Incident Response (IR) / Security Engineer

MWDN connects exceptional tech talent with leading companies across Israel, the USA, Great Britain, and Western Europe. We aim to ensure our employees enjoy a rewarding and secure experience while collaborating with prestigious international clients.

Why does MWDN rock?:

Here’s what you can expect when you get employed by MWDN:

• Security first. We vet our clients to eliminate risks, ensuring reliability and timely payments for your hard work—no fraud or unforeseen events here!
• Career support. If a match isn't right, we're here for you. We actively assist our employees in finding new opportunities that fit their skills and aspirations.
• Legal assistance. We provide guidance on legal matters (e.g., opening and administering your private entrepreneur account, taxes, etc.).
• Professional development. We offer English courses and other engaging activities, including team-building events.
  
  

Why choose us? MWDN is ranked among the top 5 IT employers in our region by DOU, and we pride ourselves on our transparency and commitment to our team. Curious to learn more? Discover what our employees say about us in their DOU reviews: MWDN reviews.

What is your new project?:

Domain: Cybersecurity

Location: Israel

Company size: 10-20

Founded in: 2025

What makes this project exciting?:

We are seeking a highly skilled and experienced Incident Response (IR) / IDFR Specialist to join our security team. This role is critical and requires deep hands-on expertise in incident response, detection, and forensics, with a strong emphasis on Elastic EDR.

The ideal candidate will be capable of leading and executing complex security investigations, responding to active incidents, and supporting advanced detection and response operations in enterprise environments.

What Makes You a Great Fit

• Relevant security certifications (e.g., GCIH, GCFA, GCED, GCIA, CISSP, or similar)
• Experience with threat hunting and detection engineering
• Familiarity with MITRE ATT&CK framework
• Experience working in enterprise or large-scale environments
• Nice to Have:
• Experience with additional EDR/XDR platforms
• Cloud security investigation experienceScripting or automation skills (Python, Bash, etc.)
  
  

Importance Of The Role

This is a mission-critical position. The successful candidate will play a key role in protecting the organization from advanced threats and ensuring rapid, effective response to security incidents.

Your Day-to-day In This Position

• Lead and execute incident response activities, including detection, analysis, containment, eradication, and recovery
• Perform advanced digital forensics and root cause analysis across endpoints and environments
• Act as a subject-matter expert for Elastic EDR, including investigation, tuning, and optimization
• Analyze security alerts, logs, and telemetry to identify malicious activity
• Develop and improve detection logic, response playbooks, and investigation workflows
• Support IDFR operations, including threat hunting and proactive investigations
• Collaborate with SOC, security engineering, and IT teams during incidentsProduce clear incident reports, timelines, and post-incident recommendations
• Participate in on-call or high-severity incident handling as required
  
  

Why work with us?:

• People-oriented management without bureaucracy
• The friendly climate inside the company is confirmed by the frequent comeback of previous employees
• Flexible working schedule
• Free English classes with native speakers
• Dedicated HR
  
  

Our Next Steps

✅ Intro call with a Recruiter — ✅ Client interview — ✅ Offer