Skip navigation

SIEM (Splunk) Platform and Event / Incident Response Security Engineer

  • Krakow, Poland
Job #: 44511
Striving for excellence is in our DNA. Since 1993, we have been helping the world’s leading companies imagine, design, engineer, and deliver software and digital experiences that change the world. We are more than just specialists, we are experts.

DESCRIPTION


Currently we are looking for a SIEM (Splunk) Platform and Event/Incident Response Security Engineer for our Krakow office to make the team even stronger.

The position requires experience implementing and maintaining security event monitoring and analysis solutions for large enterprise environments, with large scale knowledge of threat analysis of event data from commercial and open source infrastructure technology platforms.

Responsibilities

  • Support the SIEM technology infrastructure that enables global incident response operations, analysis and coordination, and forensics
  • Align SIEM products with monitoring and incident response procedures
  • Work with SIEM tuning options
  • Develop generate and automate corresponding SIEM metrics, reporting and dashboards
  • Review/refine response processes for SIEM alerts
  • Create or expand documentation where necessary (run-books, deployment guides)
  • Provide recommendations, including steps, timeline and required resources, to mature/streamline/automate responses processes based on industry best practice
  • Provide recommendations for response processes
  • Develop and generate corresponding metrics for response processes and alerts
  • Automate reporting processes (to the extent possible) and integrate metrics with reporting tools

Requirements

  • English level B1/B2
  • Experience in security engineering for at least for 2-3 years
  • Experience with 1 or more SIEM solutions (ELK, Wazuh, Splunk, Apache Metron, NXLog, OSSEC, QRadar, LogRythm etc.)
  • Understanding of Windows, Linux, DB and network device monitoring and logging technics
  • Technical knowledge of Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tool, Antivirus and packet inspection
  • Endpoint security analysis with Windows, Mac, and Linux host event data and related tools
  • Solid understanding of information, host and network security hardening and requirements, networking protocols, common intrusion techniques and common risk management concepts
  • Knowledge and understanding of operating systems including MS Windows and/or Linux

Nice to have

  • Virus detection, malware detection, intrusion detection, and prevention systems
  • Basic knowledge of database architecture and maintenance
  • Experience with Firewalls (F5, Juniper, Check Point, Palo Alto, Cisco)
  • Experience with RESTful APIs for automation is preferable
  • Experience with creating Regular Expressions
  • Knowledge of one or more programming/script languages for systems or process automation

We offer

  • Possibility to be involved in an international project (Canada, China, Hong Kong, Mexico, USA, Switzerland, Germany, Sweden, United Kingdom, Russia, Belarus, Ukraine, Hungary, etc.)
  • Language classes (English and Polish)
  • Vast opportunities for self-development: online courses and library, experience exchange with colleagues around the world, partial grant of certification
  • Career development center
  • Possibility to take part in both: corporate and startup environment
  • Possibility to relocate for short and long-term projects
  • Relocation package for those who relocate to Krakow, Wroclaw, Katowice or Gdansk from other locations
  • Benefit package (health care, multisport, lunch tickets, petrol vouchers and shopping vouchers, etc.)
  • Fruits on a weekly basis
  • Sponsored sport activities, E-sport program
  • We kindly ask you to include the following clause in your application: "Wyrażam zgodę na przetwarzanie danych osobowych zawartych w niniejszym dokumencie do realizacji procesu rekrutacji zgodnie z ustawą z dnia 10 maja 2018 roku o ochronie danych osobowych (Dz. Ustaw z 2018, poz. 1000) oraz zgodnie z Rozporządzeniem Parlamentu Europejskiego i Rady (UE) 2016/679 z dnia 27 kwietnia 2016 r. w sprawie ochrony osób fizycznych w związku z przetwarzaniem danych osobowych i w sprawie swobodnego przepływu takich danych oraz uchylenia dyrektywy 95/46/WE (RODO)"
  • Please note that only selected candidates will be contacted
Узнать больше о EPAM Польша

Здравствуйте, чем мы можем вам помочь?


Наши офисы

  • Канада

    • Оттава

      343 Preston Street,
      ON K1S 1N4, Ottawa
      Canada

      Карта
    • Торонто

      5 Park Home Avenue,
      Suite 400,
      ON M2N 6L4, North York,
      Toronto
      Canada

      Карта
      Тел: +1-416-591-4004
      Факс: +1-416-595-1551
  • Мексика

  • США

    • Ньютаун

      41 University Drive,
      Suite 202,
      Newtown, PA 18940
      USA

      Карта
      Тел: +1-267-759-9000
      Факс: +1-267-759-8989
    • Белвью

      110 110th Ave. NE,
      Suite 310
      Bellevue, WA 98004
      USA

      Карта
    • Бостон (Массачусетс)

      21 Drydock Avenue,
      Suite 410 W,
      Boston, MA 02210
      USA

      Карта
    • Вашингтон

      7901 Jones Branch Drive,
      Suite 400,
      McLean, VA 22102
      USA

      Карта
    • Кембридж (Массачусетс)

      One Mifflin Place
      Cambridge, MA 02138
      USA

      Карта
      Тел: +1-267-759-9000
      Факс: +1-267-759-8989
    • Коншохокен (Пенсильвания)

      101 East 8th Ave,
      Suite 201,
      Conshohocken, PA 19428
      USA

      Карта
      Тел: +1-484-382-1300
    • Маунтин-вью

      465 Fairchild Dr,
      Building B, Suite 221,
      Mountain View, CA 94043
      USA

      Карта
    • Нью-Йорк (Нью-Йорк)

      24 West 25th Street,
      New York, NY 10010
      USA

      Карта
      Тел: +1-267-759-9000
      Факс: +1-267-759-8989
    • Филадельфия (Пенсильвания)

      30 South 15th Street,
      9th Floor,
      Philadelphia, PA 19102
      USA

      Карта
  • Австралия

  • Гонконг

  • Индия

    • Бангалор

      Smartworks,  
      Global Technology Park,
      Block C, Outer Ring Rd,
      Adarsh Palm Retreat, Bellandur,
      Bengaluru, Karnataka 560103
      India

      Карта
    • Пуна

      Level 6,
      Pentagon Tower P-2,
      Magarpatta City,
      Hadapsar,
      Pune - 411013,
      Maharashtra
      India

      Карта
    • Хайдарабад

      North wing,
      JVP Building, Plot No. 5,
      Software Units Layout
      Madhapur,
      Hyderabad - 500081
      India

      Карта
      Тел: +91-40-47979900
  • Китай

    • Гуанчжоу

      Unit B01, 23/F
      Yuexiuxinduhui Building
      No. 236, 6th Zhongshan Road
      Yuexiu District
      510180 Guangzhou, China

      Карта
    • Сучжоу

      18F, Phase 3
      Science Plaza
      1355 Jinjihu Avenue
      Suzhou Industrial Park
      215021 Suzhou, China

      Карта
    • Шанхай

      Room B509, 5th Floor,
      48 Weihai Road,
      Huangpu District, Shanghai,
      China 200000

      Карта
    • Шэньчжэнь

      Vision Shenzhen Business Park
      No. 9 Gaoxin 9th South Road
      Building 5, Floor 3
      Shenzhen Hi-Tech Industrial Park
      Nanshan District
      518057 Shenzhen
      China

      Карта
  • ОАЭ

    • Дубай

      EPAM Systems FZ-LLC Dubai Branch
      2307 Arenco Tower, Dubai Media City
      PO Box 501929 Dubai
      United Arab Emirates

      Карта
      Тел: +971-4-568-3569
  • Сингапур

    • Сингапур

      6 Raffles Quay
      #16-01,
      Singapore 048580

      Карта
      Тел: +65-6812-7843
      Факс: +65-6812-7889
  • Япония

    • Токио

      Floor 1-10-11
      Shibadaimon Centre Building 10th
      Shibadaimon Minato-ku
      Tokyo 105-0012
      Japan

      Карта
      Факс: +81-03-6880-9201