Sevatec Inc.

  • ArcSight Content System Engineer

    Job Locations US-MD-Silver Spring
    Posted Date 2 weeks ago(7/2/2018 5:07 PM)
    Job ID
    # of Openings
  • Overview

    The Sr. ArcSight Content System Engineer is expected to have demonstrated expertise in Security Operations methodology, information security concepts, and consulting. Within specific projects, the ArcSight Engineer is responsible for managing individual utilization, meeting customer expectations, and driving completion of items and associated project plans. This individual will be a member of the delivery and solution deployment team. Service offerings focus on the development and implementation of security operations centers (SOC); long-term security analysis support; long-term ArcSight engineering support for development of use cases and custom content to match customer business requirements.


    • Participate in the operation of a ArcSight Security Information and Event Management system, to include; ArcSight ESM, Oracle, Connector appliances, SmartConnectors, Logger appliances, Windows and Linux servers and a variety of network and security related devices
    • Responsible for implementing part or all of the technical solution to the client, in accordance with an agreed technical design.
    • Occasionally responsible for providing a detailed technical design for enterprise solutions.
    • Understands a broad spectrum of Micro Focus technology in order to provide part or all of a detailed technical design which meets customer requirements.
    • Provides planning and design support for the development of solution architectures that will be implemented in a multiple system environment.
    • Develop and deploy content for a complex and growing ArcSight infrastructure; including use cases that involve Dashboards, Active Channels, Reports, Rules, Filters, Trends, and Active Lists
    • The ability to design, deploy and configure an ArcSight ESM Architecture for high-availability and failover.
    • Tune ArcSight performance and event data quality to maximized ArcSight system efficiency.
    • Perform routine equipment checks and preventative maintenance.
    • Provide optimization of data flow using aggregation, filters, etc.
    • Develop custom Flex Connectors as required to meet use case objectives
    • Apply Configuration Management disciplines to maintain hardware/software revisions, ArcSight content, security patches, hardening, and documentation
    • Supporting the establishment, enhancement, and continual improvement of an integrated set of correlation rules, alerts, searches, reports, and responses.
    • Coordinating and conducting event collection, log management, event management, compliance automation, and identity monitoring activities
    • Good understanding of Change Management Process.
    • The successful candidate will have excellent communication skills, both oral and written and be able to comfortably work with all levels in the organization.
    • Often leads small to medium technical projects. Works with and under the direction of the Project/Technical Manager and with customer nominated representatives. Liaises with Solutions Architect as appropriate.
    • Provides technical support and input on the application of technology to a defined business segment. Provides advice on solution and integration opportunities to defined segments.
    • Provides technical leadership on specific integration activities that are part of an engagement.


    • 5+ years of professional experience and a Bachelor of Arts/Science or equivalent degree in computer science or related area of study; without a degree, three additional years of relevant professional experience (8+ years in total).
    • 2-5 years ArcSight experience using ArcSight Security Information and Event Management products, to include ArcSight Connectors, Logger, and Enterprise Security Manager (ESM).
    • Hands-on ArcSight experience developing & managing use cases and content; Dashboards, Active Channels, Reports, Rules, Filters, Trends, Active Lists, etc.
    • 2-5 years Linux experience; 1-2 years of security experience; 1-2 years of data analysis; 1-2 years of consulting experience
    • Has sufficient depth and breadth of technical knowledge to be individually responsible for the design and scope of deliverables within a field of expertise. Has led small team in delivery of a specific deliverable.
    • Has mastered at least one technical discipline with strong knowledge in at least three major technology areas.
    • Has ability to perform/drive resolution of problems on combinations and interactions of products.
    • Ability to apply technology and consulting to solve a client business problem; Possesses advanced level of business, technical, or functional knowledge.
    • Able to communicate and present complex issues with assurance and confidence.
    • Demonstrates the use of consulting skills including: questioning, listening, ideas development, permission and rapport, and influencing.
    • Ability to conduct/lead oral status/technical interchange meetings with clients on small to medium sized engagements.
    • Owns and produces customer documentation. Ability to translate technical details into concise and easy to understand written form. Ability to write relevant components of a proposal document (e.g. answer specific RFP questions).
    • Ability to translate verbal requirements from face to face client meetings into requirements documents, statements of work, and proposals.
    • Able to discuss (within own area of expertise) requirements with a customer, and to challenge and clarify when appropriate. From the requirements, able to develop a high-level design or plan, and then estimate the amount of effort required to deliver.
    • Ability to work with a team to provide written responses to technical proposals and /or reports/documentation for delivery.
    • Experience with common security devices, such as IDS, routers, switches, hubs, and firewalls, etc.
    • Programming languages: Perl, VBS, RegEx, Boolean, and Scripting skills


    Desired Skills and Experience:

    • Bachelor's or Master's Degree in Electrical or Computer Engineering or other related field preferred or 12 years of equivalent work experience
    • Information Security Certification(s), such as CISSP, ISSEP, GSEC, GCIA, GSLC, CEH, Security+ CE, strongly desired
    • Microsoft Certified Systems Engineer (MCSE) or (MCITP), Red Hat Certified Engineer (RHCE) or equivalent.

    Security Clearance: Must be a US Citizen and have an active Top Secret clearance.


    EEO Statement:

    Sevatec is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law."



    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed