Associate Detection & Response Analyst
- R10475
- Prague, Czechia
We are looking for people with a passion for investigation and forensic analysis to join our MDR SOC team at Rapid7. As an Associate Detection & Response Analyst, you will utilise Rapid7's advanced tools to investigate and triage security events and work side-by-side with Rapid7's Incident Response team to investigate incidents ranging from commodity malware to sophisticated threat actors. As a SOC analyst you will have the opportunity to impact this team while building your career and expertise with a globally recognised cyber security company.
About the Team
Rapid7 Managed Detection and Response (MDR) is built from the ground up to bring motivated and passionate security talent face to face with emerging threats, practical challenges, and malicious activity at scale. Our MDR service uses an impact-driven mindset to focus efforts on effective solutions, encouraging personal and technical innovation within the SOC. MDR provides 24/7/365 monitoring, threat hunting, incident response, and more with a focus on endpoint detection and behavioral intelligence.
About the Role
As an MDR Analyst your primary responsibility will be to review alert data to identify malicious activity in customer environments. You will be empowered to steer investigations, which includes everything from evidence acquisition and analysis to figuring out how the intrusion began to identify any malicious or unexpected activity related to the event. Based on this investigation you will be responsible for writing a Findings Report which includes your technical analysis, documented findings, and remediation recommendations for customers. You will have fellow analysts who will be ready to help you if you encounter a problem or have a question, including Senior and Lead Analysts. Specifically, your focus will be to:
Deliver world-class threat detection services using traditional threat intelligence-based detection and user behavior analytics
Conduct or assist with Rapid7 incident response investigations
Assist in capturing and deploying knowledge of attack methodologies
Provide continuous input to Rapid7 product development teams
On a monthly basis you will perform threat hunting to identify unknown threats in a customer environment. In the event of a security incident that rises to the level of a Remote Incident Response engagement, you may be tasked with performing investigation tasks related to the investigation
Partner cross functionally with a Customer Advisor who will be responsible for direct communication with our customers
The skills and qualities you’ll bring include:
Knowledge of Windows, Linux operating systems
Fundamental knowledge of security concepts (lateral movement, privilege escalation, persistence methods, command and control, exfiltration, etc.)
Security Certifications (GFACT, GSEC, GCIA, GCIH, CySA+, CASP+, Security+, etc.)
Scripting/coding ability
Participation in CTF events
Participation in red team/blue team training tools such as HackTheBox, TryHackMe, and LetsDefend
Willingness to work on a shift schedule, including evenings and a Saturday or Sunday - The Rapid7 MDR SOC has a shift rotation which requires associate analysts to work a 4:3 schedule from 10 AM - 8 PM after a 90 day onboarding and training period. The shifts are from Sunday-Wednesday and Wednesday-Saturday.
Excited by technology with a passion for cybersecurity, curious and eager to learn and develop in a security role
Demonstrates a strong sense of responsibility for protecting customer trust, making decisions that prioritize security and impact
A collaborative team player who has the ability to partner successfully with others to drive impact
Demonstrates a strong sense of ownership, holding themself and others accountable to achieving outcomes that deliver value to our customers and internal teams
The attitude and ability to thrive in a high-growth, evolving environment
Ability to make transparent, well-communicated, and efficient decisions under pressure, with careful consideration of risk and impact
Core Value Embodiment: Embody our core values to foster a culture of excellence that drives meaningful impact and collective success.
We know that the best ideas and solutions come from multi-dimensional teams. That’s because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don’t be shy - apply today.
About Rapid7
At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We do this by harnessing our collective expertise and passion to challenge what’s possible and drive extraordinary impact. We’re building a dynamic and collaborative workplace where new ideas are welcome.
Protecting 11,000+ customers against bad actors and threats means we’re continuing to push the envelope - just like we’ve been doing for the past 20 years. If you’re ready to solve some of the toughest challenges in cybersecurity, we’re ready to help you take command of your career. Join us.
#LI-MV1
Security and Compliance
Rapid7 is committed to keeping customers secure. As a first line of defense, all employees are expected to uphold the highest standards of security and privacy, ensuring the protection of sensitive information and compliance with relevant regulations.
Apply Now
Application loading...
Sign Up for Job Alerts
Thank you
Jobs you may be interested in
Salesforce Releases/DevOps Engineer
R10580 Pune India Pune, India Information Technology Development Engineering Full_time JOB_LEVEL-3-23Senior Software Quality Engineer
R10317 Pune India Pune, India Product & Engineering Development Engineering Full_time JOB_LEVEL-3-24Staff Product Data Analyst
R10463 Prague Czechia Prague, Czechia Information Technology Information Technology Full_time JOB_LEVEL-3-25Senior Enablement Specialist
R10571 Prague Czechia Prague, Czechia Business Support Sales Full_time JOB_LEVEL-3-23Apply Now
Application loading...