JOB SUMMARY:

We are seeking a skilled and proactive SIEM Engineer with hands-on experience in the implementation and configuration of ArcSight SIEM solutions. The ideal candidate will play a critical role in deploying and maintaining SIEM infrastructure, integrating log sources, and optimizing security event monitoring to support enterprise cybersecurity operations.

REQUIRED SKILLS & QUALIFICATIONS:

• Bachelor’s degree in Computer Science, Information Security, or related field.
• 4–6 years of hands-on experience in implementing and managing ArcSight SIEM.
• Strong knowledge of ArcSight ESM, Logger, SmartConnectors, and FlexConnector creation.
• Proficiency in log source onboarding, normalization, and custom parser development.
• Experience with Windows, Linux, network security devices, firewalls, and endpoint security systems.
• Familiarity with cybersecurity frameworks (e.g., MITRE ATT&CK, NIST, ISO 27001) is a plus.
• ArcSight certification (e.g., Micro Focus Certified ArcSight Analyst/Admin) is a strong advantage.
• Excellent analytical, communication, and documentation skills.

• Lead and execute end-to-end implementation of ArcSight SIEM solutions across enterprise environments.
• Configure and fine-tune ArcSight ESM, Logger, SmartConnectors, and ArcSight Management Center.
• Integrate diverse log sources from systems, applications, firewalls, and network devices into ArcSight.
• Develop and maintain correlation rules, alerts, dashboards, and reports to support security operations.
• Perform health checks, troubleshoot issues, and optimize SIEM performance.
• Collaborate with SOC teams, security analysts, and infrastructure teams to ensure effective monitoring.
• Provide documentation, implementation plans, and knowledge transfer to internal teams.
• Stay updated on ArcSight updates, best practices, and new security trends.