1 to 25 of 26 MITRE ATT&CK Jobs in the Midlands

using SIEM and EDR solutions. Fine-tune SIEM detection rules, correlation alerts, and log sources to reduce false positives. Analyse threat intelligence feeds, map findings to MITRE ATT&CK framework, and provide actionable security recommendations. Collaborate with SOC teams to investigate alerts, escalate incidents, and improve detection mechanisms. Conduct adversary simulation exercises to test and … operations or on call. Threat Hunting & Detection (IOC & IOA Analysis, TTP Profiling, Cyber Kill Chain) SIEM Fine-Tuning & Optimisation (QRadar, Splunk, Sentinel, ArcSight) Incident Response & Forensics (MITRE ATT&CK, DFIR, Log Analysis) Threat Intelligence Analysis Security Analytics & Automation (SOAR, YARA Rules, Sigma Rules) Malware Analysis & Reverse Engineering Network & Endpoint Security Monitoring (EDR, IDS/IPS More ❯

using SIEM and EDR solutions. Fine-tune SIEM detection rules, correlation alerts, and log sources to reduce false positives. Analyse threat intelligence feeds, map findings to MITRE ATT&CK framework, and provide actionable security recommendations. Collaborate with SOC teams to investigate alerts, escalate incidents, and improve detection mechanisms. Conduct adversary simulation exercises to test and … operations or on call. Threat Hunting & Detection (IOC & IOA Analysis, TTP Profiling, Cyber Kill Chain) SIEM Fine-Tuning & Optimisation (QRadar, Splunk, Sentinel, ArcSight) Incident Response & Forensics (MITRE ATT&CK, DFIR, Log Analysis) Threat Intelligence Analysis Security Analytics & Automation (SOAR, YARA Rules, Sigma Rules) Malware Analysis & Reverse Engineering Network & Endpoint Security Monitoring (EDR, IDS/IPS More ❯

propose pragmatic, measurable improvements Lead small initiatives to improve SOC efficiency, such as automating repetitive tasks or improving alert triage Contribute to maturity efforts such as MITRE ATT&CK mapping, control gap analysis, or threat modelling Education and Experience Requirements Experience (preferred) 1 to 3 years of hands-on experience in a SOC or similar … on experience with log analysis and alert triage, vulnerability scanning and patching and incident response Working knowledge of cyber security and compliance frameworks (NIST, ISO 27001, MITRE ATT&CK). Experience or strong interest in using scripting and automation for security operations Soft Skills: Excellent written and verbal communication skills, with the ability to convey More ❯

Digital Forensics, Incident Response, or Ethical Hacking (e.g., GCIH, CEH, GCFE, GCFA, and CFCE). Knowledge of main concepts related to the Incident Response Life Cycle, MITRE ATT&CK Framework, Cyber Kill Chain, and other cybersecurity frameworks. High-level understanding of common intrusion methods and cyber-attack tactics, techniques, and procedures (TTPs), and common industry More ❯

of IDS/IPS, firewalls, and endpoint protection. Experience responding to real-world incidents and performing log analysis. Familiarity with industry standards and frameworks such as MITRE ATT&CK, ISO 27001, or NIST. In Return: Competitive salary between £40,000-£50,000 Hybrid working model with flexibility. Opportunities for certification support and career development. A More ❯

DevSecOps, IaC (Terraform), CI/CD pipelines, and tools like Veracode, Trivy, and Checkov. Familiarity with standards such as CIS, NIST, GDPR, ISO and frameworks like MITRE ATT&CK. Strong programming/scripting skills (Python, Go, Groovy) with a clean, secure coding ethos. Ideal Candidate Profile Expert in Azure cloud security services (Defender for Cloud, Azure Sentinel More ❯

this is the role for you. Responsibilities: Analyzing security incidents using tools like Microsoft Sentinel and Splunk. Fine-tuning detection rules and strategies with frameworks like Mitre ATT&CK to stay ahead of threats. Contributing to the development of our Security Operations Centre to adapt to new challenges. Skills/Must have: Proven experience working … in a Security Operations Centre. Hands-on experience with Microsoft Sentinel and Splunk. Familiarity with the Mitre ATT&CK framework. Strong understanding of networking fundamentals (TCP/IP, WANs, LANs, protocols). Knowledge of security tools like firewalls, VPNs, AV, IDS/IPS, and log management. Experience analyzing log data and network security events. Understanding More ❯

this is the role for you. Responsibilities: Analyzing security incidents using tools like Microsoft Sentinel and Splunk. Fine-tuning detection rules and strategies with frameworks like Mitre ATT&CK to stay ahead of new threats. Contributing to the development of our Security Operations Centre to adapt to emerging challenges. Skills/Must have: Proven experience … working in a Security Operations Centre. Hands-on experience with Microsoft Sentinel and Splunk. Familiarity with the Mitre ATT&CK framework. Strong understanding of networking fundamentals (TCP/IP, WANs, LANs, common Internet protocols). Knowledge of enterprise-grade security tools such as firewalls, VPNs, antivirus, IDS/IPS, and log management. Experience analyzing log More ❯

DevSecOps, IaC (Terraform), CI/CD pipelines, and tools like Veracode, Trivy, and Checkov. Familiarity with standards such as CIS, NIST, GDPR, ISO and frameworks like MITRE ATT&CK. Strong programming/scripting skills (Python, Go, Groovy) with a clean, secure coding ethos. Ideal Candidate Profile: Expert in Azure cloud security services (Defender for Cloud, Azure Sentinel More ❯

capability. A keen interest in current cybersecurity developments, with awareness of emerging threats, attacker techniques, and known vulnerabilities. Working knowledge of industry recognized frameworks such as MITRE ATT&CK, and an understanding of key compliance requirements including ISO 27001 and Cyber Essentials Plus. Hands-on experience with Microsoft security technologies, particularly within Azure ecosystems, and More ❯

technical concepts to different audiences both verbally and in writing. Familiar with analytic techniques and common frameworks such as Cyber Kill Chain Model, Diamond Model, and MITRE ATT&CK Matrix, and a background using these methodologies/frameworks during intelligence gathering and analysis activities. Work analytically and critically and produce analysis that is repeatable and More ❯

compliance with data protection regulations. Detection Rule Development: Ability to create, test, and optimise detection rules to identify suspicious activities and potential threats based on the MITRE ATT&CK Framework Performance Tuning with Elasticsearch and Logstash: Fine-tune query performance using Elasticsearch indices and mappings. Monitor Logstash pipelines and optimize resource utilization. Kibana Visualization and More ❯

a working knowledge and understanding of networking technologies Experience of implementing standards & frameworks including EU NIS Directive, ISA/IEC 62443 Series/ISO 27000 Series, MITRE ATT&CK, NIST Cyber Security Framework (CSF), Technical Assessment Guides and supplementary guidance Our culture Our values stand on a foundation of safety, integrity, inclusion and diversity. We More ❯

the following technical competencies: Solid grounding in OS and network fundamentals (Linux, Windows, Mac, TCP/IP stack). Knowledge of common attack techniques and mitigations (MITRE ATT&CK, OWASP Top 10). Familiarity with scripting and automation using Python, Bash, or PowerShell. Strong understanding of Active Directory attack chains and common privilege escalation paths. More ❯

security architecture reviews and provide expert technical guidance on complex security challenges Keep up-to date with the latest security threat assessment frameworks such as OWASP, MITRE ATT&CK Assess security posture against industry regulations and compliance requirements Identify and mitigate security risks associated with new technologies and initiatives Perform security assessments to identify vulnerabilities More ❯

security architecture reviews and provide expert technical guidance on complex security challenges Keep up-to date with the latest security threat assessment frameworks such as OWASP, MITRE ATT&CK Assess security posture against industry regulations and compliance requirements Identify and mitigate security risks associated with new technologies and initiatives Perform security assessments to identify vulnerabilities More ❯

The skills you'll need • Good understanding of Cyber Security Principles • Endpoint Detection and Response (EDR) security tooling (CrowdStrike) • Network Detection and Response (NDR) security tooling • Understanding the Mitre Attack framework • Good understanding of networks and protocols • Windows server knowledge • Linux server knowledge including containers • Public Cloud (AWS, Azure and GCP) understanding • Happy to work occasionally Out of More ❯

no legacy systems in place!! We're looking for experience in: Threat hunting and incident response in complex environments Tracking and analysing TTPs using frameworks like MITRE ATT&CK Creating intelligence-led hunts and sharing actionable insights Cloud platforms (Azure, AWS, M365), Windows telemetry & endpoint visibility Strong reporting, stakeholder communication Details: Location: West Midlands (Hybrid More ❯

projects or technical and tabletop hybrid exercises. Proven experience leading teams, managing complex technical projects, and working in multicultural environments. Familiarity with industry-standard frameworks like MITRE ATT&CK, NIST, and similar. Proficiency with tools like SIEMs, EDR solutions, penetration testing frameworks, and cyber range platforms. Strong organizational and leadership skills to coordinate exercise lifecycles More ❯

of offensive security specialists. Key Responsibilities Lead and execute complex penetration tests and adversary simulations Deliver red team engagements aligned with frameworks like TIBER, CBEST, and MITRE ATT&CK Develop custom tooling and exploits where required Create detailed, client-facing technical and executive reports Mentor junior testers and contribute to internal R&D Stay sharp … experience in penetration testing and red teaming (internal, external, app, cloud, etc.) Strong understanding of attacker TTPs and detection evasion Familiarity with frameworks such as OWASP , MITRE ATT&CK , and NIST Experience with C2 frameworks (e.g., Cobalt Strike, PoshC2, Sliver) Certifications such as OSCP, CRTO, OSEP, or CREST CRT preferred (but not required) #J More ❯

of offensive security specialists. Key Responsibilities Lead and execute complex penetration tests and adversary simulations Deliver red team engagements aligned with frameworks like TIBER, CBEST, and MITRE ATT&CK Develop custom tooling and exploits where required Create detailed, client-facing technical and executive reports Mentor junior testers and contribute to internal R&D Stay sharp … experience in penetration testing and red teaming (internal, external, app, cloud, etc.) Strong understanding of attacker TTPs and detection evasion Familiarity with frameworks such as OWASP , MITRE ATT&CK , and NIST Experience with C2 frameworks (e.g., Cobalt Strike, PoshC2, Sliver) Certifications such as OSCP, CRTO, OSEP, or CREST CRT preferred (but not required) #J More ❯

of offensive security specialists. Key Responsibilities Lead and execute complex penetration tests and adversary simulations Deliver red team engagements aligned with frameworks like TIBER, CBEST, and MITRE ATT&CK Develop custom tooling and exploits where required Create detailed, client-facing technical and executive reports Mentor junior testers and contribute to internal R&D Stay sharp … experience in penetration testing and red teaming (internal, external, app, cloud, etc.) Strong understanding of attacker TTPs and detection evasion Familiarity with frameworks such as OWASP , MITRE ATT&CK , and NIST Experience with C2 frameworks (e.g., Cobalt Strike, PoshC2, Sliver) Certifications such as OSCP, CRTO, OSEP, or CREST CRT preferred (but not required) #J More ❯

of offensive security specialists. Key Responsibilities Lead and execute complex penetration tests and adversary simulations Deliver red team engagements aligned with frameworks like TIBER, CBEST, and MITRE ATT&CK Develop custom tooling and exploits where required Create detailed, client-facing technical and executive reports Mentor junior testers and contribute to internal R&D Stay sharp … experience in penetration testing and red teaming (internal, external, app, cloud, etc.) Strong understanding of attacker TTPs and detection evasion Familiarity with frameworks such as OWASP , MITRE ATT&CK , and NIST Experience with C2 frameworks (e.g., Cobalt Strike, PoshC2, Sliver) Certifications such as OSCP, CRTO, OSEP, or CREST CRT preferred (but not required) #J More ❯

of offensive security specialists. Key Responsibilities Lead and execute complex penetration tests and adversary simulations Deliver red team engagements aligned with frameworks like TIBER, CBEST, and MITRE ATT&CK Develop custom tooling and exploits where required Create detailed, client-facing technical and executive reports Mentor junior testers and contribute to internal R&D Stay sharp … experience in penetration testing and red teaming (internal, external, app, cloud, etc.) Strong understanding of attacker TTPs and detection evasion Familiarity with frameworks such as OWASP , MITRE ATT&CK , and NIST Experience with C2 frameworks (e.g., Cobalt Strike, PoshC2, Sliver) Certifications such as OSCP, CRTO, OSEP, or CREST CRT preferred (but not required) #J More ❯

of offensive security specialists. Key Responsibilities Lead and execute complex penetration tests and adversary simulations Deliver red team engagements aligned with frameworks like TIBER, CBEST, and MITRE ATT&CK Develop custom tooling and exploits where required Create detailed, client-facing technical and executive reports Mentor junior testers and contribute to internal R&D Stay sharp … experience in penetration testing and red teaming (internal, external, app, cloud, etc.) Strong understanding of attacker TTPs and detection evasion Familiarity with frameworks such as OWASP , MITRE ATT&CK , and NIST Experience with C2 frameworks (e.g., Cobalt Strike, PoshC2, Sliver) Certifications such as OSCP, CRTO, OSEP, or CREST CRT preferred (but not required) Please note More ❯