Skip navigation EPAM

SecOps Engineer Lviv, Ukraine or Remote

SecOps Engineer Description

Job #: 49492
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

DESCRIPTION


We are looking for talented Tier 1-2 SecOps Engineers / Security Analysts for a Customer Security Operation Center.
Our Customer is an American video games development company.

Responsibilities

  • Work in 24/7 environment with rotation-based shifts, including weekends
  • Monitor on-prem and AWS infrastructure for attacks, intrusions and unusual, unauthorized or illegal activity
  • Monitor identity and access management, including monitoring for abuse of permissions by authorized system users
  • Create SIEM and SOAR detection and remediation scenarios, implement them as rules. Create, test and update playbooks
  • Perform threat hunting and support threat intelligence processes
  • Along with security monitoring perform other security operation activities
  • Use advanced analytic tools to determine emerging threat patterns and vulnerabilities

Requirements

  • Experience in Cyber/Information/Network/Cloud Security in enterprise environments, with basic scale knowledge of threat analysis of event data from commercial and open source infrastructure technology platforms
  • Technical knowledge of Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tool, Anti-malware and packet inspection
  • Basic understanding of Windows, Linux, DB and network device monitoring and logging technics
  • Basic knowledge of malware detection, intrusion detection and prevention systems
  • Experience with 1 or more SIEM solutions (Splunk, QRadar, ArcSight, LogRhythm, ELK, Wazuh, Apache Metron, OSSEC etc.)
  • Experience with 1 or more SIRP/SOAR tool (TheHive, Cortex, Phantom, Demisto, Resilient etc.)
  • Experience with Firewalls (F5, Juniper, Check Point, Palo Alto, Cisco)

We offer

  • Competitive compensation depending on experience and skills
  • Individual career path in engineering
  • Social package - medical insurance, sports
  • Sick leave and regular vacation
  • Unlimited access to Linkedin learning solutions
  • English classes with certified English teachers
  • Flexible work schedule

Dobrý den! Jak vám můžeme pomoci?


Kde nás najdete