Lead Security Engineer

EPAM is looking for an experienced and highly analytical Lead Security Engineer to join our Security Operations Centre.

This role involves refining security detections, analyzing security data sources, and working collaboratively with IT technical teams to enhance our client’s security posture. The ideal candidate would have a strong analytical background, preferably having SOC experience as well.

Improve security detection and response activities by leveraging your expertise Analyse multiple security data sources to identify malicious activities and respond appropriately Identify missing controls and adjust security tooling to provide compensatory remediation Collaborate with IT technical teams to deliver Information Security services and continuous improvements Proficiency in analyzing and investigating alerts arising from SIEM and SOAR tools Proficiency in Python and KQL Experience dealing with incidents within a Security Operations Centre (SOC) or Incident Response capacity Excellent communication skills, both written and spoken English, with the confidence to brief management Proven experience in undertaking incident response and investigations within a Cloud environment Knowledge of incident management and ticketing platforms (e.g., ServiceNow) Fluent English communication skills at a B2+ level Professional certifications such as Microsoft SC-200, CompTIA Security+, CySA+, SANS/GIAC Hands-on experience in Computer Forensics, Malware Analysis, or Network Investigations Experience with security tools such as Microsoft Sentinel, Microsoft Defender 365 Understanding of MITRE ATT&CK framework