Job Title: SOC Engineering – Product & Automation Job Description We are looking for a SOC Product & Automation Engineer to join our CDOC Engineering team. The role will focus on SIEM engineering and SOAR automation, with hands-on expertise in Palo Alto XSIAM and XSOAR. You’ll design and optimize automation playbooks, build SIEM detections, and work closely with MSS SOC and clients to deliver scalable, efficient security operations. **Job Title:** **SOC Product & Automation Engineer** **Location:** On-site – Gurgaon, Cyber City **Experience Required:** 4–5 years **Department:** CDOC Engineering **Role Overview** We are seeking a skilled **SOC Product & Automation Engineer** with 4–5 years of experience in **SIEM engineering** and **SOAR automation** . The role requires hands-on expertise in **Palo Alto XSIAM and XSOAR** , focusing on building, optimizing, and maintaining automation frameworks to enhance SOC operations. This is an **on-site position in Gurgaon (Cyber City)** , requiring close collaboration with CDOC Engineering and MSS SOC teams. **Key Responsibilities** + Design, build, and maintain **SIEM use cases** and detections within **Palo Alto XSIAM** . + Develop, test, and manage **SOAR playbooks** and integrations in **XSOAR** to automate SOC workflows. + Partner with MSS SOC and engineering teams to deliver automation for **incident response and threat management** . + Support **POCs and client engagements** , ensuring solutions meet security and business requirements. + Optimize existing automation to improve SOC efficiency and reduce manual workload. + Provide **Level 3 engineering support** for automation-related escalations. + Document automation processes, playbooks, and engineering standards for reuse and scalability. **Required Skills & Experience** + 4–5 years of experience in **SIEM engineering** and **SOAR automation** . + Strong hands-on expertise with **Palo Alto XSIAM and XSOAR** (mandatory). + Proficiency in developing automation playbooks, integrations, and APIs. + Knowledge of scripting languages such as **Python** or **JavaScript** . + Strong understanding of **SOC operations, incident response, and threat detection workflows** . + Familiarity with security frameworks (e.g., **MITRE ATT&CK, NIST** ). + Excellent troubleshooting and problem-solving skills. **Nice-to-Have** + Exposure to other SIEM/SOAR platforms (Splunk, QRadar, Sentinel, etc.). + Experience in **Managed Security Services (MSS)** or client-facing SOC environments. + Relevant certifications: **PCSCE, PCNSE, or equivalent** . **What We Offer** + Opportunity to work on cutting-edge **XSIAM/XSOAR implementations** . + Exposure to **global MSS clients** and enterprise security environments. + Career growth in **SOC engineering, automation, and product development** . Location: IND Gurgaon - Bld 14 IT SEZ Unit 1, 5th, 6th and 17th Flr Language Requirements: Time Type: Full time **If you are a California resident, by submitting your information, you acknowledge that you have read and have access to the Job Applicant Privacy Notice for California Residents (https://www.concentrix.com/resource/job-applicant-privacy-notice-for-california-residents/)**