19 of 19 Remote MITRE ATT&CK Jobs in the UK

red team automation Detection Engineering Collaboration : Ability to translate offensive findings into detection logic and partner with SOC teams to improve alerting and response. Threat Modelling & MITRE ATT&CK : Strong understanding of attacker TTPs and ability to map findings to frameworks like MITRE ATT&CK and the Cyber Kill Chain. … red/purple teaming, adversary emulation, and vulnerability exploitation. - Proficiency with tools such as Cobalt Strike, Metasploit, Burp Suite, BloodHound, and custom scripting. - Strong understanding of MITRE ATT&CK, cyber kill chain, and threat-informed defense. - Experience integrating offensive security into CI/CD pipelines and cloud-native environments. - Relevant certifications (e.g., OSCP, OSCE, CRTO More ❯

coordinate incident response activities. Collaborate with threat intelligence teams to enhance detection logic. Threat Modelling & Use Case Development Lead threat modelling exercises using frameworks such as MITRE ATT&CK, STRIDE, and Cyber Kill Chain. Translate threat models into actionable detection use cases and SIEM rules. Prioritise detection engineering based on business risk and impact. Reporting … SPL, AQL. Scripting experience with Python or PowerShell for automation. Deep understanding of threat detection, incident response, and the cyber kill chain. Familiarity with frameworks including MITRE ATT&CK, NIST, and CIS. Strong communication, analytical, and presentation skills. Solid understanding of network traffic flows, vulnerability management, and penetration testing principles. Knowledge of ITIL processes (Incident More ❯

of the current threat landscape, the TTPs frequently employed in those attacks and how we can investigate and mitigate these. - Knowledge and demonstrable experience of the MITRE ATT&CK framework. - Good knowledge of enterprise computing technologies. Skills: - Understanding of enterprise networking and computing - Knowledge of Python 3 programming language - Demonstrable experience in using SOAR tooling … ability to obtain UK Government security clearance to SC - Relevant industry and vendor qualifications such as CISSP, CISM, CompTIA security+ - Cyber security framework knowledge such as MITRE ATT&CK Qualifications: Relevant IT degree or business degree or equivalent experience PREFERRED For more information please contact Lauren Morley at JAM Recruitment or click apply. More ❯

of the current threat landscape, the TTPs frequently employed in those attacks and how we can investigate and mitigate these. - Knowledge and demonstrable experience of the MITRE ATT&CK framework. - Good knowledge of enterprise computing technologies. Skills: - Understanding of enterprise networking and computing - Knowledge of Python 3 programming language - Demonstrable experience in using SOAR tooling … ability to obtain UK Government security clearance to SC - Relevant industry and vendor qualifications such as CISSP, CISM, CompTIA security+ - Cyber security framework knowledge such as MITRE ATT&CK Qualifications: Relevant IT degree or business degree or equivalent experience PREFERRED For more information please contact Lauren Morley at JAM Recruitment or click apply. More ❯

risk exposure to cyber security, in support of operational and business planning activity across a range of different domains or sectors using established frameworks (e.g. NIST, MITRE ATT&CK, UK Government) Identify mitigations for cyber risk in a given business or operational scenario and threat environment Support development of cyber security risk cases in a … years of experience in security vulnerability, risk, audit & compliance Understand relevant NIST frameworks and ISO27001 standards and how to apply in practice Knowledge of MITRE ATT&CK Essential qualifications for the Cyber Security Risk Consultant: We value difference and we don't have a fixed idea when it comes to background or education, provided you More ❯

tools (e.g., Logic Apps, XSOAR). Threat Detection & Response: Investigate alerts, enrich detection logic with threat intel, coordinate incident response. Threat Modelling & Use Case Development: Apply MITRE ATT&CK, STRIDE, and Kill Chain frameworks to build detection use cases. Reporting & Collaboration: Build security dashboards, produce reporting packs, and guide junior analysts and engineers. Client & Project … preferred). Strong knowledge of log parsing, SIEM query languages (KQL, SPL, AQL), and automation with Python/PowerShell. Deep understanding of incident response, threat detection, and frameworks (MITRE, NIST, CIS). Knowledge of vulnerability scanning, penetration testing, and network traffic analysis. Familiarity with ITIL processes (Incident, Problem, Change). Excellent stakeholder communication, with the ability to mentor More ❯

for automation. . Familiarity with cloud security platforms (AWS, Azure, GCP). . Knowledge of network protocols, operating systems (Linux/Windows), and cybersecurity frameworks (NIST, MITRE ATT&CK, CAF). . Experience with SOAR (Security Orchestration, Automation, and Response) platforms. . Excellent problem-solving and analytical skills. . Strong communication and collaboration abilities. Please More ❯

SOC or Incident Response Team Analyse End Point, Network, Application Logs Security frameworks/Standards (NIST, CIS, ISO27001) Scripting & Automation (PowerShell, Azure CLI, Azure Logic Apps) MITRE ATT&CK, Threat Modelling Knowledge of CVEs and security vulnerabilities SIEM Tools, Cyber Hunting Techniques Operational threat intelligence and common attack vectors Security vulnerabilities, technical reports Cyber Defence More ❯

SOC or Incident Response Team Analyse End Point, Network, Application Logs Security frameworks/Standards (NIST, CIS, ISO27001) Scripting & Automation (PowerShell, Azure CLI, Azure Logic Apps) MITRE ATT&CK, Threat Modelling Knowledge of CVEs and security vulnerabilities SIEM Tools, Cyber Hunting Techniques Operational threat intelligence and common attack vectors Security vulnerabilities, technical reports Cyber Defence More ❯

with insider threat detection tools (UEBA, DLP, SIEM) and knowledge of advanced threat intelligence techniques. Understanding of threat actor tactics, techniques, and procedures (TTPs) and the MITRE ATT&CK Framework. Familiarity with security frameworks, incident response, and risk management practices. Knowledge of legal and regulatory considerations, including privacy and data protection laws. Excellent interpersonal, relationship More ❯

Knowledge of information assurance standards and frameworks including CIS, NIST, ISO 27001, Cyber Essentials/Essentials Plus, GDPR. Knowledge of threat cyber security frameworks such as MITRE ATT&CK, Kill Chain and NIST CSF 2.0. The ideal candidate will combine strong technical expertise with a solid understanding of global events and their influence on the More ❯

experience in Security Operations and Incident Response You have experience of performing analysis with SIEM technologies, Splunk preferred You have experience with proactive threat hunting using MITRE ATT&CK or similar frameworks You have a deep understanding of security appliances/tools such as host-based and network-based IDS/IPS, WAF, EDR You More ❯

lifecycle including associated tools and platforms Ability to work effectively with patching teams and co-ordinate remediation activities Understanding of CVSS scoring, OWASP Top 10 and MITRE ATT&CK Organised and able to track and report on remediation activities across multiple teams Can translate scan data into clear, risk-based reports for management teams Partner More ❯

development of security policies and best practices Required Skills & Experience: Strong background in penetration testing, ethical hacking, or red teaming Deep knowledge of OWASP Top 10, MITRE ATT&CK, and CVSS scoring systems Proficiency with tools such as Burp Suite, Metasploit, Nmap, Wireshark, and Kali Linux Scripting experience with Python, Bash, or PowerShell Understanding of More ❯

have an indepth knowledge of core security operations practices: SIEM, threat hunting, vulnerability management, incident response You have a good understanding of common threat actor tactics (MITRE ATT&CK), modern malware, and intrusion techniques You have experience of supporting complex security transformations across global businesses You're collaborative and pragmatic, without ego What's in More ❯

an in-depth knowledge of core security operations practices: SIEM, threat hunting, vulnerability management, incident response * You have a good understanding of common threat actor tactics (MITRE ATT&CK), modern malware, and intrusion techniques * You have experience of supporting complex security transformations across global businesses * You're collaborative and pragmatic, without ego *Benefits:* As a More ❯

knowledge (OWASP Top 10, API security). Proven end-to-end pentest experience: internal, external, cloud, AD, web apps, APIs. Familiarity with pentest reporting formats (CVSS, MITRE ATT&CK mapping). Comfortable in NDA-restricted, compliance-driven, sensitive environments. Excellent reporting skills for both technical and executive audiences. Scripting for automation/exploit development: Python More ❯

response. About you Strong experience across both offensive and defensive cyber security disciplines. Deep understanding of attacker tactics, techniques, and procedures (TTPs), with expertise in the MITRE ATT&CK Framework. Hands-on technical knowledge in cyber detection engineering, security tools, and infrastructure. Skilled in Detection-as-Code and experienced with SIEM query languages. Confident communicator More ❯

/CI/CD security and cloud-native architectures (containers, Kubernetes, Git). Strong knowledge of AI/ML-specific security vulnerabilities (adversarial attacks, data poisoning, prompt injection, MITRE ATLAS). Familiarity with global regulatory frameworks relevant to AI security. Excellent communication skills for engaging both technical and non-technical stakeholders. Esther Urtecho Senior Delivery Consultant London | Bristol More ❯