Skip To Main Content
epam-logo-black.svgepam-logo-black.svg
backBack to Search

Senior Security Analyst

Remote in Mexico
Security.Engineering
& 10 others
Mexico

We are seeking a skilled and proactive Senior Security Analyst to join our team and protect our organization's digital infrastructure from cyber threats.

In this role, you will contribute to a collaborative and high-performing security operations environment, leveraging advanced technologies to monitor, mitigate, and respond to cybersecurity risks.

Responsibilities
  • Operate effectively in a 24/7 environment working rotating shifts, including weekends
  • Monitor on-premises and cloud infrastructure to detect indications of attacks, intrusions, or unauthorized activities
  • Maintain identity and access management processes to identify and resolve permission misuse by authorized users
  • Develop, optimize, and sustain SIEM and SOAR detection rules and remediation workflows, alongside playbook creation and updates
  • Perform threat analysis and contribute to enhancing threat intelligence processes
  • Expand security monitoring solutions and support broader security operation goals
  • Provide tailored reporting for technical teams, business leaders, and non-technical users
  • Apply advanced analytics to detect vulnerabilities, patterns, and evolving cyber threats
  • Use tools like Splunk, PA XSOAR, CrowdStrike, WIZ, and AWS Guard Duty to achieve organizational objectives
Requirements
  • 3+ years of experience in Security Engineering or related field
  • Knowledge of Internet security, networking protocols, and technologies including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tools, Anti-malware, and packet inspection
  • Understanding of Windows, Linux, database, and network device monitoring and logging techniques
  • Background in host and network security hardening, networking protocols, intrusion tactics, and risk management principles
  • Basic knowledge of malware detection and intrusion detection/prevention systems
  • Expertise in at least one SIEM solution such as Splunk, QRadar, ArcSight, LogRhythm, ELK, or Wazuh
  • Proficiency with one or more SIRP/SOAR tools, including XSOAR, TheHive, Cortex, Phantom, or Resilient
Nice to have
  • Understanding of AWS services, particularly Guard Duty
  • Background in implementing network security measures
  • Proficiency in configuring and managing firewalls such as F5, Juniper, Check Point, Palo Alto, or Cisco
Benefits
  • International projects with top brands
  • Work with global teams of highly skilled, diverse peers
  • Healthcare benefits
  • Employee financial programs
  • Paid time off and sick leave
  • Upskilling, reskilling and certification courses
  • Unlimited access to the LinkedIn Learning library and 22,000+ courses
  • Global career opportunities
  • Volunteer and community involvement opportunities
  • EPAM Employee Groups
  • Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn