certifications such as CHFI, OSCP, CEH, or equivalent are highly preferred
  • Experience with SOAR platforms (e.g., XSOAR), threat intelligence integration, and automation/orchestration is an added advantage
Job Responsibility
Job Responsibility
  • Lead or participate in computer security incident response activities for moderately complex events
  • Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
  • Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
  • Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
  • Review and correlate security logs
  • Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
  • Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
  • Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
  • Monitor, triage, and investigate security alerts, ensuring timely and effective case handling and resolution
  • Conduct detailed security investigations, performing analysis, correlation, and validation of potential threats
  • Fulltime
Read More
Arrow Right

Cyber Security Engineer

Location
Location
United Kingdom , London
Salary
Salary:
Not provided
coinshares.com Logo
CoinShares
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5 years' experience in a hands-on cyber security engineering or security operations role, with demonstrable breadth across multiple security domains
  • Experience running security processes end-to-end across multiple domains within a small team environment, operating as a generalist rather than a specialist in a single area
  • Bachelor's degree in Cyber Security, Computer Science, Information Technology, or equivalent practical experience
  • Relevant certifications are desirable (e.g. CISSP, CEH, AWS Security Specialty or CCSP)
  • Prior exposure to digital asset infrastructure, crypto custody or trading environments is advantageous but not required
  • Strong foundational knowledge across core cyber security domains: network security, endpoint security, cloud security, identity and access management, vulnerability management, threat detection, incident response and data security
  • Solid understanding of security frameworks including NIST CSF 2.0 and SOC 2
  • Experience working in a regulated environment
  • exposure to GDPR, DORA, SOX and the SEC Cybersecurity Rule is highly advantageous
  • Hands-on experience with SIEM, SOAR and EDR/XDR platforms - configuration, tuning, alerting, and integration with response workflows
Job Responsibility
Job Responsibility
  • Design, implement and maintain security controls across all systems and environments, spanning enterprise IT, cloud infrastructure and digital asset operations
  • Operate core security functions including endpoint protection, email security, identity and access management, data security and security monitoring
  • Manage and continuously improve the firm's SIEM, SOAR and EDR/XDR tooling, ensuring effective alerting, tuning and integration with incident response processes
  • Lead detection engineering and incident response, acting as the primary technical responder during security events and investigations
  • Lead vulnerability management and remediation across all environments, prioritising based on risk and business impact
  • Partner with IT, engineering and DevOps teams to embed security earlier in the development lifecycle, across infrastructure and into CI/CD pipelines
  • Maintain and improve cloud security controls across AWS, leveraging CSPM tooling to monitor posture and drive remediation
  • Conduct threat modelling, security architecture reviews and risk assessments for new systems, services and third-party integrations
  • Support third-party and vendor risk assessments, including review of SOC 2 reports, penetration test reports and security questionnaires
  • Contribute to the security of CoinShares' digital asset infrastructure, including custody and trading environments
  • Fulltime
Read More
Arrow Right