Threat Research Analyst

ZeroFox is seeking a highly motivated and experienced Threat Research Analyst to join our team in Bengaluru, India. This crucial role will expand our understanding of the evolving threat landscape, with a specific focus on phishing and online scams. The ideal candidate possesses a deep analytical mindset, a passion for dissecting attacker methodologies, and a proven track record in cyber threat research.

As a Threat Research Analyst on our Product team, you will conduct in-depth investigations into the Tactics, Techniques, and Procedures (TTPs) used by threat actors in phishing and online scam campaigns. You will contribute to actionable intelligence, propose innovative detection strategies, and support efforts to disrupt malicious activities. This role demands a proactive approach to threat hunting and a commitment to staying ahead of emerging online threats.

Requirements

Experience

• Minimum of 5-7 years in a dedicated cyber threat intelligence, threat research, or security analyst role, with a strong focus on phishing, fraud, or online scams.
• Proven experience analyzing complex threat data and identifying patterns and trends.

Technical Skills

• Strong understanding of common attack vectors, malware types, and network protocols.
• Proficiency in OSINT techniques and tools for gathering and analyzing publicly available information.
• Familiarity with threat intelligence frameworks (e.g., MITRE ATT&CK, Cyber Kill Chain, Diamond Model).
• Experience with threat intelligence and security operations toolsets.
• Intermediate to advanced scripting skills (e.g., Python, PowerShell) for data analysis and automation are highly desirable.
• Knowledge of email security protocols (SPF, DKIM, DMARC) and their role in combating phishing.
• Understanding of web technologies (HTML, CSS, JavaScript) and their exploitation in online scams.

Analytical & Soft Skills

• Exceptional analytical and critical thinking skills with the ability to connect disparate pieces of information to form a coherent threat picture.
• Strong problem-solving abilities and meticulous attention to detail.
• Excellent written and verbal communication skills, with the ability to convey complex technical information clearly and concisely to diverse audiences.
• Ability to work independently and collaboratively in a fast-paced environment.
• High degree of curiosity and a continuous learning mindset to keep up with the rapidly evolving threat landscape.

Educational Background

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Information Security, or a closely related technical field. Equivalent vocational experience will be considered.
• Relevant industry certifications such as Certified Threat Intelligence Analyst (CTIA), CompTIA Security+, GIAC GCTI, or similar, are highly preferred.
• A Master's degree in a related field is a plus.

Benefits

• Competitive compensation
• Community-driven culture with employee events
• Generous time off
• Best-in-class benefits
• Fun, modern workspace
• Respectful and nourishing work environment, where every opinion is heard and everyone is encouraged to be an active part of the organizational culture