Incident Response Associate

**OPPORTUNITY OVERVIEW**
- ZeroFox seeks an Incident Response Associate to leverage their experience and skills to deliver cybersecurity guidance and services to customers who are preparing and responding to cyber incidents. In this role, you will use your deep understanding of both existing and emerging threat actors, as well as experience identifying rapidly changing tools, tactics and procedures of attackers. To be successful, you will be skilled at responding to cybersecurity incidents under tight deadlines and be able to explain technical concepts to a non-technical audience. If you’re passionate about cyber security, digital investigations and continuous learning and you possess sound business judgment, strong consulting skills, and current technical skills, this might be a great opportunity for you

**Role and responsibilities**:

- Investigate network intrusions and other cybersecurity incidents to understand the cause and extent of the breach.
- Perform host-based and network-based analysis across all major operating systems and network device platforms.
- Produce high-quality oral and written work products based on analysis.
- Assist with internal practice development and training initiatives.
- Perform malware analysis.
- Develop and refine policies and procedures for forensic and malware analysis.
- Conduct technical investigations including acquisition, triage, and analysis
- Deploy security tools to assist with detecting, responding, containing, and remediating threats.

**Required qualifications and skills**:

- Strong written and oral communication skills; comfortable with providing briefings and presentations.
- Ability to solve problems in fast-paced situations and implement countermeasures.
- Experience writing detections and perform threat hunting using EDR and SIEM technologies.
- Experience with scripting and command-line tools.
- Familiarity with the MITRE ATT&CK framework.
- Ability to provide after-hours support as needed.

**Desired qualifications and skills**:

- Security related certifications preferred (GIAC GCIH, GCFA, CISSP, CEH, etc.)
- SIREN Certification highly preferred
- Hands-on experience in digital forensics and incident response, typically obtained in 1-3 years of experience

**Benefits**:

- Competitive compensation
- Community-driven culture with employee events
- Generous time off
- Best-in-class benefits
- Fun, modern workspace
- Respectful and nourishing work environment, where every opinion is heard and everyone is encouraged to be an active part of the organizational culture

**Interested?**:
**Other Information**:

- This role is based out of our office in Bengaluru
- This role requires occasional work on nights and weekends as needed

**ABOUT ZEROFOX**
- ZeroFox’s mission is clear: we protect customers - their data, their assets and their people - across the internet. Through AI-powered technology, global intelligence collection and services provided by a team of expert analysts and threat hunters, we give customers the protection and intelligence needed to disrupt a new era of attacks on the surface, deep and dark web. Now is a great time to join the Fox Den: we recently announced our intent to become a publicly traded company via a merger with L&F Acquisition Corp. and were named a Top Workplace by the Baltimore Sun. With $150M+ in funding to date, recognition from Forrester as best-in-class in brand intelligence and numerous awards and honors, joining the ZeroFox team means joining a culture that is committed to excellence and growth. That means committing to the success of each of our employees so you can be the best version of yourself on the best team. If you’re ready to join a team that is mission-oriented, customer-focused, collaborative and dedicated, you’ve come to the right place.

**Equal Opportunity, Diversity & Inclusion