Threat Research Analyst

ZeroFox is actively seeking a highly motivated and experienced Threat Research Analyst to join our dynamic team in Bengaluru, Karnataka, India. This critical role focuses on expanding our understanding of the evolving threat landscape, with a particular emphasis on phishing and online scams. The ideal candidate will possess a strong analytical mindset, a passion for dissecting attacker methodologies, and a proven history of success in cyber threat research.

In this position, you will conduct in-depth investigations into the Tactics, Techniques, and Procedures (TTPs) employed by threat actors in phishing and online scam campaigns. Your contributions will be vital in developing actionable intelligence, proposing innovative detection strategies, and supporting efforts to disrupt malicious activities. As a member of our Product team, you will adopt a proactive approach to threat hunting and maintain a commitment to staying ahead of emerging online threats.

Requirements

• Experience: A minimum of 5-7 years of dedicated experience in cyber threat intelligence, threat research, or a security analyst role, with a significant focus on phishing, fraud, or online scams. Proven ability to analyze complex threat data, identify patterns, and discern trends is essential.
• Technical Skills: A strong understanding of common attack vectors, malware types, and network protocols. Proficiency in Open Source Intelligence (OSINT) techniques and tools for gathering and analyzing publicly available information. Familiarity with threat intelligence frameworks such as MITRE ATT&CK, Cyber Kill Chain, and the Diamond Model. Experience with threat intelligence and security operations toolsets. Intermediate to advanced scripting skills in languages like Python or PowerShell for data analysis and automation are highly desirable. Knowledge of email security protocols (SPF, DKIM, DMARC) and their role in combating phishing. Understanding of web technologies (HTML, CSS, JavaScript) and their exploitation in online scams.
• Analytical & Soft Skills: Exceptional analytical and critical thinking skills are required, with the ability to synthesize disparate information into a coherent threat picture. Strong problem-solving abilities and meticulous attention to detail are paramount. Excellent written and verbal communication skills are necessary to convey complex technical information clearly and concisely to various audiences. The ability to work independently and collaboratively within a fast-paced team environment is crucial. A high degree of curiosity and a continuous learning mindset are vital for staying current with the rapidly evolving threat landscape.
• Educational Background: A Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Information Security, or a closely related technical field is required. Equivalent vocational experience in these areas will be considered. Relevant industry certifications such as Certified Threat Intelligence Analyst (CTIA), CompTIA Security+, GIAC GCTI, or similar are highly preferred. A Master's degree in a related field is considered a plus.

Benefits

• Competitive compensation package
• Community-driven culture with regular employee events
• Generous time off policy
• Best-in-class employee benefits
• A fun, modern workspace
• A respectful and nourishing work environment where every opinion is valued and everyone is encouraged to be an active participant in the organizational culture.