26 to 33 of 33 MITRE ATT&CK Jobs in England

including access controls, authentication, and encryption using Elastic Security features. - Ability to create, test, and optimise detection rules based on the MITRE ATT&CK Framework. - Experience in performance tuning with Elasticsearch and Logstash, including monitoring Logstash pipelines. - Proficiency in using Kibana for data visualisation ...

High-Noise Datasets Strong Background in Threat & Vulnerability Intelligence including Vulnerability Lifecycles, Exploitation Timelines, Threat Actor Tradecraft & Frameworks such as MITRE ATT&CK Strong Python Skills, with experience Building Detection Tooling, Parsers, Enrichment Pipelines or Internal Analysis Frameworks Deep Familiarity with OpenSearch/ELK-Style ...

with a focus on Elastic Security . Detection & Compliance Expert: Proven ability to engineer high-fidelity detection rules based on the MITRE ATT&CK Framework , alongside implementing essential security controls like RBAC, encryption , and data governance to ensure regulatory compliance. Performance & Tuning Specialist: Deep technical ...

with a focus on Elastic Security . Detection & Compliance Expert: Proven ability to engineer high-fidelity detection rules based on the MITRE ATT&CK Framework , alongside implementing essential security controls like RBAC, encryption , and data governance to ensure regulatory compliance. Performance & Tuning Specialist: Deep technical ...

languages (Python, Bash, PowerShell). Experience with cloud security monitoring (AWS, Azure, GCP). Knowledge of frameworks such as NIST and MITRE ATT&CK. Qualifications Bachelor’s degree in Cyber Security, IT, or related field. 3–5 years in SOC operations, incident response, or threat intelligence. Practical ...

Elastic Security and Splunk (Enterprise & ES) platforms Designing and managing SIEM data pipelines (ingestion, enrichment, ECS/CIM) Building and tuning MITRE ATT&CK-aligned detections with low noise Owning the SIEM content lifecycle end to end Automating SIEM workflows using CI/CD, SOAR ...

enhance detection capabilities in hybrid environments. Monitor networks and leverage threat intelligence to improve detection coverage, incorporating frameworks such as MITRE ATT&CK. Drive service improvements and efficiency through automation, tooling, and operational innovation. Engage with senior stakeholders, presenting detection effectiveness, KPIs, and continuous improvement initiatives. Ensure ...

self sufficient and have improved a SOC environment in a financial services institution, have a proven track record implementing/using the MITRE Attack framework, are a capable analyst but also have an engineering, problem-solving mentality keen to spot/correct inefficiencies have a good understanding ...