Description
Security Event Analyst:
*SC CLEARANCE OR NATO CLEARANCE REQUIRED*
- High level of experience in at least one of the following areas and a working level of experience in several of the other areas:
- Security event management and analysis, especially with the configuration, operation, troubleshooting, and management of ArcSight products
- Management, use and analysis of events from Network Based Intrusion Detection Systems (NIDS)
- Management, use and analysis of events from Host Based Intrusion Detection Systems (HIDS)
- Deployment, configuration and maintenance of network security appliances and networking devices and associated management software
- Knowledge in the use of a variety of Security Event generating sources (eg Firewalls, IDS, Routers, Security Appliances)
- Network, system and application level troubleshooting techniques
- Computer incident response centre (CIRT), computer emergency response team (CERT)
- Computer forensics tools (stand alone and on-line and network)
- Computer security tools (Vulnerability Assessment, Anti-virus, Protocol Analysis, Anti-Virus, Protocol Analysis, Anti-Spyware, etc.)
- Secure web design and development
- Military communication systems and networks
- 5 years experience* (or equivalence) in the analysis and handling of network security related events and security event management.
- Experience/Education Equivalence: If the candidate has a RELEVANT degree (eg Computer Security), this counts towards equivalence for the minimum experience, however some experience within an equivalent role is required:
- Essential to have one of more professional SANS (eg, GSEC, GCIA) or CISSP certifications.
- Expert level of experience in at least three of the following areas and a high level of experience in several of the other areas:
- Management and analysis of (ie Security Event Analyst experience), or configuration, operation, troubleshooting and management (ie Tools Specialist) of the following technologies:
- ArcSight products
- Network Based Intrusion Detection Systems (NIDS),
- Host Based Intrusion Detection Systems (HIDS),
- Network security appliances and networking devices and associated management software,
- A variety of Security Event generating sources (eg Firewalls, IDS, Routers, Security Appliances),
- Computer incident response centre (CIRT), computer emergency response team (CERT),
- Computer forensics tools (stand alone and on-line and network)
- Computer security tools (Vulnerability Assessment, Anti-virus, Protocol Analysis, Anti-Virus, Protocol Analysis, Anti-Spyware, etc.),
- Secure web design and development,
- Military communication systems and networks,
- Network, system and application level troubleshooting techniques.
If you are interested then please click and apply.