26 to 50 of 52 MITRE ATT&CK Jobs in the UK

accurate incident records in JIRA Service Management. Detection Engineering Develop and implement new detection rules in Microsoft Sentinel aligned to the MITRE ATT&CK framework. Draft and optimise KQL queries for detection and threat hunting. Refine existing detection logic based on false positive analysis ...

whether professionally, in a lab, or through CTF/home lab environments. Solid understanding of core security concepts, including attack frameworks (MITRE ATT&CK), the incident response lifecycle, and common vulnerability classes. Comfortable working in cloud environments, particularly AWS, with an understanding of IAM, logging ...

readiness. Essential Skills 10+ years' enterprise cyber security engineering and architecture experience. Strong expertise in CIS Controls v8.1, threat modelling (STRIDE, MITRE ATT&CK, OWASP), and security assurance. Hands-on experience with penetration testing, vulnerability management, SIEM, endpoint security, and DevSecOps. Experience working within large ...

managing Splunk Enterprise Security (ES). Technical Knowledge: Strong Understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. Vulnerability Assessment: 2+ years of experience using vulnerability assessment tools is a bonus. Penetration Testing Experience: Familiarity with penetration testing ...

queries and manage Splunk Enterprise Security. Technical Breadth: Strong knowledge of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. Vulnerability Assessment & Penetration Testing: Bonus points for experience with vulnerability assessment tools and exposure to penetration testing and web application testing. ...

Insight, Discover) Advanced Splunk skills, including SPL and Enterprise Security (ES) Solid understanding of networking, cloud security (AWS/Azure), and MITRE ATT&CK Experience in vulnerability assessment (desirable) Exposure to penetration testing and web application security (desirable) Qualifications Cyber security certifications (e.g. Security+, CySA+ ...

Insight, Discover) Advanced Splunk skills, including SPL and Enterprise Security (ES) Solid understanding of networking, cloud security (AWS/Azure), and MITRE ATT&CK Experience in vulnerability assessment (desirable) Exposure to penetration testing and web application security (desirable) Qualifications Cyber security certifications (e.g. Security+, CySA+ ...

experience with CIS Controls v8.1, NIST CSF, ISO 27001/27002 control frameworks. Threat modelling at scale - proven authorship using STRIDE, MITRE ATT&CK, OWASP - across multiple in-scope controls. Hands-on penetration testing, security testing, and control validation track record. Workflow discipline - operates comfortably ...

waterfall and agile methods. · You will have experience of adopting security standards and frameworks (such as NIST Cybersecurity Framework, CIS Controls, MITRE ATT&CK) within public or private sector. · You will have experience in creating/managing User and System usage policy documentation (SyOps ConOps ...

experien ceExperience wit h:CIS Controls v8.1, NIST CSF, ISO 27001/ISO 270 02Extensive Threat Modelling experience usin g:STRIDE, MITRE ATT&CK, OWASP methodologi esHands-o n:Penetration Testing, Security Testing, Control Validati onExperience working withi n:Agile, DevSecOps, Evidence-driven governance framewor ...

logging, and serverless or container-based deployment. A solid grasp of core security concepts (incident response lifecycle, common vulnerability classes, MITRE ATT&CK framework), or the drive to ramp up quickly. Clear written and verbal communication in English, with the ability to document systems ...

Python, PowerShell, and JavaScript. Experience with GCP or Azure cloud environments. (preferably on GCP) Solid understanding of security frameworks such as MITRE ATT&CK and NIST CSF. Strong documentation and architectural design experience (HLD/LLD). Experience within Banking or Financial Services. Exposure ...

intelligence disciplines such as OSINT, SIGINT, HUMINT, and their application Knowledge of structured analytical techniques and intelligence best practice Experience applying MITRE ATT&CK/D3FEND/ENGAGE frameworks in an operational context Clearance: BPSS + SC + UK EYES If you would like ...

Splunk Enterprise Security (ES). You must have a strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. CCFA/CCFR Certifications will be a a major plus. If you match the above skill set please apply ASAP. ...

Splunk Enterprise Security (ES). You must have a strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. CCFA/CCFR Certifications will be a a major plus. If you match the above skill set please apply ASAP. ...

investigation experience, including host and network analysis. Proficiency with tools such as KAPE, Magnet Axiom, Volatility, or Wireshark. Strong grasp of MITRE ATT&CK and the full incident response lifecycle. Certifications like GCFA, GCIH, or 13Cubed are a plus. Technical IR Leaders (Senior Manager Associate ...

during both day to day operations and during security incidents. - A good understanding of the incident response lifecycle, common attack techniques (MITRE ATT&CK), and how incident response processes integrate with threat detection, monitoring, and wider security operations. ...

escalation point for Tier 1, owning investigations end-to-end — triaging SIEM and EDR alerts, leading incident response, hunting threats using MITRE ATT&CK, and tuning detections to cut noise. You’ll also mentor junior analysts and help mature playbooks and runbooks. We’re looking ...

remediation. Experience Required Previous experience within Incident Response/Security Operations Strong understanding of the NIST incident response lifecycle Familiarity with MITRE ATT&CK and cyber kill chain frameworks Experience managing incidents and stakeholder communications Comfortable leading bridge calls and coordinating technical teams Strong process ...

development Solid knowledge of SIEM operations, including maintenance and troubleshooting Experience performing QRadar upgrades and patching Familiarity with security frameworks (e.g., MITRE ATT&CK) and threat detection methodologies Strong analytical and problem-solving skills For more information or immediate consideration for this opportunity, please contact ...

remediation. Experience Required Previous experience within Incident Response/Security Operations Strong understanding of the NIST incident response lifecycle Familiarity with MITRE ATT&CK and cyber kill chain frameworks Experience managing incidents and stakeholder communications Comfortable leading bridge calls and coordinating technical teams Strong process ...

endpoint detection platforms Knowledge of identity and access management, directory services, or privileged access solutions Understanding of security frameworks such as MITRE ATT&CK Experience working in secure or regulated environments Strong problem-solving skills and ability to work at a detailed technical level Familiarity ...

experience running vendor evaluations and PoCs for enterprise security platforms Strong understanding of offensive techniques mapped to detection capabilities (aligned to MITRE ATT&CK) Experience integrating security tooling outputs into SIEM platforms and broader security workflows Experience with tools such as SafeBreach, BloodHound, Microsoft EASM ...

standards and processes in large corporate IT environments Working knowledge of Cyber Security frameworks/methodologies (such as NIST, ISO 27001, MITRE ATT&CK, Lockheed Martin Kill Chain etc) Network Security Architect Due to the volume of applications received for positions, it will ...

RESTful APIs and containerised microservices). Up-to-date on emerging threats and experienced with threat modelling frameworks (e.g., STRIDE/MITRE ATT&CK). Significant knowledge of cyber security domains and how they apply to Enterprise business environments (e.g., endpoint, network, cryptography ...