Skip To Main Content
epam-logo-black.svgepam-logo-black.svg
backBack to Search

Security Operations Lead

Remote in Mexico,
& 7 others
Security Engineering Management
& 5 others
Mexico

We are looking for an experienced Security Operations Lead to drive and enhance our cybersecurity event management and incident response capabilities.

This pivotal role is responsible for overseeing the identification, management, and remediation of security incidents to maintain the resilience and integrity of both physical and digital security systems.

Responsibilities
  • Oversee logging and tracking of all security events with detailed event reports
  • Ensure accurate documentation of security events and incidents
  • Analyze security data to detect potential threats and vulnerabilities that may impact the organization
  • Lead incident response efforts to promptly address security breaches, system outages, or other events
  • Assess the scope and impact of security incidents and document findings comprehensively
  • Collaborate with internal departments and external stakeholders during forensic and response efforts
  • Develop and maintain incident response playbooks to streamline and prepare response strategies
  • Drive implementation of effective remediation measures to minimize future risks
  • Identify gaps and processes that can lead to incidents, implementing preventive solutions
  • Work cross-functionally with teams to deploy and enhance security controls
  • Conduct post-incident reviews to capture lessons learned and recommend improvements
  • Continuously evaluate and refine event monitoring and response workflows
Requirements
  • 5 years of experience in security event management and incident response roles
  • Background in security information and event management (SIEM) tools with demonstrable hands-on expertise
  • Understanding of information security principles, frameworks, and technologies
  • Capability to lead and manage an incident response team during critical operations
  • Skills in analytical problem-solving and making swift, confident decisions under pressure
  • Competency in interpersonal communication with technical and non-technical audiences
  • Flexibility to work independently, in collaboration, and remotely with distributed teams
Nice to have
  • Bachelor’s degree in Information Technology, Cybersecurity, or related field
  • Certifications such as Security+, CISSP, CISM, or SANS GIAC (e.g., GCIH, GCIA preferred but not mandatory)
Benefits
  • International projects with top brands
  • Work with global teams of highly skilled, diverse peers
  • Healthcare benefits
  • Employee financial programs
  • Paid time off and sick leave
  • Upskilling, reskilling and certification courses
  • Unlimited access to the LinkedIn Learning library and 22,000+ courses
  • Global career opportunities
  • Volunteer and community involvement opportunities
  • EPAM Employee Groups
  • Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn