1 to 25 of 28 MITRE ATT&CK Jobs in the UK

plus Cloud Security skills (desired): Secure software development practices, including SecDevOps Sound knowledge of applicable frameworks & standards, including OWASP, MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM & ISO 27107 Relevant industry certifications including CSCP Understanding of cyber risk frameworks or industry standards such … applicable laws, compliance regulations, and industry standards as it relates to privacy, security, and compliance Sound knowledge of applicable frameworks, including MITRE ATT@CK & D3FEND, CIS, NIST CSF, CSA CCM Strong communication and presentation skills Cyber Risk Management skills (desired) : Experience in threat modelling & application ...

customer environments. Producing clear, insightful reports for both technical and non-technical audiences. Enhancing detection rules and use cases aligned to MITRE ATT&CK and threat-informed defence. What you'll bring: Hands-on experience with Microsoft Sentinel and Splunk. Knowledge of the MITRE ATT&CK framework. Understanding of client-server and multi-tier applications, databases, firewalls, VPNs and endpoint security. Solid networking fundamentals (TCP/IP, LAN/WAN, HTTP, SMTP, FTP, LDAP, etc.). Strong analytical thinking and structured problem-solving. An entry-level cyber security certification ...

customer environments, including troubleshooting and client interaction. Contribute to the development and improvement of detection rules and response workflows using MITRE ATT&CK and Cyber Kill Chain models. Deliver outstanding operational support, actively driving outcomes for customers. What You’ll Bring You bring curiosity, structure …/Unix-based systems and basic scripting knowledge. Exposure to vulnerability management tools like Rapid7, Tenable, or Qualys. Understanding of the MITRE ATT&CK Framework and Cyber Kill Chain. Ability to communicate technical information clearly to both technical and non-technical audiences. Awareness of cloud ...

escalation playbooks; suggest improvements based on recurring issues or inefficiencies. Threat Awareness: Maintain awareness of current cyber threats, attacker techniques (MITRE ATT&CK), and industry trends relevant to the organisations threat landscape. Essential: 2-4 years of experience in a SOC, IT Operations, or security … Working knowledge of SIEM platforms (e.g. Microsoft sentinel, Splunk, Elastic, QRadar). Desirable: Awareness of security frameworks and methodologies (NIST CSF, MITRE ATT&CK, ISO27001). Qualifications: Desirable: CompTIA Security+, CySA+ or other entry level certification. ...

across cloud and enterprise environments. What you'll do Build and tune detections across endpoint, identity, vulnerability, and cloud telemetry Translate MITRE ATT&CK and threat Intel into actionable detection logic Automate response workflows using Azure Logic Apps Integrate platforms such as Rapid7, SentinelOne, CrowdStrike … Solid understanding of attacker behaviour, endpoint security, and vulnerability management Scripting ability (Python, PowerShell preferred) Familiarity with behaviour-based detection and MITRE ATT&CK Bonus: SOAR experience, cloud/security telemetry, regulated environments, CI/CD or IaC exposure This role is perfect for someone ...

detection and response technologies such as Microsoft Defender, CrowdStrike, SentinelOne, or Carbon Black * Understanding of attacker techniques and frameworks such as MITRE ATT&CK * Solid knowledge of core networking concepts including TCP/IP, DNS, HTTP/S, Firewalls, and VPNs * Experience analysing logs from ...

Score remediation Vulnerability Management Tools such as Tenable , Pentera , Varonis , Secure Score Experience coordinating remediation with technical teams Frameworks & Security Models MITRE ATT&CK, OWASP Top 10 Exposure to zero-trust principles Understanding of encryption, certificate management, secrets management Scripting & Automation PowerShell (essential) Python ...

SIEM, SOAR, EDR, IDS/IPS, firewalls, and cloud-native security tooling. Knowledge of cyber security frameworks such as NIST CSF, MITRE ATT&CK, ISO 27001, or CIS Controls. Demonstrated expertise in incident response and threat management. Experience working in hybrid cloud environments (Azure ...

platforms and detection tuning Scripting/automation skills (Python, PowerShell or similar) Understanding of threat detection and incident response frameworks (e.g., MITRE ATT&CK) Certifications (CISSP, CISM, CEH, etc.) are a plus Requirements Active DV Clearance (essential) Hybrid: 3 days per week on site ...

detection tuning Scripting/automation xehkeey skills (Python, PowerShell or similar) Understanding of threat detection and incident response frameworks (e.g., MITRE ATT&CK) Certifications (CISSP, CISM, CEH, etc.) are a plus Requirements Active DV Clearance (essential) Hybrid: 3 days per week on site ...

detection tuning Scripting/automation xkybehq skills (Python, PowerShell or similar) Understanding of threat detection and incident response frameworks (e.g., MITRE ATT&CK) Certifications (CISSP, CISM, CEH, etc.) are a plus Requirements Active DV Clearance (essential) Hybrid: 3 days per week on site ...

detection tuning Scripting/automation xkybehq skills (Python, PowerShell or similar) Understanding of threat detection and incident response frameworks (e.g., MITRE ATT&CK) Certifications (CISSP, CISM, CEH, etc.) are a plus Requirements Active DV Clearance (essential) Hybrid: 3 days per week on site ...

detection tuning xkybehq Scripting/automation skills (Python, PowerShell or similar) Understanding of threat detection and incident response frameworks (e.g., MITRE ATT&CK) Certifications (CISSP, CISM, CEH, etc.) are a plus Requirements Active DV Clearance (essential) Hybrid: 3 days per week on site ...

intelligence platforms Practical experience handling security incidents, threat hunting, and investigations Solid understanding of attacker tactics, techniques, and frameworks such as MITRE ATT&CK Proven experience working with clients in a consultative or advisory capacity Background working within an MSSP environment Desirable CISSP, CISM, GIAC ...

intelligence platforms Practical experience handling security incidents, threat hunting, and investigations Solid understanding of attacker tactics, techniques, and frameworks such as MITRE ATT&CK Proven experience working with clients in a consultative or advisory capacity Background working within an MSSP environment Desirable CISSP, CISM, GIAC ...

Experience with security operations tooling and environments (e.g. SOC integration) * Strong understanding of security frameworks and methodologies, e.g: Cyber Kill Chain, MITRE ATT&CK * Excellent analytical skills and attention to detail * Ability to quickly learn and apply new technologies to improve security posture * Strong communication ...

Splunk SIEM, to enable the detection of threats across diverse platforms (e.g. cloud, endpoints, and networks) · Use frameworks like MITRE ATT&CK to map detection rules and maximise threat coverage · Use analytical platforms to query high volume datasets to identify trends and spot unusual behaviours ...

managing Splunk Enterprise Security (ES). Technical Breadth: Strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. Additional Skills: Experience with Vulnerability Assessment (VA) tools, Penetration Testing, and Web Application Testing is a significant bonus. Desired Qualifications: Mandatory ...

SIEM platforms, specifically Splunk Enterprise & Enterprise Security and Elastic Stack/Elastic Security Deep knowledge of detection engineering, threat intelligence frameworks (MITRE ATT&CK), and noise reduction techniques Hands-on experience with data ingestion tools such as Elastic Agent, Beats, Splunk UF/HF, Syslog ...

system architectures and articulate these via risk terminology Security architecture design and review Threat modelling and risk assessment (e.g., STRIDE, DREAD, MITRE ATT&CK) Cloud security, including IAM, network segmentation, and encryption Network security principles including firewalls, VPNs, WAFs, and zero trust architecture Application security ...

similar security-focused role Exposure to tools like SIEM (Splunk, Sentinel, QRadar, etc.) or EDR Understanding of common attack techniques (MITRE ATT&CK, incident response basics) An interest in detection engineering, automation, or threat hunting Not ticking every box? That’s fine—we’re hiring ...

OAuth and OpenID Connect Experience with PowerShell scripting for automation and administration Understanding of security frameworks and threat models such as MITRE ATT&CK Relevant Microsoft certifications such as SC-200, SC-300 or SC-400 Desirable Skills for the Microsoft Security Engineer: CISSP ...

environments - Security automation and IaC: Python, PowerShell, Terraform, Bicep, or Sentinel analytics rules - you codify controls, you do not document them - MITRE ATT&CK coverage mapping; threat hunting, adversary emulation, and proactive gap analysis against realistic TTPs - Cloud infrastructure - Azure preferred, AWS considered; IAM, managed ...

similar. Strong knowledge of network security, threat detection, and incident response. Experience analysing malware, security alerts, and attack patterns. Understanding of MITRE ATT&CK framework and its application in threat detection and mitigation. Experience working with EDR tools and endpoint security technologies. Knowledge of firewalls ...

evaluate current and emerging technologies to select or recommend the best solutions for the future state architecture. Knowledge of application security, MITRE ATT&CK and Threat Modelling. Broad knowledge of controls in the industry (NIST, ISO, PCI, SOC, CSF, ISO27001, SABSA and TOGAF) Identity ...