Arcsight Technical Analyst - DV Cleared
- Recruiter
- Anonymous
- Location
- Gloucester
- Salary
- 45000.00 - 55000.00 GBP Annual + Blue Chip Benefits
- Posted
- 09 Nov 2016
- Closes
- 07 Dec 2016
- Sectors
- Accountancy
- Contract Type
- Permanent
- Hours
- Full Time
Job Title: ArcSight Technical Analyst - DV
Quickscan: Arcsight, IDS/IPS, Splunk, IT Security, Checkpoint, Juniper, Consultant, DV, Developed Vetting
Company: Global IT Consultancy
Location: Gloucestershire
Salary: To ??55,000
ArcSight Technical Analyst: You will join the defence practice of a leading IT consultancy, and deliver technical and management information assurance, governance and cyber security consultancy to support the secured delivery and on-going secure operation. The primary function of the role is to be the leading authority on ArcSight.
The Company:
A leading business and technology services company with a global workforce. In the UK, they are ranked as a top 5 Defence software and IT services supplier providing defence advisory services, software solutions, systems integration, secure hosting services and training across the Ministry of Defence including frontline operations, security, intelligence, communications, personnel systems, logistics and infrastructure.
Responsibilities
+ Creation and maintenance of the technology roadmap planning and implementing patches, upgrades and enhancements.
+ Tuning ArcSight as appropriate in line with business and infrastructure requirements.
+ Investigating and managing Security Incidents that have been escalated from the Security Operations Centre.
+ Analyze system logs and event information and perform detailed analysis during investigations.
+ Technical support to the SOC Incident Response Platform.
+ Part of a Team that is responsible for providing 24x7x365 on-call cover for critical security events.
+ Use ArcSight logs along with other correlated data from the SIEM to aid investigations and provide additional visibility or insight into attacks.
P+ rimary resource for on-boarding new ArcSight infrastructure into the Security Operations unit.
Clearance:
Due to the nature of the end client you will be required to hold DV Clearance.
You will have:
+ Experience of ArcSight, IDS/IPS or Splunk
+ TCP/IP Networking skills
+ Experience of other vendor security products such as Checkpoint, Juniper, F5, Palo Alto, Cisco, Crossbeam
+ Knowledge of Unix (Solaris, Linux, BSD) and/or Windows (2000, 2003, 2008, 2012)
+ Penetration testing experience is desirable
+ Experience with virtualization technologies Hyper-V/VMware
+ ArcSight Flex Connector development
+ Troubleshooting and supporting ArcSight Smart Connectors
+ Regular Expressions
+ ArcSight ESM(CORR and Oracle), Express, Logger, Connector Appliance, Management Centre
+ Content development (Filters, Dashboards, Rules, Reports) in ArcSight ESM and Logger
+ In-depth understanding of configuring ArcSight ESM and Connectors to conform to HMG GPG13
Benefits:
As well as opportunities for professional development and growth this position offers
Profit Participation plan
Share Purchase Plan
Competitive Pension Scheme
Private Health Care for members as a taxable benefit
25 days annual leave with the option to buy/sell
ArcSight Technical Analyst
Quickscan: Arcsight, IDS/IPS, Splunk, IT Security, Checkpoint, Juniper, Consultant, DV, Developed Vetting
Company: Global IT Consultancy
Location: Gloucestershire
Salary: To ??55,000
ArcSight Technical Analyst: You will join the defence practice of a leading IT consultancy, and deliver technical and management information assurance, governance and cyber security consultancy to support the secured delivery and on-going secure operation. The primary function of the role is to be the leading authority on ArcSight.
The Company:
A leading business and technology services company with a global workforce. In the UK, they are ranked as a top 5 Defence software and IT services supplier providing defence advisory services, software solutions, systems integration, secure hosting services and training across the Ministry of Defence including frontline operations, security, intelligence, communications, personnel systems, logistics and infrastructure.
Responsibilities
+ Creation and maintenance of the technology roadmap planning and implementing patches, upgrades and enhancements.
+ Tuning ArcSight as appropriate in line with business and infrastructure requirements.
+ Investigating and managing Security Incidents that have been escalated from the Security Operations Centre.
+ Analyze system logs and event information and perform detailed analysis during investigations.
+ Technical support to the SOC Incident Response Platform.
+ Part of a Team that is responsible for providing 24x7x365 on-call cover for critical security events.
+ Use ArcSight logs along with other correlated data from the SIEM to aid investigations and provide additional visibility or insight into attacks.
P+ rimary resource for on-boarding new ArcSight infrastructure into the Security Operations unit.
Clearance:
Due to the nature of the end client you will be required to hold DV Clearance.
You will have:
+ Experience of ArcSight, IDS/IPS or Splunk
+ TCP/IP Networking skills
+ Experience of other vendor security products such as Checkpoint, Juniper, F5, Palo Alto, Cisco, Crossbeam
+ Knowledge of Unix (Solaris, Linux, BSD) and/or Windows (2000, 2003, 2008, 2012)
+ Penetration testing experience is desirable
+ Experience with virtualization technologies Hyper-V/VMware
+ ArcSight Flex Connector development
+ Troubleshooting and supporting ArcSight Smart Connectors
+ Regular Expressions
+ ArcSight ESM(CORR and Oracle), Express, Logger, Connector Appliance, Management Centre
+ Content development (Filters, Dashboards, Rules, Reports) in ArcSight ESM and Logger
+ In-depth understanding of configuring ArcSight ESM and Connectors to conform to HMG GPG13
Benefits:
As well as opportunities for professional development and growth this position offers
Profit Participation plan
Share Purchase Plan
Competitive Pension Scheme
Private Health Care for members as a taxable benefit
25 days annual leave with the option to buy/sell
ArcSight Technical Analyst