Cyber Threat Intelligence Analyst

About the Role

Rapid7 is seeking a Cyber Threat Intelligence Analyst to join our Threat Command team and enhance our threat intelligence analysis capabilities. As a Cyber Threat Intelligence Analyst, you will investigate trending global cyber events and emerging dark web threats. You will utilize our proprietary platform and your research skills to gather information, connect data points, establish attack timelines, identify threat actors' interests and motivations, and track malicious entities that pose threats to our customers. In this role, you will develop a deep understanding of the cyber threat landscape, including malware types, attack vectors, TTPs and their associated threats, in order to support mitigation efforts. This position requires strong Open Source Intelligence (OSINT) investigation skills, familiarity with dark web communities and ecosystems, and advanced knowledge of cybersecurity fundamentals and concepts. Your responsibilities will include responding to customer Requests For Information (RFIs) and producing intelligence reports. Success in this role demands an independent, thorough, and versatile individual who can deliver accurate and complete intelligence outputs while maintaining a customer-first approach and adhering to industry standards. 

In this role, you will:

• Respond to customers’ RFIs and conduct investigations within defined time and scope parameters, using all available tools and techniques to uncover new information.  

• Educate and empower customers by providing context on various threats and advising on best practices.  

• Analyze ongoing attacks, such as phishing, DDoS, data leakage, and ransomware, to assess their origin, purpose, and impact on our customers.  

• Track and engage with threat actors across the clear, deep, and dark web to gather unique insights and intelligence.  

• Serve as a leading source of knowledge in threat intelligence, providing support to other departments with your diverse skills and expertise. 

The skills you’ll bring include:

• 1+ years of experience in cyber intelligence or a related role with advanced familiarity with cybercrime communities and OSINT sources and tools.  

• 2+ years of experience in the cybersecurity industry or equivalent knowledge of cybersecurity fundamentals and concepts gained through formal education.  

• Experience in a customer-oriented role with the ability to understand, synthesize, and summarize complex concepts clearly and engagingly.  

• Experience investigating threats using OSINT, HUMINT, and other research techniques to identify threat actors and their TTPs, provide threat context, and draw conclusions from incomplete or missing data.  

• Business understanding and familiarity with corporate security solutions.  

• Excellent verbal and written communication skills in English. 

We know that the best ideas and solutions come from multi-dimensional teams. That’s because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don’t be shy - apply today.
 

About Rapid7

At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities. We do this by embracing tenacity, passion, and collaboration to challenge what’s possible and drive extraordinary impact.

Here, we’re building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories. We come to work every day to push boundaries in cybersecurity and keep our 11,000+ global customers ahead of whatever’s next.

Join us and bring your unique experiences and perspectives to tackle some of the world’s biggest security challenges.

#LI-JM2

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or any other status protected by applicable national, federal, state or local law.