SIEM ArcSight Core Administrator
Prague, Česko IT development
Job description
Job Summary:
Primary role of L3/L2 SIEM Administrator is to monitor and manage SIEM ArcSight core components. Secondary role is to participate on new technology onboarding.
Key Responsibilities:
· Monitor SIEM components and ensure they are running smoothly
· Troubleshoot any issues with core components
· Initiate escalations to system vendor
· Support SIEM operational team and SOC/CIRT teams
· Participate on new technology onboarding to SIEM
Desired profile
Qualifications :
Requirements:
· Analytical and problem solving skills
· Ability to manage multiple tasks
· Advanced skill in managing Linux OS
· Basic skills in managing Windows OS
· Basic understanding of TCP/IP and networking
· Basic knowledge of SQL
· Basic knowledge of scripting languages (Bash, Python, Perl) and regular expressions
· Proficiency in written and spoken English
Nice to have skills:
· Previous experience with a SIEM solution (ArcSight, Splunk, etc.)
· Advanced scripting/programing skills (Python, REST API, …)
· Experiences with network components – routers, firewalls
· Basic skills in MS Visio