Support Engineer (Security Operations Сentre)
Chile
We are seeking a proactive and detail-oriented Support Engineer to join our Security Operations Centre (SOC) team.
As a key member of the SOC, you will play a critical role in maintaining and enhancing the security of our on-prem and cloud infrastructure by identifying, mitigating, and preventing cyber threats.
Responsibilities
- Work in a 24/7 environment with rotating shifts, including weekends
- Monitor on-prem and cloud infrastructure for malicious activity, unauthorized access, and security anomalies
- Oversee identity and access management to detect any misuse of permissions or accounts
- Create and implement SIEM and SOAR detection and remediation scenarios, as well as develop and refine playbooks
- Perform threat hunting activities to proactively identify vulnerabilities and suspicious patterns
- Contribute to threat intelligence processes by analyzing and correlating threat data
- Produce technical and non-technical reports for team members, leadership, and stakeholders
- Apply advanced analytic tools to evaluate and anticipate emerging threat patterns and vulnerabilities
- Support additional security operation activities assigned by leadership
Requirements
- 2+ years of experience in Security Engineering domain
- Expertise in Internet security, IDS/IPS, firewalls, and related technologies such as Anti-malware and Network Behavior Analysis tools
- Good understanding of Windows, Linux, and database monitoring along with device logging techniques
- Competency in host and network security hardening, networking protocols, and common intrusion techniques
- Knowledge of risk management concepts along with malware detection, intrusion detection, and prevention systems
- Hands-on experience with at least one SIEM platform such as Splunk, QRadar, ArcSight, LogRhythm, or ELK
- Skills in using SIRP/SOAR tools like PA XSOAR, TheHive, Cortex, Phantom, or Resilient
- Familiarity with AWS services such as GuardDuty to strengthen cloud security
- Background in working with network security technologies like firewalls (F5, Juniper, Check Point, Palo Alto, Cisco)
Nice to have
- Proficiency in automation/scripting tools such as Bash, PowerShell, and Python
- Showcase of Linux and Microsoft Windows management expertise for security-related tasks
- Understanding of advanced network security principles and tools
Benefits
- International projects with top brands
- Work with global teams of highly skilled, diverse peers
- Healthcare benefits
- Employee financial programs
- Paid time off and sick leave
- Upskilling, reskilling and certification courses
- Unlimited access to the LinkedIn Learning library and 22,000+ courses
- Global career opportunities
- Volunteer and community involvement opportunities
- EPAM Employee Groups
- Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn