ArcSight Administrator/IT Security Specialist (Senior)

All jobs are open until filled regardless of original posting date.
Job Type
Security Clearance
Secret Security Clearance

Description

ITIP Job Title:  ArcSight Administrator

DHS Eagle Labor Category:  IT Security Specialist (Senior)

Location:

Bossier City (ITC)

Job Functions:

Requirements and Technical Skills:

  • Deploy new ESM, Loggers, SmartConnectors / FlexConnectors as required to collect data feeds
  • Assist in the proper operation and performance of ArcSight ESM, Loggers and connector
  • Provide capability to analyze ArcSight output and interpret reports
  • Integration of data feeds (logs) into ArcSight
  • Perform Content Development to properly identify data feeding ArcSight
  • Develop filters to assist in the identification of significant events
  • Coordinate with client engineering staff for modifications, downtimes, and upgrades
  • Develop reports (manual and automated) to support the development, collection, and reporting of Quality Assurance and Performance metrics (as defined by the client)
  • Develop dashboards/reports for external customers for system monitoring
  • Provide ad-hoc training to analysts focusing on specific client missions, including generic ArcSight training sessions and Custom Use Case training sessions
  • Provide recommendations and implement changes to optimize ArcSight products in the customer environment
  • Support the client in fact finding or case supporting tasks as it relates to ArcSight
  • Evaluate relative ArcSight product advancements and provide recommendations to the customer
  • Identifies security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives
  • Provides technical support in the development, testing and operation of firewalls, intrusion detection systems, and enterprise anti-virus and software deployment tools
  • Conducts complex security architecture analysis to evaluate and mitigate issues
  • Develops implements, enforces and communicates security policies and/or plans for data, software applications, hardware and telecommunications
  • CISSP or equivalent certification
  • Industry security-related (e.g. SANS, (ISC) 2, etc.) certifications
  • Experience      working with IP networking, networking protocols and understanding of      security related technologies
    including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS,      electronic mail and access-lists
  • Experience      working with internet, web, application and network security techniques
  • Experience      working with relevant operating system security (Windows, Solaris, Linux,      etc.)
  • Experience      working with leading firewall, network scanning and intrusion detection      products and authentication
    technologies
  • Experience      working with federal regulations related to information security (FISMA,      Computer security Act, etc.)
  • Must be      familiar with deploying, installing and administering ArcSight ESM 4.5+ in a complex environment
  • Must have      experience with Flex Connectors, and content development, some scripting      experience

 Labor Category Description:

Responsible for providing customer support in solving all phases of complex information security related technical problems. Reviews and recommends information security solutions to customer problems based on an understanding of products/systems test results. Conducts systems security analysis and implementation, system engineering, electrical design, design assurance, testing, software engineering, program design, configuration management, integration, and testing of information security products and techniques. Solutions are based on a firm understanding of government/industry policy, practices, procedures, and customer requirements. Particular attention placed on Guard, Firewall, Secure Network Server, PCMCIA format security solutions, “Smart Cards”, and emerging security technologies and future trends in support of information system and network security.

Other Qualifications:

  • Strong communication skills
  • Strong analytical and problem solving skills to troubleshoot and resolve network/operating system security issues
  • Ability to perform and interpret vulnerability assessments
  • Ability to administer the operations of a security infrastructure
  • Ability to balance and prioritize work

 

Education

Certifications:

• CISSP or equivalent certification
• Industry security-related (e.g. SANS, (ISC) 2, etc.) certifications
Labor Category Qualifications:
Masters Degree or higher with over six years of related experience. Equivalents: Bachelors Degree from an accredited college or university with eight years experience, or Doctorate Degree with four years experience.
Apply
 upload file ... Limit reached, delete at least one file below to add more.