Senior Security Systems Engineer

**DESCRIPTION**:
Are you passionate about cybersecurity and staying one step ahead of emerging threats? Do you possess exceptional skills in threat hunting and enjoy taking on complex security challenges? If so, we have an exciting opportunity for you to join our dynamic team as a
**Senior Security Systems Engineer (Threat Hunting) **at EPAM.

As a Senior Security Systems Engineer (Threat Hunting), you will play a crucial role in safeguarding our company's assets and ensuring the integrity of our systems. You will be responsible for proactively identifying and mitigating potential security risks through advanced threat-hunting techniques. With your expertise, you will contribute to developing and implementing cutting-edge security strategies and technologies, keeping our organization at the forefront of cybersecurity defense.

EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.

RESPONSIBILITIES
- Develop and implement effective detection and response rules as SIEM and SOAR detection and remediation scenarios
- Create, test, and update playbooks to enhance incident response capabilities
- Configure seamless integrations between security tools and our advanced SIEM platform
- Conduct thorough assessments of cloud and infrastructure security postures
- Monitor both on-premises and cloud infrastructure, swiftly detecting any signs of attacks, intrusions, or suspicious activity
- Maintain vigilance over identity and access management, promptly identifying and addressing any potential misuse of permissions
- Engage in proactive threat hunting activities and provide support for threat intelligence processes
- Utilize cutting-edge analytic tools to identify emerging threat patterns and vulnerabilities
- Collaborate closely with other teams and our esteemed clients, effectively communicating and assisting with day-to-day remediation activities
- Take a proactive approach in reviewing, investigating, and escalating alerts, ensuring swift responses

**REQUIREMENTS**:

- Showcase your solid skills in Kusto Query, enabling efficient data analysis and threat detection
- Possess a minimum of 2 years of hands-on experience with Microsoft Azure, demonstrating a strong command of the platform
- Leverage your experience with SIEM solutions and incident management to enhance our security practices
- Demonstrate a proven track record in maintaining a robust security posture and assisting with vulnerability management

NICE TO HAVE
- Possess knowledge and ability to manage security scanners like Qualys and Greenbone, demonstrating an understanding of security vulnerabilities
- Familiarity with security frameworks and their implementation
- Experience in configuring Sentinel Soar features, enhancing the incident response process
- Technical expertise in internet security, networking protocols, and related technologies, including IDS/IPS, firewalls, content filtering, Network Behavior Analysis (NBA) tools, anti-malware solutions, and packet inspection techniques
- Basic understanding of monitoring and logging techniques for Windows, Linux, databases, and network devices
- Familiarity with host and network security hardening, networking protocols, common intrusion techniques, and fundamental risk management concepts
- Advanced knowledge of malware detection, intrusion detection, and prevention systems, ensuring robust security measures
- Experience with Fortinet Firewalls will be highly advantageous, showcasing proficiency in managing these systems

TECHNOLOGIES
- Kusto Query Language
- Microsoft Azure
- Microsoft Sentinel
- Security Incident Management
- Active Directory
- Anti-Malware
- Intrusion Detection System
- Intrusion Prevention System
- Microsoft Defender for Cloud
- Vulnerability Management

WE OFFER
- Career plan and real growth opportunities
- Unlimited access to LinkedIn learning solutions
- International Mobility Plan within 25 countries
- Constant training, mentoring, online corporate courses, eLearning and more
- English classes with a certified teacher
- Support for employee’s initiatives (Algorithms club, toastmasters, agile club and more)
- Enjoyable working environment (Gaming room, napping area, amenities, events, sport teams and more)
- Flexible work schedule and dress code
- Collaborate in a multicultural environment and share best practices from around the globe
- Hired directly by EPAM & 100% under payroll
- Law benefits (IMSS, INFONAVIT, 25% vacation bonus)
- Major medica