Associate Managed Detection & Response (MDR) Analyst



Arlington, VA, USA
Posted on Friday, October 6, 2023

SOC Analyst - MDR

We are expanding our Global footprint into Prague and as we build out our Product & Engineering teams, we are looking for SOC Analysts with a passion for cyber security to join us. As an Associate SOC Analyst you will work with Rapid7’s advanced tools to investigate and triage high priority security events. Working with Rapid7’s Tactical Operations team is an ideal opportunity to gain a deep understanding of threat detection and response and you will be in the best position to develop the skills needed to build a career in cyber security. This is an exciting opportunity to be one of the first hires for Rapid7 in Prague supporting our growth strategy in a culture that supports trying new approaches and continuous learning.

About the Team

Rapid7 Managed Detection and Response (MDR) is built from the ground up to bring motivated and passionate security talent face to face with emerging threats, practical challenges, and evil at scale. Our MDR service uses an impact-driven mindset to focus efforts on effective solutions, encouraging personal and technical innovation within the SOC. MDR provides 24/7/365 monitoring, threat hunting, incident response, and more with a focus on endpoint detection and behavioral intelligence.

About the Role

As an Associate SOC Analyst you will be responsible for reviewing alert data to identify evil activity in customer environments. You will be empowered to steer investigations which include everything from evidence acquisition and analysis to figuring out how the intrusion began to identifying any malicious or unexpected activity related to the event. Your colleague, a Customer Advisor, will be responsible for direct communication with the customer and you will have fellow analysts who will be ready to help you if you encounter a problem or have a question.

In this role, you will:

  • Deliver world-class threat detection services using traditional threat intelligence-based detection and user behavior analytics

  • Conduct or assist with Rapid7 incident response investigations

  • Write a findings report for each investigation which includes your technical analysts documented findings and remediation recommendations for customers

  • Communicate with Customer Advisors on client Requests For Information and investigation findings

  • Assist in capturing and deploying knowledge of attack methodologies

  • Provide continuous input to Rapid7 product development teams

The skills you’ll bring include:

  • Knowledge of Windows and/or Linux operating systems

  • Fundamental knowledge of security concepts (lateral movement, privilege escalation, persistence methods, command and control, exfiltration, etc.)

  • Participated and succeeded in CTFs, HTB, Rastalabs, Pentesting with Kali Labs

  • Scripting/coding ability

  • Excited by technology with a passion for cybersecurity, curious and eager to learn and develop in a security role

  • A creative problem solver with the ability to think critically

  • Passionate about delighting customers, puts the customer needs at the forefront of all decision making

  • A team player who collaborates effectively, helping teammates and celebrating team success

  • The Rapid7 MDR SOC has a shift rotation which requires associate analysts to work 4:3 approximately once every 4 months

We know that the best ideas and solutions come from multi-dimensional teams. That’s because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don’t be shy - apply today.

About Rapid7

At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities. We do this by embracing tenacity, passion, and collaboration to challenge what’s possible and drive extraordinary impact.

Here, we’re building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories. We come to work every day to push boundaries in cybersecurity and keep our 10,000 global customers ahead of whatever’s next.

Join us and bring your unique experiences and perspectives to tackle some of the world’s biggest security challenges.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or any other status protected by applicable national, federal, state or local law.