Skip navigation EPAM

Senior Security SOC Engineer Gdansk, Poland or Remote

  • hot

Senior Security SOC Engineer Description

Job #: 57473
Striving for excellence is in our DNA. Since 1993, we have been helping the world’s leading companies imagine, design, engineer and deliver software and digital experiences that change the world. We are more than just specialists - we are experts.

The remote option applies only to the Candidates who will be working from any location in Poland.

DESCRIPTION


Currently we are looking for a Senior Security SOC Engineer for our Gdansk office.
#LI-Remote

Responsibilities

  • Create SIEM and SOAR detection and remediation scenarios, implement them as detection and response rules. Create, test, and update playbooks
  • Configure security tools integration with SIEM platform
  • Conduct cloud and infrastructure security posture assessment
  • Monitor on-prem and cloud infrastructure for attacks, intrusions, and unusual, unauthorized, or illegal activity
  • Monitor identity and access management, including monitoring for abuse of permissions by authorized system users
  • Perform threat hunting and support threat intelligence processes
  • Use advanced analytic tools to determine emerging threat patterns and vulnerabilities

Requirements

  • Experience with Microsoft Sentinel SIEM solutions
  • At least 1 year of experience with Microsoft Azure
  • Good to have experience with one of the following SIEM solutions (Splunk, QRadar, ArcSight, LogRhythm, ELK, Wazuh, Apache Metron, OSSIM, etc.)
  • Experience with 1 or more SIRP/SOAR tools (TheHive, Cortex, Phantom, Demisto, Resilient, etc.)
  • Technical knowledge of Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tool, Anti-malware, and packet inspection
  • Basic understanding of Windows, Linux, DB, and network device monitoring and logging technics
  • Basic understanding of host and network security hardening, networking protocols, common intrusion techniques, and common risk management concepts
  • Basic knowledge of malware detection, intrusion detection, and prevention systems
  • Experience with network security will be a plus
  • Experience with Firewalls (F5, Juniper, Check Point, Palo Alto, Cisco) will be a plus

We offer

  • Vast opportunities for self-development: online courses and library, experience exchange with colleagues around the world, partial grant of certification
  • English language classes
  • Polish language classes for Foreigners
  • Career development center
  • Unlimited access to LinkedIn learning solutions
  • Possibility to relocate for short and long-term projects (ex. to USA or Switzerland)
  • Benefit package (private insurance, health care, multisport, lunch tickets, and shopping vouchers, etc.)
  • Possibility to be involved in an international project
  • Remote work options
  • Relocation package for foreign applicants as well as for people relocating within Poland
  • Please note that only selected candidates will be contacted

Witaj. W czym możemy pomóc?


NASZE LOKALIZACJE