As a Cyber Security Engineer specializing in ArcSight, you will be responsible for developing, implementing, and maintaining security solutions using ArcSight SIEM technology. You will play a pivotal role in identifying security threats, responding to incidents, and ensuring the security of our software products and systems. You must have a TSPV Clearance, NV2 may be considered in exceptional circumstances.

Key Responsibilities:

• Design, deploy, and manage ArcSight SIEM solutions to detect, monitor, and respond to security events.
• Integrate ArcSight with other security tools and platforms to enhance threat detection and incident response capabilities.
• Perform security event analysis, creating rules, filters, and reports to improve visibility and compliance.
• Collaborate with the security operations team to respond to incidents and provide recommendations for mitigation.
• Provide guidance on security best practices and ensure adherence to security policies and compliance requirements.
• Continuously monitor and assess the security posture of systems, applications, and networks.
• Conduct vulnerability assessments and implement remediation strategies to protect against evolving threats.
• Provide training and support to other teams on security-related topics, including ArcSight best practices.

Skills & Qualifications:

• A TSPV Clearance (NV2 may be considered)
• Proven experience with ArcSight SIEM deployment, configuration, and management.
• Solid understanding of security protocols, network security, and incident response.
• Familiarity with security frameworks and standards such as ISO 27001, NIST, and CIS.
• Experience with scripting languages (Python, PowerShell, or Bash) for automation and reporting.
• Hands-on knowledge of security tools and technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), and vulnerability scanners.
• Strong problem-solving skills and attention to detail.
• Excellent communication skills and the ability to collaborate effectively across teams.
• Relevant certifications such as CISSP, CISM, CEH, or equivalent are desirable.