We are searching for a talented and driven Lead Cybersecurity Engineer to become part of our team.
In this role, you will help drive ongoing security operations and shape the broader security strategy. The ideal candidate brings deep expertise and practical background in cloud security, incident response, automation, and development. You will build, refine, and operate the security tooling that protects the client's infrastructure while contributing to the overall security direction of the entire organization.
Responsibilities
-
Design, implement, and support the client's security infrastructure to protect systems and data
-
Promote security awareness across the organization and enable end users to carry out their work safely without introducing unnecessary friction
-
Investigate and assess emerging threats, attack vectors, and risks, and define effective mitigation approaches
-
Examine outputs from security tools and software, and communicate findings to relevant stakeholders
-
Partner with engineering teams to share feedback on products and uphold secure development environments
-
Cooperate with cyber analysts and security engineers to create threat models, detections, and incident response playbooks, while maintaining tooling that strengthens security intelligence
Requirements
-
A minimum of 5 years of applicable experience in a security-focused role
-
At least one year of leadership and team management experience
-
Proven capability to spot security gaps and risk areas, and to plan and execute remediation effectively
-
Comfort operating across technical and business teams, championing security best practices, policies, and procedures
-
Strong communication skills, both spoken and written
-
Solid understanding of enterprise-scale security technologies, including SIEM, incident response, HIDS/NIDS, PKI, user behavior analytics, SSO, IAM, and Privileged Access Management
-
Real-world experience designing and maintaining enterprise logging pipelines with tools such as Splunk, DataDog, ELK Stack, or Snowflake
-
Hands-on background developing infrastructure as code with Terraform or CloudFormation
-
Deep practical security background with cloud providers like AWS, GCP, or others, along with their related security tooling (e.g., GuardDuty, CloudTrail, SecurityMonkey, ScoutSuite)
-
Experience using EDR (Endpoint Detection and Response) tools such as CrowdStrike, GRR, OSQuery, Sysdig, Carbon Black, Endgame, or Tanium
-
Familiarity with development workflows and tooling including Git, Jira, and Confluence
-
Strong English communication skills, both written and spoken (B2+ level or higher)
Nice to have
-
Solid scripting capabilities with languages such as Bash or Python to automate security activities
-
Background in vulnerability management for finding, evaluating, and addressing security weaknesses
-
Cybersecurity certifications such as CISSP, CEH, Security+, or comparable credentials
-
Penetration testing experience to discover and exploit security vulnerabilities under controlled conditions
-
Practical work with container technologies (Docker, EKS, GKE, Kubernetes, OpenShift) and the associated security tools (e.g., Twistlock, StackRox, Aqua, Sysdig)
-
Familiarity with SOAR, CASB, and DLP technologies for coordinating security operations and protecting sensitive information
-
Comfort using configuration management tools such as Chef, Puppet, or Ansible
We offer
-
International projects with top brands
-
Work with global teams of highly skilled, diverse peers
-
Healthcare benefits
-
Employee financial programs
-
Paid time off and sick leave
-
Upskilling, reskilling and certification courses
-
Unlimited access to the LinkedIn Learning library and 22,000+ courses
-
Global career opportunities
-
Volunteer and community involvement opportunities
-
EPAM Employee Groups
-
Award-winning culture recognized by Glassdoor, Newsweek and LinkedIn
EPAM is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity or expression, disability, protected veteran status, or any other characteristic protected by applicable law.
