Logo
Rapid7

Associate Threat Intelligence Analyst

Rapid7, Arlington, Virginia, United States, 22201


Rapid7 is looking for a MDRP Threat Intelligence Analyst to join our "Threat Command" team and take our threat intelligence analysis capabilities to the next levels.

About the Role

As a MDRP Threat Intelligence Analyst at Rapid7, you will be responsible for reviewing alert data to identify threat activity in customer environments. You will be empowered to steer investigations, including everything from evidence acquisition and analysis to figuring out how the intrusion began to identify any malicious or unexpected activity related to the event. Your colleague, a Customer Advisor, will be responsible for direct communication with the customer, and you will have fellow analysts who will be ready to help you if you encounter a problem or have a question.

In this role, you will:

Perform monitoring of alerts on areas including phishing and credential harvesting sites, and data leakage, dark web monitoring.

Write findings for each investigation, which includes your intelligence analyst findings and remediation recommendations for customers.

Research and implement new tools and data sources to expand analysis on emerging cyber threats.

Assist the internal analyst team with use case development, query development, and alert tuning.

Create new standard operating procedures to assist analysts with repeatable daily work.

Produce intelligence outputs to provide an accurate description of the current threat landscape.

Communicate with Customer Advisors on client requests for Information and investigation findings.

The skills you'll bring include:

1+ year of experience in cyber intelligence or equivalent role with advanced familiarity with cybercrime communities and OSINT sources and tools.

Experience in investigating threats, utilizing OSINT, HUMINT and other research techniques to uncover threat actors and their TTPs while providing context to threats and reaching conclusions from incomplete or missing data.

Technical know-how on extracting threat data (IP's, domains, ports, malware, and malicious communications) from multiple sources.

Business understanding and familiarity with corporate security solutions.

Excellent interpersonal and teamwork skills.

We know that the best ideas and solutions come from multi-dimensional teams. That's because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don't be shy - apply today.

About Rapid7

At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities. We do this by embracing tenacity, passion, and collaboration to challenge what's possible and drive extraordinary impact.

Here, we're building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories. We come to work every day to push boundaries in cybersecurity and keep our 11,000+ global customers ahead of whatever's next.

Join us and bring your unique experiences and perspectives to tackle some of the world's biggest security challenges.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or any other status protected by applicable national, federal, state or local law.