Job Description
We are seeking someone with a passion for cyber security to join our team. As a Security Operations Analyst with Rapid7 you will work with a combination of tools and Rapid7s command platform to investigate and triage security events. Working with Rapid7s Global Security Operations team is an ideal opportunity to gain a deep understanding of threat detection and response. As part of this team you will be in the best position to develop the skills needed to build a career in cyber security.
About the Role
As a Security Operations Analyst, your core daily function will be the review of alert data to pinpoint malicious activity within the Rapid7 environment. You will have the authority to lead and drive these investigations, which span the entire lifecycle from evidence collection and analysis to determining the initial intrusion vector and identifying all associated malicious or unexpected activity. A critical output of your investigation will be the creation of an Incident Report, documenting your technical analysis, findings, and recommended remediation steps. You will operate within a supportive team environment, with fellow analysts, including Senior and Lead Analysts, available for consultation and assistance whenever you encounter challenges or have questions.
A Security Operations Analyst is also involved in proactive threat identification through rotational threat hunting activities, which aim to uncover unknown threats within the Rapid7 environment. Furthermore, in the event of a security incident escalating to a formal Incident Response engagement, the Analyst may be assigned investigation duties. These duties primarily involve assisting the team in tracking threat actor movements across the environment by meticulously analyzing forensic artifacts.
In this role, you will:
Contribute to a global Security Operations team.
Provide high-quality threat detection services.
Lead or support incident response investigations for Rapid7.
Help document and implement knowledge of current attack methodologies.
Conduct research to enhance threat detection capabilities and reinforce brand reputation.
Offer ongoing feedback to Rapid7s product development teams.
The skills youll bring include:
1-3 years of experience within cyber security operations
Strong problem-solving ability, critical thinking skills, and ingenuity.
A passion for cybersecurity, coupled with a keen curiosity and eagerness to learn.
Required familiarity with MacOS, Windows, and/or Linux operating systems.
Essential experience using Security Information and Event Management (SIEM) tools, such as the Rapid7 command platform or Splunk, or comparable platforms.
Experience in common Security Operations Center (SOC) functions, including but not limited to, incident response, threat hunting, detection engineering, malware analysis, or forensic investigations (network and endpoint).
The aptitude to identify areas for process improvement and successfully implement solutions.
We know that the best ideas and solutions come from multi-dimensional teams. Thats because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please dont be shy - apply today.
#LI-TD1
