Logo of Huzzle

Home

Matches

Explore

Manage

Detection & Response Analyst - MDR

image

Rapid7

9d ago

  • Job
    Full-time
    Entry, Junior, Mid & Senior Level
  • Data
    IT & Cybersecurity
  • Dublin

AI generated summary

  • You should have problem-solving skills, passion for cybersecurity, knowledge of OS, experience in investigations and malware analysis, and the ability to improve processes and detect endpoints.
  • You will deliver threat detection services, assist in incident response, capture attack methodologies, drive research initiatives, and provide input to product development teams.

Requirements

  • Problem solving, critical thinking, and ingenuity
  • A passion for cybersecurity and a keen curiosity and excitement to learn
  • Knowledge of Windows and/or Linux operating systems
  • Experience with forensic network investigations, endpoint investigations, malware analysis, incident response, threat hunting, or any other job functions normally found within a SOC
  • The ability to identify processes in need of improvement and implement solutions.
  • Endpoint detection experience

Responsibilities

  • Deliver world-class threat detection services using traditional threat intelligence-based detection and user behaviour analytics
  • Work on shift as part of a threat detection team in the Rapid7 SOC
  • Conduct or assist with Rapid7 incident response investigations
  • Assist in capturing and deploying knowledge of attack methodologies
  • Drive research initiatives to further threat detection capabilities and brand reputation through media interaction, public speaking, and blogs
  • Provide continuous input to Rapid7 product development teams

FAQs

What is the primary role of a Detection & Response Analyst at Rapid7?

The primary role is to investigate and triage high-priority security events using Rapid7’s advanced tools, while working as part of a threat detection team in the Managed Detection and Response (MDR) unit.

What types of activities will I be responsible for daily in this role?

Daily activities include reviewing alert data to identify malicious activities, steering investigations, conducting evidence acquisition, analysis, and writing Findings Reports that contain technical analysis and remediation recommendations.

Is there support for professional development within the team?

Yes, the position offers opportunities to work closely with Senior and Lead Analysts, facilitating mentorship and skill development in cyber security.

What is the approach of the MDR service at Rapid7?

The MDR service uses an impact-driven mindset, focusing on effective solutions and encouraging personal and technical innovation within the Security Operations Center (SOC).

What skills are important for a candidate to succeed in this role?

Important skills include problem-solving, critical thinking, a passion for cybersecurity, knowledge of Windows and/or Linux operating systems, experience with forensic investigations, threat hunting, and the ability to improve processes.

Will Threat Hunting be part of my responsibilities?

Yes, monthly threat hunting exercises are part of the MDR SOC’s activities to identify unknown threats in customer environments.

How often will the SOC operate?

The SOC operates 24/7/365, providing round-the-clock monitoring and incident response services.

What is Rapid7’s mission?

Rapid7's mission is to create a secure digital world for customers, the industry, and communities by embracing tenacity, passion, and collaboration to drive extraordinary impact.

What is the role of the Customer Advisor in this context?

The Customer Advisor is responsible for direct communication with customers, while the Detection & Response Analyst focuses on the technical aspects of investigations.

Are there opportunities to contribute to product development?

Yes, you will have the opportunity to provide continuous input to Rapid7's product development teams based on your experiences and insights gained from investigations.

image

Rapid7

Technology
Industry
1001-5000
Employees
2000
Founded Year

Mission & Purpose

Organizations around the globe rely on Rapid7 technology, services, and research to securely advance. The visibility, analytics, and automation delivered through our Insight cloud simplifies the complex and helps security teams reduce vulnerabilities, monitor for malicious behavior, investigate and shut down attacks, and automate routine tasks.