SOC Engineer – Integration & Presales (Remote/Hybrid)

About the role

We are looking for a technically strong, client‑oriented SOC Engineer to lead the end‑to‑end onboarding of new customers onto our Security Operations Center platform. You will act as the bridge between sales and technical teams, delivering presales demos, proof‑of‑concepts, and ensuring successful deployment of XDR agents across Windows and Linux environments.

Key responsibilities

• Lead technical onboarding from discovery to go‑live, configuring syslog, API connectors, firewall log ingestion and cloud log pipelines.
• Deploy, configure and validate XDR agents on Windows and Linux endpoints.
• Create client‑specific SIEM rules, dashboards and alert policies.
• Coordinate with client IT teams to set up network access, firewall exceptions and proxy settings.
• Troubleshoot XDR agent installation, connectivity and performance issues on both Windows and Linux systems.
• Analyse logs from Windows Event Viewer and Linux journalctl/syslog to identify root causes.
• Support sales with technical demos, architecture walkthroughs, RFP responses and security assessments.

Required profile

• 2–4 years of experience in cybersecurity or security operations.
• Strong client‑facing skills and ability to translate business needs into technical solutions.
• Experience working with Windows and Linux operating systems in an enterprise environment.
• Comfortable working in shift‑based, remote/hybrid settings.

Required skills

• XDR agent deployment and configuration
• SIEM rule creation and dashboard design
• Syslog forwarding and API integration
• Firewall log ingestion and cloud log pipeline setup
• Windows administration (Group Policy, services, registry)
• Linux administration (SELinux/AppArmor, daemon management, permissions)
• Log analysis using Windows Event Viewer and Linux journalctl/syslog