Cyber Security Operations Engineer

Why Join Us?
 
Enphase Energy is a global energy technology company and leading provider of solar, battery, and electric vehicle charging products. Founded in 2006, Enphase transformed the solar industry with our revolutionary microinverter technology, which turns sunlight into a safe, reliable, resilient, and scalable source of energy to power our lives. Today, the Enphase Energy System helps people make, use, save, and sell their own power. Enphase is also one of the fastest growing and innovative clean energy companies in the world, with approximately 68 million products installed across more than 145 countries.  

We are building teams that are designing, developing, and manufacturing next-generation energy technologies and our work environment is fast-paced, fun and full of exciting new projects.  If you are passionate about advancing a more sustainable future, this is the perfect time to join Enphase!  

We are seeking a highly skilled and motivated Security Operations Engineer to join our Enphase Security Operations team. The ideal candidate will have a strong background in endpoint protection, extended detection and response (XDR), SIEM, SOAR, threat intelligence, and dark web monitoring. You will be instrumental in building and enhancing security capabilities to protect Enphase Energy from evolving threats.
 
Key Responsibilities:
 
1. Endpoint Protection & Monitoring:
Manage and optimize CrowdStrike endpoint protection solutions. Leverage XDR platforms to ensure robust detection and response capabilities. 
2. SIEM and SOAR: 
Implement, configure, and monitor SIEM tools to detect and respond to security incidents.Develop automation scripts and playbooks using SOAR to streamline security operations. 
3. Threat Intelligence & Dark Web Monitoring:

Conduct dark web monitoring to identify potential risks and vulnerabilities. Provide actionable threat intelligence and recommendations to mitigate risks. 
4. Security Incident Investigation:

Lead investigations into security incidents, determine root causes, and implement remediation measures. Perform digital forensics as needed for comprehensive incident analysis. 
5. AWS Cloud Security:
Ensure robust security configurations and monitoring within AWS environments. Familiar with Guardduty, Security Hub, Shield, AWS WAF etc. 
6. IoT Security (Preferred):  
Experience monitoring IoT devices and ensure security best practices are followed, Establish use cases and engineer agent/agentless on IOT gateways and monitor for malicious activities. 
 
 
Qualifications and Experience:
 
Education:
Bachelor’s degree in Computer Science, Information Technology, or a related field (B.E./B.Tech preferred).

 

Certifications: 
Certified Ethical Hacker (CEH)
CompTIA Security+
AWS Certified Security Specialty
 
Experience:
3-5 years of experience in security operations, including hands-on experience with CrowdStrike, SIEM, and SOAR (Preferred IOT Security Monitoring) 
Proven expertise in investigating security incidents and implementing preventive measures.
 
Soft Skills:
Strong problem-solving and analytical abilities. Excellent communication and interpersonal skills. Ability to work under pressure and manage multiple priorities effectively.