Google SecOps SOAR Engineer

While technology is the heart of our business, a global and diverse culture is the heart of our success. We love our people and we take pride in catering them to a culture built on transparency, diversity, integrity, learning and growth.


If working in an environment that encourages you to innovate and excel, not just in professional but personal life, interests you- you would enjoy your career with Quantiphi!

As a Google SecOps SOAR Engineer, you will be responsible for strategic delivery helping our customers securely adopt Google SecOps. You will provide best practices on secure build of Google SecOps platform, foundational cloud implementation for Google SecOps, tackle difficult problems that businesses are facing when building Google SecOps, and more. You will provide prescriptive guidance in ensuring customers receive the best of what Google SecOps can offer and you will ensure that customers have the best experience in migrating, building, modernising, and maintaining Google SecOps. Additionally, you will work closely with Product Management and Product Engineering to drive excellence of Google SecOps and features.

• Lead the design and implementation of Google SecOps SOAR playbooks for security use cases, such as phishing incident response, vulnerability triage, or threat hunting on Google SecOps based on specific threat models.

• Integration of Google SecOps SOAR with other security capabilities and tools such as SIEM, EDR, NDR threat intelligence platform, and ticketing systems.

• Design testing and conduct validation of SOAR playbooks before deployment to live environment.

• Write custom actions, scripts and/or integrations to extend SOAR platform functionality.

• Monitor performance and perform timely actions to scale SOAR deployment, especially in a high-volume security environment.

• Migration of existing assets from existing customer’s SIEM/SOAR to SecOps and assisting in implementing the SIEM/SOAR phase-out, phase-in approach.

• Develop SOAR playbooks to provide case handling and Incident response as per triage needs.

• Creation of SOAR assets such as reports etc.

• Guide on building or maturing cloud security programs and the implementation of tools and approaches used for improving cloud security.

Minimum Qualifications:

• Bachelor’s degree in Computer Science, Engineering or related technical field or equivalent practical experience.

• Google SecOps SOAR experience in the areas of responsibility for at least 1 year.

• Coding experience in one or more general purpose languages.

• Experience managing customer projects to completion, working with engineering teams, sales and partners.

• Experience architecting, developing, or maintaining secure Cloud solutions.

• Strong verbal and written communication skills and the ability to develop high-quality.

• 8+ years experience in leading projects and delivering technical solutions related to security.

• Demonstrated experience on consulting or ownership of Security during high-speed environment migration for large-scale businesses with regulatory requirements.

• Strong verbal and written communication skills (English), and the ability to develop high-quality technical documentation and presentation materials.

• Ability to be located in Mumbai, India for at least 1 year

Good to have:

• Experience in Prevention, Detection and response to cyber threats.

• Google SecOps SIEM experience of 1 year in integration of log sources, extension of pre-built UDMs and creation of custom parsers, creation of dashboards , creation of custom rules using YARA-L 2.0 etc.

• Knowledge and experience in SOAR platforms.

• Knowledge in GCP, including Google Cloud Professional Certifications (Security, Architect) and other industry certifications (CISSP, CCSP etc).

• Experience in security governance, security risk management, security operations, security architecture, and/or cyber incident response programs for cloud.

• Experience working with cloud architecture across a broad set of enterprise use cases and creating end-to-end solution architectures.

• Excellent organizational, problem-solving, articulating and influencing skills.

• Experience with industry compliance frameworks (e.g., PCI-DSS, ISO 27017/27018, GDPR, SOC).

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!