DFIR Expert
Herzliya, Israel
CYE
CYE's optimized cyber risk management helps you gain visibility, quantify cyber risk, prioritize mitigation, and effectively communicate with stakeholders.
CYE's DFIR team is responsible for responding to our clients' cyber incidents and crises. Our group is expanding. If you see yourself in the front line of the cybersecurity domain as a data forensic and incident response (DFIR) talent, your place is with us. As a DFIR team member, you will participate in hands-on security research and investigations, helping our customers understand and mitigate cyber threats and attacks.
Responsibilities
- Perform incident response lifecycle and real-time activities, including detection and analysis, containment and eradication, and recovery
- Perform incident response in a cloud environment (Azure, AWS, etc.).
- Perform digital forensics investigations
- Research and analyze tactics, techniques, and procedures (TTPs) used by malicious actors
- Perform hunt-evil and find-evil activities for proactively detecting attacks
- Work closely with our in-house red team, CTI, and cyber architect teams
- Work closely with worldwide companies, CISOs, and technology experts
Qualifications
- 3 years of experience as a DFIR team member
- Experience with performing digital forensics in a cloud environment
- Experience with performing digital forensics of Windows-based and/or Linux-based platforms, network forensics, and analysis
- Thorough understanding of threat hunting models, as well as cyber threat intelligence, including TTP and IoCs extraction and mapping
- Experience with research and data analysis of large DBs via Splunk, Elasticsearch, SQL, or VQL
- Strong understanding of targeted attacks; able to create customized tactical remediation plans
- Good written and verbal English communication skills
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
0
0
0
Tags: AWS Azure Cloud DFIR Elasticsearch Forensics Incident response Linux Red team SaaS Splunk SQL Threat intelligence TTPs Windows
Region:
Middle East
Country:
Israel
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Information Security Specialist jobsPenetration Tester jobsSenior Cyber Security Engineer jobsSenior Cybersecurity Engineer jobsInformation Security Officer jobsInformation Systems Security Officer jobsPrincipal Security Engineer jobsSenior Network Security Engineer jobsInformation System Security Officer jobsCloud Security Architect jobsChief Information Security Officer jobsSenior Penetration Tester jobsStaff Security Engineer jobsSecurity Specialist jobsSecurity Consultant jobsCyber Security Specialist jobsIT Security Engineer jobsSenior Information Security Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Product Security Engineer jobsCybersecurity Consultant jobsSenior Information Security Engineer jobsInformation System Security Officer (ISSO) jobsThreat Intelligence Analyst jobs
SaaS jobsSDLC jobsMalware jobsEncryption jobsRMF jobsForensics jobsSQL jobsGDPR jobsIPS jobsSplunk jobsIDS jobsTop Secret jobsEDR jobsFinance jobsDoDD 8570 jobsTerraform jobsBash jobsITIL jobsOWASP jobsCRISC jobsUNIX jobsGIAC jobsDocker jobsCompTIA jobsIntrusion detection jobs
TCP/IP jobsBanking jobsSANS jobsThreat detection jobsData Analytics jobsActive Directory jobsPolygraph jobsCCSP jobsOSCP jobsClearance Required jobsCyber defense jobsVPN jobsIT infrastructure jobsJavaScript jobsSOC 2 jobsAnsible jobsSOX jobsDNS jobsSOAR jobsJira jobsGCIH jobsSecurity strategy jobsOracle jobsNIST 800-53 jobsCryptography jobs