Obsessed with security? Are you looking for a new opportunity to channel your security expertise into building, integrating, and automating security controls across cloud and on-premise environments? Do you find yourself daydreaming about novel ways to continuously evolve security defenses to stay one step ahead of attackers? Does defending against attacker techniques that change on a day-to-day basis energize you rather than intimidate you? 

We are looking for a creative person to join our savvy IT team, who understands that technology is meant to empower people. You will be part of a community that is fanatical about security and on a mission to make an impact in the global technology ecosystem.

What we bring to the table:

• Awesome company culture

• Dynamic people and environment

• Focus on employee experience

• Not afraid to try things (disciplined risk-taking)

• Mindset of continuous evolution

You’ll be responsible for...

• Building, integrating and automating security controls from cloud to endpoint

• Partnering with Corporate IS and other teams to augment IT security capabilities for end-user devices, infrastructure, business applications, and identity & access management

• Supporting our team in automating our vulnerability management and incident detection & response operations

• Owning and driving projects independently and in collaboration with our IT and IS teams as well as other business units

• Providing security expertise and leadership by consulting on projects to help our company implement safe systems, environments, and operations

• Reporting and communicating security issues and topics to technical and non-technical audiences, ranging from individual contributors to C-suite executives

• Curating metrics to demonstrate the effectiveness of our SecOps & IT security controls

What you’ll need

• Experience in information security, performing vulnerability management, incident detection & response, digital forensics, or malware analysis

• Experience in software development with building & integrating tools, especially by using web APIs & Python or Go

• Experience with configuration management tools, such as Terraform, Chef, or Puppet

• In-depth knowledge of Windows, macOS, & Linux security hardening/monitoring techniques

• In-depth knowledge of secure network, systems, and application design and architecture

• Experience configuring or maintaining network devices, such as firewalls and switches

• Experience maintaining, securing or monitoring cloud infrastructure, especially AWS

• Expert ability to identify security event root causes by gathering and synthesizing evidence from a variety of disparate systems

• Excellent time management and prioritization skills with a strong ability to plan, prioritize, and execute projects independently or in coordination with other teams

• Excellent ability to communicate to technical and non-technical audiences with a positive, collaborative, and enablement-focused attitude

• Insatiable curiosity & desire to challenge conventional approaches to solving problems

Nice-to-haves

• Broad programming/scripting experience with Python, Go, Bash, Python, PowerShell, Java

• Experience with Windows, macOS, and Linux system administration

• Experience with MDM or EMM tools

• Experience with Docker, Kubernetes, and other containerization technology

• Experience implementing, administering, and using Rapid7 products (e.g. InsightVM/Nexpose, InsightIDR, InsightConnect, etc.)

Rapid7 is an equal opportunity employer. We value, support, and thrive on diversity and inclusion at our company. We do not discriminate on the basis of race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation.