Middle Security Analyst for EPAM Systems | EPAM Anywhere

This website uses cookies for analytics, personalization and advertising. Click here to learn more or change your cookie settings. By continuing to browse, you agree to our use of cookies.

Back icon

Middle Security Analyst for EPAM Systems

Middle Security Analyst for EPAM Systems 40 hrs/week, 12+ months

Currently, we are looking for a remote Middle Security Analyst with 3+ years of experience in Cyber/Information/Network/Cloud Security in enterprise environments, with basic scale knowledge of threat analysis of event data from commercial and open-source infrastructure technology platforms to join our team.

Please note that even though you are applying for this position, you may be offered other projects to join within EPAM Anywhere.

Join EPAM Anywhere to quickly and easily find projects that match your knowledge and experience, while working with Forbes Global 2000 clients, building a successful IT career, and earning competitive rewards. The platform provides additional perks, including a flexible schedule, professional development opportunities, and access to a community of experts.

We accept CVs only in English.


  • Work in a 24/7 follow-the-sun environment with rotation-based shifts, including weekends.
    • Monitor on-premises and cloud infrastructure for attacks, intrusions, and unusual, unauthorized, or illegal activity
      • Monitor identity and access management, including monitoring for abuse of permissions by authorized system users.
        • Develop SIEM and SOAR detection and remediation use-cases, implement them as rules and responses. Create, test, and update playbooks
          • Perform threat hunting and support threat intelligence processes
            • Generate reports for both technical and non-technical staff and stakeholders
              • Use advanced analytic tools to determine emerging threat patterns and vulnerabilities


                • 2+ years of experience in Cyber/Information/Network/Cloud Security in enterprise environments
                  • Technical knowledge of Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tool, Anti-malware and packet inspection
                    • Basic understanding of Windows, Linux, DB and network device monitoring and logging technics
                      • Basic understanding of host and network security hardening, networking protocols, common intrusion techniques and common risk management concepts
                        • Basic knowledge of malware detection, intrusion detection and prevention systems
                          • Experience with 1 or more SIEM solutions (Azure Sentinel, Securonix, Splunk, QRadar, ArcSight, LogRhythm, ELK, Wazuh, Apache Metron, OSSIM, etc.)

                            Nice to have

                            • Experience with network security
                              • Experience with 1 or more SIRP/SOAR tools (TheHive, Cortex, Phantom, Demisto, Resilient, etc.)
                                • Experience with Firewalls (F5, Juniper, Check Point, Palo Alto, Cisco)


                                  • Azure Sentinel, Azure Security Center, Securonix SIEM

                                    We offer

                                    • Competitive compensation depending on experience and skills
                                      • Work in enterprise-level projects on a long-term basis
                                        • You will have a 100% remote full-time job
                                          • Unlimited access to learning courses (EPAM training courses, English regular classes, Internal Library)
                                            • Community of 38,000+ industry’s top professionals
                                              EDR (Endpoint Detection and Response)
                                              Endpoint Security
                                              MITRE ATT&CK
                                              Network Security
                                              Security Operation Center
                                              Threat Intelligence

                                              40 hrs/week

                                              Hours per week

                                              12+ months

                                              Project length


                                              Locations eligible for the position