SOC/SIEM Administrator
Actively Reviewing the ApplicationsCastellum Labs
Job Description
We are hiring SOC Admin / SIEM Admin / SOC Engineers !!
For Experienced Candidates --
These positions will work on engineering and infrastructure of an advance SIEM/SOC solution stack, for collection, high scale storage, correlations, alert triggering and incident life cycle management. You will be using OpenSearch, Cortex, ELK and many more tech for base/foundation and advance Python and AI/ML components for detection engineering, deep correlations and incident responses. This is a role which combines engineering, infrastructure administrator and cloud infra engineering into one.
For Trainee Candidates --
These positions are remote for the first six months and then onsite (Hyderabad). All trainee positions will be trained to work on our SIEM/SOC stack, for rule configurations, alert configurations, dashboards & visualizations, incident run book maintenance, incident automation and component development for the stack.
Number of Positions - 5
Location - Hyderabad Castellum Office (CLabs Global SOC Centre)
Experience Needed - Self learning/self initiated on Linux, Cloud, Security and Shell/Python
Preference - People from strong networking & sysadmin background who want to transition to sec
Condition - Strong interest in cyber security admin/automation/emngg with demonstrable work pieces
Certifications Needed - None
Requirement for Experience Candidates --
- You should have worked extensively on OpenSearch, ELK, Cortex & more open source
- You should be very familiar with alert config, detection engineering & correlations
- You should be willing to learn under pressure and not have time constraints
- You should have worked on building multiple solution stacks in security
- Cloud, infra, Linux, shell are some of the words, which should excite you
- You should have worked and explored Linux during last two years
- You should know github well and should have used some tools from git
- You should have basic concept of cyber security fundamentals
- You should have some basic knowledge on shell & python
- You should have good enough concepts of different type of cyber attacks
- You should know threat intelligence and its application to SOC (including integration)
- You should know MISP and OCTI well and should be able to integrate from/into
Requirement for Freshers/Trainees
- You should be a self initiated candidate with less than 1 year in industry (freshers welcome)
- You should be willing to learn under pressure and not have time constraints
- You should be self initiated and driven to learn cyber security areas
- Cloud, infra, Linux, shell are some of the words, which should excite you
- You should have worked and explored Linux during last two years
- You should know github well and should have used some tools from git
- You should have basic concept of cyber security fundamentals
- You should have some basic knowledge on shell & python
- You should have good enough concepts of different type of cyber attacks
If you have what it takes to become a great cyber security SOC/SIEM Solution Engineeer, please apply.
Note --
- Not a 9 to 5 role (Needs deep involvement and no time constraints should be there)
- Needs an intent to get deeper into the cyber security areas across whole cyber spectrum
- This is not a penetration testing role, so please do not apply if you wish to pursue VAPT career
Required Skills
Quick Tip
Customize your resume and cover letter to highlight relevant skills for this position to increase your chances of getting hired.
Related Similar Jobs
View All
DevOps Engineer - Remote Work
BairesDev
Officer- Big Data Engineer ( Hadoop, Hive, Pyspark)
Citi
Software Development Engineer , FTVX Team (Whole World)
Amazon
Data Analyst
JPMorganChase
Senior Web Developer (Java)
Zimmer Biomet
Quick Apply
Upload your resume to apply for this position