Security Incident Response Analyst

Radware is a global leader of cyber security and application delivery solutions for physical, cloud, and software defined data centers.

At Radware, we live and breathe cybersecurity. It is our passion. Each day, our international team works to earn the trust of more than 12,500 organizations around the globe. Keeping them safe is our mission. To that end, we go head-to-head with politically motivated hacktivists, dangerous nation-state threat actors and other notorious cyber attackers -these are not your average adversaries. Backed by nearly 30 years of experience, Radware is best known for its technical excellence and innovative network and application security solutions. That is why it is so important that we build our team with bold and bright talent.

What is the job:
The Radware Emergency Response Team (ERT) is located around the world, and operates globally, providing 24/7/365 support coverage and attack mitigation.

Radware ERT includes experts in the area of network threats, Application Security, Denial-of-Service attacks, with hands-on experience and skills to detect and mitigate attacks in real-time, assist customers, and operate Radware's security solutions.

The Senior Security Analyst will run complex security analysis against real Layer3 - Layer7 attack vectors using various tools, technologies and techniques. Assessing and responding to Application Security threats and Low-level networking threats. Providing security support and guidance to customers during strategic projects and security events. Supporting and guiding lower security Tiers and collaborating with peers and stakeholders world-wide.

What will you do?

• Hands-on analysis and research of Layer3 - Layer7 attack vectors in the area of network threats.
• Investigating complex security events, gathering and assessing data from multiple sources, and providing clear picture of conclusion.
• Analyzing PCAPs, logs, forensics and artifacts and using various mitigation devices.
• Using investigation tools & data sources such as Wireshark, Kibana, Grafana, BigQuery, and much more.
• Using SQL and different dialects to query large datasets containing HTTP transactions, security logs, network captures, etc.
• Developing and maintaining scripts & automations to accelerate reoccurring tasks and projects.
• Reviewing & assessing security policies of customers and providing insights and reports.
• Supporting and guiding customers during SAAS onboarding projects and security architecture meetings.
• Leading & supporting the teams as part of the IR during security incidents and escalations.
• As a Senior member, taking part as a trainer in security & cloud training to junior members.
• Collaborating with global peers & stakeholders.
• The position requires rotational Friday morning shifts

What you need:

• At least 3 years experience in the area of security analysis & security engineering.
• Deep knowledge in networking, specifically OSI model Layer3 - Layer7 protocols such as TCP, UDP, TLS, DNS, HTTP, VOIP.
• Hands-on experience and deep knowledge in PCAP investigation via Wireshark.
• Hands-on experience and deep knowledge in operating network security controllers, such as IDS/IPS, FW, WAF including logs and forensics analysis.
• Hands-on experience and deep knowledge in AppSec, Low-level network threats, API threats, DDoS and Botnets.
• Can-do attitude, customer-facing, accountable, positive attitude, and time management skills.
• Emphasis on service & customer orientation.
• Excellent communication skills & excellent English (speaking, reading, and writing).

Ability to support the following:

• Advantage - BGP protocol, Routing & Switching, BigQuery for querying data, Cloud GCP & AWS experience, Sysadmin/Devops experience.
• Advantage - Computer Science or related fields, Networking & Security Certifications.

Why you should join us:
Employees from more than 40 countries have chosen Radware as a place where they can belong. Radware has been recognized by Glassdoor and BDI as one of the World's Best Places to Work, ranking among the top 100 companies across the globe in the IT category. Radware has also been named a Gold Winner for Application Security in the 2023 Globee Cybersecurity Awards, by Forrester a Leader in DDoS Protection, and has been named a Leader in WAF Market by Quadrant Knowledge Solutions. We are equally committed to our people. We strive to create a dynamic work environment that celebrates diversity, promotes equality, and thrives on the unique contributions of each individual. If you are ready to be part of a global-minded company that is inspired to create a better, safer future; and if and want to fight for the good guys and be at the forefront of helping companies protect their most critical assets from today's cyber adversaries, then you've found the right fit at Radware.

Primary Location
IL-IL-Tel Aviv

Work Locations
Radware Israel, Tel Aviv

Job
Cloud and Management