Senior Security Operations Analyst - InfoSec



IT, Operations
Melbourne, VIC, Australia
Posted on Friday, October 27, 2023

We are seeking someone with a passion for cyber security to join our team in Melbourne. As a Senior Security Operations Analyst with Rapid7 you will work with Rapid7’s advanced tools to investigate and triage high priority security events. Working with Rapid7’s Security Operations team is an ideal opportunity to gain a deep understanding of threat detection and response. As part of this team you will be in the best position to develop the skills needed to build a career in cyber security.

About the Team
Our Information security team is tasked with enhancing our security posture and elevating customer confidence in Rapid7 products. Together, we lead the effective delivery of business outcomes, and program maturation through standardization and iterative improvement. As part of our team, you'll work with highly engaged and capable colleagues to build and implement complex, cross-functional initiatives that secure our business, our employees, and our customers.

About the Role

Most days for a Senior Security Operations Analyst will consist of reviewing alert data to identify evil activity in the Rapid7 environment. In this role you will be empowered to steer investigations. Investigations include everything from evidence acquisition and analysis, to figuring out how the intrusion began, to identifying any malicious or unexpected activity related to the event. Based on this investigation you will be responsible for writing an Incident Report which includes your technical analysis, documented findings, and remediation recommendations. You will have fellow analysts who will be ready to help you if you encounter a problem or have a question, including Senior and Lead Analysts.

In addition to live response, a Senior Security Operations Analyst also performs threat hunting on a monthly basis. Threat hunting is performed in an effort to identify unknown threats in the Rapid7 environment. In the event of a security incident that rises to the level of an Incident Response engagement, you may be tasked with performing investigation tasks related to the investigation. In this circumstance you will focus on helping a team track threat actor actions across an environment by examining forensic artifacts.

In this role, you will:

  • Deliver world-class threat detection services using traditional threat intelligence-based detection and user behavior analytics

  • Work on shift as part of a threat detection team in the Rapid7 SOC

  • Conduct or assist with Rapid7 incident response investigations.

  • Assist in capturing and deploying knowledge of attack methodologies

  • Drive research initiatives to further threat detection capabilities and brand reputation through media interaction, public speaking, and blogs

  • Provide continuous input to Rapid7 product development teams

The skills you’ll bring include:

  • Problem solving, critical thinking, and ingenuity

  • A passion for cybersecurity and a keen curiosity and excitement to learn

  • Knowledge of Windows, Mac, and/or Linux operating systems

  • Experience with forensic network investigations, endpoint investigations, malware analysis, incident response, threat hunting, or any other job functions normally found within a SOC

  • The ability to identify processes in need of improvement and implement solutions

  • Endpoint detection experience

We know that the best ideas and solutions come from multi-dimensional teams. That’s because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don’t be shy - apply today.

About Rapid7

At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities. We do this by embracing tenacity, passion, and collaboration to challenge what’s possible and drive extraordinary impact.

Here, we’re building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories. We come to work every day to push boundaries in cybersecurity and keep our 10,000 global customers ahead of whatever’s next.

Join us and bring your unique experiences and perspectives to tackle some of the world’s biggest security challenges.