Do you have an investigator's mindset, and intuitively know how to uncover malicious activity? Do you have a deep understanding of computer operating systems and the realities of enterprise IT estates? Do you like data? This role is responsible for analyzing and correlating large data sets to uncover novel threats and attach techniques that may be present.
Req.#411565909
RESPONSIBILITIES

• We are looking for a Threat Hunter who
• can query, process and manipulate data in a variety of platforms and formats
• is able to rapidly understand and leverage new technologies
• has incident response experience and understands how EDR tools work behind the user interface
• will interpret structured and unstructured intelligence to determine what is critical for meeting your detection objectives
• brings detailed contemporary knowledge of attacker techniques and understands how to identify them in the real world
• has initiative and creative thinking to achieve solutions to complex problems
• able to assist incident response teams with major incidents as required

REQUIREMENTS

• A bachelor's degree, preferably within an Information Security related discipline, or equivalent experience
• 6+ years' experience with Threat Hunting or Incident Response, which enables you to recognize malicious activity within a sea of noise
• Deep knowledge of digital forensics, computer operating systems and enterprise network infrastructure
• Strong knowledge of malware and exploit desired
• Experience with offensive security tools and attack techniques
• Competence with one or more programming/query languages - experience with Python, PowerShell and SQL is preferred
• A strong understanding of how to make sense of security and forensic data
• Enjoys interacting working with large data set and tools/technologies such as Spark, PySpark, Pandas, Hadoop, Cloudera, Databricks
• Comfortable working with Cloud environments, preferably Azure
• The experience and judgement of an analyst that can clearly explain concepts to a less technical audience and make well-reasoned arguments for your security recommendations
• Must be a team player and ability to mentor junior colleagues

BENEFITS

• Medical, Dental and Vision Insurance (Subsidized)
• Health Savings Account
• Flexible Spending Accounts (Healthcare, Dependent Care, Commuter)
• Short-Term and Long-Term Disability (Company Provided)
• Life and AD&D Insurance (Company Provided)
• Employee Assistance Program
• Unlimited access to LinkedIn learning solutions
• Matched 401(k) Retirement Savings Plan
• Paid Time Off
• Legal Plan and Identity Theft Protection
• Accident Insurance
• Employee Discounts
• Pet Insurance
• Employee Stock Purchase Program

ABOUT EPAM

• EPAM is a leading global provider of digital platform engineering and development services. We are committed to having a positive impact on our customers, our employees, and our communities. We embrace a dynamic and inclusive culture. Here you will collaborate with multi-national teams, contribute to a myriad of innovative projects that deliver the most creative and cutting-edge solutions, and have an opportunity to continuously learn and grow. No matter where you are located, you will join a dedicated, creative, and diverse community that will help you discover your fullest potential

ADDITIONAL

• This position operates in a remote capacity, but you must live within driving distance to an EPAM office. Your recruiter will discuss specific details about work location during the initial interview process