Rapid7: Software Engineer, Information Security
Rapid7
120 Causeway Street
Boston, MA 02114

Employee Testimonials

Helen Ackers Rapid7
Aniket Menon Rapid7

Video

Information Security @ Rapid7

Rapid7 was founded in 2000 to give our customers visibility into vulnerabilities in their IT environments with a comprehensive vulnerability management solution, something that didnt exist at the time. Today were continuing our mission to advance security so others can securely advance with industry-leading security solutions. These solutions are powered by our Insight cloud: an analytics and automation platform that powers our products for vulnerability management, incident detection & response, orchestration & automation, application security, and DevOps & IT operations.

As Rapid7 and the Insight cloud continue to grow, so does our attack surface. We are looking for a software security engineer to join our product & platform security team in Boston.

Position overview

If you are a software developer who wants to live & breathe in the world of security this is an ideal position for you. You will work closely with our product development, DevOps, and IT teams to develop solutions that improve the security posture of Rapid7s platform & products.

We are looking for a driven software security engineer to build automated security solutions for Rapid7s platform & products. As a valuable member of the InfoSec team you will be responsible for automating multiple application security tools to secure Rapid7s SDLC practices. In addition, you will develop scalable tools & solutions to secure Rapid7s cloud environments.

On a day-to-day basis you will be responsible for

  • Building automation for static code analysis in Rapid7s platform using vendor and open source tools
  • Piloting & automating software component analysis tools to mitigate Rapid7s exposure to third-party vulnerabilities
  • Building automation for dynamic code analysis for Rapid7s platform & products
  • Enabling effective security testing of numerous products and services
  • Developing automated baseline security scripts for essential developer tools like GitHub & Jenkins
  • Automating enforcement of cloud security policies across our AWS footprint
  • Defining baseline security for AWS environments
  • Working with partner teams for secure design review
  • Providing security guidance on core architectural & platform initiatives
  • Implementing security controls at scale
  • Building strong relationships with Rapid7s technical teams
  • Documenting code and features developed, including changes to existing code
  • Maintaining, troubleshooting and debugging code, as required
  • Researching external best practices and emerging software and security technologies for possible incorporation into platform/applications and methodologies

You must be good at

  • Software development in Python, Go, or equivalent programming language
  • Docker, Kubernetes, or other containerization technology
  • Developing with AWS services such as Lambda, EC2, S3, DynamoDB/RDS, ALB, Route53
  • Working with AWS services like Cloudtrail, Cloudwatch, Config & more
  • Design & development of products in an agile development environment
  • Experience with Configuration Management tools such as Chef, Puppet
  • Experience with Infrastructure as Code tools such as Terraform or AWS Cloudformation
  • Working with CI/CD pipelines
  • Testing driven development
  • Ensuring code follows security best practices

You have a leg up if you

  • Have experience working with Rapid7 tools
  • Worked with application security testing tools, such as static and dynamic analysis
  • Know how to write secure code
  • Know secure design principles

Job Perks

  • Unlimited vacation
  • Flexible work hours
  • 401k matching
  • Employee stock purchase plan (ESPP)
  • Security conferences and training

Rapid7 is an equal opportunity employer. We value, support, and thrive on diversity and inclusion at our company. We do not discriminate on the basis of race, color, religion, national origin, age, sex, marital status, ancestry, physical or mental disability, veteran status, gender identity, or sexual orientation.

Full-time

Employee Testimonials

James Green
Director of Engineering, Engineering, Software Development

"My favorite memory of being a 'Moose' is our first ever company-wide hackathon in Cambridge. After a fun–filled week for the company kick-off, we still managed to deliver, through the night, on some amazing ideas."

Brett Garofalo
Manager, Mid-Market Sales

"I am not a natural–born salesperson or leader. Rapid7 gave me the mentorship opportunities and leeway to develop those skillsets. Having the support of my management allowed me to take risks and learn from mistakes instead of being tentative and afraid to put myself out there."

Helen Ackers Rapid7
Helen Ackers
Marketing Specialist

"Every time you feel a little more comfortable with your job and what is expected from you, there is always something new to learn and something to add to the repertoire! I love this, it means every week I can see myself developing in my career."

Aniket Menon Rapid7
Aniket Menon
Manager, Enterprise Deployments

"I love the infectious energy and fast–paced nature of the job. Unrelenting progress towards becoming the #1 company in Cyber Security. The sheer number of Products and Services we have launched in the last two years is a staggering achievement."

Dennis Nahas Rapid7
Dennis Nahas
Systems Administrator

"The most fulfilling moments are seeing our products name dropped in the security press, knowing we all contributed to that."

Ashley Seamans Rapid7
Ashley Seamans
Director of Business Intelligence

"There's never a dull moment and always a new challenge to tackle. I have had the opportunity to work with people across the company on product launches, acquisitions, our global sales expansion and lots of new programs, each with its own hurdles but all equally rewarding."

Chris Wallace Rapid7
Chris Wallace
People Strategy Manager

"It's pretty cool to look around the room and know that I played a part in making all of that happen, and that I hopefully helped those people move into a role that they find really rewarding and exciting. Especially in a company where they in turn can have a big impact and take their careers to the next level. The fact that they are all good people, and that we all manage to have a bit of fun in the process, helps too."

Stephanie Philips Rapid7
Stephanie Philips
Counsel and Director, Contracts, Legal

"I love the truly collaborative team effort from everyone across the board – people are always willing to join an effort or a conversation to make a difference and find a solution, and they don't feel bound by their job descriptions or departmental functions if they have expertise that will help out a fellow Moose."

Roy Hodgman Rapid7
Roy Hodgman
Data Scientist

"I feel that [our core value for] continuous learning best represents me because it's been essential to my career here. There are no shortage of tools and techniques that can be applied to the projects I work on, and despite what I think I might know about the problem at hand, more often than not there are new and novel ways to approach it."