General Dynamics Information Technology ArcSight SIEM Engineer SME (Active Top Secret Clearance Required) in Washington, District Of Columbia

Clearance Level Must Currently Possess:

Top Secret w/SCI eligibility

Clearance Level Must Be Able to Obtain:

Top Secret SCI



Job Family:

Information Technology

Job Description:

Every day, CSRA impacts the way government serves America and its citizens through smart, future-focused information technology and professional services. Transforming government requires a technical ecosystem that is dynamic, interconnected, reliable and secure for the people who build it, who manage it and, most of all, who use it. We are committed to our pursuit of imaginative and mission-driven outcomes. Together, we are inspiring our clients, our collaborators, and our team members to realize a better tomorrow through next-generation thinking, today.

We are currently seeking an ArcSight Engineer for a position in Washington, DC.

The ArcSight Content System Engineer Responsibilities:

Participate in the operation of a Enterprise ArcSight Security Information and Event Management system, to include; ArcSight ESM, Oracle, Connector appliances, Smart Connectors, Logger appliances, Windows and Linux servers and a variety of network and security related devices

Responsible for implementing part or all of the technical solution to the client, in accordance with an agreed technical design

Responsible for providing a detailed technical design for enterprise solutions.

Provides planning and design support for the development of solution architectures that will be implemented in a multiple system environment

Develop and deploy content for a complex and growing ArcSight infrastructure; including use cases that involve Dashboards, Active Channels, Reports, Rules, Filters, Trends, and Active Lists

Design, deploy and configure an ArcSight ESM Architecture for high-availability and failover

Tune ArcSight performance and event data quality to maximized ArcSight system efficiency

Perform routine equipment checks and preventative maintenance

Provide optimization of data flow using aggregation, filters, etc

Develop custom Flex Connectors as required to meet use case objectives

Apply Configuration Management disciplines to maintain hardware/software revisions, ArcSight content, security patches, hardening, and documentation

Support initial build, enhancement, and continual improvement of an integrated set of correlation rules, alerts, searches, reports, and responses

Lead and coordinate event collection, log management, event management, compliance automation, and identity monitoring activities

Follow Change Management Process and System Development Lifecycle process associated with varies development models (Agile)

Maintain excellent communication skills, both oral and written, working with senior technical and executive staff.

Prepare, mentor, and train client and team members to ArcSight related Standard Operating Procedures.

Work core hours during a normal 40 hour week

Required Clearance:

Active Top Secret Security Clearance , SCI and CI poly eligible

Required education and technical experience:

14+ years of professional experience and a Bachelor of Arts/Science or equivalent degree in computer science or related area of study; without a degree, three additional years of relevant professional experience (15+ years in total) required

5+ years ArcSight experience using ArcSight Security Information and Event Management products, to include ArcSight Connectors, Logger, and Enterprise Security Manager (ESM)

Hands-on ArcSight experience developing & managing use cases and content; Dashboards, Active Channels, Reports, Rules, Filters, Trends, Active Lists, etc.

2+ years Linux experience

2+ years of security experience in IT security system management including SIEM, IDS, DLP, FW i

2+ years of data, syslog, security event, network traffic analysis

Desired education and technical experience:

Master's Degree or 12 years of equivalent work experience preferred

Information Security Certification(s), such as CISSP, ISSEP, GSEC, GCIA, GSLC, CEH, Security+ CE

Microsoft Certified Systems Engineer (MCSE) or (MCITP), Red Hat Certified Engineer (RHCE) or equivalent

Programming languages: Perl, VBS, RegEx, Boolean, and Scripting skills are highly desired

CSRA's legacy is a partnership forged to become a leading provider of next-generation IT solutions and professional services. We retain the spirit of partnership in all we do—with our customers, within our brilliant teams, and through our alliances with industry-leading technology innovators. We are a company of over 18,000 smart, talented individuals tapping into 50+ years of combined legacy experience supporting U.S. government agencies and programs, and yet we enjoy a start-up culture that inspires us to make a difference while delivering results in this rapidly evolving world. Together, we are committed to a stronger and better future for America through next-generation thinking made real today. Think Next. Now.

# of Openings:


Scheduled Weekly Hours:


T elecommuting Options:

Telecommuting Not Allowed

Work Location:

USA DC Washington - 935 Pennsylvania Ave NW (DCC031)

Additional Work Locations:

CSRA is committed to creating a diverse environment and is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status.


CSRA is tomorrow’s thinking, today. To “Think Next. Now.” is to imagine a better future and to deliver it, today. For our customers, our partners, and ultimately, all the people our mission touches, CSRA is realizing the promise of technology to change the world through next-generation thinking and meaningful results.

We understand that our customers' missions require new methods and imaginative thinking. We bring together government IT professionals, emerging technologies, and the brightest, cutting-edge advisors in the industry to deliver a broad range of innovative, next-generation IT solutions and professional services to help our customers modernize their legacy systems, protect their networks and assets, and improve the effectiveness and efficiency of mission-critical functions for our warfighters and our citizens.

Everywhere you look, CSRA is there. We’re in our nation’s infrastructure, in training and education, in cyber security, in serving veterans who served us—and, so much more. Take some time to learn more about CSRA. You might be surprised to learn how we touch your life.

We are a company of 18,000+ smart, talented individuals, yet we enjoy a start-up culture that inspires us to make a difference while delivering results in this rapidly evolving world. Join our team and use your skills and expertise to support the safety, security, health and well-being of the nation.