Cloud Instructors for Cloud Incident Response Training (1099) Location: Kensington, MD Remote | 1099 Contract Position Duration: Project based (Course specific engagements)
General Description
We are looking for experienced instructors to deliver a series of virtual Cloud Incident Response (IR) courses designed for SOC analysts, incident responders, and security professionals transitioning to or specializing in cloud security. These courses span foundational, intermediate, and advanced levels, with a focus on Microsoft Azure tools, methodologies, and practical applications for incident response and forensics.
Responsibilities
As a contract instructor, you will:
• Deliver live virtual training that explores the differences between cloud and on-premises incident response, ensuring participants understand the Shared Responsibility Model and its implications for security investigations.
• Teach participants to analyze Azure core functions, including virtual machines (VMs), storage, networking, and Identity Access Management (IAM), and guide them in navigating Azure logging sources and log types.
• Provide hands-on instruction on configuring and utilizing tools like PowerShell modules, Microsoft Defender Suite, and Microsoft Sentinel for security orchestration, automation, and response (SOAR).
• Help students investigate and mitigate threats by teaching detection of common Azure attack patterns (e.g., password spraying, lateral movement, data exfiltration) and conducting threat hunting using Kusto Query Language (KQL).
• Guide advanced students in performing in-depth virtual machine forensics in Azure, including introductory memory analysis, while addressing challenges in forensic analysis of serverless functions and containers.
• Support proactive defense strategies by teaching Azure-specific playbook creation, threat modeling, and leveraging cloud-native tools for artifact collection, automation, and advanced detection.
• Facilitate labs and exercises that allow participants to apply new skills in realistic scenarios, such as configuring Microsoft Sentinel, integrating threat intelligence, and mapping security controls to frameworks like MITRE ATT&CK®.
• Create an engaging and interactive learning environment, answering participant questions and ensuring key objectives are met.
Qualifications
Required:
• Proven expertise in cloud incident response, with a focus on Microsoft Azure security tools and frameworks.
• Prior experience teaching technical content to security professionals, preferably in virtual environments.
• In-depth understanding of Azure architecture, logging sources, PowerShell, Microsoft Defender Suite, Sentinel, and SOAR.
• Knowledge of threat hunting, advanced log analysis, and cloud-specific attack patterns.
Preferred:
• Relevant certifications (e.g., Azure Security Engineer, Azure Administrator, CISSP, GCFA, GCIH).
• Familiarity with conducting forensic analysis of virtual machines, containers, and serverless functions in Azure.
• Experience designing and delivering incident response playbooks and cloud automation workflows
Required:
• Proven expertise in cloud incident response, with a focus on Microsoft Azure security tools and frameworks.
• Prior experience teaching technical content to security professionals, preferably in virtual environments.
• In-depth understanding of Azure architecture, logging sources, PowerShell, Microsoft Defender Suite, Sentinel, and SOAR.
• Knowledge of threat hunting, advanced log analysis, and cloud-specific attack patterns.
Preferred:
• Relevant certifications (e.g., Azure Security Engineer, Azure Administrator, CISSP, GCFA, GCIH).
• Familiarity with conducting forensic analysis of virtual machines, containers, and serverless functions in Azure.
• Experience designing and delivering incident response playbooks and cloud automation workflows
Cybervance is an equal opportunity employer. All qualified applicants are considered for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category protected by applicable federal, state, or local laws.
Logistics Operations Coordinator Location Cowpens, SC : DHL Supply Chain is Hiring ! At DHL, you will play a part in one of the world's most essential industries. There... ...and providing problem-solving and order management for customers. Key Accountabilities : Assist...
...Forklift Operator JOB-10044475 Anticipated Start Date July 7, 2025 Location Appleton, WI Type of Employment Contract Hire Employer Info Our client, the worlds leading chemical company, operates in chemicals, plastics, performance...
...Title: Administrative Assistant Location: Lake Buena Vista FL 32830 Duration: 10 Weeks Contract Work Schedule: Onsite; flexibility for remote on Fridays Description/Comment: You would be responsible for the day-to-day workings of the leaders you support...
...cult following. We are seeking a dynamic and highly organized Office Manager/ Executive Assistant to join our team and to support our... ...skills. Perks ~ Healthcare You Can Count On Competitive medical, dental, and vision plans to keep you covered when it matters...
As the Meeting/Event Coordinator for this fast-paced Washington, DC-based association, you will organize and execute meetings for both internal teams and external stakeholders. You will work closely with meeting planners, administrative professionals, and operations staff...