What are the responsibilities and job description for the Remote Role - Rapid7 InsightIDR InsightConnect Specialist SOC SpecialistSOC Analyst position at Vinsys Information Technology Inc?

Introduction : We are looking for a skilled and experienced Rapid7 InsightIDR and InsightConnect Specialist to join our Security Operations Center (SOC) team. In this role you will lead incident response activities manage SIEM and SOAR tools and contribute to the overall security strategy by automating workflows and optimizing security operations. If you have handson experience with Rapid7 solutions automation and orchestration we want to hear from you!

Key Responsibilities :

Incident Detection & Response : Lead incident response activities by ensuring rapid detection analysis and resolution of security incidents. Provide direct handson support to the SOC team during highpriority events.
SIEM & SOAR Management : Configure and manage Rapid7 InsightIDR and InsightConnect including integrating log sources developing custom parsers and optimizing correlation rules and use cases for advanced threat detection.
Threat Analysis : Conduct indepth analysis of security events to identify and differentiate between successful intrusions compromises and false positives. Provide actionable insights to reduce noise and improve threat visibility.
Automation & Orchestration : Use Ansible Puppet Python and PowerShell to automate repetitive SOC tasks enhance incident response processes and increase operational efficiency.
Configuration Management : Utilize Ansible and Puppet for configuration management ensuring system consistency and automation across multiple environments.
Investigation Management : Lead investigations into incidents escalated by Level 1 analysts ensuring thorough documentation and efficient resolution of issues.
Quick Mitigation Techniques : Implement temporary defensive measures and response actions until permanent solutions are deployed.
Security Enhancements : Develop maintain and refine playbooks in Rapid7 InsightConnect to orchestrate and automate SOC processes improving response times and operational efficiency.
Gap Analysis & Recommendations : Identify gaps within the security infrastructure and recommend strategies for risk mitigation continuous improvement and enhanced security posture.
Vulnerability Awareness : Stay updated on the latest vulnerabilities threat advisories and penetration techniques actively contributing to proactive defense measures against emerging threats.

Desired Skills & Qualifications :

Experience : 15 years of relevant experience in cybersecurity and SOC operations with a focus on Rapid7 products and threat management.

Proficiency in Rapid7 : Strong handson experience with Rapid7 InsightIDR (XDRSIEM) and InsightConnect (SOAR) including advanced configuration rule development and integration.

Scripting & Automation : Expertise in Python PowerShell and Bash scripting to automate security workflows and improve incident response times.

Configuration Management : Proficient in using Ansible and Puppet for automating configuration management standardization and system deployments.

SIEM & SOAR Expertise : Advanced knowledge of SIEM and SOAR tools with proven experience optimizing detection and response workflows within a security operations environment.

Incident Response Frameworks : Familiarity with industrystandard frameworks such as NIST MITRE ATT&CK and SANS for managing security incidents and developing response strategies.

Security Toolset Knowledge : Strong understanding of firewalls IDS / IPS antivirus solutions EDR and behavioral analytics tools.

API Integration & Custom Reporting : Experience with API integrations for security toolsets and developing custom reporting solutions to enhance operational visibility.

Log & Threat Intelligence Analysis : Indepth knowledge of log analysis threat intelligence platforms and vulnerability scanners to enhance security monitoring capabilities.

Preferred Qualifications :

Relevant certifications in cybersecurity incident response or Rapid7 solutions (e.g. Rapid7 Certified CISSP CISM).

Familiarity with additional SIEM or SOAR tools and industry best practices.

Experience with cloud security solutions and threat monitoring in cloud environments.

Why Join Us :

Work with cuttingedge security technology and solutions.

Play a vital role in strengthening the organizations security posture and response capabilities.

Collaborative fastpaced environment with plenty of room for professional growth and development.

Key Skills

Sales Experience,Crane,Customer Service,Communication skills,Heavy Equipment Operation,Microsoft Word,Case Management,OSHA,Team Management,Catheterization,Microsoft Outlook Calendar,EHS

Employment Type : Full Time

Experience : years

Vacancy : 1

Apply for this job

Receive alerts for other Remote Role - Rapid7 InsightIDR InsightConnect Specialist SOC SpecialistSOC Analyst job openings

Remote Role - Rapid7 InsightIDR InsightConnect Specialist SOC SpecialistSOC Analyst

What are the responsibilities and job description for the Remote Role - Rapid7 InsightIDR InsightConnect Specialist SOC SpecialistSOC Analyst position at Vinsys Information Technology Inc?

What is the career path for a Remote Role - Rapid7 InsightIDR InsightConnect Specialist SOC SpecialistSOC Analyst?

Job openings at Vinsys Information Technology Inc

Not the job you're looking for? Here are some other Remote Role - Rapid7 InsightIDR InsightConnect Specialist SOC SpecialistSOC Analyst jobs in the Dulles, VA area that may be a better fit.

We don't have any other Remote Role - Rapid7 InsightIDR InsightConnect Specialist SOC SpecialistSOC Analyst jobs in the Dulles, VA area right now.

AI Assistant is available now!