We are seeking a highly skilled and motivated Senior Cybersecurity Engineer to join our team.
As a Cybersecurity Engineer, you will be responsible for supporting ongoing security operations and contributing to the overall security strategy. The ideal candidate must demonstrate in-depth knowledge of and experience in cloud security, incident response, automation, and development. This person will develop, optimize, and operate the security tools used throughout the client's infrastructure and contribute to the overall security strategy across the entire organization.
Responsibilities
-
Architect, deploy, and maintain the client's security infrastructure to safeguard systems and data
-
Evangelize security across the organization and empower end users to perform their jobs securely without creating unnecessary friction
-
Research and analyze potential new threats, attack vectors, and risks, and identify effective mitigation strategies
-
Review output from security tools and software, and report on findings to relevant stakeholders
-
Collaborate with engineering teams to provide feedback on products and ensure secure development environments
-
Work with cyber analysts and security engineers to develop threat models, detections, and incident response playbooks, and maintain tooling that enriches security intelligence
Requirements
-
At least 3 years of relevant experience working in a security role
-
Proven ability to identify security gaps and areas of risk, and effectively design and execute a remediation plan
-
Capability to work cross-functionally between technical and business teams, advocating for security best practices, policies, and procedures
-
Effective communication skills, both verbal and written
-
Demonstrated knowledge of enterprise-scale security technologies, including SIEM, incident response, HIDS/NIDS, PKI, user behavior analytics, SSO, IAM, and Privileged Access Management
-
Hands-on experience building and maintaining enterprise logging pipelines using tools such as Splunk, DataDog, ELK Stack, or Snowflake
-
Practical experience developing infrastructure as code with Terraform or CloudFormation
-
Deep hands-on security experience with cloud providers such as AWS, GCP, or others, along with their respective security tools (e.g., GuardDuty, CloudTrail, SecurityMonkey, ScoutSuite)
-
Experience with EDR (Endpoint Detection and Response) tools such as CrowdStrike, GRR, OSQuery, Sysdig, Carbon Black, Endgame, or Tanium
-
Familiarity with development processes and tools such as Git, Jira, and Confluence
-
Excellent oral and written communication skills in English (B2+ level or higher)
Nice to have
-
Demonstrated proficiency with scripting languages such as Bash or Python for automating security tasks
-
Experience with vulnerability management to identify, assess, and remediate security weaknesses
-
Cybersecurity certifications such as CISSP, CEH, Security+, or equivalent
-
Pentesting experience to identify and exploit security vulnerabilities in controlled environments
-
Hands-on experience with container technologies (Docker, EKS, GKE, Kubernetes, OpenShift) and their associated security tools (e.g., Twistlock, StackRox, Aqua, Sysdig)
-
Experience with SOAR, CASB, and DLP technologies for orchestrating security operations and protecting sensitive data
-
Comfort with configuration management tools such as Chef, Puppet, or Ansible
We offer
-
International projects with top brands
-
Work with global teams of highly skilled, diverse peers
-
Healthcare benefits
-
Employee financial programs
-
Paid time off and sick leave
-
Upskilling, reskilling and certification courses
-
Unlimited access to the LinkedIn Learning library and 22,000+ courses
-
Global career opportunities
-
Volunteer and community involvement opportunities
-
EPAM Employee Groups
-
Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn
EPAM is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity or expression, disability, protected veteran status, or any other characteristic protected by applicable law.
