SOC/SIEM Administrator

We are hiring SOC Admin / SIEM Admin / SOC Engineers !!For Experienced Candidates -- These positions will work on engineering and infrastructure of an advance SIEM/SOC solution stack, for collection, high scale storage, correlations, alert triggering and incident life cycle management. You will be using OpenSearch, Cortex, ELK and many more tech for base/foundation and advance Python and AI/ML components for detection engineering, deep correlations and incident responses. This is a role which combines engineering, infrastructure administrator and cloud infra engineering into one.For Trainee Candidates -- These positions are remote for the first six months and then onsite (Hyderabad). All trainee positions will be trained to work on our SIEM/SOC stack, for rule configurations, alert configurations, dashboards & visualizations, incident run book maintenance, incident automation and component development for the stack.Number of Positions - 5 Location- Hyderabad Castellum Office (CLabs Global SOC Centre) Experience Needed- Self learning/self initiated on Linux, Cloud, Security and Shell/Python Preference- People from strong networking & sysadmin background who want to transition to sec Condition- Strong interest in cyber security admin/automation/emngg with demonstrable work pieces Certifications Needed- NoneRequirement for Experience Candidates -- You should have worked extensively on OpenSearch, ELK, Cortex & more open source You should be very familiar with alert config, detection engineering & correlations You should be willing to learn under pressure and not have time constraints You should have worked on building multiple solution stacks in security Cloud, infra, Linux, shell are some of the words, which should excite you You should have worked and explored Linux during last two years You should know github well and should have used some tools from git You should have basic concept of cyber security fundamentals You should have some basic knowledge on shell & python You should have good enough concepts of different type of cyber attacks You should know threat intelligence and its application to SOC (including integration) You should know MISP and OCTI well and should be able to integrate from/intoRequirement for Freshers/Trainees You should be a self initiated candidate with less than 1 year in industry (freshers welcome) You should be willing to learn under pressure and not have time constraints You should be self initiated and driven to learn cyber security areas Cloud, infra, Linux, shell are some of the words, which should excite you You should have worked and explored Linux during last two years You should know github well and should have used some tools from git You should have basic concept of cyber security fundamentals You should have some basic knowledge on shell & python You should have good enough concepts of different type of cyber attacksIf you have what it takes to become a great cyber security SOC/SIEM Solution Engineeer, please apply.Note -- Not a 9 to 5 role (Needs deep involvement and no time constraints should be there) Needs an intent to get deeper into the cyber security areas across whole cyber spectrum This is not a penetration testing role, so please do not apply if you wish to pursue VAPT career

Apply Now