Do you have a Systems/Cloud engineering background and strong knowledge in Security? Are you an open-minded professional with good English skills? If it sounds like you, this could be the perfect opportunity to join EPAM as a Senior Cloud Security Engineer.
Our teams work in highly agile working environments for Fortune 1000 clients, following XP practices and best CI/CD practices. We are looking for a Senior Security Cloud Engineer to be part of our client's detection security team. The Security Team is the focal point for all security activities across our client. We are responsible for cybersecurity engineering and operations, corporate security, governance, operational resilience, risk and compliance. We define and advance the company's security strategy. As a part of a wider company Security Team, the Cyber Defence Engineering team has the mission to monitor, detect, and report cyber security-related threats targeting our client. We're looking for a detection engineer who can identify, develop, and implement advanced threat detection and response engineering solutions.
Want more jobs like this?
Get jobs in Madrid, Spain delivered to your inbox every week.
#LI-DNI
Responsibilities
- Develop and maintain a deep understanding of the latest threat landscape, tactics, techniques, and procedures (TTPs) used by attackers
- Develop and maintain expertise in threat detection tools and technologies, including SIEM systems, EDR (endpoint detection and response) tools, and network monitoring solutions
- Be a part of a Purple Team to improve our security stance and implement your insights into rules
- Continuously evaluate and improve the effectiveness of existing threat detection and response measures
- Continuous innovation, being curious and relentless in finding a better way every day
- Expert proficiency in Python, Kusto, or other scripting language
- Experience with Azure security tooling and development within Azure
- Knowledge of detection rule development, covering tools (such as SIEM, EDRs) and industry frameworks (such as MITRE ATT&CK®)
- Experience working as a security analyst or incident responder (in a SOC/CSIRT/on-call setup)
- Experience in development of cybersecurity attacks detection rules in complex corporate environments
- A track record of successful delivery in penetration tests and red team exercises as an ethical hacker
- A high level of integrity, result-oriented approach, and composure under pressure
- Strong communication, influencing, and collaboration skills
- Ability to communicate with a broad spectrum of stakeholders effectively - from cybersecurity analysts to threat intelligence experts
- Passion, drive, and a belief in the value of cybersecurity operations as an enabler of business performance
- Analysis of web traffic, underlying malware, lateral movement, TTPs detected through Microsoft and Linux security events, etc
- Logfile correlation and analysis
- Malware and exploit analysis (or reverse engineering)
- Past collaboration with incident responders in developing detection rules and SOAR playbooks
- Private health insurance
- EPAM Employees Stock Purchase Plan
- 100% paid sick leave
- Referral Program
- Professional certification
- Language courses
- WORK & LIFE BALANCE. Enjoy more of your personal time with flexible work options, 24 working days of annual leave and paid time off for numerous public holidays.
- CONTINUOUS LEARNING CULTURE. Craft your personal Career Development Plan to align with your learning objectives. Take advantage of internal training, mentorship, sponsored certifications and LinkedIn courses.
- CLEAR & DIFFERENT CAREER PATHS. Grow in engineering or managerial direction to become a People Manager, in-depth technical specialist, Solution Architect, or Project/Delivery Manager.
- STRONG PROFESSIONAL COMMUNITY. Join a global EPAM community of highly skilled experts and connect with them to solve challenges, exchange ideas, share expertise and make friends.