Middle Security Engineer

EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential._

We're seeking a **Middle Security Engineer** to become part of our **remote **team.

The role involves monitoring both on-premises and AWS infrastructure for any signs of attacks, intrusions, or unusual, unauthorized, or illegal activity. It also entails developing SIEM and SOAR detection and remediation scenarios, conducting threat hunting, and creating reports for technical and non-technical staff and stakeholders. The position requires working with advanced analytic tools to identify emerging threat patterns and vulnerabilities using Splunk, CrowdStrike, AWS Guard Duty, Cortex XSOAR, and PaloAlto.

RESPONSIBILITIES
- Monitoring of both on-premises and AWS infrastructure for any signs of attacks, intrusions, or unusual, unauthorized, or illegal activity
- Development of SIEM and SOAR detection and remediation scenarios, with implementation as rules, and creation, testing, and updating of playbooks
- Conducting threat hunting and providing support for threat intelligence processes
- Creation of reports for both technical and non-technical staff and stakeholders
- Usage of advanced analytic tools to identify emerging threat patterns and vulnerabilities
- Collaboration with cross-functional teams and vendors for effective and timely security operations

**REQUIREMENTS**:

- Minimum of 2 years' relevant experience in Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tools, Anti-malware, and packet inspection
- Familiarity with security investigation and monitoring techniques such as SOC (Security Operations Center), security monitoring, and security investigations
- Proficiency in Splunk Enterprise Security and Cortex XSOAR
- Advanced understanding of AWS Cloud Security
- Experience with CrowdStrike Products and Services
- Working knowledge of Linux and Windows operating systems
- Familiarity with network security devices and protocols
- Proficiency in Bash, PowerShell, and Python scripting languages
- Fluency in English, both written and spoken, with an Upper-Intermediate level

NICE TO HAVE
- Experience with network security devices and protocols
- Linux administration and networking experience
- Familiarity with Firewalls (F5, Juniper, Check Point, Palo Alto, Cisco)

WE OFFER
- Learning Culture - We want you to be the best version of yourself, that is why we offer unlimited access to learning platforms, a wide range of internal courses, and all the knowledge you need to grow professionally
- Health Coverage - Health and wellness are important, that is why we have you and up to four family members in a premiere health plan. We have a couple of options, so you can choose what is best for you and your family
- Visual Benefit - Seeing your work for us would be a sight for sore eyes. We want your vision to always be at 100% which is why we offer up to $200.000 COP for any visual health expenses
- Life Insurance Plan - We have partnered with MetLife to offer a full-coverage Ife insurance plan. So, your family is covered, even if you are gone
- Medical Leave Coverage - We are one of the few companies that cover 100% of your medical leave, for up to 90 days. Your health is the most important thing to us
- Professional Growth Opportunities - We have designed a highly competitive and complete development process, where you will have all the tools to get where you have always wanted to be, personally and professionally
- Stock Option Purchase Plan - As an EPAMer you can be more than just an employee, you will also have the opportunity to purchase stock at a reduced price and become a part owner of our organization
- Additional Income - Besides your regular salary, you will also have the chance to earn extra income by referring talent, being a technical interviewer, and many more ways
- Community Benefit - You will be part of a worldwide community of over 50,000 employees, where you can learn, challenge yourself, stand out, and share your knowledge and experience with multicultural teams