Cyber Threat Intelligence Analyst

Description 

Rapid7 is searching for a Cyber Intelligence Analyst to join our Threat Command team and take our threat intelligence analysis capabilities to the next level.

As a Cyber Intelligence Analyst at Rapid7, you will investigate trending global cyber events and emerging dark web threats, using the IntSights platform and your research skills to find information, connect dots, establish attack timelines, identify threat actors' interests and motivations, and track down malicious entities posing threats to our customers. 

You will gain a thorough understanding of the cyber threat landscape, from malware types and attack vectors to technical understanding of Tactics, Techniques, and Procedures (TTPs) and their associated threats to replicate and mitigate them. This role demands excellent Open Source Intelligence (OSINT) investigation abilities, familiarity with various dark web communities and ecosystems, and advanced knowledge in cybersecurity fundamentals and concepts.

Your responsibilities will include responding to clients’ Requests For Information (RFIs) and creating intelligence reports. This requires an independent, thorough, and versatile individual capable of producing accurate and complete intelligence outputs, while maintaining a customer-first approach to meet industry standards.

In this role, you will:

• Respond to customers’ RFIs and conduct investigations within defined time and scope parameters, leveraging all available tools and techniques to uncover new information.

• Educate and empower customers by providing additional context on various threats and advising on best practices.

• Analyze ongoing attacks such as phishing, DDoS, data leakage, ransomware, etc., to assess their origin, purpose, and impact on our customers.

• Track and engage with threat actors across the clear, deep, and dark web to gather further insights and intelligence that are otherwise inaccessible.

• Act as a leading source of knowledge in threat intelligence, supporting other departments with your wide range of skills and expertise.

The skills you'll bring include:

• 1+ years of experience in cyber intelligence or an equivalent role with advanced familiarity with cybercrime communities and OSINT sources and tools.

• 2+ years of experience in the cybersecurity industry or equivalent knowledge in cybersecurity fundamentals and concepts acquired through formal education.

• Experience in a customer-oriented role and ability to grasp, synthesize, and summarize complex concepts clearly and engagingly.

• Experience in investigating threats using OSINT, HUMINT, and other research techniques to identify threat actors and their TTPs, providing context to threats and drawing conclusions from incomplete or missing data.

• Technical proficiency in extracting threat data (IPs, domains, ports, malware, malicious communications) from multiple sources.

• Business understanding and familiarity with corporate security solutions.

• Excellent verbal and written communication skills in English.

Advantages

• Bachelor's degree in a relevant discipline.

• Proficiency in foreign languages, with preference for Russian.

• Previous experience in a threat intelligence position.

• Experience using ticket systems and associated workflows (Salesforce preferred).

We know that the best ideas and solutions come from multi-dimensional teams. Teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don't be shy - apply today.

About Rapid7

Rapid7 (NASDAQ: RPD) helps organizations across the globe protect what matters most so innovation can thrive in an increasingly connected world. Our comprehensive technology, services, and community-focused research simplify the complex for security teams, helping them reduce vulnerabilities, monitor for malicious behavior, be in 10 places at once, and shut down attacks. We're on a mission to make security solutions easier to use and access so we can bring safety and resilience to more people.

With more than 11,000 customers across 140+ countries, Rapid7 is a leader in cybersecurity that has earned numerous industry accolades and recognition for our technology and culture.