Expoint - all jobs in one place

מציאת משרת הייטק בחברות הטובות ביותר מעולם לא הייתה קלה יותר

Limitless High-tech career opportunities - Expoint

CheckPoint Incident Response Analyst 
Israel, Tel Aviv District, Tel Aviv-Yafo 
963287745

01.09.2024

Join Check Point’s dynamic team as an Incident Response Analyst where you will play a critical role in managing and mitigating cybersecurity incidents for our clients.

Key Responsibilities
  • Responsible for daily incident management of customer incidents
  • Perform incident response and forensic analysis of compromised systems, identify and provide recommendations for remediation
  • Formulate and direct incident response efforts, prioritize those response efforts, and create legible incident reports that describe the compromise vector, attacker methodologies, and artifacts
  • Manage complicated global incidents
  • Build incident response plans and playbooks
  • Create detailed incident reports for customers
  • Build sandbox/test lab environments to evaluate malicious code
  • Provide solutions for Security Orchestration leveraging API, Open Source, Python, Bash, or PowerShell where applicable
  • Work within a team environment and coordinate work actions
Qualifications
  • 2-5 years of experience performing incident response with an emphasis on system compromise analysis
  • 2-5 years of endpoint or network forensics
  • Experience performing security reviews/vulnerability risk assessments of network environments using both manual procedures and automated analysis tools
  • Experience with the TCP/IP protocol suite, security architecture, and remote access security techniques/products
  • Experience with enterprise security solutions, virus outbreak management, and the ability to differentiate virus activity from directed attack patterns
  • Experience leveraging APIs or scripting solutions
  • Some form of administration or development work for mission-critical security systems
  • Ability to participate in on-call rotation
  • Domestic and international travel may be required