Hello Asociates, Please reply to an...@tresourceinc.com
*Role : ArcSight Implementation Engineer* *Location : TX, CA, CO, CA, NJ* · Link the identified systems/ applications to the Arc Sight SIEM system through connectors, · Performs all administration, management, configuration, testing, and integration tasks related to the ArcSight ESM, Logger, and Connector Appliance Platforms to include content creation, server maintenance, and backup administration tasks. · Research, analyze and understand log sources utilized for the purpose of security monitoring, particularly security and networking devices (such as firewalls, routers, anti-virus products, proxies, and operating systems) · Create rules/ filters to identify, prioritize, and respond to various security events, compliance violations, breaches, cyber-attacks, and insider threats. · Develop, implement, and execute standard procedures for the administration, content management, change management, version/patch management, and lifecycle management of the ArcSight platform. · Provide technical inputs to management during proof-of-concept reviews for new security products. · Provide technical guidance to the Enterprise Security Team and/ or the Incident Response Teams during investigations or incident response · Such other tasks as may be assigned by the AVP of Enterprise Security *Qualifications* To be considered for this role you should have: · Proven experience of implementing ArcSight system from the scratch in a mid to large size Bank, Credit Union, or Financial Institution. · Have 5+ years of multiple security platform administration or engineering within a mid to large enterprise combined with at least 3 years of experience within an engineering role designing or implementing complex Security Event Management solutions. · Experience with developing use cases, content building, analyzing security event data and event correlation and tuning SEM. · Robust knowledge of Checkpoint firewall, BlueCoat proxy platform, Data Leak Prevention, JBase systems to include their logging methods. -- You received this message because you are subscribed to the Google Groups "USITCV" group. To unsubscribe from this group and stop receiving emails from it, send an email to usitcv+unsubscr...@googlegroups.com. To post to this group, send email to usitcv@googlegroups.com. Visit this group at http://groups.google.com/group/usitcv. For more options, visit https://groups.google.com/d/optout.
