Director, Security Operations at Rapid7

| Greater Boston Area
Sorry, this job was removed at 6:12 a.m. (EST) on Thursday, December 24, 2020
Find out who's hiring in Boston.
See all Developer + Engineer jobs in Boston
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Company Description 

Rapid7 (NASDAQ: RPD) is helping organizations around the globe advance securely. Our technology, services, and community-focused research simplify complexity for security teams, helping them reduce vulnerabilities, monitor for malicious behavior, investigate and shut down attacks, and automate routine tasks. With more than 9000 customers across 120+ countries, Rapid7 is a recognized leader in cybersecurity that has proudly earned numerous industry accolades and strong recognition for our technology and culture. Learn more at

Our Mission

By continuously improving our technology, stemming the creation of risk in the community, and making security more usable and accessible, Rapid7 enables technology professionals to gain the clarity, command, and confidence they need to safely drive innovation and protect against risk. Our product suite helps organizations to quickly predict, deter, detect, and remediate attacks and obstacles to productivity.

The Opportunity 

What if security was an opportunity and not an obstacle? What if it wasn’t a clunky afterthought, or a cumbersome requirement preventing you from doing the things you really want to do? What if you could securely advance your business with clarity and confidence? We like the sound of that too.

Just like many of our customers, as Rapid7 continues to grow, so does our attack surface. That’s why we’re looking for an amazing leader to join us as our Director of Security Operations reporting to the Chief Security Officer. You’re the kind of person who wants to lead and support a high-functioning security operations team and evolve it into a world-class operation. You’ll level up our defensive security operations (including vulnerability management, threat detection, and incident response) in partnership with team leaders in those areas. On top of that, you’ll build a new offensive security operations program (including attack simulations against our company’s applications, infrastructure and more) to ensure we’re continuously tested and prepared to defend against attacks from threat actors. You’ll do all of this in collaboration with your partner teams across the company, both inside and outside InfoSec. Also, have you ever wondered what it's like to work on a security team at a security company? (Hint: it's kind of amazing.)

Are you looking for a new opportunity to channel your security, technology, and leadership expertise into supporting and developing a talented team of security practitioners? Do you believe security should empower people to do their work safely and productively, with guardrails and not gates? Are you a security optimist, recognizing that humans are the most important part of the solution rather than the weakest link in the chain? Do you find yourself daydreaming about new solutions to old problems?

If you’ve been answering “yes” to these questions, then you might be the person we’re looking for! Keep reading to learn more about this unique opportunity. 

The Role

We are looking for someone who can lead our maturing SecOps organization and evolve it as an industry leader, providing an example of how we provide great experiences both for our internal stakeholders and external customers by identifying, managing and reducing risk to businesses’ most sensitive data. This person will have responsibility for:

  • Leading, supporting, and advocating for a highly motivated defensive security operations team, with disciplines in vulnerability risk management, threat detection, and incident response

  • Building a new offensive security operations team

  • Providing mentorship and career development opportunities for the team, enabling them to scale

  • Defining the long-term vision, strategy, and roadmap for our security operations group, prioritizing automation every step of the way

  • Building positive relationships with partner teams to continuously improve our strategies for protecting our customers and company

  • Partnering with our CSO on strategic direction of security operations to meet the needs of the business

  • Communicating complex topics in ways everyone can understand, from technical team contributors to C-level executives

  • Positively influencing the culture of security at Rapid7

  • Addressing escalation from principal staff and managers

Qualifications and Traits

  • 5+ years leading, developing, and recruiting managers and technical teams, preferably in defensive and offensive capacities

  • 9+ years of experience in InfoSec, preferably in penetration testing, red teaming, threat detection, incident response, and/or vulnerability management

  • A passionate people leader who can lead teams of teams and focuses on growing and developing talent

  • Comprehensive experience defining and/or building metrics to measure and improve the effectiveness of security controls

  • Ability to balance strategic vision for the future with the technical competence to lead the execution

  • Outstanding communication and cross-functional partnering skills

  • Comprehensive knowledge of Infrastructure-as-a-Service security concepts/best practices, especially AWS

  • Deep experience defining and/or building highly automated security processes, playbooks, controls, etc.

  • Deep experience of threat hunting & deception techniques

  • Deep knowledge of tactical, operational and strategic intelligence areas

  • Expert knowledge of network traffic analysis (Netflow, Full Packet Capture, DPI)

  • Expert knowledge of responding to computer incidents and computer misconduct investigations

  • Expert knowledge of adversaries tactics, techniques, and procedures (TTPs) and how they may impact the organization

  • Comprehensive understanding of cloud incident response processes

  • Comprehensive understanding of how to acquire and analyze digital forensic information

  • Working knowledge of software engineering principles applied to security practices (e.g. detection engineering, security as code, unit/regression/integration tests, security guardrails)

  • The ability to carefully balance staying the course with guiding your managers’ and teams’ plans when new information and priorities arise 

  • Comprehensive knowledge of project ownership and excellent time and task management skills


  • Experience developing software tooling to solve custom problems

  • Experience using Rapid7 products (InsightVM, InsightIDR, InsightConnect, and/or Metasploit)

  • Experience using Agile principles and work management frameworks (e.g. Scrum) for security work

  • Preferred locations: Boston, MA; Arlington, VA; Belfast, UK; Austin, TX; Los Angeles, CA

Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
  • Product
  • Sales & Marketing
    • GolangLanguages
    • JavaLanguages
    • JavascriptLanguages
    • PythonLanguages
    • RLanguages
    • RubyLanguages
    • ScalaLanguages
    • SqlLanguages
    • jQueryLibraries
    • ReactLibraries
    • ReduxLibraries
    • AngularJSFrameworks
    • DjangoFrameworks
    • ExpressFrameworks
    • FlaskFrameworks
    • HadoopFrameworks
    • Node.jsFrameworks
    • Ruby on RailsFrameworks
    • SparkFrameworks
    • SpringFrameworks
    • TensorFlowFrameworks
    • CassandraDatabases
    • MongoDBDatabases
    • MySQLDatabases
    • PostgreSQLDatabases
    • RedisDatabases
    • Google AnalyticsAnalytics
    • OptimizelyAnalytics
    • IllustratorDesign
    • InVisionDesign
    • PhotoshopDesign
    • SketchDesign
    • AsanaManagement
    • ConfluenceManagement
    • JIRAManagement
    • WordpressCMS
    • SalesforceCRM


Rapid7 is conveniently located between the North End and West End of Boston, with plenty of restaurants, bars and public transport close by.

An Insider's view of Rapid7

What does your typical day look like?

For the majority of the day it’s a mix of weekly check-ins with various teams, project updates, and the occasional brainstorm.

When I’m not in meetings I’ve got headphones in while planning, writing, or designing — at my desk or perched somewhere around the office.


Senior Brand Storyteller

What are some things you learned at the company?

When we talk about being a moose and impact together, what we are saying is that we support each other on our journey forward. We actively look for ways to collaborate, strengthen our ideas and learn from each other, no matter what department you may be in at Rapid7.


Global Director of Sales Engineering

What are Rapid7 Perks + Benefits

Volunteer in local community
Once a year, Rapid7 offices across the globe close for the day so employees can volunteer.
Partners with Nonprofits
Friends outside of work
Eat lunch together
Intracompany committees
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Dedicated Diversity/Inclusion Staff
Highly diverse management team
Rapid7 is led by a diverse management team that represent the security community we serve. We believe that we all have a responsibility to continuously improve our DE&I efforts.
Unconscious bias training
We believe in continuous learning, our in-house trainers conduct consistent diversity trainings. We advocate for diverse thinking and strive to cultivate a workforce that mirrors the best minds.
Someone's primary function is managing the company’s diversity and inclusion initiatives
Diversity Employee Resource Groups
We have so many amazing and organically created employee resource groups! These internal Rapid7 communities allow for an authentic experience where diverse employees and allies can come together.
Hiring Practices that Promote Diversity
We've taken the Parity Pledge, we reinforce strategic recruitment, we are committed to diversity partnerships, and we understand the importance in training around unconscious bias.
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Wellness Programs
Onsite Gym
Mental Health Benefits
Retirement & Stock Options Benefits
401(K) Matching
Employee Stock Purchase Plan
Performance Bonus
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Remote Work Program
Our remote work program includes full-time remote for specific positions, Work remotely on occasion as needed.
Family Medical Leave
Vacation & Time Off Benefits
Unlimited Vacation Policy
Paid Volunteer Time
Our employees receive unlimited hours per year of paid volunteer time.
Paid Holidays
Paid Sick Days
Employees receive unlimited hours per year of paid sick leave.
Perks & Discounts
Casual Dress
Commuter Benefits
Company Outings
Game Room
Stocked Kitchen
Rapid7 has a fully stocked kitchen including unlimited snacks, coffee, tea and all of the flavored sparkling water you can handle.
Some Meals Provided
Employees get free lunch during quarterly in-office Town Halls and some team meetings.
Happy Hours
Fitness Subsidies
Home Office Stipend for Remote Employees
Professional Development Benefits
Job Training & Conferences
Diversity Program
Lunch and learns
Cross functional training encouraged
Promote from within
Continuing Education stipend
Time allotted for learning
Online course subscriptions available
Paid industry certifications
More Jobs at Rapid748 open jobs
All Jobs
Data + Analytics
Dev + Engineer
HR + Recruiting
Project Mgmt
Project Mgmt
Data + Analytics
HR + Recruiting
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Save jobView Rapid7's full profileSee more Rapid7 jobs