Dear Rapid7 Talent Acquisition team,
I would like to apply for the SOC Analyst role you have posted on your careers page. My focus these past few years has been security operations, and I would be glad to bring that to your team.
Ahead of writing I read about Rapid7, and what stood out was your build-out of a 24/7 SOC and the security write-ups your team keeps posting on catching threats faster. This looks like a strong time to join, and I would gladly put my security operations experience to work there.
Reading the posting, the three needs that stand out most are alert triage and monitoring, incident detection and escalation and threat intelligence and reporting. Those decide whether a SOC hire works out, and I have real results behind each.
On alert triage and monitoring, my daily tools are SIEM, Splunk and log analysis. As a SOC Analyst at Mandiant, I handled triaging 200 alerts a day and cutting the noise so real threats stood out fast. Beyond that, I wrote the detection content that turned a flood of alerts into a short, useful queue.
For incident detection and escalation, I rely on playbooks, MITRE ATT&CK and escalation. During my time as a SOC Analyst at Mandiant, I took on spotting and escalating a live phishing campaign before it spread past the first inbox.
On threat intelligence and reporting, I bring threat feeds, IOCs and reporting. Working as a SOC Analyst at Mandiant, I owned building the threat-intel workflow that fed fresh IOCs straight into detection. On top of that, I cut mean time to detect from hours to minutes on the top alert types.
I would be glad to walk through this in an interview and show why I fit. I am ready to keep watch on your systems and catch what matters before it spreads, and to grow with the team.
I would be glad to find a time to talk.
Yours sincerely,
Theo Script
theo.script@gmail.com