Security Content Architect/Developer - SimSpace Corporation Boston, MA, USA, Bookmark Share Print 2969 11 35

Listing Description

SimSpace, a leader in advanced warfare cyber simulations, is expanding its training content architecture and development team to meet growing customer demand for real-world attack/counter-attack live-fire exercises and skills labs.

As a Security Content Architect at SimSpace, you will design, develop and execute network intrusions on live ranges using real-world adversary tactics coupled with modern security defense and investigative strategies. You will join a team of experienced offensive operators and strategic defenders to develop world-class skills assessment and training, critical in shaping the information security professionals of tomorrow. As a SimSpace Security Content Architect, you will author challenges and training modules to assess and develop foundational to advanced skill levels, providing customers hands-on opportunities to train like they fight, refining their competencies at effectively defending their networks from advanced cyber threats.

Our Training Content team is a combination of remote developers and local developers in our Boston headquarters. Working remotely is an option for experienced engineers located in the US and Canada that have successful experience with working remotely. We bring our entire team together for quarterly off-sites, which facilitates team bonding and some face-to-face interaction. For less experienced engineers or those who have not worked remotely before, we have a strong preference for the Boston area to facilitate mentoring and interaction with more experienced staff.

You Will:

• Develop curriculum that encompasses a range of foundational to advanced red team/offensive tactics and/or blue team EDR/investigative strategies

• Create learning materials in the form of briefings, white papers, videos, practical exercises, and games

• Architect cyber range scenarios that include adversarial tactics, techniques, and procedures (TTPs) and advanced detection and investigative strategies

• Work with our range-operations and DevOps teams to develop toolsets and scenarios within a cybersecurity range to model real-world threat defense scenarios

• Install and baseline security monitoring, detection, and response technologies in enterprise-scaled cyber ranges

• Stay abreast of the latest in offensive strategies and cybersecurity defenses, technologies, methodologies, policy, and breaches

• Assess the skills and level of cyber defense of individuals and teams

• Travel for quarterly company meetings and occasional customer engagements.

Requirements:

• Broad knowledge of standard cyber defense tools such as logging and monitoring, along with deep specialization knowledge in at least one of the following domains:

• Windows Domain Security

• Cloud Security

• Application Security

• Host Forensics

• Linux Security

• Network Security

• Threat Hunting

• Incident Response

• A clear understanding of the current state-of-the-art in computer and network security practices and research, to include exploit mitigation, countermeasures, detection, forensic, auditing, and other defensive tools

• A detailed understanding of cybersecurity recommended best practices (NIST, SANS, CIS, DoD)

• Experience as a practitioner of cyber red-blue exercise concepts as a learning technique

• Complete understanding of adversary kill-chain and exploitation scenarios

• Basic understanding of one or more scripting languages such as PowerShell, Bash, and Python

• Desire to learn, fostering a growth mindset, and sharing knowledge to others on the team

• Strong oral and written communication skills

Your Skills:

• Knowledgeable in several aspects of cybersecurity as applied to Windows, Linux, Network Infrastructure, and cyber Intelligence

• Can develop and present your own course materials based on your assessment of participant needs

• Can build and operate one’s own defensive toolsets

• Experience in multiple technical areas to include incident response, vulnerability assessment, risk management, information assurance, scripting, cyber intelligence, forensics, malware analysis, network and/or host-based monitoring

Benefits:

• Competitive salary and benefits (medical, dental, 401k)

• Equity in the form of SimSpace options

• Flexible hours provided you overlap most of the work day (EST) to interact with others