Cyber Range Engineer - Cyber Defense Training Lead

U.S. BankCincinnati, OH
$126,820 - $149,200Hybrid

About The Position

U.S. Bank is seeking a Cyber Range Engineer to support, operate, and innovate U.S. Bank's Cyber Range while serving as the program's lead for developing and delivering custom training to Cyber Defense personnel and measuring their skills development over time. This role sits within the Attack Surface Management Organization’s Cyber Range team and partners closely with the Global Security Operations Center (GSOC), Threat Hunt, Incident Response, and broader Cyber Defense functions to mature analyst capability through hands-on, lab-based learning experiences delivered in the Range.

Requirements

  • Bachelor's degree, or equivalent work experience.
  • 8 or more years of relevant experience.
  • Effective communication, presentation skills, leadership, problem-solving, and analytical skills.
  • Proven collaboration and influencing skills.
  • Experience configuring networking devices, cloud environments, and operating systems including Windows / Linux / macOS.
  • Ability to create custom queries, dashboards, and reporting metrics.
  • Intermediate scripting experience (Bash, Python, PowerShell).
  • Experience with agile methodologies.
  • Strong verbal and written communication skills.
  • Experience using APIs and CI/CD pipelines.
  • Hands-on experience implementing infrastructure as code, automated configuration, and environment provisioning workflows.
  • Working knowledge of Git workflows and best practices.
  • Working knowledge of information security architecture, security technologies, administration, network and internet security.
  • Demonstrated experience designing and delivering technical security training to SOC, incident response, threat hunt, or similar Cyber Defense audiences — including curriculum design, hands-on lab development, and live instruction.
  • Familiarity with Microsoft Sentinel (or comparable SIEM/SOAR platforms) sufficient to author analyst training that maps to real SOC detection and response workflows.
  • Working knowledge of AI/LLM security risks and ability to translate emerging concepts into hands-on learner exercises.
  • Experience building knowledge assessments and skills measurement frameworks (pre/post testing, lab-based scoring, competency rubrics) and reporting outcomes to leadership.
  • Strong instructional design instincts — able to scope learning objectives, sequence content, and produce learner-ready materials (slides, lab guides, instructor notes).
  • Comfort presenting and facilitating in front of technical audiences of varying experience levels.
  • This role requires working from a U.S. Bank location three (3) or more days per week.

Responsibilities

  • Design, develop, and publish structured training curricula for Cyber Defense audiences — including Microsoft Sentinel, detection engineering, AI/LLM security, and introductory penetration testing content — with defined learning objectives, lab architecture, use-case mapping to SOC workflows, and assessment criteria.
  • Build and maintain hands-on lab modules deployed within the Cyber Range that reinforce real-world detection, investigation, and response workflows used by GSOC analysts, Threat Hunt, and Incident Response teams.
  • Plan, schedule, and deliver the Cyber Defense Training (CDT) cohort program — including cohort intake, curriculum refresh between cohorts, lab environment provisioning, live instruction, and post-cohort retrospectives — in support of continual upskilling and compliance-driven periodic training requirements.
  • Develop and deliver the AI/LLM Training portfolio to upskill bank personnel on general AI/LLM security risks, partnering with peer teams on lab content and outreach events such as Cyber Security Awareness Month and Early Careers seminars.
  • Maintain and evolve the Introduction to Penetration Testing seminar and other outreach-oriented training that broadens cyber capability across the Bank.
  • Define and operationalize pre- and post-training assessment instruments that quantify participant knowledge gain (e.g., baseline → post-course delta, lab-based performance scoring) and report results to leadership; the current Cyber Defense Training program has demonstrated a 257% increase in post-training assessment scores, and this role is accountable for sustaining and extending that measurable outcome.
  • Establish and report on training program KPIs, including coverage of target Cyber Defense population, completion rates, skill-level progression by role, and stakeholder feedback trends.
  • Gather and incorporate stakeholder feedback (Cyber Defense leadership, GSOC analysts, learners) to iteratively improve curriculum effectiveness and lab realism.
  • Maintain training records and artifacts sufficient to satisfy applicable regulatory and compliance expectations for periodic security training of Cyber Defense staff.
  • Work in a team-based environment to support, maintain, and innovate U.S. Bank's Cyber Range.
  • Install, configure, and manage on-premise network, compute, and storage hardware.
  • Design and manage complex network topologies, including segmented and simulated threat environments.
  • Develop and maintain comprehensive documentation for Cyber Range infrastructure, configurations, and operations.
  • Maintain awareness of emerging industry security technologies, technology issues, regulatory issues, and practices.
  • Provide Information Security subject matter expertise in various risk assessments (inherent risk and definition of the residual risk of a target state).
  • Weigh business needs against security concerns and recommend necessary changes to enhance information systems security.
  • Ensure adherence to compliance with regulations and policies.
  • Support cyber training exercises, red/blue team operations, and system simulations.
  • May be required to lift computer equipment up to 50 lbs.

Benefits

  • Healthcare (medical, dental, vision)
  • Basic term and optional term life insurance
  • Short-term and long-term disability
  • Pregnancy disability and parental leave
  • 401(k) and employer-funded retirement plan
  • Paid vacation (from two to five weeks depending on salary grade and tenure)
  • Up to 11 paid holiday opportunities
  • Adoption assistance
  • Sick and Safe Leave accruals of one hour for every 30 worked, up to 80 hours per calendar year unless otherwise provided by law
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service