Fortinet Incident Response Analyst 

Israel, Tel Aviv District, Tel Aviv-Yafo 

656228774

As an Incident Response Analyst, you will:

• Investigate and respond to workspace security incidents (Email & Browser Security & Cloud)
• Handle investigation requests submitted by customers
• Build and improve detections based on new attack types, tactics, companies and trends
• Collaborate with development and research teams to provide incident-driven insights, report bugs, and improve product quality
• Write professional blog posts based on incident investigations and attack trends, contributing to the company’s research-driven content and public visibility
• Work in rotating shifts as part of a 24/7 operation (including nights, weekends, and holidays)

An insightful and influential collaborator to join our team. We encourage you to apply for this position if you have the following qualities:

• At least 2 years of experience in an Incident Response or Security Operation roles
• Strong understanding of attack vectors, including Phishing, BEC, Email spoofing and impersonation techniques, Malware, ATO and more
• Knowledge of email protocols and security concepts: SMTP, SPF/DKIM/DMARC, headers, authentication methods
• Strong querying skills using SQL, SPL, KQL or AQL
• Good knowledge with Static & Dynamic techniques
• Familiarity with and understanding of code and scripting languages such as Python, JavaScript, Visual Basic, or similar — with the ability to read, interpret, and analyze potentially malicious scripts
• Excellent written and verbal communication in English
• Team player with a proactive, ownership-driven approach