Detection & Response Analyst

Posted 4 Days Ago
Be an Early Applicant
Hiring Remotely in Dublin
Remote
Hybrid
Junior
Artificial Intelligence • Cloud • Information Technology • Sales • Security • Software • Cybersecurity
Take Command of your Career
The Role
As a Detection and Response Analyst, you analyze security events, conduct investigations on malicious activities, and collaborate within the SOC to improve detection capabilities.
Summary Generated by Built In

We are looking for SOC Analysts with a passion for cybersecurity to join us. As a Detection and Response Analyst you will work with Rapid7's advanced tools to investigate and triage high priority security events.
About the Team
Rapid7's Managed Detection and Response (MDR) team is built from the ground up to bring motivated and passionate security talent face to face with emerging threats, practical challenges, and evil at scale. Our MDR service uses an impact-driven mindset to focus efforts on effective solutions, encouraging personal and technical innovation within the SOC. MDR provides 24/7/365 monitoring, threat hunting, incident response, and more with a focus on endpoint detection and behavioral intelligence.
About the Role
As a Detection and Response Analyst in Rapid7's SOC, you will be responsible for identifying and analyzing malicious activity in a multitude of customer environments. You will be enabled to complete investigation scaling in complexity from simple account compromises and commodity malware infections, to complex web server compromises and zero-day vulnerability exploitation.
Your Customer Advisor colleagues will be responsible for direct communication with the customers, enabling you to dedicate your efforts to analysis. Your fellow analyst colleagues will be available to answer questions, provide guidance, and assist you in investigations if you need help.
In this role, you will:

  • Utilize Rapid7's world-class software and threat intelligence to identify potential compromises in customer environments.
  • Conduct investigations into a variety of malicious activity on workstations, servers, and in the cloud.
  • Write an Incident Report for each investigation you complete, which follows MITRE's ATT&CK Framework and includes your own forensic, malware, and root-cause analysis.
  • Communicate with Customer Advisors regarding investigation findings, Requests For Information from clients, and remediation and mitigation recommendations.
  • Communicate with other analysts to share new intelligence regarding tactics, techniques, and trends utilized by threat actors.
  • Provide continuous input to Rapid7's Threat Intelligence and Detection Engineering team regarding new detection opportunities.


The skills you'll bring include:

  • Understanding of core operating system concepts in Windows, MacOS/Darwin, and Linux. This includes at least a basic understanding of common internal system tools and directory structures.
  • A fundamental understanding of how threat actors utilize tactics such as lateral movement, privilege escalation, defense evasion, persistence, command and control, and exfiltration.
  • Practical experience gained through CTF and HTB challenges, as well as personal or professional usage of common penetration testing tools such as Mimikatz, Metasploit modules, BloodHound, etc.
  • Experience with hands-on analysis of forensic artifacts and/or malware samples.
  • Passion for continuous learning and growth in the cybersecurity world.
  • Effective collaboration within the SOC and between departments.
  • Dedication to putting each customer's needs and concerns at the forefront of all decision making.


We know that the best ideas and solutions come from multi-dimensional teams. That's because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don't be shy - apply today.
About Rapid7
At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities. We do this by embracing tenacity, passion, and collaboration to challenge what's possible and drive extraordinary impact.
Here, we're building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories. We come to work every day to push boundaries in cybersecurity and keep our 10,000 global customers ahead of whatever's next.
Join us and bring your unique experiences and perspectives to tackle some of the world's biggest security challenges.
#LI-PB1

Top Skills

Bloodhound
Linux
macOS
Metasploit
Mimikatz
Mitre Att&Ck
Rapid7
Windows

What the Team is Saying

Priya
Sammi
Tara
John
Grace
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: Boston, MA
2,400 Employees
Hybrid Workplace
Year Founded: 2000

What We Do

At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We do this by harnessing our collective expertise and passion to challenge what’s possible and drive extraordinary impact. We’re building a dynamic and collaborative workplace where new ideas are welcome.

Protecting 11,000+ customers against bad actors and threats means we’re continuing to push the envelope - just like we’ve been doing for the past 20 years. If you’re ready to solve some of the toughest challenges in cybersecurity, we’re ready to help you take command of your career.

Join us.

Why Work With Us

With our products, research, and open source communities, we’re building a secure digital future for everyone. This means constantly learning and evolving in an industry that’s anything but stagnant. You’ll be faced with tough challenges, and given the support to find creative solutions that drive our business, and your career forward.

Gallery

Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery
Gallery

Rapid7 Offices

Hybrid Workspace

Employees engage in a combination of remote and on-site work.

Our default working model is hybrid, with employees working three days per week in the office. This approach underpins our commitment to flexibility and adaptability while supporting our dedication to development, teamwork and customer purpose.

Typical time on-site: 3 days a week
Company Office Image
HQBoston
Singapore - Regional Headquarters
Company Office Image
Arlington
Company Office Image
Austin, TX
Company Office Image
Belfast, GB
Dublin
Galway
Melbourne
Tokyo
Munich
Company Office Image
Prague
Company Office Image
Reding, UK
Company Office Image
Tampa, FL
Tel Aviv
Learn more

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account