We are seeking a Security Incident Analyst to join our Cyber Defense team, focusing on first and second-level incident response activities and supporting the wider team in protecting our critical assets.
You'll play a key role in monitoring, detecting, and responding to security incidents, while also contributing to the continuous improvement of our processes and capabilities.
Responsibilities
- Monitor systems and networks using SIEM, EDR, and cloud-native tools to identify and triage security threats
- Perform initial investigation and analysis of security alerts and escalate incidents as required
- Support second-level incident response activities, assisting more senior team members during major incidents
- Contribute to incident documentation, reporting key findings and actions taken
- Assist in maintaining and updating incident response playbooks and standard operating procedures
- Coordinate with engineering teams to ensure efficient handling of security alerts and incidents
Requirements
- 2–3 years of experience as a SOC Analyst or Security Incident Analyst in a 24/7 environment
- Hands-on experience with SIEM, EDR/XDR, IDS/IPS, and firewalls
- Basic experience with AWS cloud security tools such as GuardDuty and CloudTrail
- Familiarity with frameworks like MITRE ATT&CK, Cyber Kill Chain, and NIST guidelines
- Proficiency in communication skills, both written and verbal, with the ability to collaborate with internal stakeholders effectively
- Basic scripting knowledge in Python, Bash, or PowerShell is a plus but not mandatory
- Flexibility to participate in on-call rotations outside business hours
Nice to have
- Familiarity with Google Workspace Investigation Tool and OpsGenie
- Experience with Okta and Amazon Detective
- Background in GitHub and Tenable
- Understanding of GCP Security Tools
We offer
-
We gather like-minded people:
- Engineering community of industry professionals
- Friendly team and enjoyable working environment
- Flexible schedule and opportunity to work remotely within Poland
- Chance to work abroad for up to 60 days annually
- Business-driven relocation opportunities
-
We provide growth opportunities:
- Outstanding career roadmap
- Leadership development, career advising, soft skills, and well-being programs
- Certification (GCP, Azure, AWS)
- Unlimited access to LinkedIn Learning, Get Abstract, Cloud Guru
- English classes
-
We cover it all:
- Stable income (Employment Contract or B2B)
- Participation in the Employee Stock Purchase Plan
- Benefits package (health insurance, multisport, shopping vouchers)
- Strategically located offices featuring entertainment and relaxation zones, table tennis and football, free snacks, fantastic coffee, and more
- Referral bonuses
- Corporate, social and well-being events
-
Please, note:
- The set of bonuses might vary based on the role you apply for – specifics will be discussed with our recruiter during the general interview.
- We will reach out to selected candidates exclusively.
EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential.