Skip To Main Content
backBack to Search

Support Engineer (Security Operations Сentre)

Remote in Chile, Colombia
Security.Engineering
& 10 others

We are seeking a proactive and detail-oriented Support Engineer to join our Security Operations Centre (SOC) team.

As a key member of the SOC, you will play a critical role in maintaining and enhancing the security of our on-prem and cloud infrastructure by identifying, mitigating, and preventing cyber threats.

Responsibilities
  • Work in a 24/7 environment with rotating shifts, including weekends
  • Monitor on-prem and cloud infrastructure for malicious activity, unauthorized access, and security anomalies
  • Oversee identity and access management to detect any misuse of permissions or accounts
  • Create and implement SIEM and SOAR detection and remediation scenarios, as well as develop and refine playbooks
  • Perform threat hunting activities to proactively identify vulnerabilities and suspicious patterns
  • Contribute to threat intelligence processes by analyzing and correlating threat data
  • Produce technical and non-technical reports for team members, leadership, and stakeholders
  • Apply advanced analytic tools to evaluate and anticipate emerging threat patterns and vulnerabilities
  • Support additional security operation activities assigned by leadership
Requirements
  • 2+ years of experience in Security Engineering domain
  • Expertise in Internet security, IDS/IPS, firewalls, and related technologies such as Anti-malware and Network Behavior Analysis tools
  • Good understanding of Windows, Linux, and database monitoring along with device logging techniques
  • Competency in host and network security hardening, networking protocols, and common intrusion techniques
  • Knowledge of risk management concepts along with malware detection, intrusion detection, and prevention systems
  • Hands-on experience with at least one SIEM platform such as Splunk, QRadar, ArcSight, LogRhythm, or ELK
  • Skills in using SIRP/SOAR tools like PA XSOAR, TheHive, Cortex, Phantom, or Resilient
  • Familiarity with AWS services such as GuardDuty to strengthen cloud security
  • Background in working with network security technologies like firewalls (F5, Juniper, Check Point, Palo Alto, Cisco)
Nice to have
  • Proficiency in automation/scripting tools such as Bash, PowerShell, and Python
  • Showcase of Linux and Microsoft Windows management expertise for security-related tasks
  • Understanding of advanced network security principles and tools
Benefits
  • International projects with top brands
  • Work with global teams of highly skilled, diverse peers
  • Healthcare benefits
  • Employee financial programs
  • Paid time off and sick leave
  • Upskilling, reskilling and certification courses
  • Unlimited access to the LinkedIn Learning library and 22,000+ courses
  • Global career opportunities
  • Volunteer and community involvement opportunities
  • EPAM Employee Groups
  • Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn