We are looking for SOC Analysts with a passion for cybersecurity to join us. As a Detection and Response Analyst you will work with Rapid7’s advanced tools to investigate and triage high priority security events.

The skills you’ll bring include:

• Understanding of core operating system concepts in Windows, MacOS/Darwin, and Linux. This includes at least a basic understanding of common internal system tools and directory structures.
• A fundamental understanding of how threat actors utilize tactics such as lateral movement, privilege escalation, defense evasion, persistence, command and control, and exfiltration.
• Practical experience gained through CTF and HTB challenges, as well as personal or professional usage of common penetration testing tools such as Mimikatz, Metasploit modules, BloodHound, etc.
• Experience with hands-on analysis of forensic artifacts and/or malware samples.
• Passion for continuous learning and growth in the cybersecurity world.
• Effective collaboration within the SOC and between departments.
• Dedication to putting each customer’s needs and concerns at the forefront of all decision making

As a Detection and Response Analyst in Rapid7’s SOC, you will be responsible for identifying and analyzing malicious activity in a multitude of customer environments. You will be enabled to complete investigation scaling in complexity from simple account compromises and commodity malware infections, to complex web server compromises and zero-day vulnerability exploitation.
Your Customer Advisor colleagues will be responsible for direct communication with the customers, enabling you to dedicate your efforts to analysis. Your fellow analyst colleagues will be available to answer questions, provide guidance, and assist you in investigations if you need help.

In this role, you will:

• Utilize Rapid7’s world-class software and threat intelligence to identify potential compromises in customer environments.
• Conduct investigations into a variety of malicious activity on workstations, servers, and in the cloud.
• Write an Incident Report for each investigation you complete, which follows MITRE’s ATT&CK Framework and includes your own forensic, malware, and root-cause analysis.
• Communicate with Customer Advisors regarding investigation findings, Requests For Information from clients, and remediation and mitigation recommendations.
• Communicate with other analysts to share new intelligence regarding tactics, techniques, and trends utilized by threat actors.
• Provide continuous input to Rapid7’s Threat Intelligence and Detection Engineering team regarding new detection opportunities.

The skills you’ll bring include:

• Understanding of core operating system concepts in Windows, MacOS/Darwin, and Linux. This includes at least a basic understanding of common internal system tools and directory structures.
• A fundamental understanding of how threat actors utilize tactics such as lateral movement, privilege escalation, defense evasion, persistence, command and control, and exfiltration.
• Practical experience gained through CTF and HTB challenges, as well as personal or professional usage of common penetration testing tools such as Mimikatz, Metasploit modules, BloodHound, etc.
• Experience with hands-on analysis of forensic artifacts and/or malware samples.
• Passion for continuous learning and growth in the cybersecurity world.
• Effective collaboration within the SOC and between departments.
• Dedication to putting each customer’s needs and concerns at the forefront of all decision making.

We know that the best ideas and solutions come from multi-dimensional teams. That’s because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don’t be shy - apply today.