Sr. Security Engineer, IT Infrastructure

Obsessed with security? Are you looking for a new opportunity to channel your security expertise into building, integrating, and automating security controls across cloud and on-premise environments? Do you find yourself daydreaming about novel ways to continuously evolve security defenses to stay one step ahead of attackers? Does defending against attacker techniques that change on a day-to-day basis energize you rather than intimidate you?
We are looking for a creative person to join our savvy IT team, who understands that technology is meant to empower people. You will be part of a community that is fanatical about security and on a mission to make an impact in the global technology ecosystem.
About the Team
Our team is focused on designing and integrating robust security solutions within IT environments and managing vulnerabilities across diverse systems. We provide targeted security consulting across various verticals, ensuring that our security architectures meet the unique needs of each business area.
About the Role
In this role, you will drive the design and integration of security controls while managing vulnerabilities across our IT infrastructure. Additionally, you will provide security consulting to various business units, guiding them in implementing customized and effective security solutions.
In this role, you will:

• Independently build, integrate and automate security controls from cloud to endpoint.
• Act as a subject matter expert while partnering with Corporate IS and other teams to augment IT security capabilities for end-user devices, infrastructure, business applications, and identity & access management.
• Demonstrate good judgment in selection methods and techniques for obtaining solutions
• Supporting our team in automating our vulnerability management and incident detection & response operations.
• Owning and driving projects independently and in collaboration with multiple teams.
• Provide security expertise and leadership by consulting on projects to assist Rapid7 implement safe systems, environments, and operations.
• Curate metrics to demonstrate the effectiveness of our SecOps & IT security controls.
• Network with senior leaders and experts inside and outside the organization.
• Stay up to date with emerging threats, CVEs, and industry trends.

The skills you'll bring include:

• Experience in information security, performing vulnerability management, incident detection & response, digital forensics, or malware analysis.
• Experience in software development with building & integrating tools, especially by using web APIs & Python or Go.
• In-depth knowledge of Windows, macOS, & Linux security hardening/monitoring techniques.
• In-depth knowledge of secure network, systems, and application design and architecture.
• Experience configuring or maintaining network devices, such as firewalls and switches.
• Experience maintaining, securing or monitoring cloud infrastructure, especially AWS.
• Expert ability to identify security event root causes by gathering and synthesizing evidence from a variety of disparate systems.
• Excellent ability to communicate to technical and non-technical audiences with a positive, collaborative, and enablement-focused attitude.
• A proactive mindset and a strong sense of curiosity - always looking for ways to challenge assumptions and improve security outcomes.
• 3 - 5 years experience in a similar role.

We know that the best ideas and solutions come from multi-dimensional teams. That's because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don't be shy - apply today.
About Rapid7
At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We do this by harnessing our collective expertise and passion to challenge what's possible and drive extraordinary impact. We're building a dynamic and collaborative workplace where new ideas are welcome.
Protecting 11,000+ customers against bad actors and threats means we're continuing to push the envelope - just like we've been doing for the past 20 years. If you're ready to solve some of the toughest challenges in cybersecurity, we're ready to help you take command of your career. Join us.