7 of 7 Permanent MITRE ATT&CK Jobs in the East of England

network traffic, endpoint telemetry, and logs Supporting live incident response and escalation activities Enhancing detection rules, playbooks, and tooling aligned to MITRE ATT&CK Producing clear, high-quality incident reports for technical and senior stakeholders Contributing to threat intelligence and proactive defence initiatives Keeping ahead … Proven experience working in a Security Operations Centre (SOC) Hands-on SIEM experience (Microsoft Sentinel, Splunk, or similar) Strong understanding of MITRE ATT&CK and modern detection methodologies Solid analytical skills across logs, endpoints, and network traffic Knowledge of core networking protocols (TCP/ ...

develop team knowledge of SOC tools, security operations and triage. Analyse and improve detection rules and use cases in line with Mitre Att&ck and threat-informed defence. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Represent … management experience to help develop Analysts and lead careers. Demonstrable experience of using Microsoft Sentinel and Splunk. Knowledge and experience with Mitre Att&ck Framework. Solid grasp of client-server applications, multi-tier web applications, relational databases, firewalls, VPNs, and enterprise AntiVirus products. Good understanding ...

ingestion, enrichment and schema standardisation (ECS/CIM). Develop and tune security detection rules, translating threat intel and TTPs (MITRE ATT&CK) into actionable, low-noise alerts. Manage the full content lifecycle: design test deploy monitor tune retire, with version control and rollback. Automate … data quality and large-scale ingestion architectures (ECS/CIM). Proven ability to design, test and optimise detection content, including MITRE ATT&CK-aligned rules and risk-based alerting (RBA). Advanced knowledge of SPL, KQL and EQL, focused on detection quality and noise ...

organisation’s digital environment. Communications with key business partners is key regarding risks, threats and SOC performance. Familiarity with NIST Cybersecurity, MITRE ATT&CK, Splunk, Sentinel and ISO27001 is vital What you will be doing: Lead, mentor, and develop SOC analysts and incident responders. Provide … with the ability to translate complex technical risks into clear business impacts for senior stakeholders. Familiarity with NIST Cybersecurity Framework and MITRE ATT&CK. Understanding of ISO 27001 standards and compliance best practices. Working knowledge of the CREST SOC Maturity Model. Experience applying ITIL processes across incident ...

passion for developing teams — coaching analysts and building collaborative, high-performing cultures. Strong understanding of frameworks and standards such as NIST, MITRE ATT&CK, ISO 27001, CREST, and ITIL. Excellent communication skills, with the ability to translate technical risks into clear business impacts. Desirable Vendor ...

background is at least in part within a health or health-related industry. 6. Knowledge of cyber security frameworks such as MITRE ATT&CK, SABSA, OWASP Skills Essential 1. Excellent people management skills and communication skills 2. Excellent communication skills - with ability to communicate complex ...

Elastic Security and Splunk (Enterprise & ES) platforms Designing and managing SIEM data pipelines (ingestion, enrichment, ECS/CIM) Building and tuning MITRE ATT&CK-aligned detections with low noise Owning the SIEM content lifecycle end to end Automating SIEM workflows using CI/CD, SOAR ...