SOC – Blue Team Content Creator at Silensec

We are seeking a skilled and passionate Blue Team Content Creator with hands-on experience working in a Security Operations Center (SOC). The ideal candidate will be responsible for both SOC operations anontent creation, developing immersive defensive exercises within virtual environments.

This role involves simulating real-world threats, designing practical assessments, and creating engaging training content focused on incident response, threat hunting, vulnerability management, and security tooling (SIEM/EDR/IDS).

Key Responsibilities:

• Design attack scenarios mirroring Tactics, Techniques, and Procedures (TTPs) of advanced adversaries.
• Assist in SOC operations as needed and contribute to the enhancement of processes and functions within the SOC.
• Develop and maintain virtual labs with built-in vulnerabilities, logs, and defensive tools (e.g., ELK Stack, Wazuh, Wireshark, Velociraptor).
• Create hands-on exercises and assessments aligned with industry frameworks such as NIST NICE, MITRE ATT&CK, and CIS Controls.
• Develop training material that enhances Blue Team skills, including log analysis, forensics, network monitoring, and security hardening.
• Collaborate with SOC teams, cybersecurity researchers, and instructional designers to ensure engaging and realistic training experiences.
• Stay up to date with emerging threats, security tools, and industry best practices to enhance training content.

Requirements:

• Hands-on experience working in a Security Operations Center (SOC) with a focus on threat detection, response, and mitigation.
• Proven experience in cybersecurity content creation, including cyber labs and threat simulations.
• Strong Blue Team skills, including log analysis, forensic investigation, network monitoring, and system hardening.
• Hands-on experience with security tools, including SIEMs, EDR solutions, IDS/IPS, and forensic utilities.
• Knowledge of adversary TTPs and experience in developing threat simulation exercises.

Qualifications:

• Bachelor's degree in Cybersecurity, Information Technology, or related field, or equivalent work experience.
• 2-4 years of experience in a security operations or similar role.
• Familiarity with virtualization technologies (OpenStack, Docker, VMware).
• Experience in malware reverse engineering, digital forensics, or red teaming techniques.
• Background in cybersecurity education/training roles.