Staff Endpoint Security Specialist

Job Overview:

Rapid7 is looking for a Staff Endpoint Security Engineer to join our team in Prague, helping drive improvements in detection, automation, and prevention for our EPP solution.

In this role, you will work closely with SOC Analysts within our MDR service, Detection Engineering, Product and Engineering teams to ensure that our security detections, exclusions, and automation are fine-tuned for maximum efficiency and effectiveness. You will also be involved in alert triaging, threat research, and security automation to help improve incident response and detection accuracy.

Requirements:

• 6+ years of experience in endpoint security, detection engineering, or security automation.

• Knowledge of Windows internals (kernel mode, APIs, memory management, process injection, etc.), malware analysis, and threat detection techniques. Similar expertise with additional operating systems is an advantage.

• Proficiency in C++, Python, PowerShell, or other scripting languages for security automation.

• Experience working with SOC teams, detection engineers, or incident responders.

• Understanding of MITRE ATT&CK tactics and techniques.

• Strong analytical and problem-solving skills, with an ability to work across teams.

• Proficiency in C/C++, Python, or another relevant programming language for security tool developent.

• Experience working closely with SOC teams, detection engineers, and product teams to enhance secuity solutions.

• Strong knowledge of malware analysis, threat detection, and EDR/EPP solutions.

• Ability to analyze attack techniques (MITRE ATT&CK) and improve detection logic.

• A strategic mindset to balance detection effectiveness with operational efficiency.

• Excellent problem-solving and communication skills, with the ability to work cross-functionally.

Responsibilities:

• Improve detection and prevention rules to maximize the effectiveness of our EPP solution.

• Work closely with MDR SOC Analysts and Engineering to optimize alert triaging and response workflows.

• Collaborate with Detection Engineering and Engineering teams to integrate advanced detection and automation capabilities.

• Develop scripts and automation to streamline security operations and response.

• Research malware behavior, exploit techniques, and attacker methodologies to improve prevention.

• Provide technical expertise to ensure our solutions effectively counter modern threats.

About Rapid7

At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities. We do this by embracing tenacity, passion, and collaboration to challenge what’s possible and drive extraordinary impact.
 

Here, we’re building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories. We come to work every day to push boundaries in cybersecurity and keep our 10,000 global customers ahead of whatever’s next.
 

Join us and bring your unique experiences and perspectives to tackle some of the world’s biggest security challenges.

#LI-JG