Security Engineer, IT Infrastructure
Obsessed with security? Are you looking for a new opportunity to channel your security expertise into building, integrating, and automating security controls across cloud and on-premise environments? Do you find yourself daydreaming about novel ways to continuously evolve security defenses to stay one step ahead of attackers? Does defending against attacker techniques that change on a day-to-day basis energize you rather than intimidate you?
We are looking for a creative person to join our savvy IT team, who understands that technology is meant to empower people. You will be part of a community that is fanatical about security and on a mission to make an impact in the global technology ecosystem.
What we bring to the table:
Awesome company culture
Dynamic people and environment
Focus on employee experience
Not afraid to try things (disciplined risk-taking)
Mindset of continuous evolution
You’ll be responsible for...
Building, integrating and automating security controls from cloud to endpoint
Partnering with Corporate IS and other teams to augment IT security capabilities for end-user devices, infrastructure, business applications, and identity & access management
Supporting our team in automating our vulnerability management and incident detection & response operations
Owning and driving projects independently and in collaboration with our IT and IS teams as well as other business units
Providing security expertise and leadership by consulting on projects to help our company implement safe systems, environments, and operations
Reporting and communicating security issues and topics to technical and non-technical audiences, ranging from individual contributors to C-suite executives
Curating metrics to demonstrate the effectiveness of our SecOps & IT security controls
What you’ll need
Experience in information security, performing vulnerability management, incident detection & response, digital forensics, or malware analysis
Experience in software development with building & integrating tools, especially by using web APIs & Python or Go
Experience with configuration management tools, such as Terraform, Chef, or Puppet
In-depth knowledge of Windows, macOS, & Linux security hardening/monitoring techniques
In-depth knowledge of secure network, systems, and application design and architecture
Experience configuring or maintaining network devices, such as firewalls and switches
Experience maintaining, securing or monitoring cloud infrastructure, especially AWS
Expert ability to identify security event root causes by gathering and synthesizing evidence from a variety of disparate systems
Excellent time management and prioritization skills with a strong ability to plan, prioritize, and execute projects independently or in coordination with other teams
Excellent ability to communicate to technical and non-technical audiences with a positive, collaborative, and enablement-focused attitude
Insatiable curiosity & desire to challenge conventional approaches to solving problems
Nice-to-haves
Broad programming/scripting experience with Python, Go, Bash, Python, PowerShell, Java
Experience with Windows, macOS, and Linux system administration
Experience with MDM or EMM tools
Experience with Docker, Kubernetes, and other containerization technology
Experience implementing, administering, and using Rapid7 products (e.g. InsightVM/Nexpose, InsightIDR, InsightConnect, etc.)
Rapid7 is an equal opportunity employer. We value, support, and thrive on diversity and inclusion at our company. We do not discriminate on the basis of race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation.