Manpower® is the global leader in contingent and permanent recruitment workforce solutions. We provide the agility businesses need with a continuum of staffing solutions. By leveraging our trusted brand, we have built a deeper talent pool to provide our clients access to the people they need, faster. We effectively assess and develop skills, keeping our associates ahead of the curve, so they can get the job done each time, every time.
SIEM Administrator
Praca Stała
Workplace: Wrocław
Nr Ref.: SAE/049/OQQ
Job Description
- Provide technical support of Arcsight devices
- Participate on our global team in a variety of projects involving Arcsight
- Provide User administration and security hardening of Arcsight
- Automating tasks to create reliable monitoring
- Responsible for creating Use Case rules and filters in Arcsight
- Provide reports and dashboards on workloads and performance
- Produces and maintains documentation for system support
- Monitors Arcsight system, including setting alerts to maintain the stability of the environment, application and error logs, and back-ups
- Serves as key person in troubleshooting system problems, taking ownership of problems to resolution
- Assists with analyst using ArcSight and other tools to detect and respond to IT security incidents
- Analyzes performance trends to optimize system performance
- Responsible for tuning Arcsight connector resources, developing FlexConnectors and Parser overrides, and installation or upgrade of SmartConnectors
- Produce reports identifying significant or suspicious security events to appropriate parties. Include latest security threat information and tie back to specific intrusion sets of nation state actors when possible.
- Review assembled data with firewall administrators, engineering, system administrators and other appropriate groups to determine the risk of a given event.
- Review and evaluate network modifications and recommend security monitoring policy updates.
- Establish procedures for handling each security event detected
- Willingness to be on-call for emergencies and support other IT SOC activities if needed
- Minimum of four years of progressively increasing responsibility SIEM operations.
- Experience with database administration MySQL, MSSQL performing back-up and recovery procedures, troubleshooting SQL issues, performance tuning and security configuration
- At times your response may be required on evenings or weekends.
- Excellent command of English (written and spoken)
- Candidate must hold an Undergraduate or Master's Degree in MIS, Computer Science, or related field from a recognized college or university or equivalent work experience
- 2 years of IT experience with minimum 2 years total ArcSight security operations experience.
- Scripting experience prefer experience with SQL, PowerShell, Python, Perl
- Strong working knowledge of Arcsight SIEM, troubleshooting networks and ArcMC management tools
- Understanding of virtualization (VMWare)
- Working knowledge of Linux or Windows security installations, patching, configuration, SSL certificates, creating User Accounts, and maintenance
- Experience with data base administration
- Ability to identify to troubleshoot issues and identify root causes
- Experience with API integrations
- Ability to interact with vendors, clients and internal teams in a professional and articulate way
- Professional training and onboarding package
- Private medical care
- Life insurance
- Retirement scheme
- Multisport card
- Service award
- Vacation award
- Relocation package
If you are interested in this offer please send your application by clicking Apply button.
