SOC Engineer ( Arcsight)

May 3, 2021
$200000 - $431250 / year
Apply Now

Job Description

As a Security Analyst -SOC, you are responsible for managing day to day operations of Security Device Management SIEM, incident response, threat hunting, Use case engineering, SOC analyst, device integration with SIEM. You are also Responsible for identifying, reporting and tracking system vulnerabilities within corporate, commercial and federal assets ensuring the integrity of the environment. If you thrive in a dynamic, collaborative workplace, HGS TSG provides an environment where you will be challenged and inspired every single day. And if you relish the freedom to bring creative, thoughtful solutions to the table, there’s no limit to what you can accomplish here.

Key Responsibilities

Daily activities include: Operation of various scanning tools in use assessment and analysis data collected from scan tools tracking and reporting on discovered vulnerabilities and remediation efforts Identification of overdue system remediation efforts sourcing and tracking of public and pre-embargoed vulnerability disclosure sources.

· Coordination with system owners to identify and remediate scan problems coordination with system owners to provide requested details about scan findings, scan methodologies and remediation recommendations assisting Program Managers with reporting and continuous motion on remediation efforts responsibility General SIEM monitoring, analysis, content development, and maintenance.

· Monitor a strategic, comprehensive corporate, commercial and federal information security monitoring and operation program to ensure the integrity, confidentiality and availability of information owned, controlled or processed by the organization.

· Provide information to system owners of flaws identified within that groups responsible systems.

· Assist in risk assessment duties including reporting and oversight of remediation efforts.

· Research, analysis, and response for alerts; including log retrieval and documentation.

· Conduct analysis of network traffic and host activity across a wide array of technologies and platforms.

· Assist in incident response activities such as host triage and retrieval, malware analysis, remote system analysis, end-user interviews, and remediation efforts.

· Enterprise-level experience managing the remediation of vulnerabilities in two or more of the following areas: Server Operating Systems (Windows Server, Red Hat, CentOS) Network (Cisco, Palo Alto, F5, McAfee) Storage (NetApp, Clever Safe).

· Manage multiple projects with various priority levels and time lines from start to finish.

· Develop and maintain accurate documentation for internal procedures and services.

· Maintain knowledge of outstanding vulnerability management issues and ensure remediation timelines are completed by required guidelines thorough understanding of how to calculate CVSS v2 and v3 adjusted scores.

· Must collaborate with other departments to resolve complex issues and be detail oriented.

· Ability to automate solutions to repetitive problems/tasks.

Skill & Experience

Top 3 Mandatory Skills: Good communication skills, ArcSight , Tenable security centre

Minimum Relevant Experience: 3- 7 Years

Education/qualification: Any Bachelor’s

Joining time / Notice Period: Immediate joining

Shift Timings: Rotational

Related Jobs