Position: ArcSight admin
Location: Syracuse - New York
5+ years working experience in Information Security field
3+ years working with SIEM technology preferably on ArcSight SIEM
Experience with system administration skill set in both Unix and Windows technologies with Integration of devises such as windows, Unix, linux IDS etc.
Installation, trouble shooting and up gradation of connectors.
Installation, implementation, troubleshooting of ArcSight SIEM components
ESM, Logger, Smart Connector and Flex Connector troubleshooting and setup
Hands and feet support for hardware replacement
Health checks & configuration of rules, reports, dashboards, data monitoring etc.
Excelled at troubleshooting new and unknown problems with little guidance
Developed, performance tested, and deployed advanced ArcSight ESM content
Installed, migrated, and maintaining Stock ArcSight connectors
Excellent communication and customer interaction skills
Advanced technical writing skills.
Roles and Responsibilities
Performs troubleshooting as required. As such, leads problem-solving efforts often involving outside vendors and other support personnel and/or organizations.
Develops procedures to maintain security and protect systems from unauthorized use, acts of nature and user abuse
Perform regular file archival and purge as necessary
Create, change, and delete user accounts per request.
Repair and recover from hardware or software failures. Coordinate and communicate with impacted constituencies.
Perform daily system monitoring, verifying the integrity and availability of all hardware, server resources, systems and key processes, reviewing system and application logs, and verifying completion of scheduled jobs such as backups
Perform daily backup operations, ensuring all required file systems and system data are successfully backed up to the appropriate media, recovery tapes or disks are created, and media is recycled and sent off site as necessary.
Develop and maintain installation and configuration procedures.
Perform periodic performance reporting to support capacity planning.
Maintain operational, configuration, or other procedures.
Root Cause analysis for P1 and P2 severity incidents
Creating and maintaining KEDB (Known Error Data Base)
Apply OS and security patches and upgrades on a regular basis, and upgrade administrative tools and utilities. Configure / add new services as necessary.
Responsibilities sometimes require working evenings and weekends, sometimes with little advanced notice.
Vendor/OEM Coordination for issues, hardware replacements, RMAs and other related tasks
Send resume to email@example.com or firstname.lastname@example.org