Job Details

ID #17121490
State District of Columbia
City Washington
Job type Permanent
Salary USD TBD TBD
Source VariQ Corporation
Showed 2021-07-22
Date 2021-07-21
Deadline 2021-09-19
Category Security
Create resume

Sr. Data Analyst (ArcSight)

District of Columbia, Washington, 20001 Washington USA

Vacancy expired!

Overview

VariQ has an exciting opportunity for a highly qualified

Sr. Data Analyst (ArcSight) to support the

DOS project in

Washington, DC.

Additional Information:
  • Location: Washington, DC
  • Salary: Dependent upon experience
  • Security Clearance: TS/SCI required
  • Available: Upon the award, currently in the proposal stage

Qualifications

Qualifications:
  • Subject Matter Expert (SME) with ArcSight software.
  • Experience planning, installing and administering ArcSight products to include ArcSight Loggers, Connector Appliances, ESM, Management Center and Software Connectors.
  • Experience troubleshooting and resolving issues quickly on all platforms to ensure log management and incident response capabilities are maintained.
  • Experience creating and maintaining detailed documentation of all ArcSight configurations and integrations.
  • Experience working with Business Users to understand logging, incident identification, and compliance requirements.
  • Experience translating those requirements into ArcSight content such as rules, reports, dashboards, alerts, etc.
  • Experience working with System and Network Admins to understand all enterprise platforms and develop a plan to integrate all required logs into ArcSight. This includes mapping these platforms to business requirements and analyzing the events from each platform to validate event output and feed all ArcSight Content Development activities.
  • Experience working with Analyst to create content to help automate the identification and reporting of incidents, compliance reports, events of interest, etc.
  • Experience reviewing open source threat feeds such as SANS and McAfee to stay current of the latest threats; and experience validating and integrating required event sources to identify events of interest surrounding this information.
  • Experience creating and maintaining all content on all ArcSight platforms; including, all rules, filters, active channels, reports, dashboards, queries, etc. for all use cases, and ensuring all content is backup up on a regular basis.
  • Experience developing Flex Connectors to integrate legacy or unsupported applications and platforms into ArcSight.
  • Experience managing the Enterprise Auditing requirements based on ICS 500-27.
  • Minimum of 6 years providing security alert event configuration and management, continuous monitoring of multiple security technologies such as IDS/IPS, syslog, file integrity, vulnerability scanners, correlating, analyzing events, designing, implementing, tuning, and using ArcSight SIEM tool to detect IT security incidents.

Education

: A Bachelor's degree from an accredited university in a field such as information systems, computer science, engineering or a related technical field. Current active IAT level III certification is required. Must have certification, or documentation of training, in Arcsight.

OTHER DUTIES
  • This job description is not designed to cover a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities are subject to change at any time. Employees will be required to follow any other job-related instructions and to perform any other job-related duties requested by any person authorized to give instructions or assignments.

PHYSICAL DEMANDS AND WORK ENVIRONMENT
  • The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this position. Reasonable accommodation may be made to enable individuals with disabilities to perform these functions.
  • While performing the duties of this position, the employee is regularly required to talk or hear. The employee frequently is required to use hands or fingers, handle or feel objects, tools, or controls. The employee is occasionally required to stand, walk, sit, and reach with hands and arms. Specific vision abilities required by this position include close vision, distance vision, and the ability to adjust focus. The noise level in the work environment is usually low to moderate.

NOTE
  • All duties and responsibilities are essential functions and requirements and are subject to possible modification to reasonably accommodate individuals with disabilities. To perform this job successfully, the employee will possess the skills, aptitudes, and abilities to perform each duty proficiently. The requirements listed in this document are the minimum levels of knowledge, skills, or abilities. This document does not create an employment contract, implied or otherwise, other than an "at will" relationship.

VariQ is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, protected veteran status, or any other protected class. We consider diversity and inclusiveness to be core to our culture, and central to our commitment to fostering an empowering and supportive workplace.

Vacancy expired!

Subscribe Report job