DFIR Team Leader

Herzliya, Full-time


CYE is looking for a blue team leader with extensive technical and business experience to lead our Digital Forensics and Incident Response team. The DFIR Team Leader will act as the professional point of contact for customers and as an internal expert for the team members.


  • Lead incident response, proactive engagements and crisis management
  • Proactively assess and develop information security and incident response programs to help improve the security posture of organizations prior to an incident
  • Produce high-quality written and verbal reports, presentations, recommendations, and findings to provide to customer management
  • Perform digital forensics host-based forensics on multiple platforms, including Windows, Linux, macOS, Android and iOS
  • Perform network-based, malware and cyber threat intelligence analyses
  • Lead future mentoring and training programs for the new, high performing IR team


  • At least 5+ years of experience in DFIR
  • Experience conducting or managing incident response investigations for organizations
  • Strong understanding of targeted attacks
  • Able to create customized tactical and strategic remediation plans for compromised organizations
  • Extensive understanding of secure network architecture and performing network operations
  • Perform Digital forensics of Windows-based and Linux-based platforms, as well as network forensic and analysis
  • Thorough knowledge of threat hunting models, as well as cyber threat intelligence, including TTPs and IoCs extraction and mapping
  • Highly proficient in static and dynamic malware analysis
  • Perform reverse engineering
  • Experience in coding in at least two of the following: Python, C, C++, PowerShell, Bash, Go
  • Ability to travel on short notice
All openings

Apply for this opening