305 King St W
Suite 1100
Kitchener, ON N2G 1B9
Canada
Chief Security Software Engineer (SIEM) Remote
Chief Security Software Engineer (SIEM) Description
We are seeking an experienced Chief Security Software Engineer to guide our initiatives in implementing, configuring, and enhancing SIEM solutions in strictly regulated sectors.
The perfect candidate will possess a solid background in SIEM deployment and migration, coupled with a rich history in an Enterprise SOC where they managed security events and incidents. This position requires effective teamwork with client cybersecurity groups to pinpoint their requirements and construct customized SIEM architectures that address both business and technical needs.
#LI-DNI
Responsibilities
- Lead the engineering, implementation, and setup of SIEM systems, ensuring they integrate flawlessly with diverse security tools, systems, and log sources
- Coordinate and manage SIEM migration projects, including data migration, log source integration, rule/alert transitions, and system adjustments
- Craft, personalize, and refine SIEM scenarios, correlation rules, dashboards, and reports for effective threat and suspicious activity identification
- Enfold various log sources such as firewalls, IDS/IPS, antivirus, cloud services, applications, and operating systems within the SIEM framework
- Work alongside the SOC team to aid in the development and improvement of additional use cases in alignment with SOC specifications
- Periodically assess and enhance SIEM performance to maintain effective log collection, storage, processing, and alert generation
- Document all SIEM configurations, integrations, and migration steps comprehensively, and regularly report on SIEM system performance
- Educate and guide junior security engineers and SOC analysts on optimal SIEM usage, best practices, and problem-solving techniques
- Collaborate with IT, security, and network departments to guarantee the SIEM platform is cohesive with overarching security objectives and strategies
Requirements
- Minimum of 7 years in Cyber Security, with a significant focus on engineering SIEM solutions and working within a SOC
- Expertise in SIEM engineering and architecture, specifically with Splunk or other major SIEM technologies like Microsoft Sentinel, QRadar, ArcSight, LogRythm
- Experience overseeing the entire delivery lifecycle for SIEM enhancements and automation, including work with integrated SIEM solutions featuring SOAR and XDR components
- Proficiency in log source integration and developing correlation rules, alerts, and dashboards
- Background in cloud environments (AWS, Azure, GCP) and the integration of cloud logs into SIEM systems
- Understanding of security frameworks (MITRE ATT&CK, NIST) and basic regulatory compliance knowledge (GDPR, PCI-DSS)
- Knowledge of network protocols, firewalls, IDS/IPS, endpoint security, and threat intelligence
- Capability to grasp client-specific security challenges, needs, and the regulatory landscape to devise appropriate solutions
- Skilled in communicating complex technical concepts to clients, fostering trust and strong relationships
- Ability to handle stakeholders at various tiers, from technical teams to senior executives
- Collaborate effectively across different organizational departments and with large enterprises
- Lead discussions, mediate disputes, and achieve consensus among diverse stakeholder groups
- Make strategic decisions based on thorough analysis and evidence
We offer
- Career plan and real growth opportunities
- Unlimited access to LinkedIn learning solutions
- International Mobility Plan within 25 countries
- Constant training, mentoring, online corporate courses, eLearning and more
- English classes with a certified teacher
- Support for employee’s initiatives (Algorithms club, toastmasters, agile club and more)
- Enjoyable working environment (Gaming room, napping area, amenities, events, sport teams and more)
- Flexible work schedule and dress code
- Collaborate in a multicultural environment and share best practices from around the globe
- Hired directly by EPAM & 100% under payroll
- Law benefits (IMSS, INFONAVIT, 25% vacation bonus)
- Major medical expenses insurance: Life, Major medical expenses with dental & visual coverage (for the employee and direct family members)
- 13 % employee savings fund, capped to the law limit
- Grocery coupons
- 30 days December bonus
- Employee Stock Purchase Plan
- 12 vacations days plus 4 floating days
- Official Mexican holidays, plus 5 extra holidays (Maundry Thursday and Friday, November 2nd, December 24th & 31st)
- Monthly non-taxable amount for the electricity and internet bills
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.
By applying to our role, you are agreeing that your personal data may be used as in set out in EPAM´s Privacy Notice and Policy.