Overview

DFIR Specialist Jobs in Haifa District, Israel at Elbit Systems Israel

Title: DFIR Specialist

Company: Elbit Systems Israel

Location: Haifa District, Israel

We are looking for

For our site in Haifa/Rehovot, we are looking for an Incident Responder – DFIR Specialist to join a dynamic cybersecurity team in the GO division.

You will be at the forefront of defending the organization against cyber threats – investigating security incidents, performing deep-dive forensic analysis, and developing actionable response and remediation plans. Your work will directly impact the digital resilience of a leading defense organization, shaping its detection and response capabilities.

Come be part of a team that tackles real-world challenges in an advanced technological environment where every action carries meaning.

In this role you will

Investigate and analyze security incidents to determine scope, impact, and root cause

Perform Threat Hunting across internal and external data sources to identify malicious activity

Conduct digital forensics on systems, including memory and host-based analysis

Develop and implement incident response playbooks and remediation strategies

Collaborate with cross-functional teams to contain and remediate threats

Design and recommend defensive measures to prevent future attacks

Stay current with evolving attacker TTPs (Tactics, Techniques, and Procedures)

Participate in an incident response on-call rotation approximately once every four weeks

Requirements

At least 4 years of hands-on experience in Incident Response, Threat Hunting, Digital Forensics, and Security Monitoring

Strong understanding of networking concepts and advanced network traffic analysis

Proven ability to lead and coordinate incident response efforts across teams

Deep knowledge of system forensics, including memory and host-based analysis

Excellent communication skills with the ability to convey complex technical issues clearly

Experience working in large-scale enterprise environments with complex security challenges

Experience with cloud security practices in AWS and Azure environments; AWS Security Specialty and/or Azure Security Engineer Associate certification – advantage

Proficiency in scripting languages (Python, Bash, PowerShell) for automation and tooling – advantage

*Only relevant applications will be answered

#Haifa

Apply

Upload your CV/resume or any other relevant file. Max. file size: 800 MB.