Senior Security Engineer Colombia In Colombia
Senior Security Engineer Description
Job #: 86790
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.
Looking for an Senior Security Systems Engineer to help ensure the confidentiality, integrity, and availability of information systems. Working with various security tools and technologies, you will help ensure applications and gaming systems are secure. If you’re one step ahead of the bad guys and are looking to join a team passionate about security, we’d love to hear from you!
#REF_HOU_CO
DESCRIPTION
Looking for an Senior Security Systems Engineer to help ensure the confidentiality, integrity, and availability of information systems. Working with various security tools and technologies, you will help ensure applications and gaming systems are secure. If you’re one step ahead of the bad guys and are looking to join a team passionate about security, we’d love to hear from you!
#REF_HOU_CO
What You’ll Do
- Actively participate in the decision-making process regarding infrastructure architecture for both internal projects and EPAM’s customers
- Conduct tools and practices research, evaluation, proof of concept, and training for internal and external customers
- Design, implement and maintain GitOps cycles based on Immutable Infrastructure
- Develop and maintain Continuous Deployment processes, tools, and execution; includes test frameworks, static code analysis, promotion gateways, etc
- Design, develop, and support Configuration Management as Code, tools, and execution for internal projects or EPAM’s clients’ projects
- Design, implement, and promote the non-functional tests automation for products EPAM develops for its customers
- Seek quality and resource optimization to improve the product and the team's value stream
Responsibilities
- Application Security Assessments - Defines and updates an application security methodology and performs assessments across internal, external applications
- Secure Coding - Keeps Web development teams apprised of secure coding best practice, and assists with static/dynamic code analysis
- Assist in the design, creation, testing, documentation, deployment and maintenance of new automation, capabilities and Security services for the InfoSec team
- Stay abreast of internal applications and their security posture
- Blue Team Cross Training - Remains abreast of Application Security threats and defines and develops InfoSec training on web-based exploits/tools and corresponding mitigation techniques
Benefits
- Learning Culture - We want you to be the best version of yourself, that is why we offer unlimited access to learning platforms, a wide range of internal courses, and all the knowledge you need to grow professionally
- Health Coverage - Health and wellness are important, that is why we have you and up to four family members in a premiere health plan. We have a couple of options, so you can choose what is best for you and your family
- Visual Benefit - Seeing your work for us would be a sight for sore eyes. We want your vision to always be at 100% which is why we offer up to $200.000 COP for any visual health expenses
- Life Insurance Plan - We have partnered with MetLife to offer a full-coverage Ife insurance plan. So, your family is covered, even if you are gone
- Medical Leave Coverage - We are one of the few companies that cover 100% of your medical leave, for up to 90 days. Your health is the most important thing to us
- Professional Growth Opportunities - We have designed a highly competitive and complete development process, where you will have all the tools to get where you have always wanted to be, personally and professionally
- Stock Option Purchase Plan - As an EPAMer you can be more than just an employee, you will also have the opportunity to purchase stock at a reduced price and become a part owner of our organizationt
- Additional Income - Besides your regular salary, you will also have the chance to earn extra income by referring talent, being a technical interviewer, and many more ways
- Community Benefit - You will be part of a worldwide community of over 50,000 employees, where you can learn, challenge yourself, stand out, and share your knowledge and experience with multicultural teams!
- Are you open to relocation? - If you want to relocate to another country and we have the right project, we will assist you every step of the way, to help you and your family, reach your new home
Qualification
- 3+ years experiense of Information Security principles, technology, and control processes
- Experience in design review and threat modeling
- Experience with providing security services as part of an SDLC
- Experience with Secure Coding and AppSec frameworks (OWASP Guide, SANS CWE Top 25, CERT Secure Coding)
- Excellent oral and written communication skills, including report writing and technical documentation
- CEH and Offensive Security Certification (OSCP, GPEN, or GWAPT)
- On the dev side:
- 3+ years of development experience building systems in languages such as Python, C++, Golang/Rust
- Experience working with and setting up services on AWS infrastructure
- Understand and be able to apply concepts such as algorithms, data structures, OOO design, databases
- The ability to work with a team, building complex solutions is a plus
- Knowing how to work with CI/CD systems is also a plus
- Knowing Docker and Terraform are also a plus
