Staff - Cyber Security Operations

3 Months ago • 8-10 Years • Cyber Security

Job Summary

Job Description

The Staff - Security Operations professional will lead the Security Operations Center (SOC) team and be the first line of defense against cybersecurity threats. This role involves managing security incidents, utilizing threat intelligence, and enforcing AWS security controls. Key responsibilities include leading the SOC team, incident response, threat hunting, cloud security expertise with AWS, endpoint and network security using CrowdStrike and Zscaler, managing email security using Proofpoint, and ensuring compliance with industry standards. The role requires 24/7 availability during crises and driving security enhancements.

Must have:

8-10 years of experience in Security Operations, Incident Response, and Cloud Security
Strong expertise in AWS Security Services, XDR, CrowdStrike, Zscaler, Proofpoint, Defender, WAF, and API Security.
Experience in threat hunting, threat intelligence, and security investigations.
Hands-on experience with security event analysis, forensics, and incident management.
Knowledge of network security, IAM, SIEM, and automation tools.
Experience with IoT security monitoring and cloud-based SOC operations.
Strong analytical and problem-solving skills.

Good to have:

Experience working in large-scale enterprise security environments.
Familiarity with DevSecOps, container security, and microservices security.
Proficiency in scripting and automation for security operations.

5 skills required

5 skills required for this role

Add these skills to join the top 1% applicants for this job

incident-response

aws

threat-intelligence

cloud-security

microservices

Job Details

Enphase Energy is a global energy technology company and leading provider of solar, battery, and electric vehicle charging products. Founded in 2006, Enphase transformed the solar industry with our revolutionary microinverter technology, which turns sunlight into a safe, reliable, resilient, and scalable source of energy to power our lives. Today, the Enphase Energy System helps people make, use, save, and sell their own power. Enphase is also one of the fastest growing and innovative clean energy companies in the world, with approximately 68 million products installed across more than 145 countries.

We are building teams that are designing, developing, and manufacturing next-generation energy technologies and our work environment is fast-paced, fun and full of exciting new projects.

If you are passionate about advancing a more sustainable future, this is the perfect time to join Enphase!

Role Summary:

We are looking for a highly skilled Staff - Security Operations professional to lead our security operations team and be the first line of defense against cybersecurity threats. This role requires deep expertise in AWS Cloud Security, XDR, CrowdStrike, Zscaler, Defender, Proofpoint, IoT Security Monitoring, and API Security. The ideal candidate will be responsible for end-to-end incident lifecycle management, root cause and corrective action (RCCA), threat intelligence, and threat hunting while ensuring 24/7 availability during crisis situations.

Key Responsibilities:

Security Operations Leadership: Lead the Security Operations Center (SOC) team, ensuring effective monitoring, detection, and response to security threats.

Incident Response & Investigation: Act as an incident responder, managing security incidents from detection to resolution, including RCA and corrective actions.

Threat Intelligence & Hunting: Utilize threat intelligence, threat hunting techniques, and forensic analysis to proactively detect and mitigate threats.

Cloud Security Expertise: Oversee and enforce AWS native security controls, monitor cloud environments, and provide security guidance on cloud-based applications.

Endpoint & Network Security: Leverage CrowdStrike, XDR, and Zscaler for endpoint and network protection.

Email & API Security: Manage and secure email platforms using Proofpoint and safeguard API security with WAF solutions.

IoT Security Monitoring: Ensure security monitoring and compliance for IoT devices and infrastructure.

Compliance & Best Practices: Align security strategies with industry standards and best practices (e.g., NIST, CIS, ISO 27001).

Continuous Improvement: Drive security enhancements, develop playbooks, and improve response automation.

Crisis Management & 24/7 Availability: Be available during security crises, ensuring rapid containment and mitigation of threats.

Required Skills & Qualifications:

8–10 years of experience in Security Operations, Incident Response, and Cloud Security with

Degree - Bachelors of Engineering/B.Tech in Computer Science

Strong expertise in AWS Security Services, XDR, CrowdStrike, Zscaler, Proofpoint, Defender, WAF, API Security.

Experience in threat hunting, threat intelligence, and security investigations.

Hands-on experience with security event analysis, forensics, and incident management.

Knowledge of network security, IAM, SIEM, and automation tools.

Experience with IoT security monitoring and cloud-based SOC operations.

Strong analytical and problem-solving skills.

Certifications such as CISSP, CHFI, GCIH, AWS Security Specialty are highly preferred.

Ability to work in a fast-paced, high-pressure environment with 24/7 availability during crises.

Preferred Qualifications:

Experience working in large-scale enterprise security environments.

Familiarity with DevSecOps, container security, and microservices security.

Proficiency in scripting and automation for security operations.

If you are a security enthusiast with deep expertise in cloud security, incident response, and security operations, we’d love to hear from you!

Apply now to be a key player in our security team!