About the MDR Team
Rapid7 Managed Detection and Response (MDR) is built from the ground up to bring motivated and the passionate security talent face to face with emerging threats, practical challenges, and evil at scale. Our MDR service uses an impact-driven mindset to focus efforts on effective solutions, encouraging personal and technical innovation within the SOC. MDR provides 24/7/365 monitoring, threat hunting, incident response, and more with a focus on endpoint detection and behavioral intelligence.
Who We Are
Rapid7 helps organizations around the globe advance securely. Our technology, services, and community-focused research simplify complexity for security teams, helping them reduce vulnerabilities, monitor for malicious behavior, investigate and shut down attacks, and automate routine tasks. With more than 9,000 customers across 120 countries, Rapid7 is a recognized innovator in cybersecurity that has proudly earned numerous industry accolades and wide recognition for our technology and culture.
About the Role
Rapid7 is looking for security analysts to help us detect advanced threats and stop attackers in their tracks at our flagship SOC in Arlington, VA. This position currently has openings at the Mid and Senior Analysts. MDR analysts are primarily focused on 24/7 SOC monitoring and real-time incident validation, threat hunting, and incident response. This is a private industry position and does not require any level of government security clearance.
A Day in the Life
Most days for Associate and Mid Level Analysts will consist of reviewing alert data to identify evil activity in customer environments. In these roles you will be empowered to steer investigations. Investigations include everything from evidence acquisition and analysis to figure out how the intrusion began to identify any malicious or unexpected activity related to the event. Based on this investigation you will be responsible for writing a Findings Report which includes your technical analysts, documented findings and remediation recommendations for customers. Your colleague, a Customer Advisor, will be responsible for direct communication with the customer. You will have fellow analysts who will be ready to help you if you encounter a problem or have a question, including Senior and Lead Analysts. In addition to live response, the MDR SOC also performs threat hunting on a monthly basis. Threat hunting is performed in an effort to identify unknown threats in a customer environment.
In the event of a security incident that rises to the level of a Remote Incident Response engagement, you may be tasked with performing investigation tasks related to the investigation. In this circumstance you will focus on helping a team track threat actor actions across an environment by examining forensic artifacts.
Senior Analysts can expect to have similar responsibilities for reviewing alerts, though you will also be expected to spend some time on SOC enablement projects whether they be engineering projects, tooling, developing or delivering training, or other innovation projects. You will be occasionally responsible for meeting with current and prospective clients to help explain SOC processes and capabilities. During a Remote Incident Response engagement, you will act as an incident manager handling direct customer communication or as an incident handler overseeing the investigation and managing task delegation for it.
Job Duties
Education
Rapid7 has no strict education requirements for any of the security analyst positions. While Rapid7 values higher education, we recognize that people learn differently and knowledge can be imparted from a variety of different experiences. Show us what you know!
Required
Preferred
