Back to Search
We're in search of a seasoned Senior Security Engineer eager to join our remote team.
In this pivotal role, you'll play a crucial part in formulating and applying top-notch security methodologies within both architectural frameworks and code. Working collaboratively with diverse teams, you'll pinpoint and rectify potential security loopholes linked to authentication, authorization, network segmentation, encryption, container configuration, bastion host setup, and more. This role provides a distinct opportunity to influence and propel security outcomes in a competitive and ever-evolving industry.
Responsibilities
- Develop and integrate security best practices into architecture and code
- Pinpoint and rectify potential security loopholes tied to authentication, authorization, network segmentation, encryption, container configuration, bastion host setup, and more
- Collaborate closely with cross-functional teams to achieve security objectives
- Devise and implement effective threat modeling approaches to uncover vulnerabilities
- Lead engineering efforts to address externally identified threats and vulnerabilities
- Ensure adherence to pertinent security regulations and standards
- Generate and sustain security documentation, encompassing technical specifications and test scenarios
- Consistently assess and refine security metrics to uncover areas for enhancement
- Stay current with emerging security trends, threats, and technologies to maintain a competitive edge
- Serve as a subject matter expert on security-related matters
Requirements
- Accumulated 3+ years of experience in security engineering or analogous roles
- Demonstrated expertise in devising and implementing security best practices in architecture and code
- Capacity to guide engineering efforts in response to externally identified threats and vulnerabilities
- Proficiency in collaborating with teams to identify and rectify potential security gaps related to authentication, authorization, network segmentation, encryption, container configuration, bastion host setup, and more
- Comprehensive understanding of IT infrastructure, covering AWS cloud services, IP networks, applications, databases, and operating systems
- Knowledge and hands-on experience with Docker, ECS, Kubernetes, and container security
- Extensive background in embedded software development, security protocols, applied cryptography, and security standards
- In-depth comprehension of the TCP/IP protocol stack and major protocols
- Familiarity with one or more general-purpose programming/script languages, including Java, C/C++, C#, Python, JavaScript, PowerShell
- Exceptional English communication skills, written and verbal, for efficient global collaboration
Nice to have
- Hands-on experience with Metasploit and QRadar
- Knowledge of SSL/TLS protocols and applications
- Familiarity with secure SDLC methodologies
- Experience with security tools and platforms such as Nessus, Burp Suite, and Nmap
Benefits
- International projects with top brands
- Work with global teams of highly skilled, diverse peers
- Healthcare benefits
- Employee financial programs
- Paid time off and sick leave
- Upskilling, reskilling and certification courses
- Unlimited access to the LinkedIn Learning library and 22,000+ courses
- Global career opportunities
- Volunteer and community involvement opportunities
- EPAM Employee Groups
- Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn