Rapid7 is looking for a Cyber Intelligence Analyst to join our “Threat Command” team and take our threat intelligence analysis capabilities to the next levels.
About the Team
As part of the Cyber Intelligence Analyst team, you will investigate trending global cyber events and emerging dark web threats, while using the IntSights platform and your own research skills to find pieces of information, connect the dots and establish timelines of attack, identify threat actors interests and motivations and track down the bad guys that pose a threat to our customers. You will gain a thorough understanding of the cyber threat landscape, from malware types and attack vectors to technical understanding of TTPs and their associated threat in order to replicate and mitigate them. This role will require excellent OSINT investigation abilities and familiarity with various dark web communities and ecosystems, coupled with advanced knowledge in cybersecurity fundamentals and underlying concepts..)
About the Role
Your role will include responding to clients’ RFIs and creating intelligence reports, which will require an independent, thorough and diverse individual, capable of creating accurate and complete intelligence outputs, while also being “customer first” in the highest industry standards.
In this role, you will:
Respond to customers’ RFIs and investigate them according to the time and scope defined, while using every tool and technique at your disposal to uncover new information.
Educate and empower our customers, providing them with additional context on various threats and advising on best practices.
Analyze ongoing attacks as phishing, DDoS, data leakage, ransomware and more, to assess their origin, purpose, and impact on our customers.
Track down and engage with threat actors across the clear, deep, and dark web to gain further insights and intelligence which is otherwise not accessible.
Be a leading source of knowledge in threat intelligence, supporting other departments using your wide set of skills and expertise.
The skills you’ll bring include:
1+ Years experience in cyber intelligence or equivalent role with advanced familiarity with cybercrime communities and OSINT sources and tools.
2+ Years experience in the cybersecurity industry or equivalent knowledge in cybersecurity fundamentals and underlying concepts gained through formal education.
Experience in a customer-oriented role and able to grasp, synthesize and summarize complex concepts in a clear and engaging manner.
Experience in investigating threats, utilizing OSINT, HUMINT and other research techniques to uncover threat actors and their TTPs while providing context to threats and reaching conclusions from incomplete or missing data.
Technical know-how on extracting threat data (IP’s, domains, ports, malware, and malicious communications) from multiple sources.
Business understanding and familiarity with corporate security solutions.
Former experience in a threat intelligence position- Advantage.
We know that the best ideas and solutions come from multi-dimensional teams. That’s because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don’t be shy - apply today.
Rapid7 (NASDAQ: RPD) helps organizations across the globe protect what matters most so innovation can thrive in an increasingly connected world. Our comprehensive technology, services, and community-focused research simplify the complex for security teams, helping them reduce vulnerabilities, monitor for malicious behavior, be in 10 places at once, and shut down attacks. We’re on a mission to make security solutions easier to use and access so we can bring safety and resilience to more people.
With more than 10,000 customers across 140+ countries, Rapid7 is a leader in cybersecurity that has earned numerous industry accolades and recognition for our technology and culture.
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work.
These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. If you do not allow these cookie we will not know when you have visited our site, and will not be able to monitor its performance.