ArcSight

Learn Linux, Splunk and ArcSight

March 30, 2020 by Leave a Comment

Splunk training:
www.splunk.com/en_us/training.html
www.udemy.com/Splunk/Online-Course
www.onlc.com/Splunk
bootcamp.du.edu/Cybersecurity/Boot-Camp

for courses on how to get into IT Security check out:
http://convocourses.com

Senior Advanced Splunk IT Specialist

April 17, 2019 by Leave a Comment

Check out how I am able to get all these offers: https://securitycompliance.thinkific.com

More on that #splunk job: Sr Advanced Splunk / IT Security Specialist https://careers-gdms.icims.com/jobs/35104/job

POC: quan.nguyen@gd-ms.com 443-755-8136 (O)

Bachelor’s degree in a related specialized area or equivalent is required plus a minimum of 8 years of relevant experience; or Master’s degree plus a minimum of 6 years of relevant experience.

Knowledge Skills and Abilities: Senior Splunk Administrator Advanced knowledge of backend operating systems to implement, maintain, configure, and remediate issues (UNIX/Linux/Windows) Knowledge of operating systems and networking. Understanding of SIEM & logging fundamentals. Understanding of SOC Monitor and Response fundamentals. Experience in any type of SIEM – Splunk, Arcsight, Log Rhythm, etc. Experience with implementation of SIEM products and tools. Understanding of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc. Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix Knowledge of applications, databases, middleware to address security threats against the same. Proficient in preparation of reports, dashboards and documentation Excellent communication and leadership skills Ability to handle high pressure situations with key stakeholders Good Analytical skills, problem solving and Interpersonal skills Working knowledge and experience with MS office with proficiency in Excel Preferred degree types and experience: The leading candidate will have a Bachelor’s Degree in Computer Science, a related field, or equivalent experience. with a minimum of 5 years of experience in a SOC, or an Associates Degree in Computer Science, Information Systems, Cyber Security, or related discipline with a minimum of 7 years of experience in a SOC. Strong candidates will have previous experience working with users; possess a talent for problem-solving as well as organization and time management skills.

Desired Certifications: CISSP, Network +, Security + (or other applicable certifications)

Senior Advanced Splunk IT Specialist

April 1, 2019 by Leave a Comment

Check out how I am able to get all these offers:
https://securitycompliance.thinkific.com

More on that #splunk job:
Sr Advanced Splunk / IT Security Specialist
https://careers-gd-ais.icims.com/jobs…
POC:
quan.nguyen@gd-ms.com
443-755-8136 (O)

Bachelor’s degree in a related specialized area or equivalent is required plus a minimum of 8 years of relevant experience; or Master’s degree plus a minimum of 6 years of relevant experience.
Knowledge Skills and Abilities:
Senior Splunk Administrator
Advanced knowledge of backend operating systems to implement, maintain, configure, and remediate issues (UNIX/Linux/Windows)
Knowledge of operating systems and networking.
Understanding of SIEM & logging fundamentals.
Understanding of SOC Monitor and Response fundamentals.
Experience in any type of SIEM – Splunk, Arcsight, Log Rhythm, etc.
Experience with implementation of SIEM products and tools.
Understanding of security concepts such as cyber-attacks and techniques, threat vectors, risk management, incident management etc.
Knowledge of various operating system flavors including but not limited to Windows, Linux, Unix
Knowledge of applications, databases, middleware to address security threats against the same.
Proficient in preparation of reports, dashboards and documentation
Excellent communication and leadership skills
Ability to handle high pressure situations with key stakeholders
Good Analytical skills, problem solving and Interpersonal skills
Working knowledge and experience with MS office with proficiency in Excel

Preferred degree types and experience:

The leading candidate will have a Bachelor’s Degree in Computer Science, a related field, or equivalent experience. with a minimum of 5 years of experience in a SOC, or an Associates Degree in Computer Science, Information Systems, Cyber Security, or related discipline with a minimum of 7 years of experience in a SOC. Strong candidates will have previous experience working with users; possess a talent for problem-solving as well as organization and time management skills.

Attend the (ISC)² SecureDenver Event on June 17

April 25, 2016 by Bruce Brown Leave a Comment

Threat Intelligence – From Haystacks to Needles

Information Security, as a function, sits at a great confluence of raw unfiltered data; perhaps more data about the enterprise than any other function of the organization. From state-based data such as vulnerability scan results, to event-based data such as IDS logs, we are collecting more and more information about the enterprise every passing day.

The next step is to make sense of this treasure trove of data. To find the nuggets of truth and transform them into useful information.

Date: June 17, 2016

Registration: 8:00 a.m.

Time: 9:00 a.m.–5:00 p.m.

Venue: Marriott Denver South
10345 Park Meadows
Littleton, Colorado 80124
USA

Registration Fee: $99

For full program, speaker information, and registration,
click here.

Sr Cyber Security Engineer Fairfax

January 29, 2016 by Bruce Brown Leave a Comment

Company Profile

Every day CSRA makes a difference in how the government serves our country and our citizens. We are inspired by the important missions of our customers and we believe that by working together we can deliver exceptional solutions and services to enable the safety, security, health and well-being of our nation. CSRA was formed through the combination of the North American Public Sector business of CSC and SRA International. With over 90 years of experience supporting U.S. government agencies and programs, our DNA is grounded in important mission work. We deliver a broad range of innovative, next-generation IT solutions and professional services to help our customers modernize their legacy systems, protect their networks and assets, and improve the effectiveness and efficiency of mission-critical functions for our warfighters and our citizens. Our 19,000 employees understand that success is a matter of perseverance, courage, adaptability and experience. We remain focused on our customers at all times, demonstrate ethical leadership, commit to excellence in program execution, aspire to achieve great things for our customers, and are inspired to deliver exceptional results to help our customers succeed. Our outstanding teams collaborate with our customers, business partners and with each other to deliver the best technologies and solutions aligned to critical mission requirements. http://www.csra.com

OverviewWe have an immediate opening for a Senior Cyber Security Engineer located in Fairfax, VA.
The Senior Cyber Security Engineer will be accountable for the following:

Supports the operations and maintenance of ArcSight ESM, ArcSight Logger, and ArcSight Connector appliances, and other security tools such as network IPS.
Performs administration, management, configuration, and testing activities related to ArcSight.
Maintains the application and appliances in accordance with DoD and Army security directives.
Ability to develop ArcSight ESM content, such as rules, filters, channels, and notifications.
Teach junior SOC analysts to create ArcSight ESM content and security tool maintenance.
Define, design and develop system requirements. Define system support requirements to include monitoring, capacity, staffing and patching/updating.
Analyze and resolve program support deficiencies.
Conducts independent technical investigations in systems design.

The Senior Cyber Security Engineer responsibilities include:

Install, configure, and maintain ArcSight ESM per Army build guides and instructions. Participate in weekly ArcSight SEIM meetings with other Army organizations.
Manage and maintain the Red Hat Enterprise Linux operating system.
Coordinate with the US Army to ensure lessons learned and content from other ArcSight instances are incorporated into the ArcSight system.
Mentors junior Cyber Security Engineers, ensuring they have required knowledge and training and familiarity with specific Agency Security requirements and processes.
Participates in network and systems design to ensure implementation of appropriate systems security policies.

Qualifications

Security Clearance: Candidate must have an active DoD Secret Security Clearance. Interim Secret clearance may be considered for qualified candidates.
Years Of Experience: 6 – 9 years
Education: Bachelors’ degree required. Candidates with additional work experience may be considered in lieu of degree. Masters’ degree highly desirable.
Certifications:
- Individual must obtain ITILv3 Foundations and Security+ certification within 45 days of start date.
- Must have CNDSP Infrastructure Support or CNDSP Incident responder certification: SSCP, CEH, GCIH, CSIH, or GCFA.

This position requires an innovative self-starter. Candidate must be willing to ask for help when needed and push their comfort zone to learn new technologies and skills. The candidate must be able to take high-level direction, apply lessons learned and job knowledge to the task, and share that knowledge with other members of the team.

https://jobs.csra.com/job/fairfax/senior-cyber-security-engineer/3459/1125030 < -Job Description/Apply

ArcSight Administrator/ SME position in Plano TX 75075

January 26, 2016 by Bruce Brown Leave a Comment

Job Title: ArcSight Administrator/ SME

Location: Plano, TX 75075

Duration: 6+ Months

Job Description:

Deploy new ESM, Loggers, SmartConnectors / FlexConnectors as required to collect data feeds.
Assists in the development of information security policies, procedures, standards, and guidelines based on knowledge of best practices and compliance requirements.
ArcSight Administration including creation and management of custom connectors, correlations and alerts.
Good understanding in a broad range of common security products: McAfee ePO, VirusScan, HIPS, Web Application firewall (WAF), firewalls.
Assist in the proper operation and performance of ArcSight ESM, Loggers and connector.
Provide capability to analyze ArcSight output and interpret reports.
Integration of data feeds (logs) into ArcSight.
Perform Content Development to properly identify data feeding ArcSight.
Develop filters to assist in the identification of significant events.
Coordinate with client engineering staff for modifications, downtimes, and upgrades.
Develop reports (manual and automated) to support the development, collection, and reporting of Quality Assurance and Performance metrics (as defined by the client).
Develop dashboards/reports for external customers for system monitoring.
Provide ad-hoc training to analysts focusing on specific client missions, including generic ArcSight training sessions and Custom Use Case training sessions.
Support the client in fact finding or case supporting tasks as it relates to ArcSight.
Evaluate relative ArcSight product advancements and provide recommendations to the customer.
Identifies security risks, threats and vulnerabilities of networks, systems, applications and new technology initiatives.

If you are available and interested then please reply me with your updated copy of resume or can call me at (973)-507-7570.