GDIT

Returning Candidate?

ArcSight SIEM Engineer

ArcSight SIEM Engineer

Requisition ID 
2017-26042
# of Openings 
1
Job Location 
USA-VA-Herndon
Job Function 
Information Technology
Security Clearance Level 
None
Full/Part Time 
Full Time

More information about this job

Job Description

Performs all procedures necessary to ensure the safety of information systems assets and to protect systems from intentional or inadvertent access or destruction.

 

The Jr ArcSight engineer assists in developing content for a complex and growing ArcSight infrastructure. This includes use cases for Dashboards, Active Channels, Reports, Rules, Filters, Trends, and Active Lists. Provides optimization of data flow using aggregation, filters, etc.  Participates in the operation of ArcSight Security Information and Event Management systems to include ArcSight ESM, Connector appliances/SmartConnectors, Logger appliances, Windows and Linux servers, network devices and backups.  Supports life-cycle management of the ArcSight platforms to including coordination and planning of upgrades, new deployments, and maintaining current operational data flows. 

  • Must possess strong written and verbal communication skills and must be capable of the understanding, documenting, communicating and presenting technical issues in a non-technical manner to audiences with varying degrees of technical expertise
  • Must have demonstrated ability to build and implement event correlation rules, logic, and content in the security information and event management system with specific experience in the ArcSight ESM environment
  • Must have demonstrated ability to tune the SIEM event correlation rules and logic to filter out security events associated with known and well established network behavior, known false positives and/or known errors
  • Must have experience maintaining an event schema with customized security severity criteria
  • Must have experience creating scheduled and ad-hoc reporting with SEIM tools.
  • Must possess a thorough and in-depth understanding of SEIM technologies and event collector deployments in the Windows and Linux operating environments

Solid information security and threat intelligence knowledge.

Good understanding of networking fundamentals.

Excellent problem solving capabilities.

 

Education

Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.

Qualifications

5-8 years of related experience in data security administration.

 
 

As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Individuals with Disabilities. #DPOST

Connect With Us!

Not ready to apply or just want to stay informed on various career opportunities and events at GDIT? Join one of our Talent Communities today!