Cyber Intelligence Analyst

Rapid7 is looking for a Cyber Intelligence Analyst to join our Cyber Threat Intelligence team and help strengthen our global threat intelligence capabilities. In this role, you will investigate emerging cyber threats, analyze adversary activity, and produce actionable intelligence that enables organizations to better understand and defend against real-world risks.
This is an exciting opportunity for someone with a passion for cyber threat analysis and intelligence to work alongside experienced security professionals, contribute to meaningful customer outcomes, and further develop their expertise within a globally recognized cybersecurity company.
About the Team
The Cyber Threat Intelligence team investigates global cyber events and emerging threats across the clear, deep, and dark web. The team combines platform-driven intelligence with analyst-led research to deliver accurate, timely, and customer-focused insights that support proactive security decisions.
About the Role
As a Cyber Intelligence Analyst, your primary responsibility will be to investigate cyber threats and deliver accurate, actionable intelligence outputs according to defined scope and timelines. Specifically, your focus will be to:

• Respond to customer RFIs within defined scope and SLAs, using approved intelligence tools and research techniques
• Investigate cyber threats such as phishing, data leakage, ransomware, DDoS, and impersonation activities
• Collect, analyze, and document intelligence from OSINT, platform data, and dark web sources
• Identify threat indicators, attacker behavior, and relevant context to assess potential customer impact
• Produce clear, concise, and customer-ready intelligence outputs, including reports and investigation summaries
• Escalate complex or out-of-scope findings in accordance with established workflows
• Collaborate with internal teams including MDR, SOC, Remediation, and Customer Success as needed

The skills and qualities you'll bring include:

• 1-2 years of experience in cyber intelligence, or a related technical role
• Analytical Skills: Ability to analyze threat data, identify patterns, and draw evidence-based conclusions
• Research Capability: Ability to carry out structured online research using open-source intelligence methods
• Foundational understanding of cyber threats, attack vectors, and common cybercrime techniques
• Experience investigating phishing, data leaks, malware, or other external threats
• Familiarity with extracting and analyzing threat data such as IPs, domains, URLs, and malware artifacts
• Comfortable working within investigation workflows and ticketing systems, taking ownership of assigned cases from intake through resolution to ensure timely, accurate, and high-quality outputs
• Works closely with cross-functional stakeholders to gather context and communicate findings
• Strong written English with the ability to communicate clearly and concisely, able to summarize complex findings clearly for customer-facing and internal audiences
• Core Value Embodiment: Embody our core values to foster a culture of excellence that drives meaningful impact and collective success.

Advantageous Experience:

• Prior exposure to dark web forums, marketplaces, or cybercrime ecosystems
• Experience working in customer-facing or service-oriented environments
• Experience using ticketing systems such as Salesforce or Zendesk

We know that the best ideas and solutions come from multi-dimensional teams. That's because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don't be shy - apply today.
#LI-MV1
About Rapid7
At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We do this by harnessing our collective expertise and passion to challenge what's possible and drive extraordinary impact. We're building a dynamic and collaborative workplace where new ideas are welcome.
Protecting 11,000+ customers against bad actors and threats means we're continuing to push the envelope just like we' ve been doing for the past 20 years. If you 're ready to solve some of the toughest challenges in cybersecurity, we're ready to help you take command of your career. Join us.