Enhance your cybersecurity through people, process, and technology
Software Engineer, Attack Framework$90k – $150k • 0.02% – 0.05%
Do you want to help shape the future of training cyber security teams against malicious cyber criminals and foreign actors? Would you like your work to have meaningful impact in an area as important as cyber security? SimSpace is looking for experienced software engineers to help develop our internal Attack Framework and our Attack Services Layer in our realistic cyber simulation products for cyber security testing, training, assessments, and tool development.
SimSpace is developing an in-range Attack Framework (Craft) and a generalized Attack Services Layer to support any vendor's attack framework including our own. The goal is to make it easy for our users to make use of pre-existing attack scenarios, mix and match individual attack components, or create new attack components and scenarios from scratch. Full control of the multi-step attacks and visualization is required so users can concentrate on how to defend against adversaries that employ such attack techniques.
The software engineering involves in-range server development to orchestrate attack components, network protocol development to communicate between servers, emulation of adversary behavior, and the means to record what happens and play it back later. No prior attack tool knowledge is required, but there is ample opportunity to learn more about adversary attack techniques and how best to emulate that behavior in a controlled range environment. You will apply your computer science abilities to architecture, API design, data structures, data handling, concurrency, and permission models. We follow the agile process for development and utilize modern toolchains and methods to develop our frameworks and services in teams.
Our attack framework stack is Python 3.x with MongoDB and Postgres for storage and deployed in-range with automation based on Puppet. Our attack framework team is a combination of remote developers and local developers in our Boston headquarters. Working remotely is an option for experienced engineers located in the US and Canada that have successful experience with working remotely. We bring our entire team together for quarterly off-sites, which facilitates team bonding and some face-to-face interaction. For less experienced engineers or those who have not worked remotely before, we have a strong preference for the Boston area to facilitate mentoring and interaction with more experienced staff.
• Develop the SimSpace attack framework (Craft) distributed system that collectively simulates adversary behavior
• Design and develop tools to auto-generate new attack content based on a high level description of adversary behavior
• Design and develop command and control and visualization APIs for use with the SimSpace Cyber Range platform
• Make use of REST APIs and a Message Bus (Rabbit MQ) to interact with other component services
• Develop new attack content making use of the SimSpace attack framework based on requirements; this can include stealthy communication channels, encryption, and other means by which adversaries operate
• End-to-end testing of attack tools to ensure functionality and the ability to evade defensive tools
• Collaborate with our passionate team of experienced software developers and our Red Team to ensure the SimSpace attack framework is representative and useful during training exercises and tests
You are a good fit if you have:
• U.S. citizenship as required by our existing U.S. Government contracts
• At least three years of professional software engineering experience in Python 3.x, and at least one year of experience with Python for network client-server communication.
• Demonstrated experience with distributed systems, network protocols (REST and rMQ), data handling, proper use of security constructs, SQL stores, concurrency primitives, testing frameworks, and data structures in enterprise systems. We consider these the basics. Fundamentals matter.
• Knowledge and experience using Linux and Windows operating systems for network programming
• Experience implementing proprietary protocols
• Experience with unit testing frameworks and familiarity with full integration testing a plus
• A strong sense of pride in crafting well-tested and well-designed code that is delivered on-time. We have to deliver and it has to work.
• Proficient in Python 3.x
• Produce high quality software that is well-written, well-instrumented, tested thoroughly and securely designed and implemented
• Fluent with git, GitHub, Docker, CI/CD and modern team software development and testing tools and practices, including Secure SDLC approaches
• Create well-designed and documented APIs and JSON data formats
• Moderate system administration skills
• Strong oral and written communication skills
• Self-starter that is highly motivated, accepting of other opinions, and can work effectively in a team
• Competitive salary and benefits (medical, dental, 401k)
• Equity in the form of SimSpace options
• Flexible hours provided you overlap most of the work day (EST) to interact with others
• One day a week telecommute -- we value in-person interaction
U.S. citizenship as required by our existing U.S. Government contracts. In compliance with federal law, all persons hired will be required to verify identity and eligibility to work in the United States and to complete the required employment eligibility verification document form upon hire.