Incident Response Associate

OPPORTUNITY OVERVIEWZeroFox seeks an Incident Response Associate to leverage their experience and skills to deliver cybersecurity guidance and services to customers who are preparing and responding to cyber incidents. In this role, you will use your deep understanding of both existing and emerging threat actors, as well as experience identifying rapidly changing tools, tactics and procedures of attackers. To be successful, you will be skilled at responding to cybersecurity incidents under tight deadlines and be able to explain technical concepts to a non-technical audience. If you’re passionate about cyber security, digital investigations and continuous learning and you possess sound business judgment, strong consulting skills, and current technical skills, this might be a great opportunity for you! As an Incident Response Associate, you will join the ZeroFox Services team, a group of highly skilled individuals working to respond to customers experiencing security incidents. Using our proprietary platform, this role focuses on supporting our Public Sector team by identifying and conducting detailed analysis of cyber risks. Your goal: find the real-time information that will impact our customers, identifying risks and applying the appropriate escalation path.

Role and responsibilities

• Investigate network intrusions and other cybersecurity incidents to understand the cause and extent of the breach.
• Perform host-based and network-based analysis across all major operating systems and network device platforms.
• Produce high-quality oral and written work products based on analysis.
• Assist with internal practice development and training initiatives.
• Perform malware analysis. 
• Develop and refine policies and procedures for forensic and malware analysis.
• Conduct technical investigations including acquisition, triage, and analysis
• Deploy security tools to assist with detecting, responding, containing, and remediating threats.

Required qualifications and skills

• Strong written and oral communication skills; comfortable with providing briefings and presentations. 
• Ability to solve problems in fast-paced situations and implement countermeasures.
• Experience writing detections and perform threat hunting using EDR and SIEM technologies. 
• Experience with scripting and command-line tools.
• Familiarity with the MITRE ATT&CK framework.
• Ability to provide after-hours support as needed.

Desired qualifications and skills

• Security related certifications preferred (GIAC GCIH, GCFA, CISSP, CEH, etc.)
• SIREN Certification highly preferred
• Hands-on experience in digital forensics and incident response, typically obtained in 1-3 years of experience

Benefits

• Competitive compensation
• Community-driven culture with employee events
• Generous time off 
• Best-in-class benefits
• Fun, modern workspace
• Respectful and nourishing work environment, where every opinion is heard and everyone is encouraged to be an active part of the organizational culture

Interested?

• Ready to apply? Visit us at https://www.zerofox.com/careers to find out more and join the best team in the security industry.
• Not ready to apply? Email careers_at_zerofox_dot_com to speak with a member of the team!

Other Information

• This role is based out of our office in Bengaluru
• This role requires occasional work on nights and weekends as needed

ABOUT ZEROFOXZeroFox’s mission is clear: we protect customers - their data, their assets and their people - across the internet. Through AI-powered technology, global intelligence collection and services provided by a team of expert analysts and threat hunters, we give customers the protection and intelligence needed to disrupt a new era of attacks on the surface, deep and dark web. Now is a great time to join the Fox Den: we recently announced our intent to become a publicly traded company via a merger with L&F Acquisition Corp. and were named a Top Workplace by the Baltimore Sun. With $150M+ in funding to date, recognition from Forrester as best-in-class in brand intelligence and numerous awards and honors, joining the ZeroFox team means joining a culture that is committed to excellence and growth. That means committing to the success of each of our employees so you can be the best version of yourself on the best team. If you’re ready to join a team that is mission-oriented, customer-focused, collaborative and dedicated, you’ve come to the right place.
Equal Opportunity, Diversity & InclusionWe aim to build a team that represents a variety of backgrounds, perspectives, and skills. We embrace inclusion and ensure equal employment opportunity without discrimination or harassment based on race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, age, disability, national origin, marital or domestic/civil partnership status, genetic information, citizenship status, military or veteran status, or any other personal characteristic.