Skip To Main Content
epam-logo-black.svgepam-logo-black.svg
backBack to Search

Senior Security Engineer — Security Operations

Remote in Argentina, Mexico
Security.Engineering
& 10 others

Choose an option

We are looking for a seasoned Senior Security Engineer to join our around‑the‑clock Security Operations team, dedicated to detecting threats and responding to incidents across complex enterprise systems in both cloud and on‑premise setups. You will work with advanced platforms like Splunk to analyze risks, mitigate vulnerabilities, and protect vital infrastructure. Apply today to help fortify our clients’ security landscape.

Responsibilities
  • Oversee monitoring of cloud-based and on-premise infrastructure for suspicious activities
  • Lead investigations into security alerts and guide incident response efforts
  • Design and refine SIEM detection rules and corresponding remediation protocols
  • Build and maintain SOAR automation playbooks to accelerate incident actions
  • Drive threat hunting initiatives to detect previously unknown issues
  • Enhance and contribute to threat intelligence sharing and development
  • Interpret security logs and event data to uncover new attack vectors
  • Administer identity and access management to safeguard permissions
  • Deliver detailed security reports tailored to both technical and business audiences
  • Coordinate with cross-functional teams to ensure rapid containment and recovery
  • Implement hardening strategies for servers, workstations, and network components
  • Leverage Splunk Enterprise Security and similar tools to consolidate and analyze data
Requirements
  • Extensive background in enterprise-grade security operations
  • Hands-on experience conducting security investigations and system monitoring
  • Proficiency with SIEM platforms such as Splunk, QRadar, or ArcSight
  • Strong knowledge of incident response procedures and methodologies
  • In-depth understanding of networking protocols and technologies including IDS/IPS and firewalls
  • Familiarity with monitoring and logging in Windows, Linux, and database environments
  • Expertise in host and network security hardening techniques
  • Knowledge of malware prevention and detection mechanisms
  • Experience with SOAR tools like XSOAR, Phantom, or Resilient
  • Awareness of AWS security capabilities
  • Upper-Intermediate (B2) English proficiency enabling clear technical interaction
Nice to have
  • Ability to script automation tasks in Bash
  • Proficiency in administering Linux systems
  • Strong grasp of Microsoft Windows security setup
  • Knowledge of core network security concepts
  • Experience creating PowerShell scripts
  • Basic capabilities in Python programming
Looking for something else?

Find a vacancy that works for you. Send us your CV to receive a personalized offer.

Find me a job