Automation is a beneficial tool for speeding up investigations, accessing valuable context in an incident, and executing automated response actions. However, many security teams struggle to competently use automation such as security orchestration, automation, and response (SOAR). In this report, we detail seven best practices for using automation in the security operations center (SOC) to enable security leaders and security operations teams to get maximum value out of their automation investment.