Arcsight Consultant
Systems Generators Philippines
Makati
8h ago

Description

The SIEM Arcsight Consultant is required to work on and lead the SIEM Architecture, design and implementation within the SOC.

Experience

  • Is a specialist in SIEM Arcsight from either a Management or Technical perspective, capable of understanding and resolving complex SIEM issues
  • Subject Matter Expert / SME on ArcSight ESM software product and industry best practices around Security Operations.
  • Use ArcSight Enterprise Security Manager (ESM) in the daily operational work and workflow.
  • Administer ArcSight ESM software platform at the customer site, some travel may be required.
  • Deploy new ESM, Loggers, SmartConnectors / FlexConnectors as required to collect data feeds
  • Assist in the proper operation and performance of ArcSight ESM, Loggers and connector
  • Provide capability to analyze ArcSight output and interpret reports
  • Integration of data feeds (logs) into ArcSight
  • Perform Content Development to properly identify data feeding ArcSight
  • Develop filters to assist in the identification of significant events
  • Coordinate with client engineering staff for modifications, downtimes, and upgrades
  • Develop reports (manual and automated) to support the development, collection, and reporting of Quality Assurance and Performance metrics (as defined by the client)
  • Develop dashboards / reports for external customers for system monitoring
  • Provide ad-hoc training to analysts focusing on specific client missions, including generic ArcSight training sessions and Custom Use Case training sessions
  • Provide recommendations and implement changes to optimize ArcSight products in the customer environment
  • Support the client in fact finding or case supporting tasks as it relates to ArcSight
  • Evaluate relative ArcSight product advancements and provide recommendations to the customer
  • Capable of integrating Arcsight with other security devices
  • Hands on experience with Arcsight integration with other security devise like firewall , IPS , IDS ..etc.
  • Apply
    Add to favorites
    Remove from favorites
    Apply
    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Continue
    Application form