Cyber Simulation Specialist
Overview
My cleient is seeking a Cyber Simulation Specialist to strengthen organisational resilience through the design and delivery of security exercise programs. This role plays a key part in testing incident response readiness, running realistic cyber attack scenarios, and ensuring continuous improvement of security processes.
What You'll Do
* Design and run tailored cyber security simulation exercises that reflect real world threats.
* Partner with internal teams and stakeholders to set goals and scope for each exercise.
* Lead and facilitate red team/blue team scenarios, ensuring outcomes are captured effectively.
* Document results, analyse performance, and provide actionable recommendations.
* Integrate insights from evolving cyber threats into simulation development.
* Support ongoing enhancement of incident response playbooks, procedures, and escalation pathways.
Key Tasks May Include:
* Process Simulations: Facilitate walkthroughs of playbooks, run short practice sprints, and establish a feedback cycle to refine documentation.
* Communication Simulations: Test escalation and on call processes, validate 24/7 contact lists, and review communications plans.
* Scenario Planning: Define simulation objectives, boundaries, and event triggers (e.g., vulnerabilities, compromises, outages).
* Simulation Design & Build: Create incident maps, inject unexpected events, set up environments (cloud, hardware, VMs), and document builds for repeatability.
* Execution & Evaluation: Run simulations, coordinate briefings, facilitate exercises, capture observations, and lead structured debriefs. Feed lessons learned into future improvements.
What We're Looking For
* 5+ years in cyber security operations, threat management, or incident response.
* Demonstrated experience in developing and delivering simulation based security exercises.
* Solid grasp of threat actors, attack methods, and evolving cyber risks.
Preferred Skills
* Clear and confident communication, with strong stakeholder engagement abilities.
* Familiarity with security standards/frameworks (NIST, ISO 27001, ISM).
* Exposure to simulation platforms, threat emulation, or red team tools.
* Comfortable working autonomously and guiding cross functional teams.