As a Penetration Testing Analyst on the Global Services team, you will utilize your technical skills and knowledge of defense strategies to help clients improve their security posture. Responsibilities include attacking networks, hacking custom protocols in embedded devices, delivering day-to-day tactical reports, triaging alerts, addressing customer needs, and assisting with incident response handling and communication alongside various Managed Services teams.

About the Role

Your primary responsibility will be performing technical testing against various targets and delivering tactical reports to customers. You will observe and learn about the evolving cyber threat landscape while gaining valuable experience helping customers remediate and mitigate prevalent threats.

Specific Focus Areas

• Perform technical testing against a variety of targets, including network penetration testing (internal, external, and wireless), web application and API testing, and social engineering (on-premise and electronic).
• Consistently produce high-quality reports and peer-review colleagues' work for errors and inaccuracies.
• Help develop and create Executive Briefings.
• Deliver timely reports to clients and external stakeholders.
• Translate technical concepts and convey them to non-security personnel.
• Be capable of learning in a fast-paced environment and taking on solo engagements.
• Participate in industry conferences and professional organizations.

Required Skills and Qualities

• 3+ years in an active technical security role.
• Excellent written and verbal communication skills.
• Previous technical security consulting experience.
• Knowledge of modern penetration testing tools and methods.
• Strong knowledge of network, web-based application, and IEEE 802.11 security concepts.
• Knowledge of Windows/Linux/UNIX internals and the Internet protocol suite.
• Experience using interpreted languages (Ruby, Python, PHP, etc.) and knowledge of compiled languages (Java, C, C++, Assembly, etc.).
• Experience with social engineering techniques and tactics.
• A Bachelor’s degree in Computer Science, MIS, CIS or a related field, or equivalent experience.
• Certifications such as GPEN, CPTS, or OSCP.
• The ability to ask for help.

We value multi-dimensional teams that reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, apply today.

About Rapid7

At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We harness our collective expertise and passion to challenge what’s possible and drive extraordinary impact. We are building a dynamic and collaborative workplace where new ideas are welcome. Protecting over 11,000 customers against bad actors and threats means we continue to innovate, as we have for the past 20 years. Join us to solve some of the toughest challenges in cybersecurity.

This role is #LI-Remote.

Compensation Details (US)

The salary range for this role in the US is: $86,700.00 - 117,300.00 USD Annual. Salary ranges may vary based on geographical location. This range does not include variable/incentive compensation, equity and benefits (where applicable/eligible).

Rapid7, Inc. is committed to fair and equitable compensation practices. Salary is determined by various factors including, but not limited to, relevant work experience, skills, and certifications. It is not typical for an individual to be hired at the very top of the salary range.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, disability, protected veteran status or any other status protected by applicable national, federal, state or local law.