SOAR Engineer

What you’ll do

Position Overview:

• We are seeking a skilled and motivated SOAR (Security Orchestration, Automation, and Response) Engineer with expertise preferably in Software Engineering and platform management to join our cybersecurity team

Key Responsibilities:

Infrastructure Deployment:

• Utilize Terraform for infrastructure as code (IaC) to deploy and manage the infrastructure.

• Deploy and manage security infrastructure on Google Cloud Platform (GCP).

• Ensure scalable and resilient architecture for security operations.

Integration with Other Capabilities:

• Lead on requirements gathering exercises, synthesising this input into actionable deliverables

• Design, develop and document potentially complex integrations with other Cyber tooling

• Create efficient and effective software in line with best practice

• Provide clear instructions and handover to the wider team and end users to ensure effective utilisation

System Maintenance and Support:

• Integrate SOAR tools with other security technologies and systems (SIEM, threat intelligence platforms, etc.).

• Collaborate with the SOC team to automate incident detection, analysis, and response processes.

• Perform regular health checks and maintenance of the SOAR platform to ensure optimal performance.

• Troubleshoot and resolve issues related to the SOAR system and integrations.

Documentation and Reporting:

• Maintain comprehensive documentation of SOAR configurations, workflows, and incident response procedures.

• Generate reports on SOAR performance, incident response metrics, and security operations improvements.

• Conduct post-incident reviews to identify areas for improvement and update playbooks and processes accordingly.

Testing and DevOps:

• Develop and implement automated testing frameworks for SOAR workflows and integrations.

• Collaborate with DevOps teams to integrate SOAR solutions into CI/CD pipelines.

• Use tools like GitLab CI, Ansible or similar for continuous integration and deployment.

• Ensure rigorous testing of SOAR playbooks and scripts to maintain high reliability and performance.

• Monitor and improve the deployment and operational processes of SOAR solutions.

Who you are

Technical Skills:

• Experience with software development and automation using Python required.
• Experience with Terraform for infrastructure as code (IaC) is required.
• Hands-on experience with deploying and managing infrastructure on GCP or other cloud provider.
• Proficiency with IBM QRadar SOAR or any other SOAR platform.
• Strong understanding of security incident response, threat detection, and remediation processes.
   

Not a perfect fit?

Worried that you don’t meet all the desired criteria exactly? At Vodafone we are passionate about Inclusion for All and creating a workplace where everyone can thrive, whatever their personal or professional background. If you’re excited about this role but your experience doesn’t align exactly with every part of the job description, we encourage you to apply as you may be the right candidate for this role or another role, and our recruitment team can help you see how your skills fit in.

What's in it for you

G Band Benefits:

• Discretionary yearly bonus: 10%
• Annual leave: 28 days + bank holidays + the opportunity to buy/sell/carry over 5 days/year
• Charity days: 5 days/year
• Maternity/adoption leave: 52 weeks out of which the first 13 weeks are fully paid followed by 26 weeks of half pay and 6 months - working 4 days, getting paid 5
• Paternity leave: 16 weeks fully paid
• Private pension: You can contribute up to 5% of your basic pay with 2:1 matching from Vodafone up to 10%.
• Access to: private medical, private dental, free health assessments, share save scheme
• Additional discounts: Vodafone retail, gym, cinema, cycle to work, season ticket loan

Who we are

#groupresourcing #grouptalentacquisition