Rapid7's Tactical Operations team is looking for an Associate Detection & Response Analyst to tackle time-critical security investigations and safeguard our global customers. This foundational role empowers you to hunt down malicious behavior, steer end-to-end incident analyses, and collaborate with a world-class team of analysts to stay ahead of the security curve. If you are a curious, driven problem-solver eager to launch your career in cybersecurity, this is your opportunity to make a collective impact from day one. About the Team The Tactical Operations team (TACOPS) handles the most time-critical tasks for all customers, executing the investigation and triage of high-priority security alerts using our cloud-hosted SIEM, InsightIDR. This collaborative team drives business and customer outcomes by combining individual technical skills with collective knowledge to identify threats and deliver robust remediation recommendations. About the Role As an Associate Detection & Response (MDR) Analyst, your primary responsibility will be to investigate and triage high-priority security alerts to identify malicious activity in customer environments. Specifically, your focus will be to: - Review alert data to identify malicious activity and potential security threats across diverse customer environments - Steer security investigations from initial alert through comprehensive evidence acquisition and root-cause analysis - Write technical incident reports documenting key findings, analysis methodologies, and actionable remediation recommendations for customers - Coordinate closely with SOC advisor colleagues to support effective communication of technical findings to the customer - Partner with Mid, Senior, and Lead Analysts to collaboratively solve complex challenges and share knowledge across the SOC team - Perform targeted investigation tasks and examine forensic artifacts during critical Remote Incident Response engagements - Track threat actor actions across an environment by analyzing system and forensic logs during security incidents - Maintain a flexible operational rhythm, working in the physical SOC two days per week (including Wednesdays) and adhering to the dedicated afternoon shift schedule The skills and qualities you'll bring include: - Adaptability to work a fixed shift rotation from Monday to Thursday, 11 AM - 9 PM, following a comprehensive 90-day onboarding period. - Professional or academic experience spanning 0-2 years within technology, systems administration, or information security environments - Foundational knowledge of core security concepts including lateral movement, privilege escalation, persistence methods, and command and control - Working familiarity with Windows and Linux operating systems and their underlying security architectures - Training in red team/blue team learning tools such as HackTheBox, TryHackMe, and LetsDefend and/or participation in CTF events is a plus - Scripting/coding ability and/or Security Certifications (GFACT, GSEC, GCIA, GCIH, CySA+, CASP+, Security+, etc.) is a plus - Creative problem-solving abilities, critical thinking capacity, and technical ingenuity when addressing complex challenges - Insatiable curiosity and a strong forward focus, demonstrating a passionate commitment to learning and developing your cybersecurity craft - Eagerness and open communication when navigating change, adapting smoothly to evolving business needs, shift structures, and group dynamics - Capacity to make efficient, structured choices that resolve challenges and maintain analytical momentum during high-pressure incidents - Clear accountability for actions and behaviors while driving outcomes that deliver genuine value for the business and our customers - Core Value Embodiment: Embody our core values to foster a culture of excellence that drives meaningful impact and collective success We know that the best ideas and solutions come from multi-dimensional teams. That's because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don't be shy - apply today. #LI-SIM About Rapid7 At Rapid7, our vision is to create a secure digital world for our customers, our industry, and our communities. We do this by harnessing our collective expertise and passion to challenge what's possible and drive extraordinary impact. We're building a dynamic and collaborative workplace where new ideas are welcome. Protecting 11,500+ customers against bad actors and threats means we're continuing to push the envelope just like we' ve been doing for the past 20 years. If you 're ready to solve some of the toughest challenges in cybersecurity, we're ready to help you take command of your career. Join us.

Role Description The Incident Response, Lead will work with IT stakeholders across the Health Care System to develop policies, procedures, and risk management activities that will efficiently contain and/or minimize the impact of business interruption due to disasters and/or information systems not being available. This role carries 24/7 on-call rotation responsibilities and active incident command expectations during major and critical events. - Perform risk and triage analysis to develop incident response plans and runbooks for the most likely and highly impactful disasters. - Assist IT and business stakeholders in testing incident response plans by developing downtime scenarios, tabletops, and other exercises. Qualifications - BS/BA degree in Information Technology, Business Administration, Risk Management, or a related field required. In lieu of the BS/BA degree, may accept a high school diploma and 7 years of experience. - 4+ years' experience in incident response management or a related field required. - Strong knowledge of industry standards and frameworks such as ISO 22301 or NIST SP 800-34. - Strong understanding of project management principles and data technologies, expert-level knowledge of IT Service Management principles, best practices, and frameworks such as ITIL. - Expert-level knowledge of IT Service Management principles, frameworks, and best practices (ITIL) preferred. - Expert-level ServiceNow experience — incident workflows, ticket quality, auditing, and reporting preferred. - Proven ability to lead live incident response under pressure. - On-call availability; experience in 24/7 rotation environments. - Strong understanding of project management principles and data technologies preferred. Requirements - Experience in healthcare IT environments preferred. - ITIL 4 Foundation certification or higher preferred. - Hands-on experience building or facilitating DR tabletop exercises preferred. - Experience building or auditing runbook libraries preferred. - Familiarity with clinical system availability requirements preferred. - Strong executive communication and reporting skills preferred. Benefits - Medical, dental & vision. - Critical Illness, Accident, and Hospital. - 401(k) Retirement Plan – Pre-tax and Roth post-tax contributions available. - Life Insurance (Voluntary Life & AD&D for the employee and dependents). - Short and long-term disability. - Health Spending Account (HSA). - Transportation benefits. - Employee Assistance Program. - Time Off/Leave (PTO, Vacation or Sick Leave). Job Type & Location This is a Contract position based out of Fort Worth, TX. Fully remote but MUST SIT IN TEXAS. Pay and Benefits The pay range for this position is $53.00 - $82.00/hr. Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms. Application Deadline This position is anticipated to close on Jun 12, 2026.

Role Description Want to help make a better world? As Incident Commander and Analyst at Autodesk you can do just that. You will shape the frontier of customer facing cloud services support at Autodesk by being an elite, Senior Incident Commander, and Analyst. Your finger will be on the pulse of Autodesk Cloud Services that empower our customers to “Make Anything”. At Autodesk, we believe that incidents are unplanned investments so, your focus will be as a member of a cadre that drives incidents to resolution and extracts deep learnings from them. Reporting to the Customer Facing technology operations organization, you demonstrate the ability to operate independently, collaborate with cross-functional teams to ensure that customer impact is mitigated, and incidents are fully understood. Above all, you help Autodesk deliver the highest quality of service for all the customers we serve. Responsibilities - You are a superior communicator. Written, verbal, and nonverbal language are all essential skills to be an effective and trustworthy leader. - You understand how to negotiate across multiple stakeholders and points of view. - You can develop and maintain strong relationships with team members by mutual earned respect and the ability to persuade with facts, logic, enthusiasm, and a proven track record. - Act in the role of an Incident Commander to facilitate high-severity incident triage. - Ensure that high-severity incidents achieve the necessary cross-functional engagement to drive them to resolution in a timely fashion. - Communicate clear updates to stakeholders in a timely fashion. - Participate in on-call rotation for Incident Commander role for after hours and weekends. - Participate in regular review of open Incidents and evaluate if Level1 (Cloud SOC) and Level2 (DevOps) teams are remediating incidents in a timely and effective manner. - Drive the use of incident metrics and perform a first-level analysis of incident data to gain insights as to service performance and patterns of emerging issues. - Run regular Incident Review meetings with Cloud Operations cross-functional teams. - Provide oversight for Cloud Service Operation Centre Level 1 engineer performance. - Run post-incident debrief meetings to drive engagement with incident responders. - Analyse incidents using an interview-based approach to extract deep learnings from incidents allowing the organization’s knowledge to grow as a result. - Engage with cross-functional Engineering Teams to ensure that Incident follow-up (forensic) activities are happening in a timely fashion. - Develop and implement data analyses, data collection, and other strategies that optimize platform resiliency and quality. - Work with Autodesk Engineering teams and leaders to recommend improvements based on analysis. - Act as a facilitator for on-boarding of new services to the Cloud SOC. - Perform required periodic review of new and revised runbooks, evaluating them for their efficacy and relevance. Qualifications - 10+ years of experience in a similar operations function within a high availability (HA), 24x7, mission critical operations environment providing or leading front-line support for a public-facing service with a high-volume, paying customer base. - 3-5 years’ experience leading or defining processes for high availability production environments or services. - Bachelor’s degree in computer science or a related technology field or equivalent experience. - Proficient in effectively communicating to a wide range of audiences in both written and oral form. - Ability to participate in an on-call rotation for the Incident Commander role including off-hours and weekends. - Must be process-oriented, energetic and an analytical thinker. - Ability to understand how technical deployments and outages impact customers and partners, and the experience to drive mitigation. - Solid understanding of basic Amazon Web Services infrastructure services, with exposure to serverless technologies, such as Aurora and Lambda. - Solid understanding of concepts and technologies such as cloud computing, server clusters, high availability network configurations, DNS, SMTP, NTP, NAS and HTTP. - Able to assimilate knowledge of new systems quickly and be adaptable. Preferred Qualifications - 8+ years of experience in a similar operations function within a high availability (HA), 24x7, mission critical operations environment. - Experience with Jira, Confluence and ServiceNow. - AWS Certifications. - Knowledge of incident analysis, problem, and change management practices. - Understanding of Dynatrace, Catchpoint, and similar observability tools. - Experience with defining and maintaining operational processes. - Experience administering Amazon Web Services accounts and instances, or network infrastructure (switches, routers, firewalls, etc.). - Experience defining, analysing, and maintaining Operational Reports such as SLA and Outage reports, Operations Performance reports, Maintenance reports, Operations Containment reports, etc. - Experience with Managed Service Providers particularly with global accounts. Benefits - From health and financial benefits to time away and everyday wellness, we give Autodeskers the best, so they can do their best work.

Title: Senior Incident Commander Location: United States Job Description: Company Overview Docusign brings agreements to life. Over 1.5 million customers and more than a billion people in over 180 countries use Docusign solutions to accelerate the process of doing business and simplify people's lives. With intelligent agreement management, Docusign unleashes business-critical data that is trapped inside of documents. Until now, these were disconnected from business systems of record, costing businesses time, money, and opportunity. Using Docusign's Intelligent Agreement Management platform, companies can create, commit, and manage agreements with solutions created by the #1 company in e-signature and contract lifecycle management (CLM). What you'll do The Senior Incident Commander is part of the SRE Incident Response team at Docusign. The role is around leading and facilitating incidents and incident management processes around our products and security. The role involves strategic project management, effective communication with stakeholders including executive leadership, and handling challenging incidents independently. They play a pivotal role in developing Docusign's overall service excellence practice by creating standard operating procedures, training material, operationalizing action items and provide valuable metrics for improvement. The role also requires daily incident management support across various Docusign infrastructures globally, ensuring the maintenance of service levels. The role will facilitate resolution for all major incidents, and handling communications via bridge calls and emails. The role includes on-call responsibilities outside business hours and weekends, daily reporting, ticket administration, and general production assurance duties. The ideal candidate is self-motivated and responsible, with the ability to prioritize under heavy workloads and operate under time constraints. Adherence to established procedures and detailed documentation of incidents and resolution steps is essential. This position is an individual contributor role reporting to the Sr. Manager, SRE Incident Command. Responsibility - Serve as a subject matter expert for Docusign's incident management - Partner with the SRE team to manage complex and sensitive critical incidents to conclusion, identifying and resolving challenges to ensure timely resolution - Partner with Service Owners and SRE to craft quality RCA and drive improvements across the domain to minimize number of incidents and their severity - Monitor, evaluate and report on incident management programs, processes and statistics to assure continuous improvement, implementing automated procedures to capture such data consistently - Lead post-incident reviews (RCA) by working with Service Owners and SREs to identify root causes, propose actionable improvements, and implement processes that minimize the number and severity of future incidents - Leverage organizational data to analyze incident trends, operational success metrics, and key areas for improvement, enabling data-driven decision-making and proactive prevention strategies - Utilize advanced reporting tools to proactively identify issues, systemic trends, and data anomalies - Utilize advanced monitoring and automation tools to identify opportunities to reduce response times, and ensure swift mitigation of risks, enabling more efficient management of major incidents and preventing incident recurrence - Interact regularly with senior leaders to facilitate effective incident handling or project delivery, producing suitable communications - Generate communications for multiple audience types, both customer-facing and internal - Prioritize incidents based on impact and urgency and classify them based on customer and operational impact, ensuring efficient resource allocation and effective resolution - Engage resources to resolve major incidents and minimize customer/business impact, managing escalation pathos as necessary - Serve as an escalation point within the Incident Management process, contributing to and initiating Crisis Incident response processes and applying the escalation process when required - Analyze incident data for anomalies, correlations, and trends against operational success criteria to improve incident response and prevention strategies - Participate in a rotational shift 24 x 7 x 365 Job Designation Remote: Employee is not required to be in or near an office frequently and works from a designated remote work location for the majority of the time. Positions at Docusign are assigned a job designation of either In Office, Hybrid or Remote and are specific to the role/job. Preferred job designations are not guaranteed when changing positions within Docusign. Docusign reserves the right to change a position's job designation depending on business needs and as permitted by local law. What you bring Basic - 8+ years experience in Incident Management, including leadership of major incidents and high-severity situations - Experience in operating and implementing Incident Management tools - Experience monitoring platforms and applications like Prometheus, Grafana, Azure Data Explorer, Incident.io - Experience with cloud and on-premise system architecture and design - Experience with troubleshooting techniques and problem-solving in a 24x7x365 environment Preferred - Completion of recognized incident command training (e.g., ICS certifications) and the ability to apply structured command and communication during major incidents - Experience analyzing incidents from customers perspective and drive through all phases to mitigation - Experience leading during incident calls, confidently driving towards resolution while communicating progress effectively to all stakeholders - Strong cross-functional collaboration, coordinating with multiple internal teams to establish containment and remediation strategies are implemented and carried out - Ability to lead incident calls confidently and independently to a successful resolution - Ability to understand and work within complex, large enterprise business environments - Process improvement experience, including conducting process analysis, identifying inefficiencies, and implementing recommended solutions - Experience managing complex security and privacy investigations - Excellent oral and written communication skills, with the ability to tailor messages for technical and non-technical audiences - Ability to work well interpersonally across various levels and disciplines, as well as influence and manage without direct authority - Skilled in understanding infrastructure dependencies and system integrations to perform troubleshooting in public/private cloud environments - Applied mitigation experience with microservices architecture, CI/CD pipelines, network architecture, data storage solutions, and virtualization across hybrid environments, ensuring rapid incident resolution, effective rollback practices, and minimized downtime in highly distributed systems - Strong understanding of TCP/IP networking, DNS, Load Balancing, and SSL/TLS protocols to assist in diagnosing connectivity and performance issues Wage Transparency Pay for this position is based on a number of factors including geographic location and may vary depending on job-related knowledge, skills, and experience. Based on applicable legislation, the below details pay ranges in the following locations: California: $164,700.00 - $266,000.00 base salary Illinois, Colorado, Massachusetts and Minnesota: $158,300.00 - $223,625.00 base salary Washington, Maryland, New Jersey and New York (including NYC metro area): $158,300.00 - $232,575.00 base salary Washington DC: $164,700.00 - $232,575.00 base salary Ohio: $137,800.00 - $194,650.00 base salary This role is also eligible for the following: - Bonus: Sales personnel are eligible for variable incentive pay dependent on their achievement of pre-established sales goals. Non-Sales roles are eligible for a company bonus plan, which is calculated as a percentage of eligible wages and dependent on company performance. - Stock: This role is eligible to receive Restricted Stock Units (RSUs). Global benefits provide options for the following: - Paid Time Off: earned time off, as well as paid company holidays based on region - Paid Parental Leave: take up to six months off with your child after birth, adoption or foster care placement - Full Health Benefits Plans: options for 100% employer paid and minimum employee contribution health plans from day one of employment - Retirement Plans: select retirement and pension programs with potential for employer contributions - Learning and Development: options for coaching, online courses and education reimbursements - Compassionate Care Leave: paid time off following the loss of a loved one and other life-changing events Life at Docusign Working here Docusign is committed to building trust and making the world more agreeable for our employees, customers and the communities in which we live and work. You can count on us to listen, be honest, and try our best to do what's right, every day. At Docusign, everything is equal. We each have a responsibility to ensure every team member has an equal opportunity to succeed, to be heard, to exchange ideas openly, to build lasting relationships, and to do the work of their life. Best of all, you will be able to feel deep pride in the work you do, because your contribution helps us make the world better than we found it. And for that, you'll be loved by us, our customers, and the world in which we live. Accommodation Docusign is committed to providing reasonable accommodations for qualified individuals with disabilities in our job application procedures. If you need such an accommodation, or a religious accommodation, during the application process, please contact us at accommodations@docusign.com. If you experience any issues, concerns, or technical difficulties during the application process please get in touch with our Talent organization at taops@docusign.com for assistance. Applicant and Candidate Privacy Notice States Not Eligible for Employment This position is not eligible for employment in the following states: Alaska, Hawaii, Maine, Mississippi, North Dakota, South Dakota, Vermont, West Virginia and Wyoming. Equal Opportunity Employer It's important to us that we build a talented team that is as diverse as our customers and where all employees feel a deep sense of belonging and thrive. We encourage great talent who bring a range of perspectives to apply for our open positions. Docusign is an Equal Opportunity Employer and makes hiring decisions based on experience, skill, aptitude and a can-do approach. We will not discriminate based on race, ethnicity, color, age, sex, religion, national origin, ancestry, pregnancy, sexual orientation, gender identity, gender expression, genetic information, physical or mental disability, registered domestic partner status, caregiver status, marital status, veteran or military status, or any other legally protected category. EEO Know Your Rights poster #LI-Remote