Remote - Senior Security Research Engineer

We are looking for:

A Senior Security Research Engineer at SimSpace, who will design, develop and execute network intrusions on live ranges using real-world adversary tactics coupled with modern security defense and investigative strategies. You will join a team of skilled offensive operators and strategic defenders to develop world-class skills assessments and trainings that are critical in shaping information security professionals of tomorrow.

As a Senior Security Research Engineer, you will develop practice tests and training programs. These will assist all users, from novices to professionals, in enhancing their skills. Through realistic simulations, they will learn how to safeguard their networks from sophisticated cyber threats.

What will you be doing as a Senior Security Research Engineer at SimSpace?

• Develop educational curriculum that encompasses a range of foundational to advanced red team/offensive tactics and/or blue team DFIR/investigative strategies.
• Create learning materials in the form of functional exercises, written lessons, and simulated attack scenarios.
• Architect cyber range scenarios that include adversarial tactics, techniques, and procedures (TTPs), advanced detection and investigative strategies.
• Work with our range-operations and DevOps teams to develop toolsets and scenarios in a simulated network to model real-world threat offense or defense scenarios.
• Install and baseline security monitoring, detection, and response technologies in enterprise-scaled cyber ranges.
• Stay abreast of the latest in offensive strategies and cybersecurity defenses, technologies, methodologies, policy, and breaches.
• Assess the cybersecurity knowledge, skills and abilities of individuals and teams.

What are the qualifications to apply? To be successful as a Senior Security Research Engineer, you need to have:

• Previous experience in creating trainings.
• Solid understanding of tactics and techniques used during offensive network operations and the ability to modify them to subvert defensive countermeasures.
• A deep knowledge of the newest computer and network security. This includes preventing attacks, defending against them, recognizing them, and investigating afterwards, along with other protective actions.
• Experience as a practitioner of cyber red-blue exercise concepts as a learning technique.
• Thorough understanding of adversary kill-chain and exploitation scenarios.
• Basic knowledge of one or more scripting languages such as PowerShell, Bash, or Python.
• Demonstrable experience in building and operating custom defensive toolsets.
• Experience in multiple technical areas to include incident response, vulnerability assessment, risk management, information assurance, scripting, cyber threat intelligence, digital forensics, malware analysis, network and/or host-based monitoring.
• Experience with commonly used attack frameworks (Cobalt Strike, Metasploit, CANVAS, Empire, Core Impact, etc.).
• Desire to learn, fostering a growth mindset, and sharing knowledge to others on the team.
• Ability to develop and present your own course materials based on your assessment of participant needs.
• U.S. citizenship as required by our U.S. Government contracts.
• A broad knowledge of standard cyber defense tools and offensive cyber techniques, along with deep specialization knowledge in at least one of the following domains:
• • Microsoft Active Directory Security
  • Application Security
  • Host Forensics
  • Linux Security
  • Network Forensics
  • Threat Hunting
  • Incident Response
  • Malware Analysis
  • Red Teaming or Penetration Testing
  • Reverse Engineering