Associate Security Analyst

Summary

Join the Bloomreach GIST team as an Associate Security Analyst and contribute to protecting our e-commerce environment. You will monitor security logs, leverage security tools, and detect anomalous activities. This role involves collaboration with various teams on incidents and investigations, participation in major incident calls, and documentation. The position offers full-time remote work from India or home and requires 2+ years of experience in a 24/7 Security Operations team or equivalent. Bloomreach provides a flexible work environment, various professional development opportunities, and a comprehensive benefits package.

Requirements

• 2+ years of hands on experience as part of a 24*7 Security Operations team OR a starter with equivalent degree/specialization in the area of Cyber Security with a proven project dealing in the new age landscape (SaaS platform Security, SecOps, API/Container Security, Threat Intel/Hunting, Vulnerability Management)
• Hands on experience or deep knowledge on usage of SIEM, SOAR, EDR ( modules like TI, VM, DLP)
• Knowledge of either AWS or GCP is must
• Mandatory to work in a 24/7 rotation shift & weekends
• Possess excellent command on communication in English being a good listener, speaker & reader
• Beginner level of understanding of NIST framework, OSINT standards, MITRE ATT&CK framework & cybersecurity incident lifecycle is mandatory

Responsibilities

• Monitor, analyze & interpret security/system/application/infrastructure logs for events, configuration irregularities & potential incidents
• Leverage security tools, custom built dashboards and/or proactive identification approaches to detect anomalous activities
• Monitoring Cloud infrastructure for security-related events
• Monitoring threat/vulnerability landscape and security advisories, coordinate and escalate as appropriate
• Work with application security teams, product specialists, GRC, legal teams on active incidents and/or investigations
• Participate in a major incident call, document incident report summaries
• Document, follow and execute standard operating procedures (SOPs)
• Documenting/Managing/maintaining & following use cases, playbooks and/or knowledge base articles
• Work on incidents, requests related to security
• Own responsibilities within a shift with a positive mindset towards growth & upskilling
• Understand the roles & responsibilities of SOC team, in-scope vs out of scope tasks
• Read & understand SOPs, Policies & working procedures of the team
• Shadow peers in day to day work, overlook tickets, alerts, incidents, understand the current state of ongoing projects/enhancements etc
• Start owning incidents, tasks as independent contributor with a peer shadowing you
• Participate in incident related calls, cross team/department meetings
• Handle SIEM/SOAR/EDR events
• Start documenting or tweaking existing SOPs, process document
• Bear responsibilities of representing team in forums/meetings/discussions
• Start managing shift alone when needed
• Adapt yourself to service improvement mindset and contribute to overall success of the team

Preferred Qualifications

• Exposure or experience in using any of CSPM tools (SentinelOne, Falcon Horizon, Wiz,Sysdig,Prisma cloud,MS Defender)
• Exposure or experience in assessing, interpreting & managing vulnerabilities using relevant tools
• Should possess positive attitude to participate, own & drive tasks for POCs for various tools
• Understanding of risk framework
• Ability to assess emerging trends & threats in cyber security space
• Should possess good analytical, problem-solving, and interpersonal skills. Should be able to apply & provide logical reasoning
• Knowledge of NIST framework, OSINT standards, MITRE ATT&CK framework & cybersecurity incident lifecycle is an advantage

Benefits

• Flexible working hours to accommodate your working style
• Work virtual-first with several Bloomreach Hubs available across three continents
• We organize company events to experience the global spirit of the company and get excited about what's ahead
• We encourage and support our employees to engage in volunteering activities - every Bloomreacher can take 5 paid days off to volunteer
• We have a People Development Program -- participating in personal development workshops on various topics run by experts from inside the company. We are continuously developing & updating competency maps for select functions
• Our resident communication coach Ivo Večeřa is available to help navigate work-related communications & decision-making challenges
• Our managers are strongly encouraged to participate in the Leader Development Program to develop in the areas we consider essential for any leader. The program includes regular comprehensive feedback, consultations with a coach and follow-up check-ins
• Bloomreachers utilize the $1,500 professional education budget on an annual basis to purchase education products (books, courses, certifications, etc.)
• The Employee Assistance Program -- with counselors -- is available for non-work-related challenges
• Subscription to Calm - sleep and meditation app
• We organize ‘DisConnect’ days where Bloomreachers globally enjoy one additional day off each quarter, allowing us to unwind together and focus on activities away from the screen with our loved ones
• We facilitate sports, yoga, and meditation opportunities for each other
• Extended parental leave up to 26 calendar weeks for Primary Caregivers
• Restricted Stock Units or Stock Options are granted depending on a team member’s role, seniority, and location
• Everyone gets to participate in the company's success through the company performance bonus
• We offer an employee referral bonus of up to $3,000 paid out immediately after the new hire starts
• We reward & celebrate work anniversaries -- Bloomversaries!