5 of 5 MITRE ATT&CK Jobs in the South East

reactive alert handling. You will actively hunt for malicious activity using telemetry, SIEM data, and threat intelligence, develop hypotheses based on MITRE ATT&CK Tactics, Techniques, and Procedures (TTPs), and support incident management and response activities when threats are identified. We are open to experienced … experience using SIEM platforms, including: Microsoft Sentinel (KQL) Splunk (SPL) Elastic Security/Kibana (KQL, ESQL) Practical and operational understanding of MITRE ATT&CK, attacker techniques, and adversary tradecraft Experience working with Indicators of Compromise (IOCs) and threat intelligence feeds Solid experience across the security ...

Splunk SIEM, to enable the detection of threats across diverse platforms (e.g. cloud, endpoints, and networks) · Use frameworks like MITRE ATT&CK to map detection rules and maximise threat coverage · Use analytical platforms to query high volume datasets to identify trends and spot unusual behaviours ...

similar security-focused role Exposure to tools like SIEM (Splunk, Sentinel, QRadar, etc.) or EDR Understanding of common attack techniques (MITRE ATT&CK, incident response basics) An interest in detection engineering, automation, or threat hunting Not ticking every box? That’s fine—we’re hiring ...

used Microsoft Sentinel , that’s a major win). Threat Knowledge: A solid grasp of common attacker techniques (MITRE ATT&CK framework knowledge is highly regarded). Microsoft Ecosystem: Familiarity with Microsoft Defender for Endpoint/Identity or Azure security tools. The "Investigator" Mindset ...

evaluate current and emerging technologies to select or recommend the best solutions for the future state architecture. Knowledge of application security, MITRE ATT&CK and Threat Modelling. Broad knowledge of controls in the industry (NIST, ISO, PCI, SOC, CSF, ISO27001, SABSA and TOGAF) Identity ...