Skip navigation EPAM

SecOps Engineer Lviv, Ukraine or Remote

SecOps Engineer Description

Job #: 49492
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

DESCRIPTION


We are looking for talented Tier 1-2 SecOps Engineers / Security Analysts for a Customer Security Operation Center.
Our Customer is an American video games development company.

Responsibilities

  • Work in 24/7 environment with rotation-based shifts, including weekends
  • Monitor on-prem and AWS infrastructure for attacks, intrusions and unusual, unauthorized or illegal activity
  • Monitor identity and access management, including monitoring for abuse of permissions by authorized system users
  • Create SIEM and SOAR detection and remediation scenarios, implement them as rules. Create, test and update playbooks
  • Perform threat hunting and support threat intelligence processes
  • Along with security monitoring perform other security operation activities
  • Use advanced analytic tools to determine emerging threat patterns and vulnerabilities

Requirements

  • Experience in Cyber/Information/Network/Cloud Security in enterprise environments, with basic scale knowledge of threat analysis of event data from commercial and open source infrastructure technology platforms
  • Technical knowledge of Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tool, Anti-malware and packet inspection
  • Basic understanding of Windows, Linux, DB and network device monitoring and logging technics
  • Basic knowledge of malware detection, intrusion detection and prevention systems
  • Experience with 1 or more SIEM solutions (Splunk, QRadar, ArcSight, LogRhythm, ELK, Wazuh, Apache Metron, OSSEC etc.)
  • Experience with 1 or more SIRP/SOAR tool (TheHive, Cortex, Phantom, Demisto, Resilient etc.)
  • Experience with Firewalls (F5, Juniper, Check Point, Palo Alto, Cisco)

We offer

  • Competitive compensation depending on experience and skills
  • Individual career path in engineering
  • Social package - medical insurance, sports
  • Sick leave and regular vacation
  • Unlimited access to Linkedin learning solutions
  • English classes with certified English teachers
  • Flexible work schedule

A day in the life

SALMAN TALAT
Account Manager
Toronto, Canada

IRYNA KOVALENKO
Delivery Manager
Kyiv, Ukraine

JAN MAZUREK 
Senior Business Analyst
Gdansk, Poland

DANIELLA KOROSSY
Project Manager
Budapest, Hungary

Hello. How Can We Help You?

Get in touch with us. We'd love to hear from you.


Our Offices