Deep Dark Web Researcher

OPPORTUNITY OVERVIEWZeroFox seeks a Deep and Dark Web (DDW) Threat Researcher to perform detailed threat research in deep and dark web environments in response to standing customer requirements and ad hoc requests. Serving within the ZeroFox Public Sector Services (PSS) department, this senior role will support Deep Dark Web environments with operational security (OPSEC) best practices being deployed.

Role and responsibilities

• Access the DDW environment safely and with operational security (OPSEC) best practices to solve customers’ cybersecurity challenges
• Attend cyber intelligence-related courses (military, college, or private)
• Conduct research in DDW environments, including the identification and analysis of threat actors / threat actor groups that shift between multiple venues
• Identify threat actor tactics, techniques, and procedures (TTP), goals, targets, and motives
• Ascertain underground criminal language / terminology 
• Craft findings into finished intelligence on a spectrum of modes/formats
• Learn how to leverage patented internal intelligence tools within ZeroFox to gather, assess, and present intelligence
• Identify and track key aspects of threat actors/associated networks and groups
• Perform detailed threat research in DDW environments in response to standing customer requirements and ad hoc requests

Required qualifications and skills

• Experience in conducting detailed investigative research, some of which included significant DDW research, typically obtained in 5+ years
• Cyber intelligence-related courses (military, college, or private)
• Ability to assess veracity of raw intelligence information from multiple, conflicting sources
• Strong ability to coalesce and articulate findings in any number of finished intelligence formats to include but not limited to: written long-form finished intelligence reports, briefings (including verbal communication skills to present findings), short or informal reports, and other modes of presenting intelligence verbally
• Knowledge of / experience with tools required to access the DDW, ie VPN, VM, etc.
• Experience conducting open source investigations, including using novel search techniques
• Proficiency using Google’s suite of office tools
• Strong background in research, writing, and analytical tradecraft
• Comfort working in a small team environment and with flexibility to engage in multiple processes

Desired qualifications and skills

• Language (Russian, Mandarin Chinese, Farsi) highly preferred
• Experience working with US government organizations
• Experience with blockchain technology and ability to research threat actors’ use of cryptocurrency
• Experience with common cyber threat intelligence tools, such as VirusTotal, indicator of compromise (IOC) research, internet infrastructure analysis
• Familiarity with common cyber crime techniques
• High degree of comfort operating on a small team with diverse personalities
• Leadership experience or consulting experience
• Previous Intelligence experience highly preferred

Benefits

• Competitive compensation
• Community-driven culture with employee events
• Generous time off 
• Comprehensive health benefits & 401(k) plan
• Respectful and nourishing work environment, where every opinion is heard and everyone is encouraged to be an active part of the organizational culture

Interested?

• Ready to apply? Visit us at https://www.zerofox.com/careers to find out more and join the best team in the security industry.
• Not ready to apply? Email careers_at_zerofox_dot_com to speak with a member of the team!

Other Information

• This position will report to the Lead, Principal Analyst
• This position may entail up to 5-10 % travel
• This role will be based out of our office in Savannah, GA (hybrid)
• This role requires occasional work on nights and weekends as needed.

ABOUT ZEROFOXZeroFox is on a mission to make the internet safer for all. Innovation is at our core – we are relentless in the pursuit of finding new ways to disrupt external cyber threats on the surface, deep, and dark web. ZeroFox offers the only unified cybersecurity platform combining advanced AI analytics, digital risk and privacy protection, full-spectrum threat intelligence, and a robust portfolio of breach, incident and takedown response capabilities to protect customers from growing threats across the external attack surface. It’s a great time to join us in the Fox Den – with fresh private equity funding, expanding investments in AI, a people-first culture, and centers of excellence around the world, we’re growing like never before. If you’re looking for a mission-oriented, customer-focused, collaborative team and ready to take the fight to the adversary, apply to join us in the Den today.
Equal Opportunity, Diversity & InclusionWe aim to build a team that represents a variety of backgrounds, perspectives, and skills. We embrace inclusion and ensure equal employment opportunity without discrimination or harassment based on race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity or expression, age, disability, national origin, marital or domestic/civil partnership status, genetic information, citizenship status, military or veteran status, or any other personal characteristic.