Skip To Main Content
epam-logo-black.svgepam-logo-black.svg
backBack to Search

Security Analyst

Remote in Mexico
Security.Engineering
& 10 others
Mexico

We are seeking a skilled and proactive Security Analyst to join our team and safeguard our organization's digital infrastructure against cyber threats.

In this role, you will contribute to a dynamic and collaborative security operations environment, leveraging cutting-edge technologies to monitor, prevent, and address cybersecurity risks.

Responsibilities
  • Operate effectively in a 24/7 environment, working rotating shifts that include weekends
  • Monitor both on-premises and cloud infrastructure for signs of attacks, intrusions, or unauthorized activities
  • Oversee identity and access management processes, ensuring abuse of permissions by authorized users is identified and addressed
  • Create, implement, and maintain SIEM and SOAR detection rules and remediation workflows, while developing and refining playbooks
  • Execute threat hunting practices and contribute to threat intelligence operations
  • Expand security monitoring capabilities alongside other security operation initiatives
  • Prepare tailored reports for technical teams, business stakeholders, and non-technical staff
  • Apply advanced analytics to identify patterns, vulnerabilities, and emerging threats effectively
  • Utilize tools such as Splunk, PA XSOAR, CrowdStrike, WIZ, and AWS Guard Duty to achieve objectives
Requirements
  • 2+ years of experience in Security Engineering or similar
  • Technical knowledge of Internet security, networking protocols, and technologies including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tools, Anti-malware, and packet inspection
  • Understanding of Windows, Linux, database, and network device monitoring and logging techniques
  • Comprehensive background in host and network security hardening, networking protocols, intrusion methods, and risk management concepts
  • Basic knowledge of malware detection, intrusion detection and prevention systems
  • Expertise in at least one SIEM solution such as Splunk, QRadar, ArcSight, LogRhythm, ELK, or Wazuh
  • Proficiency with one or more SIRP/SOAR tools such as XSOAR, TheHive, Cortex, Phantom, or Resilient
  • Upper-intermediate proficiency in English (B2+)
Nice to have
  • Familiarity with AWS services including Guard Duty
  • Background in network security practices
  • Skills in configuring and managing firewalls like F5, Juniper, Check Point, Palo Alto, or Cisco
Benefits
  • International projects with top brands
  • Work with global teams of highly skilled, diverse peers
  • Healthcare benefits
  • Employee financial programs
  • Paid time off and sick leave
  • Upskilling, reskilling and certification courses
  • Unlimited access to the LinkedIn Learning library and 22,000+ courses
  • Global career opportunities
  • Volunteer and community involvement opportunities
  • EPAM Employee Groups
  • Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn