Guidepoint Security “SOC-in-a-Box” Project 2026

Dive into real-world cybersecurity issues through mentored work experience while earning $25 an hour in Guidepoint Security’s “SOC-in-a-Box” project, part of CCI’s Project-Based Learning Program.

The project is part of CCI’s mission of Workforce Development.

About the Project

Cyber security practitioners need a place to practice and hone their skills.  GuidePoint Security is seeking apprentices to help create a “SOC-in-a-Box,”  which is a scalable and quickly-deployable lab environment. The environment  should include all essential elements of a Security Operations Center (SOC),  including a log aggregation platform, case management system, basic active  directory ecosystem, and a host-based detection tool. The deployment and  configuration of this lab and its various parts should be automated using  Infrastructure as Code (IaC) solutions. This project exposes students to  technologies they will encounter as they enter the Cyber Security job market  while providing insight into the role of an Incident Response Analyst, Threat Intelligence Specialist, Detection Engineer, and Adversary Emulation Specialist.  Apprentices will work as a team to complete the SOC-in-a-Box project. It is  expected that students establish their own routine and communication practices  for internal interactions.

Specifically, apprentices will be expected to complete the below tasks:

• Using IaC, design and deploy an environment with 5+ virtual machines  connected to Active Directory
• Write a script to simulate typical user activity on end-user devices,  imitating normal network traffic
• Install a host-based detection solution on end-user devices
• Deploy a vulnerable web server that can be attacked by machines on the  network
• Set up a SIEM, collecting appropriate data from systems on the network
• Set up a SOAR solution with basic case management
• Generate malicious activity, attacking the vulnerable web server to test  case management
• Provide weekly updates on project status

Students will meet with the GuidePoint Security team for one hour each week to  provide updates and receive guidance. In addition to these required update meetings, the GuidePoint Security University team holds office hours on Fridays  for anyone to attend.

What You’ll Do

• Create executive summary
  • Brief document describing the intended use case,  technologies, and features included in the solution
• Develop infrastructure code
  • The actual code used to create the SOC-in-a-Box environment. Additionally, this will include scripts to generate traffic, cause malicious activity, etc.
• Produce supporting documentation
  • How-To document describing the requirements and step-by-step deployment instructions
  • Configuration document detailing various configuration options, and any further setup required for each configuration
  • Any additional supporting documentation/scripts/code snippets
• Present your work
  • At the end of this apprenticeship, the team will give a 15-minute presentation to a group of cybersecurity professionals

What You’ll Get

• A stipend of $25 per hour will be paid through CCI
• Mentorship by Guidepoint Security experts
• Access to approved systems (e.g. VPN)
• Challenge and project outline
• Materials required to complete the tasks

Timeline

Eligibility Requirements

To qualify for the program, you must:

• Be a U.S. citizen
• Be currently studying at a Virginia institution of higher education
• Have completed one year of schooling
• Be enrolled full-time through the fall 2026 semester
• Have declared their major in cyber or cyber-related field
  • Cybersecurity
  • Computer Science
  • Data Science
  • Engineering
  • Data Privacy
• Commit to staying in the program from June 1 – Dec. 4, 2026
• Be enrolled in cyber or cyber-adjacent courses and demonstrate an interest in cybersecurity (e.g., does Hack the Box or other online CTF-style activities, has a home lab, cyber club, etc.)

Additional preferred qualifications:

• Have an eagerness to learn about data privacy
• Have general data governance, data protection, and data privacy awareness

Project Requirements

If selected for the program, you must:

• Work on the project for a maximum of 10 hours per week during June 1 – Dec. 4, 2026
• Attend the project kick-off meeting at 12 pm ET on June 1
• Read through the provided resource packet PRIOR to attending the project kick-off meeting  
• Attend weekly virtual meetings with Guidepoint Security on Tuesdays at  12 pm ET from June 1 – Dec. 4, 2026
• Present your final project deliverables on Dec. 4, 2026
• Work as part of a team to complete project related tasks
• Provide your own computers, laptops, etc.
• Inform your university/college advisor of project participation
• Provide CCI with your advisor’s name, title, and email

Expectations

This is a professional opportunity, and you’re expected to conduct yourself in a manner befitting a professional environment.

You will be held accountable for attending meetings and actively participating in project-related tasks. Failure to meet these expectations could result in your dismissal and forfeiture of your stipend. You must:

• Attend 80 percent of mandatory meetings
• Participate in project-related tasks
• Resolve any attendance and participation issues

If you’re interested in seeing this program at your school or sponsoring such a program at your company, please contact Sarah Hayes at sshayes@vt.edu.