Digital Forensic and Incident Response (Cybersecurity)

TL;DR

Digital Forensic and Incident Response Engineer (Cybersecurity): Managing the incident response lifecycle and digital forensics to mitigate cyber threats with an accent on cloud environments and proactive threat hunting. Focus on analyzing TTPs, conducting "hunt-evil" activities, and creating tactical remediation plans for targeted attacks.

Location: Hybrid (Herzliya, Israel)

Company

hirify.global helps security and risk leaders gain a clear, defensible view of their cyber exposure grounded in financial impact and real-world attack paths.

What you will do

• Perform the full incident response lifecycle, including detection, analysis, containment, eradication, and recovery.
• Conduct digital forensics investigations within cloud environments (Azure, AWS) and across Windows and Linux platforms.
• Research and analyze tactics, techniques, and procedures (TTPs) utilized by malicious actors.
• Execute proactive threat hunting ("hunt-evil") activities to detect attacks before they escalate.
• Collaborate closely with internal red team, CTI, and cyber architect teams.
• Engage with global companies, CISOs, and technology experts to resolve cyber crises.

Requirements

• 2-3 years of professional experience as a DFIR team member.
• Hands-on experience performing digital forensics in cloud environments.
• Proficiency in Windows-based and Linux-based platform forensics and network analysis.
• Deep understanding of threat hunting models, cyber threat intelligence, TTP, and IoC mapping.
• Experience analyzing large datasets using Splunk, Elasticsearch, SQL, or VQL.
• English: Good written and verbal communication skills required.