Description
Your duties and responsibilities:
ArcSight ESM infrastructure monitoring
- Logs Analysis
- System events management and response
- Manager/Database issues troubleshooting
- Multi-tier issues troubleshooting
Connectors monitoring
- Connectors logs analysis
- Functionality issues troubleshooting
- Parsing issues troubleshooting
- Handling and tracking heterogeneity in connector parameters
Occasional evening maintenance windows (19h -> )
Connectors upgrades (software, AUPs)
- ESM upgrades
- Important structural changes in the infrastructure
Infrastructure sizing
- Devices throughput monitoring
- Sizing issues detection (pre-process, post-process)
Close relationship with ArcSight Support centre
- Create tickets for operational issues
- Proactive followup of tickets
Security Analysts support
- SPOC for security analysts incidents
- Get ownership of operational issues incidents
- Dispatch engineering related incidents
Infrastructure administration
- Users rights configuration
- New/Terminated users monitoring
- Connector remote deployment
Depoly and support new SEC engineering solutions into production
Tools:
- Arcsight
- Splunk
- Tripwire
Skills
- Good communication Skills (written, oral, shows, etc) - Good Technical Writer Skills
- Negotiation capabilities in the customer relations
- Flow Chart and Processes understanding and mastering
- Process minded
- Ideally a consultant who speaks French, English and Dutch. You have to be fluent in English.