CrawlJobs Logo

Incident Responder

Israel, Tel Aviv · Job Posted December 13, 2025

Job offer has expired

Job Link Share

Job Description

Wiz is looking for an experienced Incident Responder to join our newly established team and spread the power of Wiz! Come join the company that is reinventing cloud security and empowering businesses to thrive in the cloud. As the fastest-growing startup ever, Wiz is on a mission to help organizations secure cloud environments that will accelerate their businesses.

Job Responsibility

  • Investigate real-world cyber-attacks on customers’ cloud environments and cloud workloads, understanding their root causes and the full scope of compromise, leveraging the Wiz platform
  • Perform proactive threat hunting to identify undetected cyber-attacks and cloud threats within customer environments
  • Collaborate with customer teams during engagements to effectively respond to threats
  • Develop and deliver professional engagement reports, including high-level summaries and deep dives into technical findings
  • Develop and document incident response methodologies, best practices, and standard operating procedures tailored to cloud environments and cloud workloads
  • Collaborate with the threat research and engineering groups to refine and enhance incident response detections, tools, and features, based on real-world investigation experiences

Requirements

  • 5+ years of experience in cyber-security, cyber-incident response, and threat hunting
  • Solid foundation in Cloud Security, with familiarity in cloud services, Kubernetes, cloud architecture, and major providers (AWS, GCP, Azure)
  • In-depth knowledge of OS internals for both Windows and Linux
  • Strong analytical skills with a keen attention to detail
  • Experience with scripting languages and querying languages
  • Excellent communication skills, both verbal and written, in Hebrew and English
  • Passion to solve any problem and to thrive as an independent and innovative Incident Responder
  • Applicants must have the legal right to work in the country where the position is based, without the need for visa sponsorship

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Similar Jobs for

Incident Responder

8 matching positions

Senior Incident Responder (Advanced IR & Forensics)

We are currently seeking a Senior Incident Responder (Advanced IR & Forensics) R...
Location
Location
United States , Plano
Salary
Salary:
106000.00 - 142000.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 10+ years of experience in incident response, digital forensics, or threat hunting
  • Proven leadership in handling enterprise-scale or breach-level incidents
  • Experience working with legal, compliance, and external response teams
  • Advanced digital forensics and malware analysis
  • Threat hunting and adversary emulation
  • Detection engineering and playbook development
  • Executive communication and decision support
  • GIAC GCFA
  • GIAC GREM
  • GIAC GNFA
Job Responsibility
Job Responsibility
  • Lead response for critical incidents including ransomware and APTs
  • Perform advanced disk, memory, and malware forensics
  • Reconstruct full attack lifecycles and assess business impact
  • Drive threat hunting and proactive detection improvements
  • Develop and enhance IR playbooks, detection rules, and response strategies
  • Lead post-incident reviews and continuous improvement initiatives
What we offer
What we offer
  • Medical, dental, and vision insurance with an employer contribution
  • Flexible spending or health savings account
  • Life and AD&D insurance
  • Short and long term disability coverage
  • Paid time off
  • Employee assistance
  • Participation in a 401k program with company match
  • Additional voluntary or legally-required benefits
  • Fulltime
Read More
Arrow Right

Cloud Incident Responder (Vice President)

At Citi, we get to connect millions of people across hundreds of cities and coun...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years of relevant experience in Cloud Security and/or Incident Response
  • Demonstrated technical expertise and genuine interest in Cloud security-focused services, tools, technologies and wider ecosystem
  • Hands-on experience with security constructs and incident response within SaaS/PaaS offerings — specifically Snowflake, MongoDB, and M365 Security — including monitoring, threat detection, and response capabilities within these platforms
  • Problem-solving capabilities with a strong understanding of security incident response processes, excellent technical documentation skills, and proven analytical skills to tackle novel, complex security challenges
  • Experience with any log aggregation & analytics tools such as Splunk, Sentinel, Chronicle and understanding of specific logging/auditing features of Snowflake, MongoDB, and M365
  • Security Tooling Experience with Aquasec, Wiz, AppOmni or similar cloud-native security platforms is a strong advantage
  • Ability to operate independently with minimal oversight when dealing with technical analysis
  • Relevant cloud focused certifications and accreditations are preferable, but not mandatory
  • Bachelor’s degree/University degree or equivalent experience
  • Master’s degree preferred
Job Responsibility
Job Responsibility
  • Perform incident response functions including but not limited to: Detailed cloud-focused investigations by analyzing logs from CSPs, Snowflake, MongoDB, and M365 security platforms
  • Orchestrating the execution of automation to gather forensic artifacts (memory, disk, cloud resource configurations) for in-depth analysis
  • Implementing and overseeing cloud-native automation for decisive resource containment actions across compromised environments, including data platforms
  • Conducting advanced host-based and cloud-native analytical functions (digital forensics, metadata analysis) to proactively uncover Indicators of Compromise (IOCs) and Tactics, Techniques and Procedures (TTPs)
  • Ensuring meticulous documentation capturing the Who, What, When, Where, Why and How of each incident, with a focus on actionable insights
  • Architect, refine, and champion cutting-edge incident response playbooks that proactively address emerging threats across cloud, SaaS, PaaS, and M365 ecosystems, driving operational excellence and swift resolution
  • Take ownership for and innovate the development of new automation capabilities and supporting playbooks across assigned cloud and enterprise SaaS/PaaS domains, fostering a culture of continuous improvement
  • Collaborate strategically with application and infrastructure stakeholders to identify key components and information sources — cloud environments, instances, middleware, applications, databases (Snowflake, MongoDB), M365 logs — influencing security architecture decisions
  • Engage with global multidisciplinary groups for triaging, defining scope, and investigating large-scale security incidents impacting diverse cloud and enterprise systems, acting as a central coordinator and trusted advisor to the CISO business function
  • Actively participate in threat modeling of new services and capabilities, readiness exercises such as purple team, tabletops, and CTFs — especially those involving cloud data, Snowflake, MongoDB, and M365 security scenarios — sharing expertise and influencing strategy
  • Fulltime
Read More
Arrow Right

Cybersecurity Incident Responder

We are currently seeking a Cybersecurity Incident Responder to join our team in ...
Location
Location
United States , Fort Bragg
Salary
Salary:
90146.00 - 150244.00 USD / Year
nttdata.com Logo
NTT DATA
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 7 years' of professional experience
  • Minimum 4 years' of experience in cybersecurity, help desk, system administration, SOC, or IR
  • Minimum 1 year of experience in Incident Response lifecycle (Preparation, Identification, Containment, Eradication, Recovery, Lessons Learned)
  • Minimum 1 year of experience in Email phishing investigations
  • Minimum 1 year of experience with one or more: Splunk and Elastic for Cloud, Endpoint Detection & Response (EDR) tools, Antivirus platforms, Vulnerability scanners (ACAS), ServiceNow, Remedy or similar ticketing systems
  • DoD 8570/8140 certification: CompTIA Security+ CE
  • Top Secret Security Clearance, SCI eligible
Job Responsibility
Job Responsibility
  • Detecting, analyzing, containing, eradicating, and recovering from cybersecurity incidents across enterprise, endpoint, network, and cloud environments
  • Conducting investigations and responding to cybersecurity alerts and confirmed incidents across enterprise networks and cloud platforms such as AWS, Microsoft Azure, and Google Cloud
  • Executing containment actions on compromised systems or accounts
  • Supporting eradication and recovery efforts
  • Documenting all response activities through incident closure
  • Analyzing malware infections and responding to indicators of ransomware, trojans, spyware, and unauthorized software
  • Coordinating host containment and remediation actions such as antivirus or EDR scanning, reimaging, and evidence preservation
  • Managing spillage and data-loss events by containing and sanitizing affected systems
  • Coordinating reporting and remediation
  • Supporting insider-threat or data-exfiltration investigations
What we offer
What we offer
  • Medical, dental, and vision insurance with an employer contribution
  • Flexible spending or health savings account
  • Life and AD&D insurance
  • Short and long term disability coverage
  • Paid time off
  • Employee assistance
  • Participation in a 401k program with company match
  • Additional voluntary or legally-required benefits
  • Fulltime
Read More
Arrow Right

Cyber Incident Responder

Accenture’s Security Practice is one of the fastest growing areas of the busines...
Location
Location
Ireland , Dublin
Salary
Salary:
Not provided
accenture.com Logo
Accenture
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Manage and support end-to-end incident response investigations with Accenture’s customers
  • Identify and investigate intrusions to determine the cause and extent of the breach, by leveraging EDR, SIEM, and threat intelligence sources
  • Conduct host forensics, log analysis, network forensics, and malware analysis in support of incident response investigations
  • Conduct Threat Hunting across customer’s environments with indicators of compromise, hunting for evidence of suspicious behaviour
  • Conduct incident response within various Cloud platforms
  • Identify attacker tools, tactics, and procedures to develop indicators of compromise for CTI consumption
  • Work on proactive exercising and simulations, such as tabletops and purple teams
  • Work alongside the EMEA team in a follow-the-sun model for large engagements
  • Eligible for on-call responsibilities and meet SLAs for incoming incidents
  • Develop and implement remediation plans in conjunction with incident response
What we offer
What we offer
  • Comprehensive training covering business, technical and professional skills development
  • Opportunities to hone functional skills and expertise in Cyber Security
  • Integrated career counselling
  • Great opportunities for professional development and rapid advancement
  • Fulltime
Read More
Arrow Right
New

Staff Security Engineer, CSIRT

As a Staff Security Engineer within our CSIRT Team, you will be accountable for ...
Location
Location
Germany , Berlin
Salary
Salary:
Not provided
deliveryhero.com Logo
Delivery Hero
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of broad cybersecurity experience with a deep understanding of core security fundamentals, coupled with 5+ years of dedicated experience in a SOC or CSIRT environment
  • Proven track record acting as a Security Incident Commander
  • Mastery of the full incident lifecycle and hands-on playbook creation for complex, high-availability hybrid-cloud environments, distributed microservices, and platforms processing vast amounts of PII and payment data
  • Operational expertise with SIEM, EDR, Cloud Security platforms, SOAR, and WAF/DDoS protection solutions
  • Advanced proficiency in writing production-quality code (e.g., Python, Go, Rust) to build scalable in-house solutions
  • Hands-on experience securing and responding to incidents across public cloud platforms (AWS, GCP) and cloud-native technologies like Kubernetes, Docker, and Infrastructure-as-Code (e.g., Terraform)
  • Familiarity with Git/GitHub usage, CI/CD systems, and modern SecOps workflows
  • An exceptional communicator with the ability to influence cross-functional stakeholders
Job Responsibility
Job Responsibility
  • Incident Commander: Serve as the single accountable leader during active responses for high-severity incidents, directing investigative focus from detection through recovery while maintaining a calm and decisive demeanor under pressure
  • Post-Incident Reviews & Remediation: Lead blameless post-incident reviews to ensure continuous improvement, durable engineering solutions, and systemic resilience
  • Stakeholder Communication: Serve as the primary interface to stakeholders during critical security incidents, translating complex technical realities into clear risk, impact, and decision frameworks
  • Engineering-Led Response & Automation: Design and develop in-house solutions, automated workflows, and scalable systems to eliminate repetitive processes, reduce triage time, and continuously improve the overall quality and efficiency of our security incident response operations
  • Mentorship & Leadership: Act as a hands-on technical leader and role model, actively mentoring teams and individuals within your domain
  • Metrics & Strategic Visibility: Have a Data-Driven Strategic mindset to define, track, and improve core operational metrics (MTTD, MTTR) to identify systemic gaps and propose strategic, long-term security investments
  • Organizational Readiness & Tabletop Exercises: Proactively design and facilitate complex, realistic tabletop simulations and purple team engagements
  • On-Call: Participate in a predictable on-call rotation as an Incident Responder
What we offer
What we offer
  • Hybrid working model
  • 27 days holiday
  • 1.000 € Educational Budget
  • Language Courses
  • Parental Support
  • access to the Udemy Business platform
  • Health Checkups
  • Mindfulness and Gym & Bicycle Subsidy
  • Digital Meal Vouchers
  • Food Vouchers
  • Fulltime
Read More
Arrow Right
New

Senior Loss Prevention Officer

Patrol all areas of the property; assist guests with room access. Monitor Closed...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.marriott.com Logo
Marriott Bonvoy
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High school diploma or G.E.D. equivalent
  • No related work experience
  • No supervisory experience
  • None
Job Responsibility
Job Responsibility
  • Patrol all areas of the property
  • assist guests with room access
  • Monitor Closed Circuit Televisions, perimeter alarm system, duress alarms, and fire life safety system
  • Lock property entrances when required
  • Conduct daily physical hazard inspections
  • Respond to accidents, contact EMS or administer first aid/CPR as required
  • Assist guests/employees during emergency situations
  • Notify appropriate individuals in the event of accidents, attacks, or other incidents
  • Defuse guest/employee disturbances
  • Call for outside assistance if necessary
  • Fulltime
Read More
Arrow Right
New

Deputy Manager - Children's Residential Home (EBD)

Deputy Manager - Children's Residential (EBD) Location: Coventry (CV11) Salary: ...
Location
Location
United Kingdom , Coventry
Salary
Salary:
31680.00 - 40680.00 GBP / Year
brookstreet.co.uk Logo
Brook-St Hiredonline
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Level 3 Diploma in Residential Childcare (Essential)
  • Level 5 Diploma (or willingness to work towards)
  • Minimum 2 years' experience in a Children's Residential setting
  • EBD / Challenging Behaviour experience
  • Leadership or shift-leading experience
  • Strong knowledge of safeguarding & Ofsted requirements
  • Excellent communication and report writing skills
Job Responsibility
Job Responsibility
  • Support the day-to-day running of the home
  • Deputise in the absence of the Registered Manager
  • Lead shifts and supervise staff effectively
  • Conduct supervisions, appraisals and performance reviews
  • Support recruitment, onboarding and staff development
  • Promote a positive, high-performing team culture
  • Ensure safeguarding is embedded in all practices
  • Respond to incidents and concerns appropriately
  • Support care planning and placement reviews
  • Build strong, positive relationships with young people
What we offer
What we offer
  • £16.50 per hour + enhanced overtime rate
  • £45 per sleep-in
  • Career progression opportunities (Registered Manager pathway)
  • Funded training & qualifications
  • Supportive and experienced management team
  • Employee Assistance Programme
  • Fulltime
Read More
Arrow Right
New

Field Coordinator FS&T

Location
Location
Antarctica , McMurdo Station
Salary
Salary:
Not provided
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School diploma or GED
  • Four years of experience in any combination of the following: expedition outfitting in polar climates or high-altitude winter settings, National Park service positions, outdoor education, experience working with helicopters and fixed wing aircraft, and/or guiding services
  • Two of the four years’ experience must be working within logistics or supply
  • Wilderness First Responder certification
  • Incident Command System (ICS) 100 and 200 certifications
  • Previous experience in mountain/ski shop or maintenance of outdoor equipment
  • A proven ability to work in remote, harsh environmental, and as a team player
  • Computer competency with a proficiency in Microsoft Excel & Word
  • Willingness and ability to deploy to Antarctica for extended periods
  • Successful completion of Medical and Dental examinations required by the NSF for deployment to Antarctica
Job Responsibility
Job Responsibility
  • Maintains a safe workplace program and ensures that safety is the highest priority in the workplace
  • Complies with all ASC Environmental, Safety and Health (ESH), Waste Management and Quality Assurance requirements
  • Trains grantees and other USAP participants in the use of life-safety survival gear and field equipment stocked in the field center
  • Repairs, maintains, and cleans life-safety field equipment including specialty items
  • Facilitates the USAP Field Safety Training program at McMurdo Station providing detailed instruction on cold weather survival techniques, Risk Management, radio communications procedures, familiarization of surroundings, local weather, safe sea ice travel and basic first aid concepts
  • Participates as an auxiliary member of the Summer USAP Search and Rescue Team, engaged in all support training exercises and actual incident response deployments
  • Performs remote field support duties to NSF sponsored events as required
  • Maintains a field safety role focusing on risk assessment and management of field hazards
  • Ensures that daily communications and weather observations are reported
  • Supports the packing, prioritization, and loading and unloading of cargo from aircraft
  • Fulltime
Read More
Arrow Right