Associate Security Analyst

About Bloomreach

Bloomreach is building the world’s premier agentic platform for personalization. We’re revolutionizing how businesses connect with their customers, building and deploying AI agents to personalize the entire customer journey.

We're taking autonomous search mainstream, making product discovery more intuitive and conversational for customers, and more profitable for businesses. We’re making conversational shopping a reality, connecting every shopper with tailored guidance and product expertise — available on demand, at every touchpoint in their journey. We're designing the future of autonomous marketing, taking the work out of workflows, and reclaiming the creative, strategic, and customer-first work marketers were always meant to do.

And we're building all of that on the intelligence of a single AI engine — Loomi AI — so that personalization isn't only autonomous…it's also consistent. From retail to financial services, hospitality to gaming, businesses use Bloomreach to drive higher growth and lasting loyalty. We power personalization for more than 1,400 global brands, including American Eagle, Sonepar, and Pandora.

Job Overview

Join the Bloomreach GIST (Global Information Security & Technology) team as an Associate Security Analyst and help protect our e-commerce environment from threats, vulnerabilities, and sophisticated attackers. Your work will have a significant impact on numerous customers across various e-commerce verticals and hundreds of millions of online users. As a core member of our globally distributed 24/7 Security Operations Team, you can work full-time from our India offices or from home.

Your Responsibilities Include:

• Monitor, analyze & interpret security/system/application/infrastructure logs for events, configuration irregularities & potential incidents.
• Leverage security tools, custom-built dashboards, and proactive identification approaches to detect anomalous activities.
• Monitor cloud infrastructure for security-related events.
• Monitor the threat/vulnerability landscape and security advisories, coordinate and escalate as appropriate.
• Collaborate with application security teams, product specialists, GRC, and legal teams on active incidents and/or investigations.
• Participate in major incident calls and document incident report summaries.
• Document, follow, and execute standard operating procedures (SOPs).
• Document, manage, maintain, and follow use cases, playbooks, and knowledge base articles.
• Work on incidents and requests related to security.
• Own responsibilities within a shift with a positive mindset towards growth & upskilling.

Professional Experience, Skills & Requirements:

• 2+ years of hands-on experience as part of a 24x7 Security Operations team OR a starter with an equivalent degree/specialization in Cyber Security with a proven project dealing in the new-age landscape (SaaS platform Security, SecOps, API/Container Security, Threat Intel/Hunting, Vulnerability Management).
• Hands-on experience or deep knowledge of using SIEM, SOAR, EDR (modules like TI, VM, DLP).
• Exposure or experience in using CSPM tools (SentinelOne, Falcon Horizon, Wiz, Sysdig, Prisma Cloud, MS Defender).
• Exposure or experience in assessing, interpreting, and managing vulnerabilities using relevant tools.
• Knowledge of either AWS or GCP is a must.
• Possess a positive attitude to participate, own, and drive tasks for POCs for various tools.
• Understanding of risk frameworks.
• Ability to assess emerging trends & threats in the cybersecurity space.
• Good analytical, problem-solving, and interpersonal skills. Ability to apply and provide logical reasoning.
• Knowledge of NIST framework, OSINT standards, MITRE ATT&CK framework & cybersecurity incident lifecycle is an advantage. Beginner level understanding is mandatory.
• Mandatory to work in a 24/7 rotation shift & weekends.
• Excellent command of communication in English, being a good listener, speaker & reader.

Your Success Story Will Be:

In the first 30 days:

• Understand the roles & responsibilities of the SOC team, in-scope vs out-of-scope tasks.
• Read & understand SOPs, Policies & working procedures of the team.
• Shadow peers in day-to-day work, overlook tickets, alerts, incidents, and understand the current state of ongoing projects/enhancements.

In the next 30 days (60 days from start):

• Start owning incidents and tasks as an independent contributor with peer shadowing.
• Participate in incident-related calls and cross-team/department meetings.
• Handle SIEM/SOAR/EDR events.

In the next 30 days (90 days from start):

• Document or tweak existing SOPs and process documents.
• Represent the team in forums/meetings/discussions.
• Manage shifts alone when needed.
• Adapt to a service improvement mindset and contribute to the overall success of the team.

More Things You'll Like About Bloomreach:

Culture:

• A great deal of freedom and trust, with a focus on results and responsibility.
• Defined values and key behaviors embedded in all HR processes.
• Flexible working hours and a virtual-first approach with global hubs.
• Company events and support for employee volunteering activities (5 paid days off).
• High employee satisfaction with a 4.4/5 rating on Glassdoor and 4.9/5 on Comparably for Culture.

Personal Development:

• People Development Program with workshops and competency mapping.
• Access to a resident communication coach.
• Leader Development Program for managers.
• $1,500 annual professional education budget for books, courses, certifications.

Well-being:

• Employee Assistance Program with counselors.
• Subscription to Calm - sleep and meditation app.
• Quarterly ‘DisConnect’ days for global unwinding.
• Facilitation of sports, yoga, and meditation opportunities.
• Extended parental leave up to 26 calendar weeks for Primary Caregivers.

Compensation:

• Restricted Stock Units or Stock Options (role, seniority, location dependent).
• Company performance bonus.
• Employee referral bonus up to $3,000.
• Recognition for work anniversaries (Bloomversaries).

(*Subject to employment type. Interns are exempt from marked benefits, usually for the first 6 months.)

Excited? Join us and transform the future of commerce experiences! If this position doesn't suit you, but you know someone who might be a great fit, share it - we will be very grateful!

Any unsolicited resumes/candidate profiles submitted through our website or to personal email accounts of employees of Bloomreach are considered property of Bloomreach and are not subject to payment of agency fees.

Key skills/competency

• Security Operations
• Incident Response
• SIEM
• SOAR
• EDR
• Cloud Security (AWS/GCP)
• Vulnerability Management
• Threat Intelligence
• Cybersecurity Analysis
• Associate Security Analyst