ArcSight Engineer - Ft. Meade, MD
Job ID : 1368
Clearance required for this job : CI Poly
ArcSight Engineer
Clearance Level: CI Poly
Location: Ft. Meade, MD
Description:
ArcSight Engineer
Location: Ft. Meade, MD
Clearance: TS/SCI Full-Scope poly (will also consider CI poly)
Incumbent will author and develop flex connectors for ArcSight SIEM. Incumbent must have experience developing Flex Connectors and implementing non-standard log formats into ArcSight ESM. Also, responsible to enhance and fix the capabilities of high performance, customizable ArcSight Smart Connectors to retrieve events and interact with in-house apps and network devices such as routers, switches, firewalls, ids, operating systems, vulnerability scanners, based upon customer requirements.
Position Requirements
• U.S. Citizenship and active TS/SCI Full-Scope poly Security Clearance (will consider CI poly, as well). CISSP or equivalent Security certification.
• Incumbent should have ArcSight Certified Security Analyst (ACSA) or ArcSight Certified Integrator/Administrator (ACIA) or ArcSight Advanced Administration certification.
• Relevant work experience with BS degree, preferably in Computer Science, Information Systems, Engineering, or other related scientific or technical discipline, plus, 5+ years experience.
• Possess a solid understanding ArcSight SEIM.
Basic Position Responsibilities
• Design, develop, code, test, and debug new connectors or enhancements to existing ArcSight infrastructure.
• Work with technical staff to understand and resolve software problems, resolve customer concerns with software, and respond to suggestions for software modifications or enhancements.
• Assist in the development of software/system documentation.
• Provide status reporting to development lead and project manager.
• Collaborate with team, analysts, QA testers, and security personnel.
Technical Requirements
• Incumbent should have prior experience in successful implementation of a large scale SIEM system or integration of security architecture for security operations.
• Advanced knowledge of ArcSight ESM, logger, connector appliances.
• Knowledge of Enterprise Security: Intrusion detection and prevention, vulnerability assessment and scanning, internal and external security audits and good Network Security concepts.
• Experience with developing use cases, content building, analyzing security event data, creating filters, and event correlation and tuning ArcSight SIEM.
• Experience in developing ArcSight interface content as needed (Dashboards, Data Monitors, Active Channels, Rules, Filters, Reports, etc.)
• Experience with the ArcSight Logger appliance, experience with ArcSight ESM to perform operations and analysis.
• Strong experience on Linux, UNIX and/or Windows operating systems.
• Strong verbal communication skills, good written documentation skills, ability to multitask, work well within a team.
• Experience with various development methodologies (waterfall, spiral, agile, etc.).
Additional Requirements
• The ability to effectively diagnose, isolate and expediently resolve problems pertaining to code and data structure.
• The ability to eliminate data incompatibilities through data integration.
The ability to develop technical solutions to complex problems which require the regular use of ingenuity and creativity.
• Excellent verbal and written communication skills.
• Strong interpersonal skills and the ability to work effectively in a team environment.
|
View Available Career Opportunities
Candidate Help Center
- Resume Writing Tips
- Resume Formatting Tips
- Interviewing Tips
- Interview Questions
- Counter-Offers
More Info ...
Testimonials
"Thomas Sharp listened to my career objectives and
made sure that interviews were for positions I was a good fit for"
More ...
|