Associate Detection & Response Analyst

  • R5641
  • Arlington, VA, United States

Associate Detection & Response Analyst

Rapid7’s Tactical Operations team (TACOPS) is responsible for handling the most time-critical tasks for all customers, such as the investigation and triage of high priority security alerts using our cloud hosted SIEM, InsightIDR. The TACOPS team is the perfect spot for new or aspiring cybersecurity professionals looking to get their hands dirty finding evil and protecting our customers’ environments.
 

About the Team

Rapid7's Managed Detection and Response (MDR) service works to detect breaches, respond and investigate attacker activity, and help our customers improve their abilities to deal with threats. Our MDR analysts pride themselves on their ability to think critically, adapt to constantly changing attack methodologies, and deliver top-notch Threat Detection and Incident Response services. 


The TACOPS team is composed of Associate Analysts who work on 4:3 shift schedules (4 days on, 3 days off). The TACOPS analysts will work a rotating 4:3 schedule from 10 AM - 8 PM after a 90 day onboarding and training period. The shifts are from Sunday-Wednesday and Wednsday-Saturday. There is no night shift for U.S. analysts at Rapid7! 

Associate Analysts will have access to the following technology (and more!) to conduct investigations and triage alerts for our customers:

  • InsightIDR - cloud based SIEM with unlimited log storage 

  • Insight Agent - Rapid7’s endpoint technology for collecting forensic data

  • Velociraptor - advanced DFIR tool 

About the Role
Most days for Associate Analysts will consist of reviewing alert data to identify evil activity in customer environments. In these roles you will be empowered to steer investigations. Investigations include everything from evidence acquisition and analysis to figure out how the intrusion began to identify any malicious or unexpected activity related to the event.  Based on this investigation you will be responsible for writing an incident report which includes your technical analysts, documented findings and remediation recommendations for customers.  Your colleague, a Customer Advisor, will be responsible for direct communication with the customer. You will have fellow analysts who will be ready to help you if you encounter a problem or have a question, including Mid, Senior and Lead Analysts.

 

In the event of a security incident that rises to the level of a Remote Incident Response (RIR) engagement, Associate Analysts may be tasked with performing investigation tasks related to the RIR engagement. In this circumstance you will focus on helping a team track threat actor actions across an environment by examining forensic artifacts.
 

In this role, you will:

  • Deliver world-class threat detection services using traditional threat intelligence-based detection and user behavior analytics

  • Conduct or assist with Rapid7 incident response investigations. 

  • Assist in capturing and deploying knowledge of attack methodologies

  • Drive research initiatives to further threat detection capabilities and brand reputation through media interaction, public speaking, and blogs

  • Provide continuous input to Rapid7 product development teams  

The skills you’ll bring include:

  • Problem solving, critical thinking, and ingenuity

  • A passion for cybersecurity and a keen curiosity and excitement to learn

  • Knowledge of Windows and/or Linux operating systems

  • Fundamental knowledge of security concepts (lateral movement, privilege escalation, persistence methods, command and control, exfiltration, etc.)

  • Security Certifications (GFACT, GSEC, GCIA, GCIH, CySA+, CASP+, Security+, etc.)

  • Participation in CTF events

  • Participation in red team/blue team training tools such as HackTheBox, TryHackMe, LetsDefend, etc.

We know that the best ideas and solutions come from multi-dimensional teams. Teams reflecting a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don’t be shy - apply today.

About Rapid7

Rapid7 (NASDAQ: RPD) helps organizations across the globe protect what matters most so innovation can thrive in an increasingly connected world. Our comprehensive technology, services, and community-focused research simplify the complex for security teams, helping them reduce vulnerabilities, monitor for malicious behavior, be in 10 places at once, and shut down attacks. We’re on a mission to make security solutions easier to use and access so we can bring safety and resilience to more people.

With more than 10,000 customers across 140+ countries, Rapid7 is a leader in cybersecurity that has earned numerous industry accolades and recognition for our technology and culture.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status.

Apply Now

Not You?

Application loading...

 

Jobs you may be interested in

Senior Renewal Support Specialist

R5885 Belfast United Kingdom Belfast, United Kingdom Finance Sales JOB_LEVEL-3-44
We are building a new Renewal Support team in Belfast and we are looking for individuals to join this team and be responsible for the creation of renewal quotes for our customers. You will have previous administrative experience with excellent att...

Renewal Support Specialist

R5887 Belfast United Kingdom Belfast, United Kingdom Finance Sales JOB_LEVEL-3-45
We are building a new Renewal Support team in Belfast and we are looking for individuals to join this team and be responsible for the creation of renewal quotes for our customers. You will have previous administrative experience with excellent att...

Senior QA Engineer

R5896 Tel Aviv Israel Tel Aviv, Israel Product & Engineering Development Engineering JOB_LEVEL-3-24
Senior QA Engineer Rapid7 Israel is seeking a senior QA Engineer with a passion for cloud security technologies to join the Cloud Workload Security Application team and be the team’s QA technical and technological leader. About the Team​ As part ...

International Senior Credit and Collections Analyst

R5891 Belfast United Kingdom Belfast, United Kingdom Finance Finance JOB_LEVEL-3-24
The Senior Credit and Collections Specialist will be responsible for collections with key partner accounts while building strong relationships with the partners and an excellent experience. This role will be responsible for establishing and mainta...

Apply Now

Not You?

Application loading...