General Dynamics Information Technology ArcSight SIEM Engineer SME (Active Top Secret Clearance Required) in Washington, District Of Columbia
Clearance Level Must Currently Possess:
Top Secret w/SCI eligibility
Clearance Level Must Be Able to Obtain:
Top Secret SCI
Every day, CSRA impacts the way government serves America and its citizens through smart, future-focused information technology and professional services. Transforming government requires a technical ecosystem that is dynamic, interconnected, reliable and secure for the people who build it, who manage it and, most of all, who use it. We are committed to our pursuit of imaginative and mission-driven outcomes. Together, we are inspiring our clients, our collaborators, and our team members to realize a better tomorrow through next-generation thinking, today.
We are currently seeking an ArcSight Engineer for a position in Washington, DC.
The ArcSight Content System Engineer Responsibilities:
Participate in the operation of a Enterprise ArcSight Security Information and Event Management system, to include; ArcSight ESM, Oracle, Connector appliances, Smart Connectors, Logger appliances, Windows and Linux servers and a variety of network and security related devices
Responsible for implementing part or all of the technical solution to the client, in accordance with an agreed technical design
Responsible for providing a detailed technical design for enterprise solutions.
Provides planning and design support for the development of solution architectures that will be implemented in a multiple system environment
Develop and deploy content for a complex and growing ArcSight infrastructure; including use cases that involve Dashboards, Active Channels, Reports, Rules, Filters, Trends, and Active Lists
Design, deploy and configure an ArcSight ESM Architecture for high-availability and failover
Tune ArcSight performance and event data quality to maximized ArcSight system efficiency
Perform routine equipment checks and preventative maintenance
Provide optimization of data flow using aggregation, filters, etc
Develop custom Flex Connectors as required to meet use case objectives
Apply Configuration Management disciplines to maintain hardware/software revisions, ArcSight content, security patches, hardening, and documentation
Support initial build, enhancement, and continual improvement of an integrated set of correlation rules, alerts, searches, reports, and responses
Lead and coordinate event collection, log management, event management, compliance automation, and identity monitoring activities
Follow Change Management Process and System Development Lifecycle process associated with varies development models (Agile)
Maintain excellent communication skills, both oral and written, working with senior technical and executive staff.
Prepare, mentor, and train client and team members to ArcSight related Standard Operating Procedures.
Work core hours during a normal 40 hour week
Active Top Secret Security Clearance , SCI and CI poly eligible
Required education and technical experience:
14+ years of professional experience and a Bachelor of Arts/Science or equivalent degree in computer science or related area of study; without a degree, three additional years of relevant professional experience (15+ years in total) required
5+ years ArcSight experience using ArcSight Security Information and Event Management products, to include ArcSight Connectors, Logger, and Enterprise Security Manager (ESM)
Hands-on ArcSight experience developing & managing use cases and content; Dashboards, Active Channels, Reports, Rules, Filters, Trends, Active Lists, etc.
2+ years Linux experience
2+ years of security experience in IT security system management including SIEM, IDS, DLP, FW i
2+ years of data, syslog, security event, network traffic analysis
Desired education and technical experience:
Master's Degree or 12 years of equivalent work experience preferred
Information Security Certification(s), such as CISSP, ISSEP, GSEC, GCIA, GSLC, CEH, Security+ CE
Microsoft Certified Systems Engineer (MCSE) or (MCITP), Red Hat Certified Engineer (RHCE) or equivalent
Programming languages: Perl, VBS, RegEx, Boolean, and Scripting skills are highly desired
CSRA's legacy is a partnership forged to become a leading provider of next-generation IT solutions and professional services. We retain the spirit of partnership in all we do—with our customers, within our brilliant teams, and through our alliances with industry-leading technology innovators. We are a company of over 18,000 smart, talented individuals tapping into 50+ years of combined legacy experience supporting U.S. government agencies and programs, and yet we enjoy a start-up culture that inspires us to make a difference while delivering results in this rapidly evolving world. Together, we are committed to a stronger and better future for America through next-generation thinking made real today. Think Next. Now.
# of Openings:
Scheduled Weekly Hours:
T elecommuting Options:
Telecommuting Not Allowed
USA DC Washington - 935 Pennsylvania Ave NW (DCC031)
Additional Work Locations:
CSRA is committed to creating a diverse environment and is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.
THINK NEXT. NOW.
CSRA is tomorrow’s thinking, today. To “Think Next. Now.” is to imagine a better future and to deliver it, today. For our customers, our partners, and ultimately, all the people our mission touches, CSRA is realizing the promise of technology to change the world through next-generation thinking and meaningful results.
We understand that our customers' missions require new methods and imaginative thinking. We bring together government IT professionals, emerging technologies, and the brightest, cutting-edge advisors in the industry to deliver a broad range of innovative, next-generation IT solutions and professional services to help our customers modernize their legacy systems, protect their networks and assets, and improve the effectiveness and efficiency of mission-critical functions for our warfighters and our citizens.
Everywhere you look, CSRA is there. We’re in our nation’s infrastructure, in training and education, in cyber security, in serving veterans who served us—and, so much more. Take some time to learn more about CSRA. You might be surprised to learn how we touch your life.
We are a company of 18,000+ smart, talented individuals, yet we enjoy a start-up culture that inspires us to make a difference while delivering results in this rapidly evolving world. Join our team and use your skills and expertise to support the safety, security, health and well-being of the nation.