We are seeking a proactive and detail-oriented Support Engineer to join our Security Operations Centre (SOC) team.
As a key member of the SOC, you will play a critical role in maintaining and enhancing the security of our on-prem and cloud infrastructure by identifying, mitigating, and preventing cyber threats.
Responsibilities
• Work in a 24/7 environment with rotating shifts, including weekends
• Monitor on-prem and cloud infrastructure for malicious activity, unauthorized access, and security anomalies
• Oversee identity and access management to detect any misuse of permissions or accounts
• Create and implement SIEM and SOAR detection and remediation scenarios, as well as develop and refine playbooks
• Perform threat hunting activities to proactively identify vulnerabilities and suspicious patterns
• Contribute to threat intelligence processes by analyzing and correlating threat data
• Produce technical and non-technical reports for team members, leadership, and stakeholders
• Apply advanced analytic tools to evaluate and anticipate emerging threat patterns and vulnerabilities
• Support additional security operation activities assigned by leadership
Requirements
• 2+ years of experience in Security Engineering domain
• Expertise in Internet security, IDS/IPS, firewalls, and related technologies such as Anti-malware and Network Behavior Analysis tools
• Good understanding of Windows, Linux, and database monitoring along with device logging techniques
• Competency in host and network security hardening, networking protocols, and common intrusion techniques
• Knowledge of risk management concepts along with malware detection, intrusion detection, and prevention systems
• Hands-on experience with at least one SIEM platform such as Splunk, QRadar, ArcSight, LogRhythm, or ELK
• Skills in using SIRP/SOAR tools like PA XSOAR, TheHive, Cortex, Phantom, or Resilient
• Familiarity with AWS services such as GuardDuty to strengthen cloud security
• Background in working with network security technologies like firewalls (F5, Juniper, Check Point, Palo Alto, Cisco)
Nice to have
• Proficiency in automation/scripting tools such as Bash, PowerShell, and Python
• Showcase of Linux and Microsoft Windows management expertise for security-related tasks
• Understanding of advanced network security principles and tools
We offer
• International projects with top brands
• Work with global teams of highly skilled, diverse peers
• Healthcare benefits
• Employee financial programs
• Paid time off and sick leave
• Upskilling, reskilling and certification courses
• Unlimited access to the LinkedIn Learning library and 22,000+ courses
• Global career opportunities
• Volunteer and community involvement opportunities
• EPAM Employee Groups
• Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn