Job Title: IT Administration & Security Operations
About KarmaStaff:
KarmaStaff is a premier staffing solutions provider that connects businesses with high-quality professionals. As we grow, the security of our clients' data and the reliability of our infrastructure are our top priorities. We are looking for a versatile IT professional who can manage our internal systems while building a robust security shield for our 60+ team members and growing.
The Role This is a unique "wearer of many hats" role. You will be the primary person responsible for our IT & Security health. You will spend 50% of your time on standard IT administration (onboarding, troubleshooting, O365 management) and 50% on security operations (monitoring threats, responding to alerts, and hardening our environment).
Key Responsibilities
Infrastructure Management: Take full ownership of our Microsoft 365 tenant. This includes managing users, groups, and permissions in Entra ID (Azure AD), and ensuring SharePoint/Teams environments are secure.
Endpoint Defense: Manage and tune SentinelOne across all staff laptops to ensure 100% coverage and rapid response to malware or suspicious behavior.
Security Monitoring: Own our Wazuh implementation. You will be responsible for reviewing logs, setting up custom alerts for suspicious logins or data movement, and maintaining the health of the Wazuh agents.
Data Protection (DLP): Configure and manage Microsoft 365 Data Loss Prevention (DLP) policies to prevent the accidental or intentional exposure of sensitive client data (e.g., medical records, financial documents) via email or SharePoint.
Intrusion Detection (IDS/IPS): Utilize Wazuh’s Network IDS capabilities and SentinelOne’s network visibility features to monitor for unauthorized access attempts, port scanning, and suspicious lateral movement across our environment.
Onboarding/Offboarding: Streamline the process of getting new hires set up securely and ensuring immediate access revocation when staff depart.
Incident Response: Act as the first and primary responder to security alerts. Investigate "red flags" and provide clear reports on findings and remediation steps.
Compliance & Hygiene: Ensure all devices are encrypted, patched, and compliant with our internal security policies.
Must-Have Qualifications (The Essentials)
Bachelor’s Degree in Computer Science or relevant majors.
3+ years of experience in a combined IT/Security role.
O365 Knowledge: You should know more than just how to reset passwords; you should understand Conditional Access policies and Mailflow security.
Hands-on EDR Experience: Direct experience with SentinelOne (or similar tools like CrowdStrike/Defender for Endpoint).
Log Analysis: Proficiency in using Wazuh or other SIEM tools to hunt for threats and monitor system integrity.
Self-Starter Mentality: Since we are a small business, you must be comfortable working without a large team and be able to research and solve problems independently.
Good-to-Have (Bonus Points)
Experience in the staffing or BPO industry.
Knowledge of HIPAA or SOC2 compliance (relevant for our medical and financial clients).
Scripting skills (PowerShell) to automate M365 tasks.
Any of these relevant certifications: Security+, CySA+, MCSE or MS-500.
Why KarmaStaff?
Impact: You won't be a small cog in a big machine. Your work directly protects our clients and our reputation.
Growth: You will have the autonomy to build and improve our security stack as we scale and grow with us.
Flexibility: We understand the work culture—because it’s what we do!
Pay: ₹35,000.00 - ₹40,000.00 per month
Benefits:
- Commuter assistance
- Health insurance
- Leave encashment
- Paid time off
- Provident Fund
Experience:
Language:
Location:
- Dehradun, Uttarakhand (Preferred)
Work Location: In person
