Description
My client is sourcing a senior consultant. Scope of services and deliverables are detailed below
Objectives
My client has a Security Information Event Monitoring tool running on the HP/Microfocus Arcsight solution. The tool is collecting security events from devices/Servers and archive the logs on NAS. The Arcsight infrastructure is based on 5 regional platforms each getting a NAS infrastructure to store the logs. My client would like to move away from the NAS solution and use a cheaper storage solution based on Public cloud storage. The current preferred public cloud environment is AWS but this may be reviewed. The main objective is for the consultant is to design, implement the technical solution and start the migration of the data.
Main tasks
- Define the Low level Design of the solution taking into account the geography of the data: the different regional Arcsight platforms and potential regional public cloud instances. T i. Multiple solutions can be proposed. It's important to think globally taking into account operations (how the logs will be read, impact of transferring the logs on the network, it is worth using another way to read the logs, etc.)
- Define the processes for operations and data life cycle management: copy/transfer data, data search, data retrieval, data cleaning
- Develop the tools (ex: scripts) or propose & deploys tools to automate data transfer and execute processes (copy/retrieval/clean up, integrity checks, replay, etc.)
- Manage the process of implementing the new solution across all regions
- Produce a plan and implement the migration of the ArcSight Logger Archives to the newly identified solution
- Document all work and processes for handover to the ArcSight Engineering team
- Provide the project manager with status updates and a regular basis
Skills required
- ArcSight Logger
- Must have skills with ArcSight Logger in an enterprise environment
- Must have experience of the Logger Archives service and its function
- Must understand ArcSight Logger in a peered configuration
- Must have the ability to perform sizing assessments with ArcSight in general Linux
- Must have skills with Linux and in particular, experience with Logger running on Linux
- Must understand Linux mount points and in particular, NFS
- Scripting skills (BASH/Python) to aid automation
- Knowledge and practical experience on using storage in public clouds, especially in AWS
Nice to have skills
- General knowledge of different cloud and on-premises storage solutions
- General understanding of NAS and NFS compatible services
- Understanding of suitable public or private cloud storage solutions
- Knowledge of typical on-premises storage solutions
- Knowledge of data migration strategies for said solutions General ArcSight knowledge outside of Logger Knowledge of ArcSight product suite outside of Logger and how it is used in an enterprise environment
- The individual must have previous experience with ArcSight Logger within a large enterprise environment
Expected deliverables
- Delivery of a high-level design and low level design document on the selected solution
- This LLD will need to include the migration process for existing Logger archives as how it will apply to different regions
- Processes description for operating the data migration and managing the data life cycle
- Development of any scripts or tools for any automation used to migrate the data and for operations
- Regular status updates to the Programme Manager, project manager, and team members
- Implementation of a new NAS storage solution for multi-region Logger archive environment