Security Analyst

We are seeking a skilled and proactive **Security Analyst** to join our team and safeguard our organization's digital infrastructure against cyber threats.In this role, you will contribute to a dynamic and collaborative security operations environment, leveraging cutting-edge technologies to monitor, prevent, and address cybersecurity risks.**Responsibilities**- Operate effectively in a 24/7 environment, working rotating shifts that include weekends- Monitor both on-premises and cloud infrastructure for signs of attacks, intrusions, or unauthorized activities- Oversee identity and access management processes, ensuring abuse of permissions by authorized users is identified and addressed- Create, implement, and maintain SIEM and SOAR detection rules and remediation workflows, while developing and refining playbooks- Execute threat hunting practices and contribute to threat intelligence operations- Expand security monitoring capabilities alongside other security operation initiatives- Prepare tailored reports for technical teams, business stakeholders, and non-technical staff- Utilize tools such as Splunk, PA XSOAR, CrowdStrike, WIZ, and AWS Guard Duty to achieve objectives**Requirements**:- 2+ years of experience in Security Engineering or similar- Technical knowledge of Internet security, networking protocols, and technologies including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tools, Anti-malware, and packet inspection- Understanding of Windows, Linux, database, and network device monitoring and logging techniques- Comprehensive background in host and network security hardening, networking protocols, intrusion methods, and risk management concepts- Basic knowledge of malware detection, intrusion detection and prevention systems- Expertise in at least one SIEM solution such as Splunk, QRadar, ArcSight, LogRhythm, ELK, or Wazuh- Proficiency with one or more SIRP/SOAR tools such as XSOAR, TheHive, Cortex, Phantom, or Resilient- Upper-intermediate proficiency in English (B2+)**Nice to have**- Familiarity with AWS services including Guard Duty- Background in network security practices- Skills in configuring and managing firewalls like F5, Juniper, Check Point, Palo Alto, or Cisco**We offer**- Career plan and real growth opportunities- Unlimited access to LinkedIn learning solutions- International Mobility Plan within 25 countries- Constant training, mentoring, online corporate courses, eLearning and more- English classes with a certified teacher- Support for employee’s initiatives (Algorithms club, toastmasters, agile club and more)- Enjoyable working environment (Gaming room, napping area, amenities, events, sport teams and more)- Flexible work schedule and dress code- Collaborate in a multicultural environment and share best practices from around the globe- Hired directly by EPAM & 100% under payroll- Law benefits (IMSS, INFONAVIT, 25% vacation bonus)- Major medical expenses insurance: Life, Major medical expenses with dental & visual coverage (for the employee and direct family members)- 13 % employee savings fund, capped to the law limit- Grocery coupons- 30 days December bonus- Employee Stock Purchase Plan- 12 vacations days plus 4 floating days- Official Mexican holidays, plus 5 extra holidays (Maundry Thursday and Friday, November 2nd, December 24th & 31st)- Monthly non-taxable amount for the electricity and internet billsEPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.