CallTek

CallTek

CallTek provides Technology as a Service (TaaS) solutions, offering support services that empower technology operators and service providers to enhance their operations with comprehensive infrastructure, procurement, and lifecycle support tailored to v...

Internet Software & Services
51-250
Founded 2004

Description

  • Monitor security events and alerts in SIEM and related defensive tools, and perform initial triage and classification.
  • Collect and review basic evidence from endpoints, Windows/Linux logs, firewall and IDS data, DNS, and proxy sources.
  • Correlate indicators across host, user, IP, IOC, and process data to support initial analysis.
  • Execute approved runbooks and playbooks such as password reset, IOC blocking, and host isolation requests.
  • Create and maintain detailed tickets with clear narratives, evidence, impact assessment, actions taken, and next steps.
  • Escalate cases to L2, L3, or incident response teams when compromise, material risk, lateral movement, or uncertainty is identified.
  • Deliver structured shift handovers covering case status, findings, hypotheses, blockers, and next steps.
  • Meet operational SLAs and documentation quality standards.

Requirements

  • 0–2 years of experience in SOC, NOC, IT security operations, or equivalent hands-on lab/casework experience.
  • Solid fundamentals in networking, including TCP/IP, DNS, HTTP/S, VPN, and NAT.
  • Basic working knowledge of Windows and Linux, including processes, authentication, and logging concepts.
  • Ability to interpret log fields such as source, destination, user, process, hash, URL, action, and result.
  • Strong spoken and written English at a minimum B2 level for technical calls and clear documentation.
  • Strong attention to detail, structured thinking, prioritization, and the ability to work under pressure in repetitive workflows without quality loss.
  • Experience with SIEM, EDR, and IDS tools such as Wazuh, Splunk, Sentinel, QRadar, Defender, CrowdStrike, Suricata, or Snort is preferred.
  • Basic query skills in KQL, SPL, Lucene, or DQL and familiarity with MITRE ATT&CK concepts are preferred.
  • Entry-level certifications such as Security+, BTL1, or CySA+ are preferred, or equivalent proof of competence.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Open Source Investigators - Contractor - UK

Centre for Information Resilience 11-50 Diversified Consumer Services

Centre for Information Resilience is hiring two OSINT Investigators to support a team investigating malign influence through open-source research, digital analysis, and reporting work focused on documenting harmful networks and activity.

17 hours, 11 minutes ago

Information Security Analyst

Didomi 51-250 IT Services

Didomi is hiring an Information Security Analyst to support its Security & IT team in keeping the company’s ISO 27001 program audit-ready and handling recurring security and compliance operations across the business.

AWS GitHub GitLab HIPAA Notion
17 hours, 26 minutes ago

FBS Information Security Analyst

Capgemini 100K+ Internet Software & Services

Farmers Business Services, through Capgemini as Employer of Record, is hiring an Information Security Analyst to manage mainframe access security and help protect systems and data from unauthorized access and incidents.

DB2
2 days, 17 hours ago

Government Security Personnel Analyst

Accenture 100K+ Professional Services

Accenture Federal Services is hiring a Government Security Personnel Analyst to support personnel security operations for U.S. federal government programs, managing clearance and access processing, records, and related casework.

3 days, 16 hours ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers