Job description
ZeroFox is a leading external cybersecurity company that provides enterprises with a comprehensive platform to protect against threats outside the perimeter.
We combine artificial intelligence with human expertise to deliver advanced threat intelligence, digital risk protection, and adversary disruption.
We are seeking a highly motivated and experienced Threat Research Analyst to join our team in Bengaluru, India.
This role will be crucial in expanding our understanding of the evolving threat landscape, with a specific focus on phishing and online scams.
The ideal candidate will possess a deep analytical mindset, a passion for dissecting attacker methodologies, and a proven track record in cyber threat research.
The Threat Research Analyst will be responsible for in-depth investigation into the Tactics, Techniques, and Procedures (TTPs) employed by threat actors in phishing and online scam campaigns.
You will contribute to the development of actionable intelligence, propose innovative detection strategies, and support efforts to disrupt malicious activities.
Based in our Product team, this role requires a proactive approach to threat hunting and a commitment to staying ahead of emerging online threats.
Competitive compensation Community-driven culture with employee events Generous time off Best-in-class benefits Fun, modern workspace Respectful and nourishing work environment, where every opinion is heard and everyone is encouraged to be an active part of the organizational culture Experience: Minimum of 5-7 years of experience in a dedicated cyber threat intelligence, threat research, or security analyst role, with a strong focus on phishing, fraud, or online scams.
Proven experience in analyzing complex threat data and identifying patterns and trends.
Technical Skills: Strong understanding of common attack vectors, malware types, and network protocols.
Proficiency in OSINT techniques and tools for gathering and analyzing publicly available information.
Familiarity with threat intelligence frameworks (e.
g., MITRE ATT&CK, Cyber Kill Chain, Diamond Model).
Experience with threat intelligence and security operations toolsets.
Intermediate to advanced scripting skills (e.
g., Python, PowerShell) for data analysis and automation are highly desirable.
Knowledge of email security protocols (SPF, DKIM, DMARC) and their role in combating phishing.
Understanding of web technologies (HTML, CSS, JavaScript) and how they are exploited in online scams.
Analytical & Soft Skills: Exceptional analytical and critical thinking skills with the ability to connect disparate pieces of information to form a coherent threat picture.
Strong problem-solving abilities and a meticulous attention to detail.
Excellent written and verbal communication skills, with the ability to convey complex technical information clearly and concisely to diverse audiences.
Ability to work independently and as part of a collaborative team in a fast-paced environment.
High degree of curiosity and a continuous learning mindset to keep up with the rapidly evolving threat landscape.
Educational Background Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Information Security, or a closely related technical field.
Equivalent vocational experience in these areas will be considered.
Relevant industry certifications such as Certified Threat Intelligence Analyst (CTIA), CompTIA Security+, GIAC GCTI (GIAC Cyber Threat Intelligence), or similar, are highly preferred.
A Master's degree in a related field is a plus.
This job post has been translated by AI and may contain minor differences or errors.
