Back to Search
We are actively seeking a seasoned Senior Security Engineer to become a vital part of our remote team.
In this challenging role, you will play a pivotal role in formulating and applying security best practices within both architectural design and code implementation. The successful candidate will collaborate closely with diverse teams to pinpoint and address potential security vulnerabilities associated with authentication, authorization, network segmentation, encryption, container configuration, bastion host setup, and more. This position provides a distinctive opportunity to influence and propel security outcomes in a fiercely competitive and dynamic industry.
Responsibilities
- Forge and execute security best practices within architectural design and code
- Detect and rectify potential security vulnerabilities associated with authentication, authorization, network segmentation, encryption, container configuration, bastion host setup, and related aspects
- Collaborate closely with cross-functional teams to steer security outcomes
- Architect and implement effective threat modeling approaches to unveil vulnerabilities
- Lead engineering interventions for externally identified threats and vulnerabilities
- Ensure adherence to pertinent security regulations and standards
- Create and manage security documentation, encompassing technical specifications and test scenarios
- Consistently assess and enhance security metrics, identifying areas for improvement
- Stay current with evolving security trends, threats, and technologies to uphold a competitive advantage
- Serve as a subject matter expert on security-related matters
Requirements
- Accumulate 3+ years of hands-on experience in security engineering or comparable roles
- Demonstrate proven expertise in conceptualizing and implementing security best practices within architectural design and code
- Showcase proficiency in leading engineering interventions for externally identified threats and vulnerabilities
- Possess experience collaborating with teams to pinpoint and rectify potential security vulnerabilities related to authentication, authorization, network segmentation, encryption, container configuration, bastion host setup, and more
- Possess a comprehensive understanding of IT infrastructure, spanning AWS cloud services, IP networks, applications, databases, and operating systems
- Exhibit knowledge and hands-on skills with Docker, ECS, Kubernetes, and container security
- Possess extensive experience in embedded software development, security protocols, applied cryptography, and security standards
- Demonstrate a profound understanding of the TCP/IP protocol stack and major protocols
- Demonstrate proficiency in one or more general-purpose programming/script languages, including Java, C/C++, C#, Python, JavaScript, PowerShell
- Communicate effectively in English, both in writing and verbally, to facilitate global collaboration
Nice to have
- Possess experience with Metasploit and QRadar
- Demonstrate knowledge of SSL/TLS protocols and applications
- Familiarity with secure SDLC methodologies
- Possess experience with security tools and platforms such as Nessus, Burp Suite, and Nmap
Benefits
- International projects with top brands
- Work with global teams of highly skilled, diverse peers
- Healthcare benefits
- Employee financial programs
- Paid time off and sick leave
- Upskilling, reskilling and certification courses
- Unlimited access to the LinkedIn Learning library and 22,000+ courses
- Global career opportunities
- Volunteer and community involvement opportunities
- EPAM Employee Groups
- Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn