26 to 49 of 49 MITRE ATT&CK Jobs in the UK

Microsoft Sentinel, Defender XDR and Entra ID Experience with KQL (Kusto Query Language) for investigations and threat detection Good understanding of MITRE ATT&CK framework Knowledge of network security, firewalls, VPNs, endpoint security and malware analysis Experience with threat hunting and detection engineering Desirable Experience ...

Microsoft Sentinel, Defender XDR and Entra ID Experience with KQL (Kusto Query Language) for investigations and threat detection Good understanding of MITRE ATT&CK framework Knowledge of network security, Firewalls, VPNs, endpoint security and malware analysis Experience with threat hunting and detection engineering Desirable Experience ...

response experience end-to-end • Analytical mindset + clear communication skills ✨ Bonus points for: Microsoft Security (Sentinel, Defender), cloud security, scripting, MITRE ATT&CK, threat intel 🔒 Must be eligible for UK Security Clearance 💬 If you're passionate about cyber security and want to grow ...

accurate incident records in JIRA Service Management. Detection Engineering Develop and implement new detection rules in Microsoft Sentinel aligned to the MITRE ATT&CK framework. Draft and optimise KQL queries for detection and threat hunting. Refine existing detection logic based on false positive analysis ...

managing Splunk Enterprise Security (ES). Technical Knowledge: Strong Understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. Vulnerability Assessment: 2+ years of experience using vulnerability assessment tools is a bonus. Penetration Testing Experience: Familiarity with penetration testing ...

queries and manage Splunk Enterprise Security. Technical Breadth: Strong knowledge of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. Vulnerability Assessment & Penetration Testing: Bonus points for experience with vulnerability assessment tools and exposure to penetration testing and web application testing. ...

Insight, Discover) Advanced Splunk skills, including SPL and Enterprise Security (ES) Solid understanding of networking, cloud security (AWS/Azure), and MITRE ATT&CK Experience in vulnerability assessment (desirable) Exposure to penetration testing and web application security (desirable) Qualifications Cyber security certifications (e.g. Security+, CySA+ ...

Insight, Discover) Advanced Splunk skills, including SPL and Enterprise Security (ES) Solid understanding of networking, cloud security (AWS/Azure), and MITRE ATT&CK Experience in vulnerability assessment (desirable) Exposure to penetration testing and web application security (desirable) Qualifications Cyber security certifications (e.g. Security+, CySA+ ...

Python, PowerShell, and JavaScript. Experience with GCP or Azure cloud environments. (preferably on GCP) Solid understanding of security frameworks such as MITRE ATT&CK and NIST CSF. Strong documentation and architectural design experience (HLD/LLD). Experience within Banking or Financial Services. Exposure ...

Fortinet and/or Microsoft SIEM/EDR platforms Good understanding of the attack lifecycle, threat actor TTPs, and the MITRE ATT&CK framework Experience leading or contributing to end-to-end incident investigations Ability to produce clear, accurate incident reports for both technical ...

Splunk Enterprise Security (ES). You must have a strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. CCFA/CCFR Certifications will be a a major plus. If you match the above skill set please apply ASAP. ...

Splunk Enterprise Security (ES). You must have a strong understanding of network protocols, cloud security (AWS/Azure), and the MITRE ATT&CK framework. CCFA/CCFR Certifications will be a a major plus. If you match the above skill set please apply ASAP. ...

equivalent language Experience with network forensics and associated toolsets and analysis techniques ISO 27001:2022 security and risk controls MITRE ATT&CK adversarial framework ITILv3/v4 Foundation Desirable: CompTIA A+. CompTIA Security+. CompTIA CySA+. CompTIA PenTest+. SANS 504 - Incident Handling. SANS 511 (Continuous Monitoring ...

investigation experience, including host and network analysis. Proficiency with tools such as KAPE, Magnet Axiom, Volatility, or Wireshark. Strong grasp of MITRE ATT&CK and the full incident response lifecycle. Certifications like GCFA, GCIH, or 13Cubed are a plus. Technical IR Leaders (Senior Manager Associate ...

during both day to day operations and during security incidents. - A good understanding of the incident response lifecycle, common attack techniques (MITRE ATT&CK), and how incident response processes integrate with threat detection, monitoring, and wider security operations. ...

escalation point for Tier 1, owning investigations end-to-end — triaging SIEM and EDR alerts, leading incident response, hunting threats using MITRE ATT&CK, and tuning detections to cut noise. You’ll also mentor junior analysts and help mature playbooks and runbooks. We’re looking ...

remediation. Experience Required Previous experience within Incident Response/Security Operations Strong understanding of the NIST incident response lifecycle Familiarity with MITRE ATT&CK and cyber kill chain frameworks Experience managing incidents and stakeholder communications Comfortable leading bridge calls and coordinating technical teams Strong process ...

remediation. Experience Required Previous experience within Incident Response/Security Operations Strong understanding of the NIST incident response lifecycle Familiarity with MITRE ATT&CK and cyber kill chain frameworks Experience managing incidents and stakeholder communications Comfortable leading bridge calls and coordinating technical teams Strong process ...

endpoint detection platforms Knowledge of identity and access management, directory services, or privileged access solutions Understanding of security frameworks such as MITRE ATT&CK Experience working in secure or regulated environments Strong problem-solving skills and ability to work at a detailed technical level Familiarity ...

experience running vendor evaluations and PoCs for enterprise security platforms Strong understanding of offensive techniques mapped to detection capabilities (aligned to MITRE ATT&CK) Experience integrating security tooling outputs into SIEM platforms and broader security workflows Experience with tools such as SafeBreach, BloodHound, Microsoft EASM ...

standards and processes in large corporate IT environments Working knowledge of Cyber Security frameworks/methodologies (such as NIST, ISO 27001, MITRE ATT&CK, Lockheed Martin Kill Chain etc) Network Security Architect Due to the volume of applications received for positions, it will ...

RESTful APIs and containerised microservices). Up-to-date on emerging threats and experienced with threat modelling frameworks (e.g., STRIDE/MITRE ATT&CK). Significant knowledge of cyber security domains and how they apply to Enterprise business environments (e.g., endpoint, network, cryptography ...

APIs, microservices, and modern application architectures. Knowledge of current cyber threats and experience with threat modelling frameworks such as STRIDE and MITRE ATT&CK. Solid understanding of key security domains including IAM, network security, cryptography, endpoint security, and information management. Familiarity with security frameworks and standards including ...

ENGINEER ESSENTIAL SKILLS Strong hands-on experience with Splunk (Enterprise and ES), including tuning and optimisation Expertise in detection engineering, including MITRE ATT and risk-based alerting Experience building and maintaining data pipelines, log ingestion and schema standardisation Advanced knowledge of SPL, KQL or EQL Experience with … subject to required skills) your application to our client in conjunction with this vacancy only. KEY SKILLS Splunk, SIEM, Detection Engineering, Cyber Security, MITRE ATTACK, SPL, KQL, EQL, Security Engineering, Log Management, Automation, Terraform, Ansible ...