Role Description : Define the security architecture, ensuring that it meets the business requirements and performance goals.
Must Have Skills : Micro Focus ArcSight SIEM Operations
Good To Have Skills : Critical Incident Management,Python Scripting
Key Responsibilities : Ensure all Security Incident are handle to the required GSOC standards and KPIsAct as Subject Matter Experts for analysis functions, providing support on more involved cases and guiding the activity of other analysts through collaborationInvestigate incidents using SIEM technology, packet captures, reports, data visualization, and pattern analysisAnalyze, escalate, and assist in remediation of critical information security incidents
Technical Experience : Experience with deployment and operation of HP arcSightCapture the requirement for security use cases under the various categoriesLog analysis and event traffic patternsDLP, encryption, HIDS, NIDS, firewall technologyStrong understanding of Networking fundamentals, traffic and operating systems Windows Unix/LinuxIT Security domain experience; preferably in data analytics or security analyticsTriage malware incidents, their priority and the need for escalation
Professional Attributes : Ability to work as part of a project / or a teamCommunicating with vendors and suppliersAbility to quickly adapt and master new technology and ways of workingCommunicates with management on incident updatesAble to complete the incident lifecycle without higher level supervision
Educational Qualification : Fulltime -Bachelors degree required Advanced degree preferredCertification -Arcsight
Additional Information : Good written communication EnglishWilling to work in 247 Support Including Night Shifts