Job Title

We are hiring SOC Admin / SIEM Admin / SOC Engineers !!For Experienced Candidates -- These positions will work on engineering and infrastructure of an advance SIEM/SOC solution stack, for collection, high scale storage, correlations, alert triggering and incident life cycle management. You will be using OpenSearch, Cortex, ELK and many more tech for base/foundation and advance Python and AI/ML components for detection engineering, deep correlations and incident responses. This is a role which combines engineering, infrastructure administrator and cloud infra engineering into one.For Trainee Candidates -- These positions are remote for the first six months and then onsite (Hyderabad). All trainee positions will be trained to work on our SIEM/SOC stack, for rule configurations, alert configurations, dashboards & visualizations, incident run book maintenance, incident automation and component development for the stack. Number of Positions - 5Location - Hyderabad Castellum Office (CLabs Global SOC Centre)Experience Needed - Self learning/self initiated on Linux, Cloud, Security and Shell/PythonPreference - People from strong networking & sysadmin background who want to transition to secCondition - Strong interest in cyber security admin/automation/emngg with demonstrable work pieces Certifications Needed - NoneRequirement for Experience Candidates -- You should have worked extensively on OpenSearch, ELK, Cortex & more open sourceYou should be very familiar with alert config, detection engineering & correlationsYou should be willing to learn under pressure and not have time constraintsYou should have worked on building multiple solution stacks in securityCloud, infra, Linux, shell are some of the words, which should excite youYou should have worked and explored Linux during last two yearsYou should know github well and should have used some tools from gitYou should have basic concept of cyber security fundamentalsYou should have some basic knowledge on shell & pythonYou should have good enough concepts of different type of cyber attacksYou should know threat intelligence and its application to SOC (including integration)You should know MISP and OCTI well and should be able to integrate from/into Requirement for Freshers/TraineesYou should be a self initiated candidate with less than 1 year in industry (freshers welcome)You should be willing to learn under pressure and not have time constraintsYou should be self initiated and driven to learn cyber security areasCloud, infra, Linux, shell are some of the words, which should excite youYou should have worked and explored Linux during last two yearsYou should know github well and should have used some tools from gitYou should have basic concept of cyber security fundamentalsYou should have some basic knowledge on shell & pythonYou should have good enough concepts of different type of cyber attacksIf you have what it takes to become a great cyber security SOC/SIEM Solution Engineeer, please apply.Note -- Not a 9 to 5 role (Needs deep involvement and no time constraints should be there)Needs an intent to get deeper into the cyber security areas across whole cyber spectrumThis is not a penetration testing role, so please do not apply if you wish to pursue VAPT career