Brenden Bice

ZEROFOX

large-scale Product To Bring offline processes to saas platforM

Request for Intelligence: Request form; queue; chat (scope) & delivery

Year

2022

Tools

Whimsical, Figma

Deliverables

Workflow diagrams
Wireframes

High-fidelity mocks

Product Team

My Team

1 Product manager
5 Developers
1 Designer

My Role

Lead designer
Researcher

Research

2 Contextual inquiries
9 Individual interviews

Summary

ZeroFox is a cybersecurity firm that, in part, delivers a trove of intelligence on cyber attacks, threat actors and threats, both generally and specific to a region, industry, organization, or individual. Clients can submit a further Request for Intelligence on a specific attack or threat. ZeroFox analysts respond to the inquiry with intelligence from selected sources and methods. Prior to these new features, this was all communicated and delivered via email. The process has now been integrated in ZeroFox’s SaaS platform and payments for this boutique offering are handled via an on-platform credit system. 

Problem

Offline email-based Requests for Information are seen as analog and difficult to track. The lack of structure and transparency into the system have caused frustration and delay, discouraging clients from utilizing the offering.  Analysts sometimes also have issue keeping up with and managing an influx of Requests.

Further, some clients are not permitted to use this method because of security limitations for uploading and transmitting sensitive data via email. This artificially deflates the potential pool of users, and therefore, revenue for ZeroFox.

Research & Process

I first conducted 3 contextual inquiries to observe the habits and work flows of the core users we were designing for- 1 staff  analyst and 2 power users of the legacy RFI method. This helped me further break down the users into 3 groups, and gave insights into what a solution may need.

Key insight Handling payments off-platform was not necessarily a blocker for clients,  but served to significantly increase the time between the request and the commencement of an analyst’s investigation.

With this in mind, I proceeded to 9 recorded user interviews- 5 from the client side & 4 from the staff side.

Key Insight The entire process could be kept online for the client, at the point of discovery of information that could lead to an RFI. The product manager and I used this research to capture the nuances of 3 different personas: client; staff analyst; managing analyst.

Solution

The complete RFI system is designed to cross 3 existing products on the platform and create 3 new ones. It incorporates the key insights of keeping the entire process on-platform (including discovery where possible), as well as creating a seamless credit system for payment.

Results

Client metrics:
Analyst metrics:
Revenue increase: