21 of 21 MITRE ATT&CK Jobs in the South East

reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats are identified. We are open to experienced … experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary tradecraft Experience working with Indicators of Compromise (IOCs) and threat intelligence feeds Solid experience across the security ...

reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats are identified. We are open to experienced … experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary tradecraft Experience working with Indicators of Compromise (IOCs) and threat intelligence feeds Solid experience across the security ...

Threat & Adversary Knowledge * Understanding of attacker Tactics, Techniques and Procedures (TTPs) and how they manifest in logs and telemetry * Familiarity with MITRE ATT&CK framework * Evidence of staying up to date with: o Emerging threats o Adversary tradecraft o Defensive techniques ________________________________________ Incident Handling & Investigation * Experience … Analyst, Cyber Security Analyst, Microsoft Sentinel, Splunk, Elastic SIEM, KQL, SPL, ES|QL, Threat Detection, Incident Response, EDR, IDS/IPS, MITRE ATT&CK, Cyber Defence ...

reports for managed clients to both technical and non-technical audiences, Collaborate on improving detection rules and use cases aligned with Mitre Att&ck and threat-informed defense. Participate in a team effort to guarantee that corporate data and technology platform components are shielded from … Farnborough. What youll bring: Experience demonstrated in Security Operations Centre. Experience using Microsoft Sentinel and Splunk. Knowledge and experience with Mitre Att&ck Framework. Basic knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise AntiVirus products. Understanding of networking ...

guidance Design and support purple team exercises to enhance detection and response capabilities Simulate advanced attack scenarios using frameworks such as MITRE ATT&CK Produce high-quality technical reports for both technical and non-technical stakeholders Mentor junior team members and promote security testing best … years of hands-on penetration testing experience across network, web, cloud, internal, red team, or purple team environments Excellent knowledge of: MITRE ATT&CK OWASP Threat modelling Attack surface analysis Experience with automated, dynamic, and static security testing tools Knowledge of regulatory frameworks including GDPR ...

essential skills Experience working in a Security Operations Centre environment Hands-on experience with Microsoft Sentinel and Splunk Knowledge of the MITRE ATT&CK framework Understanding of networks and systems, including TCP/IP, firewalls, VPNs and endpoint security Strong analytical and problem-solving skills … client in conjunction with this vacancy only. KEY SKILLS: SOC Analyst, Security Operations Centre, Microsoft Sentinel, Splunk, SIEM, Incident Response, MITRE ATT and CK, Networking, SC Clearance ...

essential skills Experience working in a Security Operations Centre environment Hands-on experience with Microsoft Sentinel and Splunk Knowledge of the MITRE ATT&CK framework Understanding of networks and systems, including TCP/IP, firewalls, VPNs and endpoint security Strong analytical and problem-solving skills … client in conjunction with this vacancy only. KEY SKILLS: SOC Analyst, Security Operations Centre, Microsoft Sentinel, Splunk, SIEM, Incident Response, MITRE ATT and CK, Networking, SC Clearance ...

SIEM, SOAR, EDR, DLP, email security and intrusion detection technologies. Analyse attacker tactics, techniques and procedures (TTPs) using frameworks such as MITRE ATT&CK. Produce dashboards, reports and recommendations to improve security posture. Ensure adherence to operational processes, SLAs, KPIs and security policies. Drive continuous improvement across … PowerShell, Bash, Perl or similar. Understanding of network forensics, threat intelligence and cyber threat detection methodologies. Knowledge of ISO 27001:2022 , MITRE ATT&CK , and IT Service Management principles. ...

Required Experience & Skills 2–4 years’ experience in a SOC, CSIRT, or cyber defence environment Strong understanding of attack frameworks (e.g. MITRE ATT&CK, Cyber Kill Chain) Hands-on experience with SIEM and EDR tools (e.g. Microsoft Sentinel, Splunk, CrowdStrike, Defender) Experience in incident triage ...

including TCP/IP, DNS, Firewalls, and proxies. Experience within a SOC, NOC, or 24/7 operational environment. Familiarity with MITRE ATT&CK, CVEs, and vulnerability management. Exposure to cloud security monitoring across Azure, AWS, or Microsoft 365. Desirable Certifications Microsoft SC-200 CompTIA ...

several of the following areas: Application Security & Secure SDLC OWASP Top 10/ASVS Secure coding practices Threat modelling (STRIDE/MITRE ATT&CK) Security architecture and design reviews Vulnerability management and remediation Secure Software Development Lifecycle (SSDLC) DevSecOps & CI/CD Security Integration ...

queries and manage Splunk Enterprise Security. Technical Breadth: Strong knowledge of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. Vulnerability Assessment & Penetration Testing: Bonus points for experience with vulnerability assessment tools and exposure to penetration testing and web application testing. ...

What you’ll be doing: • Engineering and refining advanced SIEM detections across secure environments • Researching emerging threats and mapping detections to MITRE ATT&CK • Tuning detections to improve fidelity and reduce false positives • Supporting SOC analysts and wider engineering teams with technical expertise • Driving detection ...

Python, PowerShell, and JavaScript. Experience with GCP or Azure cloud environments. (preferably on GCP) Solid understanding of security frameworks such as MITRE ATT&CK and NIST CSF. Strong documentation and architectural design experience (HLD/LLD). Experience within Banking or Financial Services. Exposure ...

Splunk Enterprise Security (ES). You must have a strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. CCFA/CCFR Certifications will be a a major plus. If you match the above skill set please apply ASAP. ...

escalation point for Tier 1, owning investigations end-to-end — triaging SIEM and EDR alerts, leading incident response, hunting threats using MITRE ATT&CK, and tuning detections to cut noise. You’ll also mentor junior analysts and help mature playbooks and runbooks. We’re looking ...

tools Experience supporting audits, certifications and compliance frameworks including ISO 27001, SOC 2 and NIST Knowledge of security methodologies such as MITRE ATT&CK Excellent communication and stakeholder management skills Experience operating within high-growth or evolving organisations French language skills would be advantageous This ...

endpoint detection platforms Knowledge of identity and access management, directory services, or privileged access solutions Understanding of security frameworks such as MITRE ATT&CK Experience working in secure or regulated environments Strong problem-solving skills and ability to work at a detailed technical level Familiarity ...

experience running vendor evaluations and PoCs for enterprise security platforms Strong understanding of offensive techniques mapped to detection capabilities (aligned to MITRE ATT&CK) Experience integrating security tooling outputs into SIEM platforms and broader security workflows Experience with tools such as SafeBreach, BloodHound, Microsoft EASM ...

standards and processes in large corporate IT environments Working knowledge of Cyber Security frameworks/methodologies (such as NIST, ISO 27001, MITRE ATT&CK, Lockheed Martin Kill Chain etc) Network Security Architect Due to the volume of applications received for positions, it will ...

APIs, microservices, and modern application architectures. Knowledge of current cyber threats and experience with threat modelling frameworks such as STRIDE and MITRE ATT&CK. Solid understanding of key security domains including IAM, network security, cryptography, endpoint security, and information management. Familiarity with security frameworks and standards including ...