Xiarch Bharat is a CERT-In empanelled cybersecurity services company with over 20 years of experience. We specialize in 24×7 SOC monitoring, Vulnerability Assessment & Penetration Testing (VAPT), GRC, DPDP compliance, ISO audits, and Zero Trust networking solutions (pfSense/FortiGate). We serve 4000+ clients across India and are rapidly scaling our infrastructure and product capabilities with AI-powered security solutions.
Role Overview - We are seeking a motivated and hands-on Associate Infrastructure & Security Engineer to support and help maintain secure IT infrastructure, with exposure to modern security practices including Zero Trust principles. Candidates with hands-on experience using Zoho (Directory / One) or strong open-source technology stacks for identity and security implementations will be preferred. This is an excellent entry-to-junior level role for freshers and candidates with 0–3 years of experience who have strong fundamentals in networking, Windows/Linux administration, and a genuine interest in cybersecurity. You will work under the guidance of senior engineers while contributing to real production systems.
Tools & Technologies Identity & Collaboration • Active Directory, Microsoft Entra ID, Zoho Directory / Zoho One, Microsoft 365 (Exchange Online, SharePoint, Teams, Intune) Networking & Security • pfSense, FortiGate, VLANs, VPN, Zero Trust principles, MFA Operating Systems & Virtualization • Windows Server, Linux, Hyper-V, VMware, Proxmox Monitoring, Backup & Automation • Wazuh SIEM, EDR concepts, Veeam / Nakivo, PowerShell, Bash, Python
Key Responsibilities Active Directory, Microsoft 365 & Identity • Assist in managing on-premises Active Directory (user accounts, groups, OUs, basic GPOs) and support hybrid identity with Microsoft Entra ID. • Handle day-to-day Microsoft 365 administration tasks (Exchange Online, SharePoint, Teams, basic Intune device enrollment and policies). • Support user onboarding/offboarding, password resets, MFA enrollment, and basic access management following least-privilege principles. Networking, Firewall & Security Basics • Manage DNS and DHCP services, VLAN configuration, and basic network troubleshooting (connectivity, IP conflicts, firewall rules). • Assist senior engineers with firewall rule management, VPN configuration (pfSense / FortiGate), and network segmentation under guidance. • Learn and contribute to Zero Trust principles: network micro-segmentation, identity verification, and least privilege access (with mentorship).
Server, Virtualization & Backup • Perform Windows Server and Linux administration tasks: patching, service management, basic hardening, and monitoring. • Support virtualization environments (Hyper-V preferred; exposure to VMware or Proxmox is a plus) and assist with VM provisioning and maintenance. • Assist with backup operations using tools like Veeam or Nakivo and participate in backup testing and documentation.
Monitoring, Logging & SOC Collaboration • Support centralized logging and assist with basic Wazuh SIEM integration and alert monitoring. • Collaborate with the SOC team on incident response, log analysis, and infrastructure-related tickets. • Maintain accurate documentation: network diagrams, runbooks, configuration records, and change logs.
Automation & General IT Support • Automate repetitive tasks using PowerShell or Bash scripting. Basic Python knowledge is a plus. • Provide general IT support and troubleshooting for users (printer issues, connectivity problems, software installation, etc.). • Participate in infrastructure projects and continuously learn modern security practices under senior guidance.
Requirements (Must Have) • Strong foundational knowledge of core networking (TCP/IP, subnets, VLANs, DNS, DHCP, basic routing & firewall concepts). • Hands-on experience with Windows Active Directory (user/group management, basic GPOs) through projects, labs, or internships. • Basic Windows Server and Linux system administration (patching, services, user management, troubleshooting). • Scripting ability in PowerShell or Bash for automating simple tasks. • Genuine interest in cybersecurity and willingness to learn Zero Trust concepts, firewall management, and security tooling. • Good troubleshooting mindset and ability to handle general IT support tasks (connectivity, printers, user issues).
Nice to Have (Advantageous) • Exposure to firewall platforms (pfSense, FortiGate, or similar) — even basic rule configuration or lab setups count. • Familiarity with Microsoft 365 administration (Exchange Online, SharePoint, Intune) or hybrid identity (Entra ID). • Basic understanding of Zero Trust principles or prior exposure to Wazuh / SIEM tools. • Hands-on experience implementing identity, access management, or Zero Trust controls using Zoho Directory / Zoho One (or strong preference for open-source and cost-effective technology stacks) — strong advantage. • Experience with virtualization (Hyper-V, VMware, or Proxmox) and backup tools (Veeam, Nakivo). • Industry certifications: CompTIA Security+, Network+, Microsoft SC-900/AZ-900, or CCNA. • Previous internship or project work in IT support, system administration, or cybersecurity. • GitHub profile, home lab documentation, personal blogs, HackTheBox, TryHackMe, or project portfolios demonstrating practical skills are highly valued.
What We Offe r • Opportunity to work hands-on with enterprise infrastructure and gain real exposure to Zero Trust principles and SOC tools in a leading CERT-In empanelled company with 20+ years of experience. • Structured mentorship from experienced cybersecurity and infrastructure professionals. • Clear career growth path: Associate Infrastructure & Security Engineer Infrastructure & Security Engineer Senior Infrastructure Engineer Infrastructure Lead / Security Engineer Cloud Security Engineer / Product Security / SOC Lead. • Support for relevant certifications and continuous learning (budget available). • Competitive compensation with rapid growth opportunities for high performers. • Modern office in Gurugram, collaborative culture, and direct exposure to client projects and new AI-powered security product development.
