We are looking for a knowledgeable Security Architect who specializes in SIEM deployment and migration around highly sensitive regulation-focused sectors such as finance and insurance.
The ideal candidate will bring extensive experience in the architecture, design, implementation, and optimization of SIEM solutions. They will collaborate effectively with both client cyber security teams and internal SOC operations, tailoring technology solutions to meet complex business and technical needs within large enterprise settings.
This position offers hybrid setup with the flexibility to work from any location in Lithuania, whether it's your home or our dynamic offices in Vilnius and Kaunas.
#LI-DNI#top-vacancies-10-LT-dec
Want more jobs like this?
Get jobs in Kėdainiai, Lithuania delivered to your inbox every week.
Responsibilities
- Lead the design, deployment, and configuration of SIEM solutions, ensuring seamless integration with various security tools, systems, and log sources
- Plan and execute SIEM migration projects, including data transfer, log source integration, rule/alert migration, and configuration tuning
- Develop, customize, and fine-tune SIEM use cases, correlation rules, dashboards, and reports to effectively detect threats and suspicious activities
- Integrate diverse log sources such as firewalls, IDS/IPS, antivirus, cloud services, applications, and operating systems into the SIEM for comprehensive monitoring
- Collaborate with the SOC team to support further use case creation and fine-tuning following SOC team requirements
- Regularly review and optimize SIEM performance to ensure efficient log collection, storage, processing, and alerting
- Maintain comprehensive documentation for SIEM configurations, integrations, and migration processes, providing regular reports on SIEM performance
- Train and mentor junior security engineers and SOC analysts on SIEM use, best practices, and troubleshooting
- Work closely with IT, security, and network teams to ensure the SIEM platform aligns with security strategies and goals
- At least 8 years of experience in Cyber Security, with a specialization in engineering SIEM solutions and working in a SOC
- Expertise in SIEM engineering and architecture, with a focus on at least Splunk or any other leading SIEM solutions like Microsoft Sentinel, QRadar, ArcSight, LogRythm
- Experience in managing the full delivery lifecycle for SIEM enhancements and automation including working on converged SIEM solutions that include SOAR and XDR solutions within it
- Proficiency in integrating log sources and developing correlation rules, alerts, and dashboards
- Experience working in cloud environments (AWS, Azure, GCP) and integrating cloud logs into SIEM solutions
- Understand security frameworks (MITRE ATT&CK, NIST) and possess basic knowledge of regulatory compliance (GDPR, PCI-DSS)
- Knowledge of network protocols, firewalls, IDS/IPS, endpoint security, and threat intelligence
- Comprehend the client's needs, their specific security challenges, and the regulatory landscape to provide tailored solutions
- Effectively communicate complex technical concepts to clients, build trust, and establish strong relationships
- Manage stakeholders at various levels, from technical staff to senior executives
- Collaborate effectively with teams from different departments within large organizations and enterprises
- Facilitate discussions, resolve conflicts, and build consensus among stakeholders with diverse perspectives
- Make informed decisions based on evidence
- Engineering Heritage: Best-in-class experts sharing a culture of engineering excellence and tackling complex engineering challenges for over 30 years
- Advanced Tech Stack: Innovative projects where you can apply or enhance your expertise in Cloud, Data, AI, and other emerging technologies
- World-Class Clients: Work closely with 295+ of the Forbes Global 2000 on creating disruptive solutions that make a global impact
- Professional Growth: Exceptional support for career development with comprehensive resources for upskilling or reskilling in pioneering practices
- GenAI Community: Strong AI competencies with 600+ experts across 55+ locations driving GenAI-enabled transformation journeys
- Entrepreneurial Culture: If you're passionate and dedicated to improving business transformation, we provide the support you need to bring your ideas to life
- Hybrid Setup: The flexibility to work from any location in Lithuania, whether it's your home or our dynamic offices in Vilnius and Kaunas
- Other Benefits: Additional vacation and trust days, private health insurance, Employee Stock Purchase Plan and more
About EPAM
EPAM is a leading global provider of digital platform engineering and development services. For over 30 years, our team has helped leading brands navigate the waves of digital transformation, building solutions that help them stay competitive through constant market disruption.
With offices in 55+ countries, EPAM has grown in Lithuania to over 1,200+ talented innovators in just 4 years. We foster creativity and unconventional ways of doing things, welcoming like-minded professionals to join us