to work with cross-functional teams Hands-on experience with cyber security tools and solutions (ideally SOAR platforms) Understanding of the MITREATT&CK framework (or equivalent) and emerging threat actor tactics, techniques, and procedures Microsoft Sentinel Logic Apps or Power Automate Defender for Endpoint more »
environment. Oversee incident response, threat detection, and mitigation efforts You'll be someone with: A good understanding of monitoring frameworks eg MITREATT&CK and SIEM technologies eg Microsoft Sentinel An interest in automation of Security operation function including artificial intelligence An understanding of Microsoft more »
communication, influencing, and collaboration skills? Knowledge of detection rule development, covering tools (such as SIEM, EDRs) and industry frameworks (such as MITREATT&CK) Nice-to-have Expert proficiency in Python, Kusto, or other scripting language Experience working as a security analyst or incident responder more »
working with SOAR capabilities development Knowledge of detection rule development, covering tools (such as SIEM, EDRs) and industry frameworks (such as MITREATT&CK) Experience working as a security analyst or incident responder (in a SOC/CSIRT/on-call setup more »
communication, influencing, and collaboration skills? Knowledge of detection rule development, covering tools (such as SIEM, EDRs) and industry frameworks (such as MITREATT&CK) Expert proficiency in Python, Kusto, or other scripting language Experience working as a security analyst or incident responder (in a SOC more »
SOC) and responding to security alerts. Experience in creating response playbooks and handling escalations. Additional experience in EDR, M365 security, SIEM, Vulnerability management, MITREattack framework, and Incident response. Strong stakeholder engagement skills and the ability to promote a secure mindset within an organisation. Previous experience working with more »
with enterprise networks including next generation firwalls, network segmentation technology (Forescout preferred) and internet connectivity. Experience with EDR, M365 security, SIEM, Vulnerability management, MITREattack framework and Incident response. Experience of providing knowledge transfer to Service Delivery teams and developing other cybersecurity team members. Having an in-depth more »