35 Zeek Jobs

As an experienced Network Security Engineer, you will be responsible for deploying various Open-Source Network Security Solutions, integrating relevant components, and optimizing performance and rules set. Your role will involve event-driven process flow and actions customization of IPC and enrichments, as well as system engineering for reliability and system performance improvement. Additionally, you will conduct research on new approaches and contribute to IP creation. Key Responsibilities: - Work on Network Security Products such as IDS / IPS, Next Generation Firewall - Product Development / Solution Engineering - Handle IP networking, IP networking Protocols, Computer System internals, I...

Role Overview: We are looking for a Senior Python Developer with 6–8 years of experience to design and implement the integration between Zeek, Suricata, and downstream systems (Kafka/Logstash). The candidate will also play a key role in developing the correlation engine, routing/enrichment pipelines, and scaling the solution for high-throughput OT security monitoring. Mandatory Skills: Expert-level Python (3.7+), with proven experience in building scalable back-end services. Strong experience with streaming/data pipelines (, message queues, or similar). Familiarity with correlation engine development (rule-based, enrichment, anomaly detection). Experience in building microservices in Python ...

Key Responsibilities: Perform incident analysis and escalate when necessary. Document findings for seamless handover to L3 or other responders. Conduct threat research and data analysis. Coordinate with IT/Application/Infrastructure teams for issue resolution. Execute deep dives and threat hunts; propose corrective actions. Develop detection use cases based on threat intelligence. Analyze malware sandbox results and phishing campaigns. Tune detection rules and improve playbooks. Mandatory Skills & Tools: SIEM & EDR Tools: Azure Sentinel, Microsoft Defender Suite (E5 stack), Defender for Endpoint, Identity, O365, CloudApps, Defender for Cloud Query Languages: KQL, MS-KQL, SPL, ArcSight Networ...

Description The SIEM Rule Engineer is responsible for designing, developing, testing, and tuning detection rules, signatures, and alerts for SIEM, IDS/IPS, and other monitoring platforms. This role focuses on enhancing threat detection capabilities by translating threat intelligence, use cases, and attack patterns into actionable and accurate detections . Responsibiliti es Rule Engineering & Detection Content Development Develop and maintain correlation rules, signatures, and detection logic in SIEM (e.g., Splunk, ELK, QRadar), IDS/IPS (e.g., Suricata, Snort), and EDR tools (Wazuh). Translate MITRE ATT&CK techniques into detection rules. Tune existing rules to reduce false positives/negative...

Role Overview: We are looking for a Senior Python Developer with 6–8 years of experience to design and implement the integration between Zeek, Suricata, and downstream systems (Kafka/Logstash). The candidate will also play a key role in developing the correlation engine, routing/enrichment pipelines, and scaling the solution for high-throughput OT security monitoring. Mandatory Skills: Expert-level Python (3.7+), with proven experience in building scalable back-end services. Strong experience with streaming/data pipelines (, message queues, or similar). Familiarity with correlation engine development (rule-based, enrichment, anomaly detection). Experience in building microservices in Python ...

Location: Pune - Maharashtra, India - Rajiv Ganhi Infotec Park Job Family: Engineering Worker Type Reference: Regular - Permanent Pay Rate Type: Salary Career Level: T3(B) Job ID: R-48411-2025 Description & Requirements Role Overview: We are looking for a Senior Python Developer with 6–8 years of experience to design and implement the integration between Zeek, Suricata, and downstream systems (Kafka/Logstash). The candidate will also play a key role in developing the correlation engine, routing/enrichment pipelines, and scaling the solution for high-throughput OT security monitoring. Mandatory Skills: Expert-level Python (3.7+), with proven experience in building scalable back-end services. ...

Role Overview We are looking for a Network Security Engineer with experience in deploying and managing open-source network security platforms. The role involves setting up visibility sensors, handling network traffic capture, and building log pipelines that integrate into SIEM environments. The ideal candidate has worked with packet capture tools, IDS/IPS, and log management frameworks in production or lab setups. Key Responsibilities Deploy and configure open-source network security monitoring tools (e.g., Security Onion, Zeek, Suricata, Bro). Configure and maintain IDS/IPS signatures and tune for industrial/enterprise network traffic. Build and manage log pipelines using tools such as File...

Calix is hiring Security Researcher to join their Threat Intelligence team in Bangalore. The successful candidates will lead efforts in identifying, analyzing, and mitigating network threats. Develop and implement advanced threat detection and prevention strategies. Additionally, they will enhance threat detection capabilities through various research activities. In this role, you will collaborate with the security engineering and threat intelligence teams to support the development, validation, and research of network intrusion detection capabilities. Your contributions will directly impact the enhancement of threat detection signatures, research of emerging threats, and improvement of inte...

About Gruve Gruve is an innovative software services startup dedicated to transforming enterprises to AI powerhouses. We specialize in cybersecurity, customer experience, cloud infrastructure, and advanced technologies such as Large Language Models (LLMs). Our mission is to assist our customers in their business strategies utilizing their data to make more intelligent decisions. As a well-funded early-stage startup, Gruve offers a dynamic environment with strong customer and partner networks. About The Role Gruve Technologies is looking for an experienced Threat Hunter Analyst to join our cybersecurity team. The ideal candidate will proactively search for advanced threats, identify stealthy ...

Location: New Delhi, India About Us: At Sauce Labs, we empower the world's top enterprises - like Walmart, Bank of America, and Indeed - to deliver quality web and mobile applications at speed. Our industry-leading platform ensures continuous quality across the SDLC, using AI-powered analytics to identify key quality signals from development through production. With our unified solution, teams can release and innovate with confidence, knowing their apps will always look, function, and perform exactly as they should. Backed by TPG and Riverwood Capital, we are shaping the future of digital confidence - join us! The Role: We are seeking a highly motivated and detail-oriented Security Engineer ...

Location: New Delhi, India About Us At Sauce Labs, we empower the world's top enterprises - like Walmart, Bank of America, and Indeed - to deliver quality web and mobile applications at speed. Our industry-leading platform ensures continuous quality across the SDLC, using AI-powered analytics to identify key quality signals from development through production. With our unified solution, teams can release and innovate with confidence, knowing their apps will always look, function, and perform exactly as they should. Backed by TPG and Riverwood Capital, we are shaping the future of digital confidence - join us! The Role We are seeking a highly motivated and detail-oriented Security Engineer to...

Own threat detection, response, and hardening across cloud and endpoint estates. Design/operate SIEM/XDR/SOAR with detection engineering mapped to MITRE ATT&CK, and automate triage using GenAI for alert summarisation, enrichment, and knowledge search. Build Sigma rules, integrate EDR/telemetry (CrowdStrike, Defender, Sentinel/Splunk/Chronicle), and run purple-team exercises to close gaps. Champion Zero Trust, secrets hygiene, and incident runbooks with AI-assisted updates. Measure MTTA/MTTR, detection coverage, and control efficacy. Keywords: SIEM/XDR/SOAR operations and rule tuning (Sentinel/Splunk/Chronicle + EDR)Detection engineering mapped to ATT&CK Sigma/YARA authoring GenAI for alert t...

Location: New Delhi, India About Us: At Sauce Labs, we empower the world's top enterprises - like Walmart, Bank of America, and Indeed - to deliver quality web and mobile applications at speed. Our industry-leading platform ensures continuous quality across the SDLC, using AI-powered analytics to identify key quality signals from development through production. With our unified solution, teams can release and innovate with confidence, knowing their apps will always look, function, and perform exactly as they should. Backed by TPG and Riverwood Capital, we are shaping the future of digital confidence - join us! The Role: We are seeking a highly motivated and detail-oriented Security Engineer ...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you a tech-savvy problem-solver with a passion for ensuring optimal network performance? If so, look no further – Kyndryl is seeking a Network Support Specialist who will be the go-to expert for installing, maintaining, and troubleshooting computer networks Key Responsibilities Monitor and analyze network traffic using NDR tools (e.g., Vect...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you a tech-savvy problem-solver with a passion for ensuring optimal network performance? If so, look no further – Kyndryl is seeking a Network Support Specialist who will be the go-to expert for installing, maintaining, and troubleshooting computer networks Key Responsibilities Monitor and analyze network traffic using NDR tools (e.g., Vect...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you a tech-savvy problem-solver with a passion for ensuring optimal network performance? If so, look no further – Kyndryl is seeking a Network Support Specialist who will be the go-to expert for installing, maintaining, and troubleshooting computer networks Key Responsibilities Monitor and analyze network traffic using NDR tools (e.g., Vect...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you a tech-savvy problem-solver with a passion for ensuring optimal network performance? If so, look no further – Kyndryl is seeking a Network Support Specialist who will be the go-to expert for installing, maintaining, and troubleshooting computer networks Key Responsibilities: Monitor and analyze network traffic using NDR tools (e.g., Vec...

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you a tech-savvy problem-solver with a passion for ensuring optimal network performance? If so, look no further – Kyndryl is seeking a Network Support Specialist who will be the go-to expert for installing, maintaining, and troubleshooting computer networks Key Responsibilities: Monitor and analyze network traffic using NDR tools (e.g., Vec...

Calix provides the cloud, software platforms, systems and services required for communications service providers to simplify their businesses, excite their subscribers and grow their value. In this role, you will collaborate with the security engineering and threat intelligence teams to support the development, validation, and research of network intrusion detection capabilities. Your contributions will directly impact the enhancement of threat detection signatures, research of emerging threats, and improvement of internal threat intelligence processes. Responsibilities and Duties: Collaborate with threat researchers and security engineers to analyze network-based attacks and generate detect...

Key Responsibilities: Monitor network traffic to detect malicious or anomalous activity using NDR solutions (e.g., Darktrace, Vectra, ExtraHop, Corelight). Configure, maintain, and fine-tune NDR tools to optimize detection capabilities and minimize false positives. Conduct deep-dive analysis of network events to identify indicators of compromise (IoCs) and tactics, techniques, and procedures (TTPs). Collaborate with SOC analysts, threat hunters, and other teams to contain and remediate threats. Perform forensic investigations of network packets and flows using tools such as Wireshark, Zeek, or Suricata. Develop detection rules, playbooks, and alerting mechanisms aligned with MITRE ATT&CK fra...

You will be responsible for deploying various Open-Source Network Security Solutions and integrating relevant components to ensure system reliability and performance improvement. Your role will involve performance optimization, customization of event-driven process flows, and actions for IPC and enrichments. Additionally, you will be required to conduct research on new approaches and contribute to IP creation. To excel in this role, you must possess rich experience in working with Network Security Products such as IDS/IPS, Next Generation Firewall, and have a background in product development/solution engineering. Your expertise should include IP networking, IP networking protocols, computer...

Location: Pune - Maharashtra, India - Rajiv Ganhi Infotec Park Job Family: Engineering Worker Type Reference: Regular - Permanent Pay Rate Type: Salary Career Level: T4(A) Job ID: R-47561-2025 Description & Requirements About the Role We are developing a high-performance Security Engine that inspects, analyzes, and processes real-time OT/ICS network traffic at scale. You will design and optimize the packet capture, parsing, and traffic distribution pipeline that powers our threat detection and protocol analysis stack (including Zeek and Suricata). - Key Responsibilities Design and implement high-speed packet capture and processing pipelines. Integrate with Zeek/Suricata and develop custom pr...

About The Company Tata Communications Redefines Connectivity with Innovation and IntelligenceDriving the next level of intelligence powered by Cloud, Mobility, Internet of Things, Collaboration, Security, Media services and Network services, we at Tata Communications are envisaging a New World of Communications Experience Required: 4+ years in Cybersecurity, with 2+ years hands-on NBAD and Network forensics Reports To: Security Operations Lead / SOC Manager Location: Jaipur Job Type: Full-time, Customer locations Job Summary We are looking for a skilled NBAD Engineer to support the identification of suspicious and anomalous network behaviors through behavior-based analytics. The candidate wi...

About The Company Tata Communications Redefines Connectivity with Innovation and IntelligenceDriving the next level of intelligence powered by Cloud, Mobility, Internet of Things, Collaboration, Security, Media services and Network services, we at Tata Communications are envisaging a New World of Communications Organisation : Novamesh Ltd (TATA Commununications Ltd) Position : L3, Location – Jaipur Shift : 9x5 Job Summary We are looking for an experienced System and Network Forensics Specialist to conduct detailed investigations into cyber incidents, data breaches, and suspicious network activity. The candidate will analyze logs, artifacts, memory dumps, and network traffic to identify root ...

Analyze network logs for insights Identify sessions, protocols & anomalies Perform DNS/HTTP/FTP/SMTP/SIP/VPN analysis Build Python/SQL scripts for data parsing Create structured investigative reports Ensure confidentiality & secure handling