CrawlJobs Logo

Associate Detection & Response Analyst

Czechia, Prague · Job Posted June 03, 2026
Apply Position
Job Link Share

Job Description

Rapid7’s Tactical Operations team is looking for an Associate Detection & Response Analyst to tackle time-critical security investigations and safeguard our global customers. This foundational role empowers you to hunt down malicious behavior, steer end-to-end incident analyses, and collaborate with a world-class team of analysts to stay ahead of the security curve. If you are a curious, driven problem-solver eager to launch your career in cybersecurity, this is your opportunity to make a collective impact from day one.

Job Responsibility

  • Review alert data to identify malicious activity and potential security threats across diverse customer environments
  • Steer security investigations from initial alert through comprehensive evidence acquisition and root-cause analysis
  • Write technical incident reports documenting key findings, analysis methodologies, and actionable remediation recommendations for customers
  • Coordinate closely with SOC advisor colleagues to support effective communication of technical findings to the customer
  • Partner with Mid, Senior, and Lead Analysts to collaboratively solve complex challenges and share knowledge across the SOC team
  • Perform targeted investigation tasks and examine forensic artifacts during critical Remote Incident Response engagements
  • Track threat actor actions across an environment by analyzing system and forensic logs during security incidents
  • Maintain a flexible operational rhythm, working in the physical SOC two days per week (including Wednesdays) and adhering to the dedicated afternoon shift schedule

Requirements

  • Professional or academic experience spanning 0-2 years within technology, systems administration, or information security environments
  • Foundational knowledge of core security concepts including lateral movement, privilege escalation, persistence methods, and command and control
  • Working familiarity with Windows and Linux operating systems and their underlying security architectures
  • Creative problem-solving abilities, critical thinking capacity, and technical ingenuity when addressing complex challenges
  • Insatiable curiosity and a strong forward focus, demonstrating a passionate commitment to learning and developing your cybersecurity craft
  • Eagerness and open communication when navigating change, adapting smoothly to evolving business needs, shift structures, and group dynamics
  • Capacity to make efficient, structured choices that resolve challenges and maintain analytical momentum during high-pressure incidents
  • Clear accountability for actions and behaviors while driving outcomes that deliver genuine value for the business and our customers
  • Core Value Embodiment: Embody our core values to foster a culture of excellence that drives meaningful impact and collective success

Nice to have

  • Training in red team/blue team learning tools such as HackTheBox, TryHackMe, and LetsDefend and/or participation in CTF events is a plus
  • Scripting/coding ability and/or Security Certifications (GFACT, GSEC, GCIA, GCIH, CySA+, CASP+, Security+, etc.) is a plus

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Associate Detection & Response Analyst

8 matching positions

Associate Detection And Response (Mdr) Analyst

Rapid7’s Tactical Operations team is looking for an Associate Detection & Respon...
Location
Location
Czechia , Prague
Salary
Salary:
Not provided
rapid7.com Logo
Rapid7
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Adaptability to work a fixed shift rotation from Monday to Thursday, 11 AM - 9 PM, following a comprehensive 90-day onboarding period
  • Professional or academic experience spanning 0-2 years within technology, systems administration, or information security environments
  • Foundational knowledge of core security concepts including lateral movement, privilege escalation, persistence methods, and command and control
  • Working familiarity with Windows and Linux operating systems and their underlying security architectures
  • Creative problem-solving abilities, critical thinking capacity, and technical ingenuity when addressing complex challenges
  • Insatiable curiosity and a strong forward focus, demonstrating a passionate commitment to learning and developing your cybersecurity craft
  • Eagerness and open communication when navigating change, adapting smoothly to evolving business needs, shift structures, and group dynamics
  • Capacity to make efficient, structured choices that resolve challenges and maintain analytical momentum during high-pressure incidents
  • Clear accountability for actions and behaviors while driving outcomes that deliver genuine value for the business and our customers
  • Core Value Embodiment: Embody our core values to foster a culture of excellence that drives meaningful impact and collective success
Job Responsibility
Job Responsibility
  • Review alert data to identify malicious activity and potential security threats across diverse customer environments
  • Steer security investigations from initial alert through comprehensive evidence acquisition and root-cause analysis
  • Write technical incident reports documenting key findings, analysis methodologies, and actionable remediation recommendations for customers
  • Coordinate closely with SOC advisor colleagues to support effective communication of technical findings to the customer
  • Partner with Mid, Senior, and Lead Analysts to collaboratively solve complex challenges and share knowledge across the SOC team
  • Perform targeted investigation tasks and examine forensic artifacts during critical Remote Incident Response engagements
  • Track threat actor actions across an environment by analyzing system and forensic logs during security incidents
  • Maintain a flexible operational rhythm, working in the physical SOC two days per week (including Wednesdays) and adhering to the dedicated afternoon shift schedule
  • Fulltime
Read More
Arrow Right

Associate Security Analyst

Tier‑1 SOC Analysts form the frontline of our organization’s cybersecurity defen...
Location
Location
United Kingdom , Manchester
Salary
Salary:
Not provided
ans.co.uk Logo
ANS Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Eligibility for HMG Security Clearance Candidate must be capable of achieving UK Government Security Clearance due to the nature of the role
  • Ability to work a '4 on 4 off' shift pattern, consisting of day and night shifts at our Manchester office
  • Foundational Security Knowledge Demonstrated understanding of core cybersecurity principles, either through education, training, or practical experience
  • Awareness of SOC Operations Basic familiarity with incident triage, alert handling, and escalation workflows
Job Responsibility
Job Responsibility
  • Monitor and triage alerts from Microsoft Sentinel and our SOAR platform, ensuring timely detection and prioritization of potential threats
  • Categorise alerts by severity (P1–P4) to guide appropriate response levels and ensure critical incidents are escalated quickly
  • Create and update tickets in Dynamics 365 ITSM, maintaining clear documentation of investigations, actions taken, and status changes
  • Assign tickets to the correct tier based on complexity and urgency and mark them as “In Progress” to initiate the response workflow
  • Conduct initial investigations on low to medium severity alerts analysing logs, telemetry, and reputation data to determine legitimacy
  • Close false positives and flag them for rule tuning to improve alert accuracy and reduce noise in the SOC environment
  • Initiate phone calls for P1 incidents, ensuring immediate customer communication and coordination during critical events
  • Liaise with customers during incident response, providing updates, gathering context, and ensuring transparency throughout the process
  • Maintain SLA compliance by promptly responding to alerts, especially high-priority (P1/P2) cases, to meet contractual obligations
  • Respond to SOC alerts by performing triage, containment, and documentation, escalating complex cases to Tier-2 when needed
What we offer
What we offer
  • 25 days’ holiday, plus you can buy up to 5 more days
  • birthday off
  • an extra celebration day
  • 5 days’ additional holiday in the year you get married
  • 5 volunteer days
  • Private health insurance
  • Pension contribution match and 4 x life assurance
  • Flexible working and work from anywhere for up to 30 days per year (some exceptions)
  • Maternity: 16 weeks’ full pay, Paternity: 3 weeks’ full pay, Adoption: 16 weeks’ full pay
  • Company social events
  • Fulltime
Read More
Arrow Right

Senior Associate Managed Services Information Security Analyst

The Senior Associate Managed Services Information Security Analyst is a developi...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Developing knowledge on implementation and monitoring of a company supported SIEM or security tools/technologies/concepts
  • Developing knowledge on security architecture, worked across different security technologies
  • Developing knowledge and understanding of the operation of modern computer systems and networks and how they can be compromised
  • Displays excellent customer service orientation and pro-active thinking
  • Displays problem solving abilities and is highly driven and self-organized
  • Excellent attention to detail
  • Displays analytical and logical thinking
  • Well spoken and written communication abilities
  • Ability to remain calm in pressurized situations
  • Ability to keep current on emerging trends and new technologies in area of specialization
Job Responsibility
Job Responsibility
  • Work as part of a global Cyber Defense Centre (CDC) team that works 24/7 on rotational shifts
  • Work with client stakeholders and Information Security Manager (ISM) to tune the MSSP platform and client SIEM to enable more efficient detection, analysis and reporting
  • Monitoring of the security tools to review and analyze security logs from client environments
  • Generate continuous improvement ideas for supported security tools/technologies, to enable improvements to the company services, employee experience and client experience
  • Adhere to SOPs, customer Run Books and standard processes to ensure a globally consistent delivery whilst also proposing changes and improvements to these standards
  • Utilise and document best practices and amend existing documentation as required
  • Security incident handling and response from several vectors including End Point Protection and Enterprise Detection and response tools, attack analysis, malware analysis, network forensics, computer forensics
  • Utilizes a broad range of skills in LAN technologies, Windows and Linux O/S's, and general security infrastructure
  • Ensure usage of knowledge articles in incident diagnosis and resolution and identify when updates are required
  • Perform defined tasks to inform and monitor service delivery against service level agreements and maintain records of relevant information
  • Fulltime
Read More
Arrow Right

Associate Managed Services Information Security Analyst

The Associate Managed Services Information Security Analyst is an entry-level ro...
Location
Location
India , Hyderabad
Salary
Salary:
Not provided
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree or relevant qualification in Information Technology or Computing or a related field
  • Security certifications such as (but not limited to) AZ-500, SC-200, Security+, CEH, CISSP, CISM or similar
  • Certification in different networking technologies such as CCNA, JNCIA, ACCA, PCNSA, CCSA is advantageous
  • Entry level experience in SOC Analysis Operations
  • Entry level experience in SIEM usage for investigations
  • Entry level experience in Security technologies such as (but not limited to) Firewall, IPS, IDS, Proxy
  • Entry level experience in dealing with technical support to clients
  • Entry level experience in handling security incidents end to end
  • Entry level experience in configuring/managing security controls, such as SIEM, Firewall, IDS/IPS, EDR, NDR, UTM, Proxy, SOAR, Honeypots and other security tools
  • Entry level experience in Security Analysis or Engineering preferably gained within a global services organization
Job Responsibility
Job Responsibility
  • Works as part of a global Cyber Defense Centre (CDC) team that works 24/7 on rotational shifts
  • Works with client stakeholders and relevant internal teams to tune the MSSP platform and client SIEM to enable more efficient detection, analysis and reporting
  • Under guidance, generates continuous improvement ideas for supported security tools/technologies, to enable improvements to the company services, employee experience and client experience
  • Adheres to SOPs, customer Run Books and standard processes to ensure a globally consistent delivery whilst also proposing changes and improvements to these standards
  • Utilizes and document best practices and amend existing documentation as required
  • Support with security incident handling and response from several vectors including End Point Protection and Enterprise Detection and response tools, attack analysis, malware analysis, network forensics, computer forensics
  • Learns and utilizes a broad range of skills in LAN technologies, Windows and Linux O/S’s, and general security infrastructure
  • Ensures usage of knowledge articles in incident diagnosis and resolution
  • Under guidance, perform defined tasks to inform and monitor service delivery against service level agreements and maintain records of relevant information
  • Cooperates closely with colleagues to share knowledge and build a cohesive and effective team environment, benefiting the individual, the business and the client
  • Fulltime
Read More
Arrow Right

Cyber Operations Specialist

At Boeing, we innovate and collaborate to make the world a better place. We’re c...
Location
Location
Australia , Williamtown
Salary
Salary:
Not provided
boeing.com Logo
Boeing
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Underpinning knowledge and experience to effectively and confidently triage, prioritise and respond to incidents and detections
  • Depth of experience in cyber operations, including Detection engineering, monitoring and tuning SIEM and other solutions, and stakeholder support
  • Strong leadership capability, including the ability to mentor and guide others
  • A proactive and creative approach to problem-solving
  • Strong communication skills and the ability to explain complex security concepts clearly to customers and senior management
  • The ability to work collaboratively while maintaining accountability and focus on delivery
  • Demonstrated knowledge and experience performing or contributing to system accreditation, including execution of monitoring to maintain security outcomes in compliance to the Australian Defence Security Principles Framework and associated policies and procedures, including the Australian Government Information Security Manual
  • Experience developing and implementing information security practices in an engineering environment
  • Strong written and verbal communication skills, with the ability to engage a broad range of stakeholders
  • Strong project management capability and end-to-end accountability
Job Responsibility
Job Responsibility
  • Support the execution of critical information and cyber security work statements
  • Manage and support cyber incidents, including stakeholder communications
  • Contribute to the development and maturity of cyber operations processes
  • Help identify opportunities to improve monitoring, detection, and vulnerability management
  • Mentor and support team members within a collaborative cyber operations environment
  • Work closely with stakeholders to deliver practical, effective security outcomes
What we offer
What we offer
  • Competitive base pay and incentive programs
  • Industry-leading tuition assistance program pays your institution directly
  • Resources and opportunities to grow your career
  • Up to $10,000 match when you support your favorite nonprofit organizations
  • Fulltime
Read More
Arrow Right

Information Security Analyst

Carex is partnering with a Healthcare industry partner to hire an Information Se...
Location
Location
United States , Edina
Salary
Salary:
53.00 - 67.00 USD / Hour
carexconsulting.com Logo
Carex Consulting Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Associate’s degree in Computer Science, Information Technology, Cybersecurity, or a related field, or equivalent Information Security work experience required
  • 2–4 years of IT experience with responsibilities in Information Security
  • Experience supporting security awareness training programs and educating end users
  • Working knowledge of security monitoring tools, threat detection, and incident response processes
  • Strong understanding of information security principles, controls, and best practices
  • Excellent written and verbal communication skills with the ability to train and influence users across all organizational levels
  • Strong analytical, problem-solving, and organizational skills
Job Responsibility
Job Responsibility
  • Analyze, implement, and maintain security controls that align with information security policies and industry best practices
  • Manage and administer security awareness training tools and resources to educate users and strengthen the organization’s security culture
  • Develop and deliver engaging security awareness initiatives for employees at all levels of the organization
  • Monitor security tools and alerts to identify potential threats and suspicious activity
  • Support Security Operations Center (SOC) functions by assisting with security incident detection, investigation, and response
  • Help maintain compliance with organizational security standards and procedures
  • Collaborate with IT teams and business stakeholders to promote secure technology practices
  • Communicate security concepts, risks, and best practices effectively to both technical and non-technical audiences
  • Stay current on emerging cybersecurity threats, trends, and security technologies
  • Fulltime
Read More
Arrow Right

Cybersecurity Analyst

We are looking for a Cybersecurity Analyst to help strengthen security operation...
Location
Location
United States , Maple Grove
Salary
Salary:
Not provided
https://www.roberthalf.com Logo
Robert Half
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field with at least 3 years of cybersecurity experience, or an associate degree/equivalent technical training with 5 or more years of relevant experience
  • Demonstrated hands-on experience with Splunk, including query creation, search development, and security-focused analysis
  • Background in security operations, cyber monitoring, or incident response within an enterprise environment
  • Working knowledge of the MITRE ATT&CK framework and its use in threat detection and investigative analysis
  • Experience writing scripts in Python, PowerShell, or similar languages to support automation and operational improvements
  • Ability to investigate threats across endpoints, networks, cloud environments, web activity, and forensic data sources
  • Familiarity with security frameworks and regulated environments, including standards such as NIST 800-53
  • Strong analytical, communication, and collaboration skills, with the ability to manage multiple priorities effectively
Job Responsibility
Job Responsibility
  • Oversee daily security event monitoring and assess alerts to identify potential threats, suspicious activity, and active incidents
  • Use Splunk to analyze logs, correlate events, and create meaningful detections that improve visibility across the environment
  • Design, refine, and maintain dashboards, searches, and alert logic to increase detection accuracy and reduce unnecessary noise
  • Apply the MITRE ATT&CK framework to strengthen threat analysis and develop detection content aligned to adversary behaviors
  • Support incident response efforts by assisting with investigation, containment, remediation, recovery, and lessons-learned activities
  • Document operational procedures, response playbooks, and technical workflows to promote consistency and readiness within security operations
  • Work with IT and business stakeholders to address control gaps, improve security processes, and enhance overall resilience
  • Develop reporting, metrics, and trend analysis to communicate risks, operational performance, and emerging concerns to stakeholders
  • Leverage Python, PowerShell, and automation techniques to streamline repetitive tasks and improve security operations efficiency
  • Review large volumes of security data to uncover patterns, emerging threats, and opportunities for more proactive defense
What we offer
What we offer
  • medical
  • vision
  • dental
  • life and disability insurance
  • 401(k) plan
  • Fulltime
Read More
Arrow Right

Vice President, In-Business Risk 1st Line of Defence Lead Analyst, Services

We are seeking a senior risk management professional for an In-Business Risk (IB...
Location
Location
Japan , Chiyoda, Tokyo
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • A minimum of 10 years of experience in Controls, Regulatory Management, Operational Risk Management, Audit, Compliance, or a similar control-focused function
  • An understanding of Custody operations processes and their associated risks is preferred but not required
  • Ability to articulate policies and standards to Sales, Service, and Product teams, guiding their implementation in a prioritized manner
  • Serve as the primary liaison for the second and third lines of defense
  • responsible for seeking their advice, assessing feasibility, and implementing recommendations using a risk-based approach
  • Lead and present at business risk and control meetings, with the authority to assign ownership and ensure accountability
  • Experience with the front-to-back management of risks and issues within the Services business
  • A high degree of learning agility
  • Deep understanding of investor services operational risks in high-volume global financial services (custody, fund services, securities finance, clearing, settlement, fiduciary services), including front-to-back process risks
  • Expertise in securities/investment laws, compliance, technology, cybersecurity, data integrity, operational resilience, and core systems is essential
Job Responsibility
Job Responsibility
  • Lead the business toward its risk, control, and regulatory management goals
  • Drive local and regional initiatives to address challenges and continuously enhance the control framework
  • Work effectively across silos to bring transparency to regulatory, compliance, and audit issues
  • Partner with second and third-line-of-defense functions and the cluster IBR management team to identify and apply best-in-class control standards
  • Confidently articulate risk and control positions to secure buy-in from multiple senior stakeholders
  • Build consensus and foster collaborative relationships to drive effective risk management outcomes
  • Uphold the highest standards of ethical conduct and discipline
  • Possess the judgment to escalate critical issues in a timely and appropriate manner
  • Clearly and concisely present complex risk and control matters in executive forums
  • Partner with the Custody Product team to drive risk and control initiatives
  • Fulltime
Read More
Arrow Right