Join our team as a Lead Cybersecurity Engineer, where you will take a pivotal role in advancing our security operations and shaping our overall security strategy.

You will act as an efficient problem solver, identifying vulnerabilities and implementing effective solutions while collaborating closely with technical and business teams to embed security best practices seamlessly. Eager to make a difference? Apply now.

Responsibilities

• Design and deploy security infrastructure emphasizing AWS and cloud-native security tools
• Build and improve security tools and workflows using Terraform, CloudFormation, and programming languages such as Bash and Python
• Identify and evaluate potential cyber threats and address areas of vulnerability
• Observe and assess data from security tools, offering actionable recommendations and detailed reporting
• Partner with engineering teams to fortify development environments and review product security measures
• Collaborate with cyber analysts and security engineers to design threat models, detections, response playbooks, and maintain tools for enhanced security intelligence
• Take part in developing and operating enterprise-level security systems, including SIEM, HIDS/NIDS, PKI, IAM, Privileged Access Management, and more
• Maintain and improve Crowdstrike EDR systems and SOAR platforms for greater operational efficiency
• Secure containerized environments, such as Kubernetes, and address related vulnerabilities

Requirements

• 5+ years of experience in a cybersecurity role with hands-on expertise in AWS
• Expertise in scripting languages including Bash and Python
• Proficiency in Terraform and CloudFormation
• Knowledge of enterprise-scale security technologies such as SIEM, vulnerability management, incident response, HIDS/NIDS, PKI, SSO, IAM, and Privileged Access Management
• Experience with Crowdstrike or other EDR tools like Carbon Black, Tanium, OSQuery
• Familiarity with SOAR platforms and automation tools for incident response workflows
• Hands-on experience with container technologies like Kubernetes and their security tools
• Ability to identify security gaps and develop effective remediation plans
• Strong cross-functional collaboration skills to work between technical and business teams

Nice to have

• Certifications such as CISSP, CEH, or Security+
• Experience in penetration testing
• Knowledge related to implementing compliance frameworks such as PCI DSS and SOX

We offer

• International projects with top brands
• Work with global teams of highly skilled, diverse peers
• Healthcare benefits
• Employee financial programs
• Paid time off and sick leave
• Upskilling, reskilling and certification courses
• Unlimited access to the LinkedIn Learning library and 22,000+ courses
• Global career opportunities
• Volunteer and community involvement opportunities
• EPAM Employee Groups
• Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn