Senior Cyber Operations Instructor
Senior Cyber Operations Instructor
The selected individual will work as part of root9B’s Cyber Training team instructing classes and developing, maintaining and refreshing advanced cyber operations and analysis courses and curriculum for commercial and government customers. The individual will serve as the course lead for a subset of root9B courses and be responsible for overall course design, content, flow, and exercise development for each assigned course. The individual will be responsible for maintaining expert-level proficiency in course subject matter areas and researching current trends in computer and network exploitation and vulnerability analysis that can be incorporated into existing or new courses.
Responsible for 1) teaching cyber security and cyber operations courses to commercial and government customers, 2) actively participating in the requirements development process with new and existing customers to identify training focus areas, 3) developing new course material and exercises based on customer requirements, 4) maintaining and updating existing course material and exercises based on changes in technology, methodologies, and/or changing customer requirements, 5) researching current trends in cyber security and cyber operations to identify areas for new course development or improvement , 6) providing assessments of student proficiency and improvement to interested customers at the conclusion of each course.
Education and/or technical experience leading full-scale cyber security assessments, directing vulnerability and exploitation engagements, or conducting enterprise-level active adversarial pursuit (HUNT) operations. Experience teaching classes of 7+ students for periods of one week or more is desired. Experience developing courseware and lab exercises for cyber security and/or cyber operations type courses is desired. Extensive knowledge of the exploitation methodology and can think outside-the-box to develop tailored solutions for non-standard problems. Experience developing custom tools and/or scripts to accomplish desired goals. Expert knowledge of common computer operating systems, networking protocols, and host-based / network security products and capabilities. Master level proficiency with industry standard exploitation or forensic frameworks and the aptitude to research and stay up-to-date with current exploits and the dynamic threat landscape. Experienced and comfortable interacting with both commercial and government customers. Has a true passion for developing and educating junior analysts and operators.
The candidate for this position must have experience working on mid- to large-size projects focused on cyber security assessments and/or incident response investigations. The candidate must have proven experience of teaching technical classes to junior and senior audiences with high levels of favorable student feedback. The candidate must demonstrate advanced understanding of hacker techniques, vulnerability analysis, and/or incident response and how each skill applies to the overall cyber threat landscape. Expert level proficiency and hands-on experience with frameworks such as Metasploit, Nexpose and Burp Suite, and the ability to use scripting languages such as Python, Perl, Bash, or Powershell to accomplish
operational goals is required. Advanced knowledge of gaining initial access to a target (server-side or client-side exploitation and social engineering) and the expertise to laterally move throughout the internal network is desired. The candidate should also be familiar with commonly deployed network IDS and host-based A/V suites and how to effectively avoid detection. Additional experience in the following is also desired: 1) Network device exploitation and analysis such as Cisco and Juniper, 2) Computer forensics, 3) Dynamic and basic static malware analysis 4) Virtualization technologies 6) Operating System Internals.
No attachments will be accepted. Please email content of resume, references, work samples and preferred location (if applicable) to firstname.lastname@example.org.