Skip navigation EPAM

Security Analyst Budapest, Hungary

Security Analyst Description

Job #: 58892
EPAM is committed to providing our global team of more than 41,150 EPAMers with inspiring careers from day one. EPAMers think creatively and lead with passion and honesty. Our people are the source of our success. We value collaboration, work in partnership with our customers, and strive for the highest standards of excellence. In today’s market conditions, we’re supporting operations for hundreds of clients around the world remotely. No matter where you are located, you’ll join a dedicated, diverse community that will help you discover your fullest potential.

EPAM IN HUNGARY


EPAM Hungary is the most populous EPAM location in Europe and the 4th in the world. We can proudly announce that more than 1400(!) people work in software engineering positions with us (and much others in the back office and business operation). We are running offices in Budapest, Debrecen and Szeged for more than ten years, and our target is to keep growing day by day and remain the largest company in our business field.

We are working in close relationship with foreign offices and clients, gaining experience in many business domains, running a huge variety of projects and technologies, which provides career and travelling opportunities for our colleagues. We are also highly focused on personal development (both technical and soft skills), which secures our business' success and our colleagues' future.

DESCRIPTION


For our Budapest, Hungary office are looking for a Security Analyst.

Responsibilities

  • Create SIEM and SOAR detection and remediation scenarios, implement them as detection and response rules. Create, test, and update playbooks
  • Configure security tools integration with SIEM platform
  • Conduct cloud and infrastructure security posture assessment
  • Monitor on-prem and cloud infrastructure for attacks, intrusions, and unusual, unauthorized, or illegal activity
  • Monitor identity and access management, including monitoring for abuse of permissions by authorized system users
  • Perform threat hunting and support threat intelligence processes
  • Use advanced analytic tools to determine emerging threat patterns and vulnerabilities

Requirements

  • Experience with Microsoft Sentinel SIEM solutions
  • At least 1 year of experience with Microsoft Azure
  • Good to have experience with one of the following SIEM solutions (Splunk, QRadar, ArcSight, LogRhythm, ELK, Wazuh, Apache Metron, OSSIM, etc.)
  • Experience with 1 or more SIRP/SOAR tools (TheHive, Cortex, Phantom, Demisto, Resilient, etc.)
  • Technical knowledge of Internet security, networking protocols, and related technologies, including IDS/IPS, firewalls, content filtering, Network Behavior Analysis tool, Anti-malware, and packet inspection
  • Basic understanding of Windows, Linux, DB, and network device monitoring and logging technics
  • Basic understanding of host and network security hardening, networking protocols, common intrusion techniques, and common risk management concepts
  • Basic knowledge of malware detection, intrusion detection, and prevention systems
  • Experience with network security will be a plus
  • Experience with Firewalls (F5, Juniper, Check Point, Palo Alto, Cisco) will be a plus

We offer

  • Dynamic, entrepreneurial, high speed, high growth corporate environment
  • Diverse multicultural, multi-functional, and multilingual work environment
  • Opportunities for personal and career growth in a progressive industry
  • Global scope, international projects
  • Widespread training and development opportunities
  • Unlimited access to LinkedIn learning solutions
  • Competitive salary and various benefits
  • Sport and social teams support, recreation area, advanced CSR programs

Здравствуйте, чем мы можем вам помочь?


Наши офисы