23 of 23 MITRE ATT&CK Jobs in England

Splunk Enterprise Security platforms Designing and maintaining log ingestion pipelines and data enrichment processes Developing and tuning detection rules aligned to MITRE ATT&CK techniques Managing the full lifecycle of detection content from design through to optimisation Automating security workflows using scripting, CI/… detection engineering Experience with automation, scripting or Infrastructure as Code in SIEM environments Understanding of MITRE ATT&CK and threat detection techniques Experience with high availability, disaster recovery and SIEM performance optimisation TO BE CONSIDERED Please either apply through this advert or email me directly ...

technical audiences and continuously improve their content and presentation. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Work as part of a team to ensure that corporate data and technology platform components are safeguarded from … Expertise Essential Skills Proven experience in Security Operations Centre. Demonstrable experience of using Microsoft Sentinel and Splunk. Knowledge and experience with Mitre Att&ck Framework. Strong knowledge of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise AntiVirus products. Strong understanding ...

escalation playbooks; suggest improvements based on recurring issues or inefficiencies. • Threat Awareness: Maintain awareness of current cyber threats, attacker techniques (MITRE ATT&CK), and industry trends relevant to the organisations threat landscape. About You: As an experienced SOC Analyst, your skills and experience may include … systems. • Working knowledge of SIEM platforms (e.g. Microsoft sentinel, Splunk, Elastic, QRadar). • Awareness of security frameworks and methodologies (NIST CSF, MITRE ATT&CK, ISO27001). ...

environments Security automation and IaC: Python, PowerShell, Terraform, Bicep, or Sentinel analytics rules - you codify controls, you do not document them MITRE ATT&CK coverage mapping; threat hunting, adversary emulation, and proactive gap analysis against realistic TTPs Cloud infrastructure - Azure preferred, AWS considered; IAM, managed … environments Security automation and IaC: Python, PowerShell, Terraform, Bicep, or Sentinel analytics rules - you codify controls, you do not document them MITRE ATT&CK coverage mapping; threat hunting, adversary emulation, and proactive gap analysis against realistic TTPs Cloud infrastructure - Azure preferred, AWS considered; IAM, managed ...

Score remediation Vulnerability Management Tools such as Tenable , Pentera , Varonis , Secure Score Experience coordinating remediation with technical teams Frameworks & Security Models MITRE ATT&CK, OWASP Top 10 Exposure to zero-trust principles Understanding of encryption, certificate management, secrets management Scripting & Automation PowerShell (essential) Python ...

optimise complex queries to support threat detection, proactive threat hunting, and anomaly identification Map detection logic to adversary behaviours using the MITRE ATT&CK Framework, ensuring effective coverage of tactics, techniques, and procedures Work with the wider Splunk ecosystem, including tools like TrackMe, and contribute ...

Experience with cloud-native logging, monitoring, and detection tools Strong understanding of modern threat landscapes and frameworks (e.g. OWASP Top 10, MITRE ATT&CK ...

Understanding of frameworks such as National Institute of Standards and Technology guidance, International Organization for Standardization ISO 27001, and the MITRE ATT&CK framework ...

Understanding of frameworks such as National Institute of Standards and Technology guidance, International Organization for Standardization ISO 27001, and the MITRE ATT&CK framework ...

platforms and detection tuning Scripting/automation skills (Python, PowerShell or similar) Understanding of threat detection and incident response frameworks (e.g., MITRE ATT&CK) Certifications (CISSP, CISM, CEH, etc.) are a plus Requirements Active DV Clearance (essential) Hybrid: 3 days per week in Bristol ...

Query Language (KQL) queries to analyse and visualise raw security data. Integrate third-party tools (firewalls, IAM, telemetry) into Sentinel. Use MITRE ATT&CK to anticipate and counter adversarial activity. Apply cost-optimisation principles (data tiering, filtering). Collaborate with security architects to improve internal ...

Splunk SIEM, to enable the detection of threats across diverse platforms (e.g. cloud, endpoints, and networks) · Use frameworks like MITRE ATT&CK to map detection rules and maximise threat coverage · Use analytical platforms to query high volume datasets to identify trends and spot unusual behaviours ...

OAuth and OpenID Connect Experience with PowerShell scripting for automation and administration Understanding of security frameworks and threat models such as MITRE ATT&CK Relevant Microsoft certifications such as SC-200, SC-300 or SC-400 Desirable Skills for the Microsoft Security Engineer: CISSP ...

ensure appropriate classification, labeling, access control, and lifecycle management of sensitive data. Essential Skills & Experience Strong understanding of security frameworks (CIS), MITRE ATT&CK, and AI/LLM security frameworks. Hands-on experience with Azure cloud security , DevSecOps, and cloud-native architectures. Expertise with Microsoft ...

similar security-focused role Exposure to tools like SIEM (Splunk, Sentinel, QRadar, etc.) or EDR Understanding of common attack techniques (MITRE ATT&CK, incident response basics) An interest in detection engineering, automation, or threat hunting Not ticking every box? That’s fine—we’re hiring ...

similar. Strong knowledge of network security, threat detection, and incident response. Experience analysing malware, security alerts, and attack patterns. Understanding of MITRE ATT&CK framework and its application in threat detection and mitigation. Experience working with EDR tools and endpoint security technologies. Knowledge of firewalls ...

Develop scripts, tools and methodologies to increase Offensive Security's capabilities and educate other team members around automation and AI. Use MITRE ATT&CK Framework and other structured attack analysis tools to describe and classify attacker methodology and significance. Qualifications What your core background ...

Develop scripts, tools and methodologies to increase Offensive Security's capabilities and educate other team members around automation and AI. Use MITRE ATT&CK Framework and other structured attack analysis tools to describe and classify attacker methodology and significance. Qualifications What your core background ...

incident response processes Strong analytical and investigative skills Nice to Have: Experience with CrowdStrike, SentinelOne or Microsoft Defender Knowledge of MITRE ATT&CK framework Relevant certifications such as CySA+, CEH or Security+ If this sounds like you, apply now for consideration. Oscar Associates (UK) Limited ...

environments Practical experience building and maintaining SOAR playbooks and automations Good understanding of common attack techniques, TTPs, and frameworks such as MITRE ATT&CK Scripting or automation capability (e.g., Python, PowerShell, JSON, REST APIs) Strong analytical and problem-solving skills with a methodical approach ...

Experience with Scripting languages, particularly PowerShell, for automation and management. Familiarity with common cybersecurity frameworks and attack methodologies, such as the MITRE ATT&CK framework. Microsoft Certified: Security Operations Analyst Associate (SC-200; SC-300; SC-400). Certified Information Systems Security Professional (CISSP). ...

policy definition to support 'policy as code' implementations 3rd party connectivity, material outsourcing and integrated SaaS environments Threat and risk-led security (e.g. Mitre Attack) DevSecOps Control maturity assessments, control mapping Preferred Qualifications: Certifications such as CISSP, CISM, SABSA, AWS/Azure Security, or Cybersecurity Architect Expert. Experience ...

understanding of key frameworks such as NIST (800-37, 800-30, 800-53), ISO 27001/27005, SOC 2, PCI or MITRE ATT&CK. Solid understanding of cloud models, application security, vulnerability and patch management. Experience in regulated and/or unionised environments. Excellent communication skills with ...