26 to 50 of 57 MITRE ATT&CK Jobs in the UK

SIEM tools (such as Splunk) SOAR is an added advantage Knowledge of malware capabilities, attack vectors and impact. Knowledge of the MITRE ATT&CK framework to understand threat actors and how to mitigate them. Knowledge and experience in threat analysis Excellent interpersonal skills sufficient ...

optimise complex queries to support threat detection, proactive threat hunting, and anomaly identification Map detection logic to adversary behaviours using the MITRE ATT&CK Framework, ensuring effective coverage of tactics, techniques, and procedures Work with the wider Splunk ecosystem, including tools like TrackMe, and contribute ...

endpoint security, and network monitoring Expertise in vulnerability management and remediation Solid understanding of: GDPR NIS Regulations NCSC guidance Familiarity with: MITRE ATT&CK framework ITIL practices Strong stakeholder management skills, including senior and external engagement Ability to operate at both strategic and operational levels ...

practices Knowledge of cyber frameworks and regulations including GDPR, NIS, and National Cyber Security Centre guidance Familiarity with frameworks such as MITRE ATT&CK and ITIL processes Experience operating within complex, regulated environments (e.g. public sector, financial services) Strong stakeholder management skills, with the ability ...

practices Knowledge of cyber frameworks and regulations including GDPR, NIS, and National Cyber Security Centre guidance Familiarity with frameworks such as MITRE ATT&CK and ITIL processes Experience operating within complex, regulated environments (e.g. public sector, financial services) Strong stakeholder management skills, with the ability ...

practices Knowledge of cyber frameworks and regulations including GDPR, NIS, and National Cyber Security Centre guidance Familiarity with frameworks such as MITRE ATT&CK and ITIL processes Experience operating within complex, regulated environments (e.g. public sector, financial services) Strong stakeholder management skills, with the ability ...

Sentinel Familiarity with Microsoft Defender tools (Endpoint & O365) Exposure to Azure cloud logging and Kubernetes environments Knowledge of attacker TTPs and MITRE ATT&CK frameworks Proactive, collaborative, and innovative mindset Desirable/Nice-to-Have: Experience with Python , Terraform , or CI/CD pipelines Familiarity ...

Sentinel Familiarity with Microsoft Defender tools (Endpoint & O365) Exposure to Azure cloud logging and Kubernetes environments Knowledge of attacker TTPs and MITRE ATT&CK frameworks Proactive, collaborative, and innovative mindset Desirable/Nice-to-Have: Experience with Python , Terraform , or CI/CD pipelines Familiarity ...

effective security controls aligned with business requirements using a risk-based approach. Familiarity with application attack tactics and techniques, including the MITRE ATT&CK framework, and security maturity models such as OpenSAMM and C2M2. Strong working knowledge of recognised security frameworks and standards, including NIST ...

Insight, Discover) Strong Splunk expertise, including SPL and Enterprise Security (ES) Solid understanding of: Network protocols Cloud security (AWS/Azure) MITRE ATT&CK framework Additional desirable experience: Vulnerability Assessment tools Penetration Testing/Web Application Testing exposure Security policy and standards development Certifications (Desirable ...

experience with CrowdStrike (Falcon) Advanced Splunk (SPL + Enterprise Security) expertise Solid understanding of networks, cloud (AWS/Azure), and MITRE ATT&CK Bonus: Vulnerability Assessment and Pen Testing experience MUST HAVE LOCAL GOVERNMENT EXPERIENCE Certifications (desirable): Splunk Certified Cybersecurity Defense Engineer (highly preferred) CrowdStrike ...

managing Splunk Enterprise Security (ES). Technical Breadth: Strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK Vulnerability Assessment : 2+ years using VA tools would be a bonus Penetration Testing : Exposure to Penetration Testing and Web Application Testing. ...

What you’ll be doing: • Engineering and refining advanced SIEM detections across secure environments • Researching emerging threats and mapping detections to MITRE ATT&CK • Tuning detections to improve fidelity and reduce false positives • Supporting SOC analysts and wider engineering teams with technical expertise • Driving detection ...

Familiarity with SIEM platforms and security telemetry analysis Understanding of cloud security concepts (Azure, AWS, or GCP) Desirable Skills Knowledge of MITRE ATT&CK or Cyber Kill Chain frameworks Exposure to SaaS and cloud-native security tooling Experience with scripting or query languages (e.g. ...

skills for articulating complex ideas to broad audiences. Proactive approach to learning and professional development. Understanding of relevant industry standard frameworks (MITRE ATT&CK, D3FEND). Innovative approach to problem-solving. Sensitivity to team dynamics and ability to work well in various technical ...

offensive and defensive IT concepts and protocols Working knowledge of Windows, Linux and MacOS operating systems internals Extensive understanding of the MITRE ATT&CK framework, OWASP Top 10, and other security frameworks Ability to work independently and as part of a team Proficient communication skills ...

during both day to day operations and during security incidents. - A good understanding of the incident response lifecycle, common attack techniques (MITRE ATT&CK), and how incident response processes integrate with threat detection, monitoring, and wider security operations. ...

data models (ECS/CIM) Develop and tune detection rules using KQL, EQL, and SPL Drive detection engineering lifecycle aligned to MITRE ATT&CK Implement automation, CI/CD, and Infrastructure as Code for SIEM platforms Ensure platform performance, scalability, and resilience (HA/ ...

data models (ECS/CIM) Develop and tune detection rules using KQL, EQL, and SPL Drive detection engineering lifecycle aligned to MITRE ATT&CK Implement automation, CI/CD, and Infrastructure as Code for SIEM platforms Ensure platform performance, scalability, and resilience (HA/ ...

development Solid knowledge of SIEM operations, including maintenance and troubleshooting Experience performing QRadar upgrades and patching Familiarity with security frameworks (e.g., MITRE ATT&CK) and threat detection methodologies Strong analytical and problem-solving skills For more information or immediate consideration for this opportunity, please contact ...

development Solid knowledge of SIEM operations, including maintenance and troubleshooting Experience performing QRadar upgrades and patching Familiarity with security frameworks (e.g., MITRE ATT&CK) and threat detection methodologies Strong analytical and problem-solving skills For more information or immediate consideration for this opportunity, please contact ...

development * Solid knowledge of SIEM operations, including maintenance and troubleshooting * Experience performing QRadar upgrades and patching * Familiarity with security frameworks (e.g., MITRE ATT&CK) and threat detection methodologies * Strong analytical and problem-solving skills For more information or immediate consideration for this opportunity, please contact ...

tools Experience supporting audits, certifications and compliance frameworks including ISO 27001, SOC 2 and NIST Knowledge of security methodologies such as MITRE ATT&CK Excellent communication and stakeholder management skills Experience operating within high-growth or evolving organisations French language skills would be advantageous This ...

ensuring strict adherence to stealth requirements and operational security (OPSEC) throughout the engagement lifecycle. You will leverage industry-recognized frameworks (e.g., MITRE ATT&CK) to accurately emulate realistic threat actors, focusing on demonstrating detection and response gaps, defining real-world exploitation paths, and articulating ...

current to target state, identifying required capabilities, technology changes, dependencies, risks, and timelines. Expertise performing data-focused threat modelling (e.g. STRIDE, MITRE ATT&CK, DREAD) to identify risks and recommend architectural mitigations. Excellent advisory skills with the ability to provide architectural governance, extend standards where ...