Security Specialist (ARCSIGHT, SIEM)

Sydney  ‐ Onsite
This project has been archived and is not accepting more applications.
Browse open projects on our job board.

Keywords

Description

An Incredibly Rare Opportunity has arisen for a Security Specialist (ARCSIGHT, SIEM) to join an exciting, passionate team working on Market leading projects with a Leading Global Organisation based in Sydney. Not only is this a truly innovative and challenging environment but it is also highly regarded as an excellent work environment offering outstanding career growth opportunities, training, bonuses and benefits.

Key Responsibilities:

The main focus of this role is to provide BAU support in the management of the SIEM environment using HP ArcSight. Your responsibility will be to maintain the service deliverables as expected by the supplier and client. You will be part of the greater Computer Emergency Response Team and work closely with these work streams as required to enhance our client's security infrastructure and posture.

  • Perform SIEM/ArcSight product support and implementation.
  • QA ArcSight requirements proposed by Project, Architects and perform teams and provide guidance for best practice.
  • Ensure ArcSight proposals are deliverable and manageable in a steady state business model.
  • Cross train staff on ArcSight with objective to lead to advance tuning and security event monitoring and detection.
  • Configure ArcSight based on security best practices and client requirements.
  • Assist in end to end fault determination, troubleshooting or escalation of security infrastructure, working with other Security personnel as required.
  • Develop end to end monitoring processes and procedures.
  • Build, test and implement Arcsight Use Cases as required.
  • Interact the Helpdesk and Service Restoration Managers to ensure customers and Management are alerted to severity 1 and 2 problems.

Key Requirements:

  • Strong ArcSight product knowledge (ESM,Logger, connectors).
  • Development of Uses Cases.
  • Understanding of ArcSight SOX package/reporting.
  • Experience with other security products/tools, including IPS/IDS, Proxy, Firewall, syslog, mail gateway, Antivirus.
  • Understanding of SIEM principles and best practices.
  • Knowledge of other SIEM tools, ISS VSOC, QRadar.
  • Understanding of security postures/policies.
  • Knowledge of network/security tools syslog, SNMP, Wireshark, PCAP etc.
  • Strong Security monitoring principles and best practice.
  • Understanding of regular expressions for customizing security events.
  • Generating security reports.

Interested applicants should email a current CV to Natalie Zegarelli - IT Infrastructure Specialist.

Start date
n.a
Duration
12 MONTHS +
(extension possible)
From
Robert Walters - Sydney
Published at
27.03.2013
Project ID:
512240
Contract type
Freelance
To apply to this project you must log in.
Register