Rapid7: Lead Security Engineer, Security Operations
Rapid7
120 Causeway Street
Boston, MA 02114

Employee Testimonials

Helen Ackers Rapid7
Aniket Menon Rapid7

Video

As Rapid7 and the Insight Cloud continue to grow, so does our attack surface. Thats why were looking for a Lead Security Engineer to join our Security Operations (SecOps) team in Boston. Youll hit the ground running by building and implementing security controls in partnership with our Corporate IT teams to secure our end user devices, infrastructure systems, and cloud services. Youll partner closely with our Security Operations Analysts to help automate their vulnerability management and incident response operations. Youll also be helping build and lead a new security engineering function from scratch, one that will rapidly evolve our defenses to keep our customers and company safe by continuously raising the bar for our prevention, detection, and remediation capabilities.

Note: this role is on a people manager/leader career path, with the next level being Manager, Security Operations Engineering

Your profile

Are you looking for a new opportunity to channel your security expertise into building, integrating, and automating security controls across cloud and on-premise environments? Do you find yourself daydreaming about novel ways to continuously evolve security defenses to stay one step ahead of attackers? Does defending against attacker techniques that change on a day-to-day basis energize you rather than intimidate you? Are you trying to scale the positive impact you want to have on the security world by mentoring, leading, and growing a team of excellent security practitioners?

If youve been answering yes to these questions, then you might be the person were looking for! Keep reading below to learn more about this unique opportunity to drive impact on a security team at a security company.

Youll be responsible for...

  • Building, integrating, and automating security controls across cloud and on-premise environments
  • Partnering with Corporate IT and other teams to augment IT security capabilities for end user devices, infrastructure, business applications, and identity & access management
  • Supporting our SecOps Analysts in automating our vulnerability management and incident detection & response operations
  • Building and leading a team of SecOps Engineers to scale our SecOps & IT security controls
  • Defining and executing the vision, strategy, and roadmap for our SecOps Engineering program
  • Mentoring and managing your team members to support them in becoming more effective security practitioners and teammates across Rapid7
  • Owning and driving projects independently and in collaboration with our other InfoSec teams, DevOps teams, IT teams, and other business units
  • Providing security expertise and leadership by consulting on projects to help our company implement safe systems, environments, and operations
  • Reporting and communicating security issues and topics to technical and non-technical audiences, ranging from individual contributors to C-suite executives
  • Curating metrics to demonstrate the effectiveness of our SecOps & IT security controls

What youll need

  • 4+ years of strong working experience in information security, performing vulnerability management, incident detection & response, digital forensics, or malware analysis
  • Experience in software development with building & integrating tools, especially by using web APIs & Python or Go
  • Experience with configuration management tools, such as Terraform, Chef, or Puppet
  • In-depth knowledge of Windows, macOS, & Linux security hardening/monitoring techniques
  • In-depth knowledge of secure network, systems, and application design and architecture
  • Experience configuring or maintaining network devices, such as firewalls and switches
  • Experience maintaining, securing, or monitoring cloud infrastructure, especially AWS
  • Expert ability to identify security event root causes by gathering and synthesizing evidence from a variety of disparate systems
  • Excellent time management and prioritization skills with a strong ability to plan, prioritize, and execute projects independently or in coordination with other teams
  • Excellent ability to communicate to technical and non-technical audiences with a positive, collaborative, and enablement-focused attitude
  • Insatiable curiosity & desire to challenge conventional approaches to solving problems

Nice-to-haves

  • Broad programming/scripting experience with Python, Go, Bash, Python, PowerShell, Java
  • Experience with Windows, macOS, and Linux system administration
  • Experience with MDM or EMM tools
  • Experience with Docker, Kubernetes, and other containerization technology
  • Experience in offensive security or red teaming
  • Experience implementing, administering, and using Rapid7 products (e.g. InsightVM/Nexpose, InsightIDR, InsightConnect, etc.)

Job Perks

  • Unlimited vacation
  • Flexible work hours
  • 401k matching
  • Employee stock purchase plan (ESPP)
Full-time

Employee Testimonials

James Green
Director of Engineering, Engineering, Software Development

"My favorite memory of being a 'Moose' is our first ever company-wide hackathon in Cambridge. After a fun–filled week for the company kick-off, we still managed to deliver, through the night, on some amazing ideas."

Brett Garofalo
Manager, Mid-Market Sales

"I am not a natural–born salesperson or leader. Rapid7 gave me the mentorship opportunities and leeway to develop those skillsets. Having the support of my management allowed me to take risks and learn from mistakes instead of being tentative and afraid to put myself out there."

Helen Ackers Rapid7
Helen Ackers
Marketing Specialist

"Every time you feel a little more comfortable with your job and what is expected from you, there is always something new to learn and something to add to the repertoire! I love this, it means every week I can see myself developing in my career."

Aniket Menon Rapid7
Aniket Menon
Manager, Enterprise Deployments

"I love the infectious energy and fast–paced nature of the job. Unrelenting progress towards becoming the #1 company in Cyber Security. The sheer number of Products and Services we have launched in the last two years is a staggering achievement."

Dennis Nahas Rapid7
Dennis Nahas
Systems Administrator

"The most fulfilling moments are seeing our products name dropped in the security press, knowing we all contributed to that."

Ashley Seamans Rapid7
Ashley Seamans
Director of Business Intelligence

"There's never a dull moment and always a new challenge to tackle. I have had the opportunity to work with people across the company on product launches, acquisitions, our global sales expansion and lots of new programs, each with its own hurdles but all equally rewarding."

Chris Wallace Rapid7
Chris Wallace
People Strategy Manager

"It's pretty cool to look around the room and know that I played a part in making all of that happen, and that I hopefully helped those people move into a role that they find really rewarding and exciting. Especially in a company where they in turn can have a big impact and take their careers to the next level. The fact that they are all good people, and that we all manage to have a bit of fun in the process, helps too."

Stephanie Philips Rapid7
Stephanie Philips
Counsel and Director, Contracts, Legal

"I love the truly collaborative team effort from everyone across the board – people are always willing to join an effort or a conversation to make a difference and find a solution, and they don't feel bound by their job descriptions or departmental functions if they have expertise that will help out a fellow Moose."

Roy Hodgman Rapid7
Roy Hodgman
Data Scientist

"I feel that [our core value for] continuous learning best represents me because it's been essential to my career here. There are no shortage of tools and techniques that can be applied to the projects I work on, and despite what I think I might know about the problem at hand, more often than not there are new and novel ways to approach it."