Security Engineer Jobs

EPAM Anywhere is looking for Security engineers.

Competitive compensation

We back all payments and operate in compliance with country-specific labor regulations. Your annual paycheck can range from $15k to $200k.

Numerous benefits

Make use of 1,500+ online and location-specific benefits across 30+ countries that also include healthcare and sports programs for you and your family.

Limitless career growth opportunities

Get access to a large-scale ecosystem that consists of educational and career development services created for your growth. A personal skill advisor will support you on each step of this journey.

application security engineer

Security.Risks

Application Security, Code Review, DAST (Dynamic application security testing)

40 hrs/week

12+ months

Colombia

We are looking for an Application Security Engineer to join our remote team.

Your primary focus will be to ensure our Customer's information systems' confidentiality, integrity, and availability. You will work with various security tools and technologies to ensure that applications and gaming systems are secure. If you are one step ahead of the bad guys and passionate about security, we would love to hear from you!

responsibilities

Perform application security assessments on internal, and external applications, while defining and updating an application security methodology
Keep apprised of secure coding best practices and assist with static/dynamic code analysis
Design, create, test, document, deploy, and maintain new automation, capabilities, and security services for the InfoSec team
Stay abreast of Customer's applications and their security posture
Define and develop InfoSec training on web-based exploits/tools and corresponding mitigation techniques
Collaborate with cross-functional teams to build complex solutions

requirements

2+ years of experience in Information Security principles, technology, and control processes
development experience building systems in languages such as Python, C++, Golang/Rust
Expertise in application security, code review, DAST (Dynamic Application Security Testing), and SAST (Static Application Security Testing)
Experience with Secure Coding and AppSec frameworks (OWASP Guide, SANS CWE Top 25, CERT Secure Coding)
Hands-on experience in implementing secure SDLC practices
Good understanding of DevOps principles, Docker container security, and Kubernetes
Experience working with and setting up services on AWS infrastructure
Experience in threat modeling and implementing security testing methodologies like OWASP Top 10
Understand and be able to apply concepts such as algorithms, data structures, OOO design, databases
CEH and Offensive Security Certification (OSCP, GPEN, or GWAPT)
Excellent oral and written communication skills, including report writing and technical documentation
Fluent in English with an Upper-Intermediate level of proficiency

nice to have

Experience in CI/CD systems and knowing how to work with Terraform
Familiarity with Java

senior cloud security engineer

Security.Engineering

Kusto Query Language, Microsoft Azure, Microsoft Sentinel

40 hrs/week

12+ months

India, Poland

We are seeking a Senior Cloud Security Engineer to join our remote team.

As a Cloud Security Engineer with expertise in Microsoft Azure, you will be responsible for providing technical leadership and subject matter expertise in Cloud environments on an enterprise scale. You will be working across various cloud security domains such as Cloud Security Posture Management, Identity and Access Management, Data Protection, Incident Response Automation, and custom scripting. This role requires a deep understanding of cloud engineering and excellent knowledge of security best practices, standards, compliance, and regulations.

responsibilities

Provide technical leadership and subject matter expertise in Cloud environments on an enterprise scale
Plan, design, and implement security solutions for multi-cloud systems and workloads with public cloud providers (Azure, AWS)
Collaborate with adjacent teams (engineering, infrastructure, development, database, operations, etc.)
Work across various cloud security domains such as Cloud Security Posture Management, Identity and Access Management, Data Protection, Incident Response Automation, and custom scripting
Ensure security solutions align with the needs of the target market and the business objectives of our customer
Follow and understand a defined security process, train other team members, and contribute to process improvement
Engage with your mentor for continuous learning and development of technical and soft skills

requirements

Minimum of 3 years experience as a Security Engineer, with a strong focus on Cloud Security Engineering
Experience with Microsoft Azure, MS Sentinel, Plunk, and KQL
Direct Computer Science education (Bachelors+) OR equivalent experience
Experience with any domain at an enterprise scale
Ability to work closely with other project team roles like developers, compliance analysts, BA, testers, architects, managers, and endpoint engineers
Hands-on experience with scripting (any of: Python, JavaScript, PowerShell)
Office 365 operational and generic email security experience
CSPM tool experience (Defender for Cloud, PaloAlto Prisma)
Understanding of concepts of DevOps, cloud security, and their assessment methodologies

nice to have

Hands-on experience with public cloud providers (Azure, AWS) services
Security engineering experience in at least IAM, SOC, DLP domains
Understanding of at least one compliance/regulation such as ISO 2700x / PCI DSS / HIPAA / HITRUST / GDPR / SOX / FedRAMP
1+ Security Certification such as AZ-900, AZ-103, AZ-500, MS-500, MS-100, MS-101, AWS certified security specialty
Professional Security Certifications such as CISSP, CCSK / SSCP are considered an advantage
ServiceNow integration, AzureDevops, administration experience

senior application security engineer

Security.Risks

Application Security, Code Review, DAST (Dynamic application security testing)

40 hrs/week

12+ months

Colombia

We're on the lookout for a Senior Application Security Engineer to join our remote team.

Your main role will be safeguarding the confidentiality, integrity, and availability of our Customer's information systems. You'll employ various security tools and technologies to ensure the security of applications and gaming systems. If you're always one step ahead of cybercriminals and have a passion for security, we're eager to connect with you!

responsibilities

Conducting application security assessments on internal and external applications, and defining and updating an application security methodology
Staying informed about secure coding best practices and aiding with static/dynamic code analysis
Designing, creating, testing, documenting, deploying, and maintaining new automation capabilities and security services for the InfoSec team
Keeping up-to-date with the Customer's applications and their security posture
Defining and developing InfoSec training on web-based exploits/tools and corresponding mitigation techniques
Collaborating with cross-functional teams to build complex solutions

requirements

A minimum of 3 years' experience in Information Security principles, technology, and control processes
Development experience in building systems using languages such as Python, C++, Golang/Rust
Expertise in application security, code review, DAST (Dynamic Application Security Testing), and SAST (Static Application Security Testing)
Experience with Secure Coding and AppSec frameworks (OWASP Guide, SANS CWE Top 25, CERT Secure Coding)
Practical experience in implementing secure SDLC practices
Solid understanding of DevOps principles, Docker container security, and Kubernetes
Experience in working with and setting up services on AWS infrastructure
Experience in threat modeling and implementing security testing methodologies like OWASP Top 10
Understanding and application of concepts such as algorithms, data structures, OOO design, databases
CEH and Offensive Security Certification (OSCP, GPEN, or GWAPT)
Excellent oral and written communication skills, including report writing and technical documentation
Fluent in English with an Upper-Intermediate level of proficiency

nice to have

Experience with CI/CD systems and Terraform
Knowledge of Java

lead cloud security engineer

Security.Engineering

Kusto Query Language, Microsoft Azure, Microsoft Sentinel

40 hrs/week

12+ months

India, Poland

Join our remote team as a Lead Cloud Security Engineer.

Join our remote team as a Lead Cloud Security Engineer . In this role, you will provide technical leadership and expertise in Cloud (Azure, AWS) environments at an enterprise level. Your responsibilities will include comprehensive knowledge of cloud engineering and a firm grasp on security best practices, compliance, and regulations. You will work across various cloud security domains to plan, design, and implement security solutions for multi-cloud systems and workloads with public cloud providers (Azure, AWS). Your collaboration with adjacent teams (engineering, infrastructure, development, database, operations, etc.) will be key to seamless project completion.

responsibilities

Offering technical leadership and expert knowledge in Cloud (Azure, AWS) environments on an enterprise scale
Planning, designing, and implementing security solutions for multi-cloud systems and workloads with public cloud providers (Azure, AWS)
Collaborating with adjacent teams (engineering, infrastructure, development, database, operations, etc.) for seamless project completion
Ensuring adherence to security best practices, compliance standards, and regulations
Training team members and contributing to process improvement
Working under the guidance of a mentor to enhance skills, adapt to the company's recruitment processes, and meet recruitment targets
Having scripting experience in at least one of the following: Python, JavaScript, PowerShell

requirements

A Bachelor's degree in Computer Science or relevant experience
A minimum of 5 years of experience in Security Engineering at the enterprise level
At least 1 year of experience in leading software development teams with strong leadership skills
Hands-on experience with MS Sentinel, Splunk, KQL, and Azure cloud
A deep understanding of cloud security and their assessment methodologies
Proven ability to work closely with other project team roles (developers, compliance analysts, BA, testers, architects, managers, endpoint engineers)
Hands-on experience with Microsoft public cloud services and a strong engineering background
Scripting experience in Python, JavaScript, PowerShell
Experience with CSPM tools such as Defender for Cloud, PaloAlto Prisma
Familiarity with DevOps and cloud security concepts, and their assessment methodologies
Fluency in English, enabling effective communication with team members and stakeholders

nice to have

Hands-on experience with public cloud providers (Azure, AWS) services
Security engineering experience in at least IAM, SOC, and DLP domains
Familiarity with at least one compliance/regulation such as ISO 2700x / PCI DSS / HIPAA / HITRUST / GDPR / SOX / FedRAMP
Security Certification such as AZ-900, AZ-103, AZ-500, MS-500, MS-100, MS-101, AWS certified security specialty
Professional Security Certifications such as CISSP, and CCSK / SSCP considered an advantage
Experience with ServiceNow integration, AzureDevops, and administration

chief python developer - security automation

Python.Core

API Gateways, AWS Lambda, Amazon Web Services

40 hrs/week

12+ months

India

We are seeking a skilled remote Chief Python Developer to lead our Security Automation project for a client.

You will be collaborating with cross-functional teams to develop, test, and maintain scalable security automation solutions for our client and be responsible for developing and implementing REST API's using serverless frameworks like AWS Lambda. You will work with a variety of data sources to pull, validate, and automate reporting of security scans of applications before go-live.

responsibilities

Work with a variety of data sources to pull, validate and automate reporting of security scans of applications before go-live
Develop and implement REST API's using serverless frameworks like AWS Lambda
Lead and mentor the team of experienced engineers
Collaborate with cross-functional teams to design, develop, test, and maintain scalable security automation solutions
Create and maintain technical documentation related to the project
Ensure code quality, scalability, and maintainability
Contribute to the continuous improvement of development processes and best practices

requirements

7+ years of experience in Python development
2+ years of relevant leadership experience
Experience with Amazon Web Services (AWS) and serverless frameworks like AWS Lambda
Strong understanding of REST API design principles and experience with API Gateways
Knowledge of GitLab
Excellent communicational and organizational skills
B2+ English level proficiency

lead python developer - security automation

Python.Core

API Gateways, AWS Lambda, Amazon Web Services

40 hrs/week

12+ months

India

We are seeking a remote Lead Python Developer to lead our Security Automation project for a client.

As the Lead Python developer, you will be responsible for collaborating with cross-functional teams to develop, test, and maintain scalable security automation solutions for our client. Your primary focus will be on developing and implementing REST API's using serverless frameworks like AWS Lambda. You will work with a variety of data sources to pull, validate, and automate reporting of security scans of applications before go-live.

responsibilities

Collaborate with cross-functional teams to design, develop, test, and maintain scalable security automation solutions
Work with a variety of data sources to pull, validate and automate reporting of security scans of applications before go-live
Develop and implement REST API's using serverless frameworks like AWS Lambda
Create and maintain technical documentation related to the project
Ensure code quality, scalability, and maintainability
Lead and mentor other developers
Contribute to the continuous improvement of development processes and best practices

requirements

At least 5 years of experience in Python development
1+ years of relevant leadership experience
Strong understanding of REST API design principles and experience with API Gateways
Experience with Amazon Web Services (AWS) and serverless frameworks like AWS Lambda
Proficiency with GitLab
Excellent communication skills in English, both written and verbal at a B2+ level

senior devops engineer

Microsoft Azure

Azure Kubernetes Service, Azure Security, Network Security

40 hrs/week

12+ months

India

We are seeking a Senior DevOps Engineer to join our remote team and work on an exciting project focused on Azure solutions and cloud security.

As a Senior DevOps Engineer, you will be responsible for provisioning, configuring, and securing Azure solutions, as well as scripting and automating CI/CD processes. You will also have a strong understanding of container services, such as Docker and Kubernetes, and will be working with Azure Kubernetes Service. You will be familiar with network security and Azure DevOps, with experience using Terraform for infrastructure management. Your role will also entail working with databases and Cosmos DB, and will require knowledge of integration with Salesforce.

responsibilities

Deploy and maintain functionality of container services, specifically with Azure Kubernetes Service
Script and automate CI/CD processes in Azure
Work with Azure Cloud, including MS Defender for Cloud/CSPM, network/hub-and-spoke, NVAs/Palo Alto
Provision, configure, and secure Azure solutions
Integrate with WebApps, Azure Kubernetes Service, Virtual Machines, and databases/Cosmos DB, MS SQL
Work with cloud security, including encryption, certificate management, and network security
Solve technical, business, and process-related challenges through infrastructure-as-a-service or platform-as-a-service
Understand vulnerability alerts provided by internal security tools and identify specific issues in infrastructure
Prepare actionable remediation tasks and collaborate in implementing those remediations
Help with ongoing review of overall security posture and provide recommendations and in some cases implementing those recommendations

requirements

3+ years of hands-on experience with provisioning, configuring, and securing Azure solutions
Strong experience in scripting / automating and CI/CD in Azure
Experience with Azure Cloud, including MS Defender for Cloud/CSPM, network/hub-and-spoke, NVAs/Palo Alto
Strong experience in deployment and functionality of container services, specifically with Azure Kubernetes Service
Familiarity with WebApps, Azure Kubernetes Service, Virtual Machines
Experience with Databases/Cosmos DB, MS SQL
Working experience or very good understanding of Cloud Security, including encryption, certificate management, and network security
Working knowledge of integration with Salesforce
Ability to create well-written documentation and procedures and create dashboard and reports to provide transparency and visibility for the results of strategic initiatives
English language proficiency at Upper-Intermediate level

nice to have

Experience with other cloud platforms, such as AWS or Google Cloud Platform
Experience with encryption, certificate management, and other Cloud Security practices
Familiarity with other programming languages, such as Python or Java

senior devops engineer

DevOps

CI/CD, Terraform, Infrastructure as Code development and maintenance

40 hrs/week

12+ months

India

We are seeking a talented Senior DevOps Engineer to join our remote team and work on a project with a leading clinical research organization.

As a Senior DevOps Engineer, you will be responsible for designing, implementing, and maintaining the infrastructure and DevOps processes for our client's clinical research platform. You will work closely with the development team to ensure that the platform is scalable, reliable, and secure, while adhering to best practices and industry standards.

responsibilities

Design, implement and maintain the cloud infrastructure for the clinical research organization, ensuring reliability, scalability, and security
Design, implement and maintain CI/CD pipelines for efficient and automated software delivery
Collaborate with developers, QA, and other stakeholders to ensure that the infrastructure and systems meet all specified requirements
Collaborate with other DevOps engineers to design and implement multi-cloud strategies, leveraging the power of other cloud platforms
Ensure that all systems comply with the organization's security policies and standards, adhering to best practices
Monitor and optimize the performance of the organization's cloud infrastructure, utilizing Azure tools and services
Utilize Azure DevOps for effective project management, continuous integration, and delivery

requirements

Minimum of 3 years of experience as a DevOps Engineer, with a strong focus on infrastructure and automation
Expertise in CI/CD processes and tools, ensuring the efficient and automated delivery of software
Experience with Infrastructure as Code (IaC) development and maintenance, using tools like Terraform
Experience with Microsoft Azure, including Azure DevOps, Azure Key Vault, and Azure Policy
Experience with networking basics, including DNS, TCP/IP, and HTTP(S)
Proficiency in scripting languages like PowerShell and Bash
Experience in designing and managing containerized applications using Kubernetes or Docker
Familiarity with monitoring and logging tools like Prometheus, Grafana, and ELK stack
Experience in security best practices, including designing and implementing secure systems and adhering to industry standards
Upper-Intermediate English language skills, enabling effective communication with the team and stakeholders

nice to have

Experience with GitOps and/or ArgoCD for Git-based continuous delivery
Experience with database administration, including SQL and NoSQL databases

senior devops engineer

Microsoft Azure

Azure Kubernetes Service, Azure Security, Network Security

40 hrs/week

12+ months

Colombia

We are seeking a highly skilled Senior DevOps Engineer to join our remote team, collaborating on a project that involves securing and optimizing Microsoft Azure solutions for a global company.

As a Senior DevOps Engineer, you will be responsible for provisioning, configuring, securing, and optimizing Azure solutions, with a particular focus on container services, network security, and Azure DevOps. You will also be responsible for monitoring and analyzing internal security tools, identifying vulnerabilities in infrastructure, and providing actionable remediation tasks. As a key figure within the team, you will be expected to provide recommendations and implement them, as well as track open security tasks and request exceptions to the Global Infosec team, if required.

responsibilities

Provision, configure, secure, and optimize Azure solutions, with a particular focus on container services, network security, and Azure DevOps
Monitor and analyze internal security tools, identifying vulnerabilities in infrastructure, and providing actionable remediation tasks
Provide recommendations and implement them, as well as track open security tasks and request exceptions to the Global Infosec team, if required
Collaborate with cross-functional teams to deliver high-quality software solutions in line with project goals and timelines
Create well-written documentation and procedures and create dashboards and reports to provide transparency and visibility for the results of strategic initiatives
Collaborate with stakeholders, demonstrating excellent communication and leadership skills
Provide expertise and guidance to the team, fostering a culture of growth and continuous learning within the group

requirements

Minimum of 3 years of hands-on experience with provisioning, configuring, and securing Azure solutions
Strong experience in scripting and automating and CI/CD in Azure
Solid experience in deployment and functionality of container services, such as Docker, Kubernetes, and Azure Container Service
Experience with Azure Cloud services, such as MS Defender for Cloud/CSPM, network/hub-and-spoke, and NVAs/Palo Alto
Familiarity with WebApps, Azure Kubernetes Service, Virtual Machines, and databases, such as Cosmos DB and MS SQL
Working knowledge of integration with Salesforce
Ability to solve technical, business, and/or process-related challenges through infrastructure-as-a-service or platform-as-a-service
Working experience or a good understanding of Cloud Security, including encryption, certificate management, and network security
Good understanding of operation management technologies, such as log aggregation, server monitoring, process monitoring, and application monitoring
Ability to create well-written documentation and procedures and create dashboards and reports to provide transparency and visibility for the results of strategic initiatives
English language proficiency at an Upper-Intermediate level or above, allowing effective written and spoken communication with the team and stakeholders

nice to have

Experience with Datadog for monitoring and observability
Experience with other cloud providers and infrastructure-as-code tools, such as AWS and Google Cloud Platform, and Ansible for automation

senior azure devops engineer

Microsoft Azure

Azure Kubernetes Service, Azure Security, Network Security

40 hrs/week

12+ months

India

Join our remote team as a Senior Azure DevOps Engineer.

Join our remote team as a Senior Azure DevOps Engineer to work with a multinational insurance company that provides innovative and comprehensive solutions to customers worldwide. In this role, you will be responsible for understanding the vulnerability alerts provided by the internal security tools, identify the specific issue in our infrastructure from those alerts, prepare actionable remediation tasks and collaborate in implementing those remediations. You will also help with the ongoing review of our overall security posture, providing recommendations and in some cases implementing those recommendations.

responsibilities

Collaborate with the internal security team to identify and address vulnerabilities in the infrastructure
Develop and implement remediation tasks for identified vulnerabilities
Review the overall security posture and provide recommendations for improvement
Serve as the primary point of contact for security-related issues
Ensure compliance with security standards and regulations
Collaborate with cross-functional teams to achieve project goals
Participate in code reviews, ensuring code quality and adherence to standards
Actively contribute to architectural and technical discussions

requirements

At least 3+ years of experience provisioning, configuring, and securing Azure solutions
Experience in scripting/automating and CI/CD in Azure
Experience in deployment and functionality of container services (e.g., Docker, Kubernetes, Azure Container Service)
Expertise in Azure Cloud: MS Defender for Cloud/CSPM, network/hub-and-spoke, NVAs/Palo Alto, WebApps, Azure Kubernetes Service, Virtual Machines, Databases/Cosmos DB, MS SQL
Proficient in Azure Security for securing Azure solutions
Experience in Network Security for secure network communication between services in Azure
Familiarity with Terraform for infrastructure as code
Strong knowledge of Operation Management Technologies - Log Aggregation, Server Monitoring, Process Monitoring, Application Monitoring – Azure Monitor or Datadog
Ability to create well-written documentation and procedures and create dashboard and reports to provide transparency and visibility for the results of the strategic initiatives
Solid understanding of cloud security: encryption, certificate management, network security, etc.
Excellent communication skills in spoken and written English, at an upper-intermediate level or higher

nice to have

Experience with Salesforce integration is a plus

IT security engineer jobs at EPAM Anywhere

At EPAM Anywhere, we are currently in search of a skilled IT security engineer to join our tech-savvy team. This telecommute position offers the opportunity to work from anywhere, providing solutions to complex security issues.

The role involves coordinating measures to prevent and manage security incidents, conducting code audits to identify vulnerabilities, and developing robust encryption protocols.
This opening is offering a unique employment model that allows you to work on a flexible platform, from anywhere. As an IT security engineer at EPAM Anywhere, you will have the chance to work with the latest technology and contribute to projects that make a real difference.

Key requirements for security engineer job

Key requirements for the IT security engineer position at EPAM Anywhere include:

Proven experience in coding and programming: You should be skilled in programming languages and have a solid understanding of coding best practices.
Proficiency in identifying and mitigating network vulnerabilities: You should be able to identify threats and vulnerabilities in our network and develop effective solutions to mitigate these risks.
Familiarity with various encryption protocols: You should have a deep understanding of different encryption protocols and know how to implement them effectively.
Experience in coordinating measures to prevent and manage security incidents: You should have a track record of successfully coordinating security measures and managing incidents.
Ability to conduct thorough code audits: You should be able to conduct comprehensive code audits to identify and rectify any vulnerabilities.
Knowledge of WFH technologies and platforms: As this is a remote position, you should be comfortable using various WFH technologies and platforms.

Soft skills for security engineering jobs

Soft skills required for the IT security engineer role at EPAM Anywhere include:

Strong problem-solving skills to develop effective security solutions.
Excellent communication skills for coordinating with team members and reporting incidents.
Attention to detail for identifying code vulnerabilities.
Adaptability to work in different roles within the technology sector.
Self-motivation to stay updated with the latest security protocols and measures.
Ability to work independently and manage your workload in a telecommute position.

At EPAM Anywhere, we value the skill and dedication of our employees. You will get a career path that allows you to grow and develop your skills in a supportive and innovative environment. If you meet the requirements and are looking for a challenging and rewarding role, start your search with EPAM Anywhere. We are excited to review your application for our IT security engineer vacancy.

Security Engineer Jobs

IT security engineer jobs at EPAM Anywhere

Key requirements for security engineer job

Soft skills for security engineering jobs

Related skills