Cybersecurity Engineer/ArcSight SME in Columbus, OH at Booz Allen Hamilton Inc.

Date Posted: 6/11/2018

Job Snapshot

Job Description

Job Number: R0020893

Cybersecurity Engineer/ArcSight SME

Key Role:
Apply knowledge of Cybersecurity engineering services to conceptualizing, designing, and building secure technical solutions, including operationally viable and efficient applications, systems, architectures, and infrastructure. Advise on the design and innovative integration of Cybersecurity toolsets to enable more automated discovery, remediation, and alerting of network and device vulnerabilities as a means of improving the security posture while reducing manpower requirements. Analyze emerging technologies and design and build architectures and solutions to enable the secure implementation of new technologies. Analyze threat information gathered from logs, Intrusion Detection Systems (IDSes), intelligence reports, vendor sites, and a variety of other sources. Create customized dashboards using the Security Information and Event Management (SIEM) tool and use ArcSight Event Security Manager (ESM) to elevate high threat items to incident responders. Develop ESM rules, reports, dashboards, data monitors, active channels, trends, and use cases to identify threats and optimize data mining. Research, plan, install, configure, troubleshoot, maintain, and back up all components in the ArcSight Enterprise Log Management (ELM) architecture.
 

Basic Qualifications:
-7 years of experience with IT
-Experience with creating custom dashboards and reports in ArcSight ESM using threat data
-Experience with the integration and sustainment of the ArcSight Connector Appliance, Logger components, and ArcSight ESM
-Active Secret clearance
-BA or BS degree
-DoD 8570.01 IAT Level III Certification, including CISSP or CASP
-DoD 8570.01 CND-IS Certification, including SSCP or CEH
-Ability to obtain a Computing Environment: Linux+ or ArcSight Administrator Certification within 90 days of start


Additional Qualifications:
-Knowledge of administration for the ArcSight ESM and backend database infrastructure related to upgrades and daily maintenance

Clearance:
Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information; Secret clearance is required.

We’re an EOE that empowers our people—no matter their race, color, religion, sex, gender identity, sexual orientation, national origin, disability, or veteran status—to fearlessly drive change.

Your Career is Waiting.

Get job alerts. Learn about new work and upcoming events. Share open roles with friends and colleagues.
Our Talent Network is your opportunity hub.


Get Answers and Access.

Need more information? Find it in our FAQs.

Application already in-process? Log in to keep going.