Security Architect

environments and containerized platformsProvide security hardening, vulnerability remediation plans, and automated security integration with development pipelines (DevSecOps)Integrate and optimize SIEM and Security Log Management platforms (e.g., Splunk, LogRhythm, Sentinel)Oversee Network Detection & Response (NDR) deployment and tuning for advanced traffic and threat analysisCollaborate with Information Security Governance teams to maintain secure baseline configurations across infrastructure layersSupport or lead security tool upgrades, introducing new technologies to improve threat detection and responseDefine architectural requirements and detailed procedures for tool selection, placement, and integration across cloud and on-prem environmentsWork closely with MSPs, monitoring output vs SLAs for operational security servicesContribute to KPI, KRI and SLA metrics reporting for security programsLead capacity monitoring design and automation for scaling enterprise security, teams, contribute to numerous innovative projects, and have an opportunity to learn and grow continuously.Why Join EPAMWORK AND LIFE BALANCE. Enjoy more of your personal time with flexible work options, 24 working days of annual leave and paid time off for numerous public holidays.CONTINUOUS LEARNING CULTURE. Craft your personal Career Development Plan to align with your learning objectives. Take advantage of internal training, mentorship, sponsored certifications and LinkedIn courses.CLEAR AND DIFFERENT CAREER PATHS. Grow in engineering or managerial direction to become a People Manager, in-depth technical specialist, Solution Architect, or Project/Delivery Manager.STRONG PROFESSIONAL COMMUNITY. Join a global EPAM community of highly skilled experts and connect with them to solve challenges, exchange ideas, share expertise and make friends.

platformsRequirementsExtensive hands-on experience in security engineering and cybersecurity architecture within enterprise environmentsProven expertise in Endpoint and Cloud Workload Protection (Windows/Linux/MacOS, EPP, EDR, CWPP)Proven expertise in SIEM and log management (Splunk or equivalent)Proven expertise in network and cloud security foundations; NDR tools such as Darktrace, Vectra AI, and ExtraHop preferredProven expertise in database and application security (IBM Guardium, Oracle Data Safe)Strong knowledge of DevSecOps practices, automation frameworks and toolchains (Azure DevOps, Jenkins, Git, Maven, Nexus)Practical experience with scripting languages (e.g., PowerShell, Python, Bash) for automation and integrationFamiliarity with PKI best practices, certificate/key management and security orchestration (SOAR)Ability to respond to security incidents, zero-day threat scenarios and advanced enterprise attack vectorsExcellent problem-solving, decision-making and stakeholder engagement skillsFluent English; excellent written and verbal communicationNice to haveExperience supervising upgrades of enterprise security technology stacksExposure to capacity monitoring, scaling automation and AIOps-driven observability solutionsKnowledge of ITIL processes and MSP governance practicesRelevant security certifications (e.g., CISSP, CISM, CISA, CCSK)We offerPrivate health insuranceEPAM Employees Stock Purchase Plan100% paid sick leaveReferral ProgramProfessional certificationLanguage coursesEPAM is a leading digital transformation services and product engineering company with 61,700+ EPAMers in 55+ countries and regions. Since 1993, our multidisciplinary teams have been helping make the future real for our clients and communities around the world. In 2018, we opened an office in Spain that quickly grew to over 1,450 EPAMers distributed between the offices in Málaga, Madrid and Cáceres as well as remotely across the country. Here you will collaborate with multinational