Associate Infrastructure & Security Engineer
About Xiarch Bharat \-<\/b>
Xiarch Bharat is a CERT\-In empanelled cybersecurity services company with over 20 years of experience. We \nspecialize in 24×7 SOC monitoring, Vulnerability Assessment & Penetration Testing (VAPT), GRC, DPDP \ncompliance, ISO audits, and Zero Trust networking solutions (pfSense/FortiGate). We serve 4000+ clients across \nIndia and are rapidly scaling our infrastructure and product capabilities with AI\-powered security solutions.
Role<\/b> Overview<\/b> \- We are seeking a motivated and hands\-on Associate Infrastructure & Security Engineer to support and help \nmaintain secure IT infrastructure, with exposure to modern security practices including Zero Trust principles. \nCandidates with hands\-on experience using Zoho (Directory / One) or strong open\-source technology stacks for \nidentity and security implementations will be preferred. This is an excellent entry\-to\-junior level role for freshers and \ncandidates with 0\u20133 years of experience who have strong fundamentals in networking, Windows/Linux \nadministration, and a genuine interest in cybersecurity. You will work under the guidance of senior engineers while \ncontributing to real production systems.
Tools & Technologies<\/b>\nIdentity & Collaboration\n\u2022 Active Directory, Microsoft Entra ID, Zoho Directory / Zoho One, Microsoft 365 (Exchange Online, SharePoint, \nTeams, Intune)\nNetworking & Security\n\u2022 pfSense, FortiGate, VLANs, VPN, Zero Trust principles, MFA\nOperating Systems & Virtualization\n\u2022 Windows Server, Linux, Hyper\-V, VMware, Proxmox\nMonitoring, Backup & Automation\n\u2022 Wazuh SIEM, EDR concepts, Veeam / Nakivo, PowerShell, Bash, Python<\/div>
Xiarch Bharat is a CERT\-In empanelled cybersecurity services company with over 20 years of experience. We \nspecialize in 24×7 SOC monitoring, Vulnerability Assessment & Penetration Testing (VAPT), GRC, DPDP \ncompliance, ISO audits, and Zero Trust networking solutions (pfSense/FortiGate). We serve 4000+ clients across \nIndia and are rapidly scaling our infrastructure and product capabilities with AI\-powered security solutions.
Role<\/b> Overview<\/b> \- We are seeking a motivated and hands\-on Associate Infrastructure & Security Engineer to support and help \nmaintain secure IT infrastructure, with exposure to modern security practices including Zero Trust principles. \nCandidates with hands\-on experience using Zoho (Directory / One) or strong open\-source technology stacks for \nidentity and security implementations will be preferred. This is an excellent entry\-to\-junior level role for freshers and \ncandidates with 0\u20133 years of experience who have strong fundamentals in networking, Windows/Linux \nadministration, and a genuine interest in cybersecurity. You will work under the guidance of senior engineers while \ncontributing to real production systems.
Tools & Technologies<\/b>\nIdentity & Collaboration\n\u2022 Active Directory, Microsoft Entra ID, Zoho Directory / Zoho One, Microsoft 365 (Exchange Online, SharePoint, \nTeams, Intune)\nNetworking & Security\n\u2022 pfSense, FortiGate, VLANs, VPN, Zero Trust principles, MFA\nOperating Systems & Virtualization\n\u2022 Windows Server, Linux, Hyper\-V, VMware, Proxmox\nMonitoring, Backup & Automation\n\u2022 Wazuh SIEM, EDR concepts, Veeam / Nakivo, PowerShell, Bash, Python<\/div>
\nKey Responsibilities<\/b>\nActive Directory, Microsoft 365 & Identity\n\u2022 Assist in managing on\-premises Active Directory (user accounts, groups, OUs, basic GPOs) and support hybrid \nidentity with Microsoft Entra ID.\n\u2022 Handle day\-to\-day Microsoft 365 administration tasks (Exchange Online, SharePoint, Teams, basic Intune \ndevice enrollment and policies).\n\u2022 Support user onboarding/offboarding, password resets, MFA enrollment, and basic access management \nfollowing least\-privilege principles.\nNetworking, Firewall & Security Basics\n\u2022 Manage DNS and DHCP services, VLAN configuration, and basic network troubleshooting (connectivity, IP \nconflicts, firewall rules).\n\u2022 Assist senior engineers with firewall rule management, VPN configuration (pfSense / FortiGate), and network \nsegmentation under guidance.\n\u2022 Learn and contribute to Zero Trust principles: network micro\-segmentation, identity verification, and least\nprivilege access (with mentorship).
Server, Virtualization & Backup<\/b>\n\u2022 Perform Windows Server and Linux administration tasks: patching, service management, basic hardening, and \nmonitoring.\n\u2022 Support virtualization environments (Hyper\-V preferred; exposure to VMware or Proxmox is a plus) and assist \nwith VM provisioning and maintenance.\n\u2022 Assist with backup operations using tools like Veeam or Nakivo and participate in backup testing and \ndocumentation.
Monitoring, Logging & SOC Collaboration<\/b>\n\u2022 Support centralized logging and assist with basic Wazuh SIEM integration and alert monitoring.\n\u2022 Collaborate with the SOC team on incident response, log analysis, and infrastructure\-related tickets.\n\u2022 Maintain accurate documentation: network diagrams, runbooks, configuration records, and change logs.
Automation & General IT Support\n<\/b>\u2022 Automate repetitive tasks using PowerShell or Bash scripting. Basic Python knowledge is a plus.\n\u2022 Provide general IT support and troubleshooting for users (printer issues, connectivity problems, software \ninstallation, etc.).\n\u2022 Participate in infrastructure projects and continuously learn modern security practices under senior guidance.<\/div>
Server, Virtualization & Backup<\/b>\n\u2022 Perform Windows Server and Linux administration tasks: patching, service management, basic hardening, and \nmonitoring.\n\u2022 Support virtualization environments (Hyper\-V preferred; exposure to VMware or Proxmox is a plus) and assist \nwith VM provisioning and maintenance.\n\u2022 Assist with backup operations using tools like Veeam or Nakivo and participate in backup testing and \ndocumentation.
Monitoring, Logging & SOC Collaboration<\/b>\n\u2022 Support centralized logging and assist with basic Wazuh SIEM integration and alert monitoring.\n\u2022 Collaborate with the SOC team on incident response, log analysis, and infrastructure\-related tickets.\n\u2022 Maintain accurate documentation: network diagrams, runbooks, configuration records, and change logs.
Automation & General IT Support\n<\/b>\u2022 Automate repetitive tasks using PowerShell or Bash scripting. Basic Python knowledge is a plus.\n\u2022 Provide general IT support and troubleshooting for users (printer issues, connectivity problems, software \ninstallation, etc.).\n\u2022 Participate in infrastructure projects and continuously learn modern security practices under senior guidance.<\/div>
\nRequirements (Must Have)<\/b>\n\u2022 Strong foundational knowledge of core networking (TCP/IP, subnets, VLANs, DNS, DHCP, basic routing & \nfirewall concepts).\n\u2022 Hands\-on experience with Windows Active Directory (user/group management, basic GPOs) through projects, \nlabs, or internships.\n\u2022 Basic Windows Server and Linux system administration (patching, services, user management, \ntroubleshooting).\n\u2022 Scripting ability in PowerShell or Bash for automating simple tasks.\n\u2022 Genuine interest in cybersecurity and willingness to learn Zero Trust concepts, firewall management, and \nsecurity tooling.\n\u2022 Good troubleshooting mindset and ability to handle general IT support tasks (connectivity, printers, user issues).
<\/div>
<\/div>
\nNice to Have (Advantageous)<\/b>\n\u2022 Exposure to firewall platforms (pfSense, FortiGate, or similar) \u2014 even basic rule configuration or lab setups \ncount.\n\u2022 Familiarity with Microsoft 365 administration (Exchange Online, SharePoint, Intune) or hybrid identity (Entra ID).\n\u2022 Basic understanding of Zero Trust principles or prior exposure to Wazuh / SIEM tools. \u2022 Hands\-on experience implementing identity, access management, or Zero Trust controls using Zoho Directory / \nZoho One (or strong preference for open\-source and cost\-effective technology stacks) \u2014 strong advantage.\n\u2022 Experience with virtualization (Hyper\-V, VMware, or Proxmox) and backup tools (Veeam, Nakivo).\n\u2022 Industry certifications: CompTIA Security+, Network+, Microsoft SC\-900/AZ\-900, or CCNA.\n\u2022 Previous internship or project work in IT support, system administration, or cybersecurity.\n\u2022 GitHub profile, home lab documentation, personal blogs, HackTheBox, TryHackMe, or project portfolios \ndemonstrating practical skills are highly valued.
<\/div>
<\/div>
\nWhat We Offe<\/b>r<\/b>\n\u2022 Opportunity to work hands\-on with enterprise infrastructure and gain real exposure to Zero Trust principles and \nSOC tools in a leading CERT\-In empanelled company with 20+ years of experience.\n\u2022 Structured mentorship from experienced cybersecurity and infrastructure professionals.\n\u2022 Clear career growth path: Associate Infrastructure & Security Engineer → Infrastructure & Security Engineer → \nSenior Infrastructure Engineer → Infrastructure Lead / Security Engineer → Cloud Security Engineer / Product \nSecurity / SOC Lead.\n\u2022 Support for relevant certifications and continuous learning (budget available).\n\u2022 Competitive compensation with rapid growth opportunities for high performers.\n\u2022 Modern office in Gurugram, collaborative culture, and direct exposure to client projects and new AI\-powered \nsecurity product development.\n
<\/div>
<\/div>