OPPORTUNITY OVERVIEW
OnWatch Alert Management is ZeroFox’s 24x7 service for initial triage, validation, escalation and response. The OnWatch team triages alerts generated in the ZeroFox platform in order of severity and time, escalating findings that require a client’s attention based on standard relevancy criteria and customized distribution workflows.
Serving within the OnWatch team, the Process Engineer provides client support for specialized or complex client intelligence requirements, investigates and resolves data surges, or other tasks adjacent to triage deliveries as directed. Process Engineers are able to support the development of future tool and process updates.
Intelligence activities can include researching current and emerging threats issues covering physical security risks. The analyst will have an investigative background and demonstrated exceptional analytic prowess in areas such as trend analysis and pattern recognition. Discretion, teamwork, a sense of urgency, and creativity are a must.
As our team explores and monitors the deep and dark web (DDW), various open source networks, and the surface web, you will ensure quality and timeliness of our alerting and pivot our research, collection, and dissemination of information around the rapidly and ever-changing needs dictated by developing real-time events and both reactive and proactive customer needs, both in the governmental and commercial space.
As a Process Engineer you should have an investigative background and curiosity. This opportunity requires the ability and willingness to work within a team committed to support our customers 24/7 all year round.
Discretion, teamwork, supreme communication skills, cultural adaptability, and creativity are fundamental, enthusiasm about our mission and customers a must.
Role and responsibilities
-
- Performing ongoing analysis to assess the quality of incoming alert data
- Performing ongoing analysis to determine the composition of large data sets
- Identifying trends and anomalies within the data set
- Acting as a gatekeeper between incoming alert data and alert processing workflows, enabling proper direction of effort and prioritization
- Preparing reports based on analysis and presenting to management
- Working together on a daily basis with key stakeholders within product management, engineering, business intelligence, configuration management, and threat analyst teams
- This position requires the willingness to occasionally serve as a point of escalation outside traditional business hours
- Collect and provide metrics to support development and tracking of objectives and key results (OKR)
- Provide escalation support for ad hoc event and crisis coverage through on-call duty which may include weekends and nights
Required qualifications and skills
- The ability to analyze, model and interpret constantly changing data sets
- Experience with data visualization tools
- Problem-solving skills, especially in a fast paced environment
- A methodical and logical approach, accuracy and attention to detail that enables decision making
- Excellent judgment and decision making skills combined with a relentless sense of urgency
- Understanding client requirements as they relate to the information security, brand security, and physical security risks our clients face
- Interpersonal and team skills, able to positively contribute to a professional and vibrant work environment that is thriving to further develop world-class solutions for our clients
- Attention to detail and the ability to stay engaged during repetitive, detail-oriented tasks for monitoring many aspects simultaneously
- Enhanced understanding of the intelligence cycle and how it pertains to real-world application.
- Ability to self-motivate, clear and decisive judgment with limited information, strong analytical skills, and the ability to communicate across multiple teams, different in both function and location.
- Ability to see the ‘big picture’ while recognizing concerns for various types of corporate clients in both the tactical and strategic sense.
- Capability to monitor the appropriate channels needed to maintain consistent coverage of ever-changing corporate and government issues and concerns in a high pressure environment.
- Understanding of general concepts of the Internet and networks.
- Excellent communication skills, both written and verbal
Desired qualifications and skills
- College degree or relevant work experience required
- Past experience in intelligence, technology, journalism, security, cyber-security or related fields is preferred
- Proficiency in at least one additional language besides English. Spanish, Arabic, Russian, or a Chinese language are preferred.
