9 of 9 Remote/Hybrid MITRE ATT&CK Jobs in the UK excluding London

commercial platforms to enrich detections Investigate Indicators of Compromise (IOCs) and attacker behaviour Analyse adversary techniques and map activity to the MITRE ATT&CK framework Develop, tune and maintain detection rules for SIEM and EDR platforms Threat Intelligence Management Collect, validate and analyse cyber threat … Hands-on experience with Microsoft Sentinel and Defender XDR Good working knowledge of KQL (Kusto Query Language) Strong understanding of the MITRE ATT&CK framework Experience investigating IOCs and real-world security incidents Excellent written and verbal communication skills Comfortable working in a client-facing ...

enrichment logic to enhance detections and investigation efficiency Support purple-team activities, threat modelling, and attack-simulation scenarios aligned to MITRE ATT&CK Provide technical escalation support and mentorship to L1/L2 SOC analysts Perform root-cause analysis, identify systemic issues, and drive continuous … Windows, Azure AD/Entra ID, M365, network security, and cloud workloads Advanced knowledge of attacker TTPs, threat intelligence sources, and MITRE ATT&CK mapping Proven experience leading major incidents in an enterprise SOC environment Strong understanding of SOAR automation and experience building Logic Apps ...

providers to ensure effective delivery of external threat services Evaluating current security controls against known threat actors using frameworks such as MITRE ATT&CK and CIS Controls Supporting threat intelligence-led security testing initiatives, including red and purple teaming exercises Contributing to continuous improvement … deliver measurable outcomes quickly Strong understanding of threat actor behaviours, TTPs, and global threat trends Experience working with frameworks such as MITRE ATT&CK and CIS Ability to analyse large datasets and translate findings into meaningful intelligence outputs Experience producing intelligence reports across tactical, operational ...

attacker behaviour Supporting incident response efforts with deep detection insight Expanding detection coverage using threat intelligence and adversary techniques mapped to MITRE ATT&CK Creating automation and playbooks to speed up triage and response Documenting detections and sharing knowledge with SOC analysts Main Skills Needed … rules using query languages like ESQL, KQL, or Lucene Practical SOC experience covering alert triage, investigation, and analysis Deep knowledge of MITRE ATT&CK, malware behaviour, lateral movement, and persistence techniques What’s in It for You: Work on genuinely meaningful systems in high-security ...

Firewalls (IDS/IPS/DPI/WAF/Web Filter/App Control). Knowledge of security concepts (CIA/MITRE ATT&CK Framework/Vulnerabilities). Knowledge of cybersecurity fundamentals (CIA triad, threat vectors). Knowledge of ITIL disciplines such as Incident, Problem ...

Azure Security Engineer Associate Knowledge of cloud security principles and technologies Desirable: Strong understanding of security frameworks (NIST, ISO 27001, Mitre ATT&CK) Knowledge of web security tooling such as web proxy, DNS filtering and similar (e.g. Cisco Umbrella) Previous experience as a Security Analyst ...

Exposure to modern enterprise technologies , including Cloud and AI. Experience with RESTful APIs, containerized microservices, and threat modeling frameworks (e.g., STRIDE, MITRE ATT&CK). Dynamic, solution-oriented, and able to work under pressure. Desirable: Awareness of industry security standards : ISO 27000, PCI DSS, COBIT ...

with a focus on Elastic Security . Detection & Compliance Expert: Proven ability to engineer high-fidelity detection rules based on the MITRE ATT&CK Framework , alongside implementing essential security controls like RBAC, encryption , and data governance to ensure regulatory compliance. Performance & Tuning Specialist: Deep technical ...

with a focus on Elastic Security . Detection & Compliance Expert: Proven ability to engineer high-fidelity detection rules based on the MITRE ATT&CK Framework , alongside implementing essential security controls like RBAC, encryption , and data governance to ensure regulatory compliance. Performance & Tuning Specialist: Deep technical ...