EPAM Systems · 11 hours ago
Security Architect (SIEM) - Remote
Maximize your interview chances
AnalyticsArtificial Intelligence (AI)
Growth OpportunitiesH1B Sponsor Likely
Insider Connection @EPAM Systems
Get 3x more responses when you reach out via email instead of LinkedIn.
Responsibilities
Lead the design, deployment, and configuration of SIEM solutions, ensuring seamless integration with various security tools, systems, and log sources
Plan and execute SIEM migration projects, including data transfer, log source integration, rule/alert migration, and configuration tuning
Develop, customize, and fine-tune SIEM use cases, correlation rules, dashboards, and reports to effectively detect threats and suspicious activities
Integrate diverse log sources such as firewalls, IDS/IPS, antivirus, cloud services, applications, and operating systems into the SIEM for comprehensive monitoring
Collaborate with the SOC team to support further use case creation and fine-tuning following SOC team requirements
Regularly review and optimize SIEM performance to ensure efficient log collection, storage, processing, and alerting
Maintain comprehensive documentation for SIEM configurations, integrations, and migration processes, providing regular reports on SIEM performance
Train and mentor junior security engineers and SOC analysts on SIEM use, best practices, and troubleshooting
Work closely with IT, security, and network teams to ensure the SIEM platform aligns with security strategies and goals
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
At least 8 years of experience in Cyber Security, with a specialization in engineering SIEM solutions and working in a SOC
Expertise in SIEM engineering and architecture, with a focus on at least Splunk or any other leading SIEM solutions like Microsoft Sentinel, QRadar, ArcSight, LogRythm
Experience in managing the full delivery lifecycle for SIEM enhancements and automation including working on converged SIEM solutions that include SOAR and XDR solutions within it
Proficiency in integrating log sources and developing correlation rules, alerts, and dashboards
Experience working in cloud environments (AWS, Azure, GCP) and integrating cloud logs into SIEM solutions
Understand security frameworks (MITRE ATT&CK, NIST) and possess basic knowledge of regulatory compliance (GDPR, PCI-DSS)
Knowledge of network protocols, firewalls, IDS/IPS, endpoint security, and threat intelligence
Comprehend the client’s needs, their specific security challenges, and the regulatory landscape to provide tailored solutions
Effectively communicate complex technical concepts to clients, build trust, and establish strong relationships
Manage stakeholders at various levels, from technical staff to senior executives
Collaborate effectively with teams from different departments within large organizations and enterprises
Facilitate discussions, resolve conflicts, and build consensus among stakeholders with diverse perspectives
Make informed decisions based on evidence
Company
EPAM Systems
EPAM leverages its core engineering expertise as a leading global product development and digital platform engineering services company.
H1B Sponsorship
EPAM Systems has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (194)
2022 (327)
2021 (343)
2020 (381)
Funding
Current Stage
Public CompanyTotal Funding
$75M2012-02-08IPO· undefined
2008-06-30Series Unknown· $50M
2008-02-20Series B· undefined
Recent News
2024-11-07
PR Newswire
2024-11-01
Company data provided by crunchbase