Monday, August 11, 2014

Security Analyst-ArcSight

Job Title:  Security Analyst-ArcSight
Location: Davis, CA
Preferred Start Date: ASAP
Duration: 6-9 Months
Onsite/Remote/Both: Onsite

Top Skill Sets: SIEM, HP ArcSight

Must have HP ArcSight experience

This is a security analyst position to provide implementation of our SIEM (Security Information and Event Monitoring) Tool. This is a complex security monitoring tool. The candidate should have deep skills in security events and analysis and SIEM tools.

Knowledge of SIEM (Security Information and Event Monitoring) tools; our tool is HP ArcSight.
Requires experience in the implementation, operations and maintenance of SIEM or ArcSight, including:
Knowledge of system logs and logging (syslog, slfow, Windows, Oracle, vmWare, CAS, LDAP, sendmail, etc.).
Experience with log collection methods used by the SIEM/ArcSight (SmartConnectors, FlexConnectors).
Experience with parsing log data for security event analysis.
Experience with the setup, configuration, and architecture of the SIEM/ArcSight components (Conapp, Logger, Correlation Engine)
Ability to develop use cases that identify security events, such as compromised accounts, logins from multiple geo-locations, misuse activities, etc.
Ability to develop reports, alerts and monitoring for the SIEM/ArcSight
Must provide timely detection, identification, and alerts of possible attacks/intrusions, anomalous activities, and misuse activities, and distinguish these incidents and events from benign activities.
Must be able to work cooperatively with multiple system administrators of various campus systems
This is a security position and will require background check.


Thanks & Regards

Qasim Chaudhary
Technical Recruiter
US Tech Solutions Inc.