ArcSight Engineer

Clearance Level
Secret
Category
Cyber Security
Location
Arlington, Virginia

REQ#: RQ59433

Travel Required: Less than 10%
Public Trust: None
Requisition Type: Regular

Responsibilities:

Candidate will support the Army National Guard (ARNG) Enterprise Operations and Security Services (EOSS) contract.


The Cyber Security Engineer: Supports the operations and maintenance of ArcSight ESM, ArcSight Logger, and ArcSight Connector appliances, and other security tools such as network IPS. Performs administration, management, configuration, and testing activities related to ArcSight. Maintains the application and appliances in accordance with DoD and Army security directives. Ability to develop ArcSight ESM content, such as rules, filters, channels, and notifications. Teach junior SOC analysts to create ArcSight ESM content and security tool maintenance. May be asked to define, design and develop system requirements. Define system support requirements to include monitoring, capacity, staffing and patching/updating. Analyze and resolve program support deficiencies. Conducts independent technical investigations in systems design.

Job Requirements

Required Skills/Experience:

  • Prior experience with ArcSight version 5.5 or later
  • Ability to create content such as rules, alerts, channels, filters, reports, etc
  • Outstanding customer service skills
  • Excellent written, verbal, and presentation communication skills
  • Ability to work and effectively communicate with executives, enterprise-wide and group management, peers, and outside vendors
  • Strong analytical and problem resolution skills, organizational skills, and ability to analyze technical problems
  • Strong ability to work on and prioritize multiple, concurrent projects while meeting aggressive deadlines in a fast-paced environment
  • Ability to work independently as well as collaboratively with other administrators
  • Understanding of system performance monitoring
  • Broad understanding of system hardware
  • System troubleshooting skills
  • Must have DoD 8570 CNDSP Infrastructure Support or CNDSP Incident responder certification: SSCP, CEH, GCIH, CSIH, or GCFA within 60 days
  • ITIL v3 Foundations (required within 60 days of start)

Preferred Skills/Experience:

  • HP ASE – ArcSight Administrator Certified
  • HP ASE ArcSight Analyst Certified
  • Experience with Splunk
  • Years Of Experience: 6-9 Years
  • Bachelor’s Degree in a technical field
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.