Security Engineer — Security Operations

We are seeking a skilled Security Engineer to join the 24/7 Security Operations team, focusing on proactive threat detection and incident response across enterprise infrastructure, including cloud and on‑premise environments.

You will work closely with advanced security tools to identify, analyze, and remediate threats, contributing to the overall resilience of our systems. Apply now to help strengthen our clients’ security posture.

Responsibilities

• Monitor both on-premise and cloud systems for unauthorized or abnormal activity
• Investigate security alerts and perform incident response procedures
• Develop SIEM detection scenarios and remediation workflows
• Create, test, and maintain SOAR playbooks for automated response
• Conduct threat hunting operations to uncover latent risks
• Support and enhance threat intelligence initiatives
• Analyze security event data to identify emerging patterns and vulnerabilities
• Manage identity and access control to prevent abuse of permissions
• Generate actionable reports for technical and non-technical stakeholders
• Collaborate with other teams to coordinate incident containment and remediation
• Apply security hardening measures to servers, endpoints, and network devices
• Utilize Splunk and other tools to correlate and interpret log data

Requirements

• 2+ years of experience in security operations within enterprise environments
• Experience in security investigations and monitoring
• Experience with SIEM tools such as Splunk, QRadar or ArcSight
• Experience in security incident response processes
• Knowledge of networking protocols and security technologies including IDS/IPS and firewalls
• Understanding of Windows, Linux, and database monitoring and logging techniques
• Understanding of host and network security hardening practices
• Familiarity with malware detection and prevention systems
• Exposure to SOAR platforms such as XSOAR, Phantom or Resilient
• Awareness of AWS security services
• Upper-Intermediate (B2) English proficiency for clear technical communication

Nice to have

• Scripting with Bash for automation
• Proficiency in Linux systems administration
• Understanding of Microsoft Windows security configuration
• Knowledge of network security principles
• Experience with PowerShell scripting
• Basic Python programming skills

We offer

• International projects with top brands
• Work with global teams of highly skilled, diverse peers
• Healthcare benefits
• Employee financial programs
• Paid time off and sick leave
• Upskilling, reskilling and certification courses
• Unlimited access to the LinkedIn Learning library and 22,000+ courses
• Global career opportunities
• Volunteer and community involvement opportunities
• EPAM Employee Groups
• Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn