Jobs
>
Arlington

    Detection and Response Analyst - Arlington, United States - Knewin

    Knewin
    Knewin Arlington, United States

    2 weeks ago

    Default job background
    Description
    Detection & Response Analyst

    We are looking for people with a passion for investigation and forensic analysis to join our MDR SOC team at Rapid7.

    As a Detection & Response Analyst, you will utilize Rapid7's advanced tools to investigate and triage security events and work side-by-side Rapid7's Incident Response Consultants to investigate incidents ranging from commodity malware to sophisticated threat actors.

    About the Team

    Rapid7's Managed Detection and Response (MDR) team is built from the ground up to bring motivated and passionate security talent face to face with emerging threats, practical challenges, and evil at scale.

    Our MDR service uses an impact-driven mindset to focus efforts on effective solutions, encouraging personal and technical innovation within the SOC.

    MDR provides 24/7/365 monitoring, threat hunting, incident response, and more with a focus on endpoint detection and behavioral intelligence.
    About the Role

    As a Detection and Response Analyst in Rapid7's SOC, you will be responsible for identifying and analyzing malicious activity in a multitude of customer environments.

    You will be enabled to complete investigations scaling in complexity from account compromises and commodity malware infections, to complex web server compromises and zero-day vulnerability exploitation.

    Your Customer Advisor colleagues will be responsible for direct communication with the customers, enabling you to dedicate your efforts to analysis.

    Your team will be available to answer questions, provide guidance, and assist you in investigations, if needed.

    In this role, you will:
    Utilize Rapid7's world-class software and threat intelligence to identify potential compromises in customer environments as necessary.

    Conduct investigations into a variety of malicious activity on workstations, servers, and in the cloud.

    You will investigate all levels of incidents, including Incident Response engagements in which you will provide analysis assistance to Rapid7's Incident Response Consultants.


    Write Incident Reports for each minor incident investigation you complete, which follow MITRE's ATT&CK Framework and include your own forensic, malware, and root-cause analysis.

    Communicate with Customer Advisors regarding investigation findings, Requests For Information from clients, and remediation and mitigation recommendations.

    Communicate with other analysts to share new intelligence regarding tactics, techniques, and trends utilized by threat actors.

    Provide continuous input to Rapid7's Threat Intelligence and Detection Engineering team regarding new detection opportunities.

    Assist in customer engagement opportunities pertaining to the function of your role in the MDR service as necessary.


    The skills you'll bring include:
    1-2 years of experience in a cybersecurity related position (SOC and/or SIEM analysis experience preferred)

    Understanding of core operating system concepts in Windows, MacOS/Darwin, and Linux. This includes at least an understanding of common internal system tools and directory structures.


    A fundamental understanding of how threat actors utilize tactics such as lateral movement, privilege escalation, defense evasion, persistence, command and control, and exfiltration.


    Practical experience gained through CTF and HTB challenges, as well as personal or professional usage of common penetration testing tools such as Mimikatz, Metasploit modules, BloodHound, etc.

    Experience with hands-on analysis of forensic artifacts and/or malware samples.

    Passion for continuous learning and growth in the cybersecurity world.

    Effective collaboration within the SOC and between departments.

    Dedication to putting each customer's needs and concerns at the forefront of all decision making.

    We know that the best ideas and solutions come from multi-dimensional teams. That's because these teams reflect a variety of backgrounds and professional experiences.

    If you are excited about this role and feel your experience can make an impact, please don't be shy - apply today.

    About Rapid7

    At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities.

    We do this by embracing tenacity, passion, and collaboration to challenge what's possible and drive extraordinary impact.
    Here, we're building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories.

    We come to work every day to push boundaries in cybersecurity and keep our 11,000+ global customers ahead of whatever's next.

    Join us and bring your unique experiences and perspectives to tackle some of the world's biggest security challenges.

    All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or any other status protected by applicable national, federal, state or local law.

    #J-18808-Ljbffr
  • MindPoint Group

    Incident Response Analyst

    2 days ago

    MindPoint Group Washington, United States

    MindPoint Group is seeking a Security Operations Center (SOC) Analyst that will collaborate with members of the SOC team to improve procedures for the SOC to enhance coordination and incident response operations. You must be willing to work in a 24x7x365 SOC environment demonstra ...

  • MindPoint Group

    Incident Response Analyst

    3 days ago

    MindPoint Group Washington, United States

    MindPoint Group is seeking a Tier 2 Incident Response Analyst to support threat monitoring, detection, event analysis, and incident reporting. The Security Operations Center is a 24/7 environment. You will be responsible for monitoring enterprise networks and systems, detecting e ...

  • MindPoint Group

    Weekend Days- Incident Response Analyst, Tier 2

    1 week ago

    MindPoint Group Washington, United States

    Text code IRAWD to to apply · MindPoint Group delivers industry-leading cybersecurity solutions, services, and products. We are trusted cybersecurity advisors to key government and commercial decision-makers and support security operations for some of the most security-conscious ...

  • XOR Security

    Incident Response Analyst

    1 week ago

    XOR Security Arlington, United States

    Job Title: · Incident Response Analyst · Location: · 1110 N. Glebe Rd. Arlington, Virginia 22201 · Clearance Level: · Top Secret · SUMMARY: · XOR Security, An Agile Defense Company is currently seeking an · Incident Response Analyst · with advanced skillsets in Digital F ...

  • XOR Security

    Incident Response Analyst

    2 days ago

    XOR Security Arlington, United States

    Job Title: Incident Response Analyst · Location: 1110 N. Glebe Rd. Arlington, Virginia 22201 · Clearance Level: Top Secret · SUMMARY: · XOR Security, An Agile Defense Company is currently seeking an Incident Response Analyst with advanced skillsets in Digital Forensic & Incid ...

  • Rapid7

    Detection and Response Analyst

    1 hour ago

    Rapid7 Arlington, United States Full time

    Detection & Response Analyst · We are looking for people with a passion for investigation and forensic analysis to join our MDR SOC team at Rapid7. As a Detection & Response Analyst, you will utilize Rapid7's advanced tools to investigate and triage security events and work side- ...

  • Computer World Services (CWS)Corporation

    Incident Response Analyst

    2 days ago

    Computer World Services (CWS)Corporation Washington DC, United States

    · Job Description · The mission of the OFR is to support the Financial Stability Oversight Council (FSOC) in promoting financial stability by: collecting data on behalf of FSOC; providing such data to FSOC and member agencies; standardizing the types and formats of data report ...

  • Na Oiwi Kane

    Financial Analyst, Audit Response

    6 days ago

    Na Oiwi Kane Quantico, United States

    **Job Title**:Financial Analyst, Audit Response · **Location**:Quantico, Virginia · **Security Clearance**: T1/NACI · **Introduction**: · Rivet Operations Company has an opening for a detail-oriented Financial Analyst to join the DoD's premier Audit Response team in the Quantico, ...

  • Na Oiwi Kane

    Financial Analyst, Audit Response

    1 week ago

    Na Oiwi Kane Quantico, United States

    **Job Title**:Financial Analyst, Audit Response · **Location**:Quantico, Virginia · **Security Clearance**: T1/NACI · **Introduction**: · Rivet Operations Company has an opening for a detail-oriented Financial Analyst to join the DoD's premier Audit Response team in the Quantico, ...

  • Leidos

    Cyber Incident Response Analyst

    1 day ago

    Leidos Ashburn, United States

    **Description** · Our Security Operations Center (SOC) Support Services is a US Government program responsible to monitor, detect, analyze, mitigate, and respond to cyber threats and adversarial activity on the government Enterprise. We have primary responsibility for monitoring ...

  • Peraton

    Cyber Incident Response Analyst

    2 weeks ago

    Peraton Arlington, United States

    Responsibilities: · Peraton is currently hiring a Cyber Incident Response Analyst for its' Federal Strategic Cyber sector. · Location: On-site, Arlington, VA · In this role, you will have the following duties: · Identify, log, categorize, perform initial triage, assign to ot ...

  • Peraton

    Cyber Incident Response Analyst

    2 days ago

    Peraton Arlington, United States Full time

    Responsibilities · Peraton is currently hiring a Cyber Incident Response Analyst for its' Federal Strategic Cyber sector. · Location: Arlington, VA - on-site. · Full-time, Weekends Shift · In this role: Duties include ingesting, identifying, logging, categorizing, performing in ...

  • Peraton

    Cyber Incident Response Analyst

    1 day ago

    Peraton Arlington, United States Full time

    Responsibilities · Peraton is currently hiring a Cyber Incident Response Analyst for its' Federal Strategic Cyber sector. · Location: On-site, Arlington, VA · In this role, you will have the following duties:Identify, log, categorize, perform initial triage, assign to other team ...

  • Computer World Services (CWS)Corporation

    Incident Response Analyst

    6 days ago

    Computer World Services (CWS)Corporation Washington, United States OTHER

    · Job Description · The mission of the OFR is to support the Financial Stability Oversight Council (FSOC) in promoting financial stability by: collecting data on behalf of FSOC; providing such data to FSOC and member agencies; standardizing the types and formats of data reporte ...

  • Base One Technologies

    Incident Response Analyst with Security Clearance

    2 weeks ago

    Base One Technologies Arlington, United States

    Required Education/Experience · BS degree in Science, Technology, Engineering, Math or related field and 8+ years of prior relevant experience with a focus on cybersecurity OR Masters with 4-6 years of prior relevant experience. Primary Responsibilities · Our govt client has an i ...

  • RedTrace Technologies Inc

    Cyber Incident Response Analyst

    1 day ago

    RedTrace Technologies Inc Washington, United States

    Job Description · Job DescriptionSECURITY CLEARANCE REQUIREMENT: TS, WITH SCI ELIGIBILITY · ***POSITION REQUIRES US CITIZENSHIP*** · Company Overview: As a Cybersecurity, Information Technology, and Management Consulting firm focused on assisting our commercial and U.S. Intellige ...

  • Edgewater Federal Solutions

    Incident Response Analyst

    3 days ago

    Edgewater Federal Solutions Bethesda, United States

    Overview: · Edgewater is seeking an Incident Response Analyst to provide support to an Edgewater Federal government contract. · Responsibilities: · As a Incident Response Analyst, you and team will be responsible for: · Manning a 24x7x365 cybersecurity operations center and r ...

  • Peraton

    Incident Response Analyst with OT/ICS/SCADA

    1 week ago

    Peraton Arlington, United States

    About Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deli ...

  • Peraton

    Incident Response Analyst with OT/ICS/SCADA

    1 week ago

    Peraton Arlington, United States

    About Peraton Peraton is a next-generation national security company that drives missions of consequence spanning the globe and extending to the farthest reaches of the galaxy. As the world's leading mission capability integrator and transformative enterprise IT provider, we deli ...

  • Peraton

    Incident Response Analyst with OT/ICS/SCADA

    1 week ago

    Peraton Arlington, United States

    Responsibilities · Peraton is currently seeking an experienced Incident Response Analyst with OT/ICS/SCADA experience for its' Federal Strategic Cyber program in Arlington, VA. · Location: On-site role in Arlington, VA. Ideal candidate needs to be amenable to travel, approximate ...