Back to Search
We're on the lookout for a seasoned Security Engineer to join our remote team.
In this capacity, you'll play a crucial role in crafting and deploying security best practices within our architectural framework and codebase. Collaborating closely with diverse teams, you'll pinpoint and address potential security vulnerabilities tied to authentication, authorization, network segmentation, encryption, container configuration, bastion host setup, and more. This role presents an exceptional chance to influence and steer security outcomes in a vibrant and competitive industry.
Responsibilities
- Forge and implement security best practices in architecture and code
- Detect and rectify potential security gaps related to authentication, authorization, network segmentation, encryption, container configuration, bastion host setup, and so forth
- Collaborate closely with cross-functional teams to propel security outcomes
- Devise and execute effective threat modeling strategies to uncover vulnerabilities
- Take charge of engineering remedies for externally identified threats and vulnerabilities
- Assure compliance with pertinent security regulations and standards
- Develop and sustain security documentation, including technical specifications and test scenarios
- Consistently assess and refine security metrics to pinpoint areas of enhancement
- Keep abreast of emerging security trends, threats, and technologies to maintain a competitive edge
- Serve as a subject matter expert on security-related matters
Requirements
- Accumulate 3+ years of experience in security engineering or comparable roles
- Demonstrate proven expertise in devising and implementing security best practices in architecture and code
- Exhibit leadership in engineering responses to externally identified threats and vulnerabilities
- Possess experience collaborating with teams to identify and remedy potential security gaps tied to authentication, authorization, network segmentation, encryption, container configuration, bastion host setup, and more
- Possess a comprehensive understanding of IT infrastructure, spanning AWS cloud services, IP networks, applications, databases, and operating systems
- Command knowledge and hands-on proficiency with Docker, ECS, Kubernetes, and container security
- Show extensive experience in embedded software development and architectures, security protocols, applied cryptography, and security standards
- Display a profound comprehension of the TCP/IP protocol stack and major protocols
- Demonstrate proficiency in one or more general-purpose programming/script languages, including Java, C/C++, C#, Python, JavaScript, PowerShell
- Showcase excellent English communication skills, both written and verbal, fostering effective global collaboration
Nice to have
- Demonstrate familiarity with Metasploit and QRadar
- Possess knowledge of SSL/TLS protocols and applications
- Show acquaintance with secure SDLC methodologies
- Have hands-on experience with security tools and platforms like Nessus, Burp Suite, and Nmap
Benefits
- International projects with top brands
- Work with global teams of highly skilled, diverse peers
- Healthcare benefits
- Employee financial programs
- Paid time off and sick leave
- Upskilling, reskilling and certification courses
- Unlimited access to the LinkedIn Learning library and 22,000+ courses
- Global career opportunities
- Volunteer and community involvement opportunities
- EPAM Employee Groups
- Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn