Beschreibung
My Client leading consultancy in the IT Field is looking for a Arcsight SME/Specialist.
Job description/Requirments is as follows:
Assist in the proper operation and performance of ArcSight ESM, Loggers and connector
Deploy SmartConnectors/FlexConnectors as required to collect data feeds
Provide capability to analyze ArcSight output and interpret reports
Integration of data feeds (logs) into ArcSight
Perform Content Development to properly identify data feeding ArcSight
Develop filters to assist in the identification of significant events
Coordinate with client engineering staff for modifications, downtimes, and upgrades
Develop reports (manual and automated) to support the development, collection, and reporting of Quality Assurance and Performance metrics (as defined by the client)
Develop dashboards/reports for external customers for system monitoring
Provide ad-hoc training to analysts focusing on specific client missions, including generic ArcSight training sessions and Custom Use Case training sessions
Support the client in fact finding or case supporting tasks as it relates to ArcSight
Must be familiar with administering ArcSight ESM 4.5+/Smart Connectors/Loggers in a complex environment
Must have experience with Flex Connectors, and content development, some Scripting experience
Experience working with IP Networking, networking protocols and understanding of security related technologies including encryption, IPsec, PKI, VPNs, Firewalls, Proxy services, DNS, electronic mail and access-lists
Experience working with Internet, web, application and network security techniques
Experience working with relevant operating system security (Windows, Solaris, Linux, etc.)
Experience working with leading Firewall, network scanning and intrusion detection products and authentication technologies
For Immediate consideration please get in touch directly (see below)