Incident Response Analyst

Fortinet · Tel Aviv, Israel · Digital Forensics and Incident Response

mid Security Analyst ic 2+ yrs · Posted Nov 16, 2025
AI Summary
Incident Response Analyst investigating workspace security incidents (email, browser, cloud), handling customer requests, building detections for new attack types, and collaborating with development teams. Requires 2+ years incident response/SOC experience, strong understanding of phishing, malware, email protocols (SMTP, SPF/DKIM/DMARC), SQL/SPL/KQL querying, and scripting language familiarity.
Upgrade to Pro to unlock AI summaries →

Join Fortinet, a cybersecurity pioneer with over two decades of excellence, as we continue to shape the future of cybersecurity and redefine the intersection of networking and security. At Fortinet, our mission is to safeguard people, devices, and data everywhere. We are currently seeking a dynamic Incident Response Analyst

to contribute to the success of our rapidly growing business.

 

As an Incident Response Analyst, you will:

  • Investigate and respond to workspace security incidents (Email & Browser Security & Cloud)
  • Handle investigation requests submitted by customers
  • Build and improve detections based on new attack types, tactics, companies and trends
  • Collaborate with development and research teams to provide incident-driven insights, report bugs, and improve product quality
  • Write professional blog posts based on incident investigations and attack trends, contributing to the company’s research-driven content and public visibility
  • Work in rotating shifts as part of a 24/7 operation (including nights, weekends, and holidays)

We Are Looking For:

An insightful and influential collaborator to join our team. We encourage you to apply for this position if you have the following qualities:

 

  • At least 2 years of experience in an Incident Response or Security Operation roles
  • Strong understanding of attack vectors, including Phishing, BEC, Email spoofing and impersonation techniques, Malware, ATO and more
  • Knowledge of email protocols and security concepts: SMTP, SPF/DKIM/DMARC, headers, authentication methods
  • Strong querying skills using SQL, SPL, KQL or AQL 
  • Good knowledge with Static & Dynamic techniques 
  • Familiarity with and understanding of code and scripting languages such as Python, JavaScript, Visual Basic, or similar — with the ability to read, interpret, and analyze potentially malicious scripts
  • Excellent written and verbal communication in English
  • Team player with a proactive, ownership-driven approach

 

 

 

 

Why Join Us:

 

At Fortinet, we embrace diversity and inclusivity. We encourage applications from diverse backgrounds and identities. Explore our welcoming work environment designed for a rewarding career journey with an attractive Total Rewards package to support you with your overall health and financial well-being. Join us in bringing solutions that make a meaningful and lasting impact to our 660,000+ customers around the globe.

 

We will only notify shortlisted candidates.

Fortinet will not entertain any unsolicited resumes, please refrain from sending them to any Fortinet employees or Fortinet email aliases. Should any Agency submit any resumes to Fortinet, these resumes if considered, will be assumed to have been given by the Agency free of any related fees/charges.

 

All security jobs security in Tel Aviv, Israel Jobs in Tel Aviv, Israel security salaries security career path
All Fortinet Jobs Browse security roles mid positions