Security Operations Analyst

The Security Operations Analyst reviews security events, investigates malicious activity, leads incident responses, and documents findings while participating in threat hunting activities. The summary above was generated by AI, We are seeking someone with a passion for cyber security to join our team. As a Security Operations Analyst with Rapid7 you will work with a combination of tools and Rapid7's command platform to investigate and triage security events. Working with Rapid7's Global Security Operations team is an ideal opportunity to gain a deep understanding of threat detection and response. As part of this team you will be in the best position to develop the skills needed to build a career in cyber security. About the Team Our Information security team is tasked with enhancing our security posture and elevating customer confidence in Rapid7 products and services. Together, we lead the effective delivery of business outcomes, and program maturation through standardization and iterative improvement. As part of our team, you'll work with highly engaged and capable colleagues to build and implement complex, cross-functional initiatives that secure our business, our employees, and our customers. About the Role As a Security Operations Analyst, your core daily function will be the review of alert data to pinpoint malicious activity within the Rapid7 environment. You will have the authority to lead and drive these investigations, which span the entire lifecycle from evidence collection and analysis to determining the initial intrusion vector and identifying all associated malicious or unexpected activity. A critical output of your investigation will be the creation of an Incident Report, documenting your technical analysis, findings, and recommended remediation steps. You will operate within a supportive team environment, with fellow analysts, including Senior and Lead Analysts, available for consultation and assistance whenever you encounter challenges or have questions. A Security Operations Analyst is also involved in proactive threat identification through rotational threat hunting activities, which aim to uncover unknown threats within the Rapid7 environment. Furthermore, in the event of a security incident escalating to a formal Incident Response engagement, the Analyst may be assigned investigation duties. These duties primarily involve assisting the team in tracking threat actor movements across the environment by meticulously analyzing forensic artifacts. In this role, you will:

• Contribute to a global Security Operations team.
• Provide high-quality threat detection services.
• Lead or support incident response investigations for Rapid7.
• Help document and implement knowledge of current attack methodologies.
• Conduct research to enhance threat detection capabilities and reinforce brand reputation.
• Offer ongoing feedback to Rapid7's product development teams.

• 1-3 years of experience within cyber security operations
• Strong problem-solving ability, critical thinking skills, and ingenuity.
• A passion for cybersecurity, coupled with a keen curiosity and eagerness to learn.
• Required familiarity with MacOS, Windows, and/or Linux operating systems.
• Essential experience using Security Information and Event Management (SIEM) tools, such as the Rapid7 command platform or Splunk, or comparable platforms.
• Experience in common Security Operations Center (SOC) functions, including but not limited to, incident response, threat hunting, detection engineering, malware analysis, or forensic investigations (network and endpoint).
• The aptitude to identify areas for process improvement and successfully implement solutions.

At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We do this by harnessing our collective expertise and passion to challenge what's possible and drive extraordinary impact. We're building a dynamic and collaborative workplace where new ideas are welcome. Protecting 11,000+ customers against bad actors and threats means we're continuing to push the envelope just like we' ve been doing for the past 20 years. If you 're ready to solve some of the toughest challenges in cybersecurity, we're ready to help you take command of your career. Join us. Rapid7, Inc. is committed to fair and equitable compensation practices. A candidate's salary is determined by various factors including, but not limited to, relevant work experience, skills, and certifications. We evaluate compensation decisions on a case-by-case basis, and it is not typical for an individual to be hired at the very top of the salary range. The salary range for this role in the US is: $81,500.00 - 110,300.00 USD Annual Salary ranges may vary based on geographical location. This range does not include variable/incentive compensation, equity and benefits (where applicable/eligible). All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or any other status protected by applicable national, federal, state or local law.