20 of 20 MITRE ATT&CK Jobs in the UK excluding London

customer environments. Producing clear, insightful reports for both technical and non-technical audiences. Enhancing detection rules and use cases aligned to MITRE ATT&CK and threat-informed defence. What you'll bring: Hands-on experience with Microsoft Sentinel and Splunk. Knowledge of the MITRE ATT&CK framework. Understanding of client-server and multi-tier applications, databases, firewalls, VPNs and endpoint security. Solid networking fundamentals (TCP/IP, LAN/WAN, HTTP, SMTP, FTP, LDAP, etc.). Strong analytical thinking and structured problem-solving. An entry-level cyber security certification ...

escalation playbooks; suggest improvements based on recurring issues or inefficiencies. Threat Awareness: Maintain awareness of current cyber threats, attacker techniques (MITRE ATT&CK), and industry trends relevant to the organisations threat landscape. Essential: 2-4 years of experience in a SOC, IT Operations, or security … Working knowledge of SIEM platforms (e.g. Microsoft sentinel, Splunk, Elastic, QRadar). Desirable: Awareness of security frameworks and methodologies (NIST CSF, MITRE ATT&CK, ISO27001). Qualifications: Desirable: CompTIA Security+, CySA+ or other entry level certification. ...

detection and response technologies such as Microsoft Defender, CrowdStrike, SentinelOne, or Carbon Black * Understanding of attacker techniques and frameworks such as MITRE ATT&CK * Solid knowledge of core networking concepts including TCP/IP, DNS, HTTP/S, Firewalls, and VPNs * Experience analysing logs from ...

SIEM, SOAR, EDR, IDS/IPS, firewalls, and cloud-native security tooling. Knowledge of cyber security frameworks such as NIST CSF, MITRE ATT&CK, ISO 27001, or CIS Controls. Demonstrated expertise in incident response and threat management. Experience working in hybrid cloud environments (Azure ...

platforms and detection tuning Scripting/automation skills (Python, PowerShell or similar) Understanding of threat detection and incident response frameworks (e.g., MITRE ATT&CK) Certifications (CISSP, CISM, CEH, etc.) are a plus Requirements Active DV Clearance (essential) Hybrid: 3 days per week on site ...

detection tuning Scripting/automation xehkeey skills (Python, PowerShell or similar) Understanding of threat detection and incident response frameworks (e.g., MITRE ATT&CK) Certifications (CISSP, CISM, CEH, etc.) are a plus Requirements Active DV Clearance (essential) Hybrid: 3 days per week on site ...

detection tuning Scripting/automation xkybehq skills (Python, PowerShell or similar) Understanding of threat detection and incident response frameworks (e.g., MITRE ATT&CK) Certifications (CISSP, CISM, CEH, etc.) are a plus Requirements Active DV Clearance (essential) Hybrid: 3 days per week on site ...

detection tuning Scripting/automation xkybehq skills (Python, PowerShell or similar) Understanding of threat detection and incident response frameworks (e.g., MITRE ATT&CK) Certifications (CISSP, CISM, CEH, etc.) are a plus Requirements Active DV Clearance (essential) Hybrid: 3 days per week on site ...

detection tuning xkybehq Scripting/automation skills (Python, PowerShell or similar) Understanding of threat detection and incident response frameworks (e.g., MITRE ATT&CK) Certifications (CISSP, CISM, CEH, etc.) are a plus Requirements Active DV Clearance (essential) Hybrid: 3 days per week on site ...

intelligence platforms Practical experience handling security incidents, threat hunting, and investigations Solid understanding of attacker tactics, techniques, and frameworks such as MITRE ATT&CK Proven experience working with clients in a consultative or advisory capacity Background working within an MSSP environment Desirable CISSP, CISM, GIAC ...

intelligence platforms Practical experience handling security incidents, threat hunting, and investigations Solid understanding of attacker tactics, techniques, and frameworks such as MITRE ATT&CK Proven experience working with clients in a consultative or advisory capacity Background working within an MSSP environment Desirable CISSP, CISM, GIAC ...

Experience with security operations tooling and environments (e.g. SOC integration) * Strong understanding of security frameworks and methodologies, e.g: Cyber Kill Chain, MITRE ATT&CK * Excellent analytical skills and attention to detail * Ability to quickly learn and apply new technologies to improve security posture * Strong communication ...

Splunk SIEM, to enable the detection of threats across diverse platforms (e.g. cloud, endpoints, and networks) · Use frameworks like MITRE ATT&CK to map detection rules and maximise threat coverage · Use analytical platforms to query high volume datasets to identify trends and spot unusual behaviours ...

SIEM platforms, specifically Splunk Enterprise & Enterprise Security and Elastic Stack/Elastic Security Deep knowledge of detection engineering, threat intelligence frameworks (MITRE ATT&CK), and noise reduction techniques Hands-on experience with data ingestion tools such as Elastic Agent, Beats, Splunk UF/HF, Syslog ...

system architectures and articulate these via risk terminology Security architecture design and review Threat modelling and risk assessment (e.g., STRIDE, DREAD, MITRE ATT&CK) Cloud security, including IAM, network segmentation, and encryption Network security principles including firewalls, VPNs, WAFs, and zero trust architecture Application security ...

similar security-focused role Exposure to tools like SIEM (Splunk, Sentinel, QRadar, etc.) or EDR Understanding of common attack techniques (MITRE ATT&CK, incident response basics) An interest in detection engineering, automation, or threat hunting Not ticking every box? That’s fine—we’re hiring ...

similar. Strong knowledge of network security, threat detection, and incident response. Experience analysing malware, security alerts, and attack patterns. Understanding of MITRE ATT&CK framework and its application in threat detection and mitigation. Experience working with EDR tools and endpoint security technologies. Knowledge of firewalls ...

evaluate current and emerging technologies to select or recommend the best solutions for the future state architecture. Knowledge of application security, MITRE ATT&CK and Threat Modelling. Broad knowledge of controls in the industry (NIST, ISO, PCI, SOC, CSF, ISO27001, SABSA and TOGAF) Identity ...

central SOC/SIEM environment (including alerting, detection and response tuning) Take a threat led approach to security configuration, aligned to MITRE ATT&CK, Cyber Kill Chain and relevant threat intelligence Roll out endpoint and ICS monitoring agents across OT environments, including remote and critical ...

architecture teams to ensure compliance with security best practices . Stay up to date with emerging threats , frameworks (e.g., NIST, MITRE ATT&CK), and security trends. Communicate technical concepts to both technical and business stakeholders effectively. Open Positions and Key Skills 1. Security Consultant – Private ...