SOC Engineer

Reports To

Staff, Security Operations

What You Will Be Doing

Design, build, and maintain security integrations, automate workflows, and develop security playbooks to enhance the efficiency and effectiveness of the Security Operations Center (SOC) at ChargePoint. This role focuses on improving the SOC’s operational capabilities through advanced automation, tool integration, and process optimization.

Key Responsibilities

• Design and implement integrations between security tools, platforms, and systems to streamline SOC operations.
• Develop and maintain automation workflows using Python, SOAR platforms, or other scripting tools.
• Create and optimize security playbooks to standardize incident response and threat mitigation processes.
• Collaborate with SOC analysts and other teams to identify automation opportunities and improve detection and response capabilities.
• Evaluate and integrate new security technologies and tools to enhance SOC monitoring and response.
• Troubleshoot and resolve issues related to security tool integrations and automation workflows.
• Document processes, workflows, and playbooks to ensure clarity and consistency across the team.
• Stay updated on emerging threats, vulnerabilities, and industry best practices to continuously improve SOC capabilities.

Required Experience

• Bachelor’s degree in IT, Computer Science, Cybersecurity, or a related field.
• 1-3 years of experience in a SOC engineering, security automation, or related role.
• Proficiency in Python scripting for automation and integration purposes.
• Hands-on experience with SOAR platforms (e.g., Palo Alto Cortex XSOAR, Splunk Phantom) and their implementation.
• Strong understanding of security tools such as SIEM, EDR, firewalls, and threat intelligence platforms.
• Familiarity with APIs and protocols for integrating security tools and systems.
• Knowledge of cloud security concepts and tools (AWS, Azure, GCP).
• Experience in developing and maintaining security playbooks and runbooks.
• Familiarity with DevSecOps practices, including integrating security tools into CI/CD pipelines (e.g., Jenkins, GitLab CI, AWS CodePipeline).
• Familiarity with infrastructure-as-code (IaC) tools like Terraform or AWS CloudFormation for secure cloud deployments.
• Excellent problem-solving skills and the ability to work independently or as part of a team.
• Basic knowledge of IoT devices and their security implications is a plus.

Certifications

• Candidates with the following relevant certifications will be preferred:
  • Certified SOC Analyst (CSA)
  • Cloud certifications (e.g., AWS Certified Security Specialty, Azure Security Engineer)
  • Security certifications (e.g., CISSP, CEH, CompTIA Security+)

Location
Bangalore/Gurgaon, India