Junior SOC SIEM Administrator; remote

Position: Junior SOC SIEM Administrator (remote)

Summary

The Junior SOC SIEM Administrator will support the SOC and SOC Infrastructure teams at GoSecure by assisting with the day-to-day operation of SIEM platforms. This role is ideal for an early-career candidate looking to grow hands-on experience with SIEM technologies, log onboarding, and security operations in a production environment.

The successful candidate will focus on customer onboarding activities (tenant creation, collector deployment, and initial log source configuration), routine platform maintenance, health verification, and log source monitoring, while working closely with senior SIEM administrators and SOC analysts.

Duties and Responsibilities

• SIEM Onboarding Support

Assist with customer onboarding activities including tenant creation, collector deployment, and initial log source configuration

Validate log ingestion, normalization, and basic parsing for new data sources

Perform initial log source testing and verification

• Daily Operations & Maintenance

Conduct daily health checks of SIEM platforms and supporting infrastructure

Monitor log source status and data flow, identify gaps or ingestion issues, and escalate as needed

Assist with routine maintenance tasks such as data retention checks and basic housekeeping

• SOC & Analyst Support

Provide operational support to SOC analysts by ensuring data availability and platform stability

Assist with basic troubleshooting of SIEM-related issues and collaborate with senior team members for resolution

• Troubleshooting & Escalation

Help investigate ingestion, performance, or connectivity issues

Escalate complex problems to senior administrators or third-party support teams when required

• Documentation & Process Support

Document onboarding steps, operational tasks, and troubleshooting activities

Assist with evidence collection for audits and compliance activities

Follow established change management processes and assist with ticket creation

• Learning & Growth

Participate in training, shadowing, and hands-on learning across SIEM and SOC tooling

Gradually take on increased responsibility as skills and experience develop

Qualifications

• College diploma, bachelor’s degree, or equivalent practical experience in IT, cybersecurity, or a related field
• 2–3 years of relevant experience in SOC operations, SIEM administration, systems administration, or IT support
• Familiarity with at least one SIEM platform (e.g., Splunk, Elastic/Kibana, Forti

SIEM) through coursework, labs, or early professional experience

• Basic understanding of:

TCP/IP, common network ports and protocols

Windows and/or Linux operating systems

Log sources such as firewalls, servers, endpoints, or cloud services

• Exposure to security tools such as EDR, NGAV, or vulnerability scanners is an asset
• Willingness to learn scripting, automation, and advanced SIEM concepts over time

Personal Attributes

• Strong attention to detail and organizational skills
• Eagerness to learn and grow in a cybersecurity operations role
• Ability to follow processes and work collaboratively within a team
• Positive, proactive, and dependable with a “can-do” attitude
• Comfortable handling multiple routine tasks in a fast-paced environment

Languages:

• English: fluent or intermediate
• French: considered an asset