We are looking for: We are looking for a highly motivated Cybersecurity Professional to support instructing and assessing teams in basic to advanced cybersecurity skill areas. The ideal candidate has a strong technical background, is enthusiastic, is good at problem solving, has a strong desire to learn, prefers to be hands-on technically, and constantly strives for excellence. The Cybersecurity Engineer/Instructor will be part of a team delivering instructional content to customers, training 3rd party trainers and new users how to effectively leverage the SimSpace platform, and facilitating a variety of exercises for SimSpace and our customers. When facilitating exercises, you will be responsible for teaching security concepts, demonstrating practical/hands-on use of open source and commercial security tools; referencing both well established and cutting edge techniques that Cybersecurity Incident Response Teams might use to effectively defend their networks from advanced cyber threats.

What will you be doing as a Senior Cybersecurity Engineering Instructor at SimSpace?

The Cybersecurity Engineer/Instructor will work closely with cross-functional teams of product managers, product owners, software engineers, content developers, range engineers, DevOps, QA teams, customer success representatives, customer trainees, and 3rd party trainers for the purpose of delivering the highest quality experience to our customers.

What You Will Do:

• Deploy, configure and provide support for tool sets in-range that will be utilized by security teams and incident responders; including EDR software, logging solutions, forensic software and network monitoring products
• Deliver remote and occasional in-person instruction on the operation of the SimSpace platform and cybersecurity content.
• Generate and build upon attack/defend scenarios and skills development labs that teach the full range of cyber defense techniques of hardening, monitoring, pursuit, and cyber intelligence
• Review and contribute to learning materials in the form of briefings, white papers, videos, practical exercises, and games
• Work with our range operations and DevOps teams to develop toolsets and scenarios within a cybersecurity range to model real-world threat defense scenarios
• Support assessment of customer security teams and customer events (travel estimated at up to 25% in the near future)
• Assess and communicate the skills and level of cyber defense of individuals and teams prior to, during and post events via both oral and written deliverables

What are the qualifications to apply? To be successful as a Senior Cybersecurity Engineering Instructor, you need to:

• A detailed understanding of global, national and industry cybersecurity recommended best practices and frameworks (NIST, SANS, CIS, DoD)
• Practical experience as a SOC Analyst, Threat Hunter, or Incident Responder
• Practical networking experience inside of business and LAN environments
• A clear understanding of the current state-of-the-art in computer and network security practices and research, to include exploit mitigation, countermeasures, detection, forensics, auditing and other defensive tools
• Complete understanding of adversary kill-chain and exploitation scenarios
• Broad knowledge of standard security-centric tools such as logging and monitoring, along with deep specialization knowledge in one of Windows Domain Security, Windows Forensics, Linux Security, or Network Security
• Demonstrable strong oral and written communication skills and comfortable presenting both virtually and in-person
• Instruction (on-the-job or classroom) (1+ years)
• Scripting in PowerShell, Python, Ruby or similar language
• Active Directory (1+ years)
• Databases such as Elastic, SQL Server, Postgres and/or MySQL (1+ years)
• Network analysis tools such as Wireshark, tcpdump and nmap (2+ years)
• Deep knowledge of TCP/IP, and the ability to quickly learn new firewall/router devices
• Host analysis experience (forensics, memory analysis, malware analysis, or DFIR experience)

Your skills:

• Knowledgeable in several aspects of cybersecurity as applied to Windows, Linux, network infrastructure/components, and cyber intelligence
• Can develop and present your own training materials based on your assessment of customer needs
• Can build and operate your own defensive toolsets
• Experience in multiple technical areas to include incident response, vulnerability assessment, risk management, information assurance, scripting, cyber intelligence, forensics, malware analysis, network and/or host-based monitoring
• Cybersecurity classes and credentials are a plus: Preferred security credentials include GCIH or one of GCIA, GCWN, GNFA, OSCP, or demonstrable equivalent knowledge
• Professional level certification in vendor platforms such as Windows, RedHat, Cisco or other systems a plus
• Will consider both generalists with a background in security and devops system-administration, and specialists in specific aspects: (ie Windows defense/forensics, network security monitoring, unix defense/monitoring, etc)
• Hands-on experience or familiarity with open source and commercial cybersecurity products such as Security Onion, ELK, Snort, Splunk, Security Analytics, Tanium, Crowdstrike, Carbon Black, Cyber Reason or others is essential

We provide the following:

• Salary Range $100,000 - 150,000
• Benefits that start on first day of hire (medical, dental, company-paid vision, savings and spending accounts, Employee Assistance Program, company-paid Life and AD&D Insurance)
• 401k match with immediate vesting
• Unlimited paid time off
• Equity options at hire and potential for additional based on performance
• Generous employee referral bonus program
• Peloton Interactive Wellness Program
• Semi-flexible hours, with the expectation that you overlap the main part of the day to meet deadlines, collaborate with colleagues and attend key meetings.