JSP SIEM SME

JSP SIEM SME
All times are in Eastern Standard Time.
Requisition ID 2016-11980
Job Locations US-VA-Arlington
Posted Date 11/19/2016
Category Information Technology
Clearance Level Must Currently Possess Yes- Active TS/SCI required to start
Telecommuting Options Telecommuting Not Allowed
Clearance Level Must Be Able to Obtain TS/SCI
Opportunity Details: Overview:
Join CSRA and be a part of the team of men and women that solve some of the world's most complex technical challenges. The Joint Services Provider (JSP) program is searching for a SIEM SME to join their team in Arlington, VA.
The Joint Service Provider (JSP) program provides a full range of information technology products, services, solutions and customer support to the Office of the Secretary of Defense (OSD), the Chairman of the Joint Chiefs of Staff (CJCS) and the Joint Staff (JS), the Director of Administration (DA), the Pentagon Force Protection Agency (PFPA), the Washington Headquarters Services (WHS) and other various OSD offices to meet mission and business requirements.
Through the accomplishments of the DCO IDM program (formerly known as the Computer Network Defense (CND) Program), JSP performs a wide variety of cybersecurity services and functions required to assure the operational, physical, and information security posture for Department of Defense (DOD) Services within CONUS and OCONUS.
The scopes of the DCO IDM tasks are functionally grouped by End Point Security, Network Security, and Incident Handling.
Responsibilities:
Experience Requirements include:
Advanced experience administering and maintaining a large enterprise ArcSight implementation.
Troubleshoot issues with ArcSight ESM, Logger, and SmartConnectors.
Take requirements from customers and analysts and implement necessary changes improvements to the ArcSight infrastructure.
Develop future ArcSight Implementation capabilities that include a robust, resilient deployment that captures host based as well as network based traffic for analysis.
Incorporate storage capabilities to support DOD log retention requirements
Develop future capabilities that incorporate virtual technologies without impeding operational capabilities
Ability to Install and configure the specified Splunk/HP ArcSight products to meet business requirements, to include all enterprise related resources for SIEM technologies
Ability to integrate data and event feeds with Splunk/HP ArcSight SIEMs
Ability to perform upgrades, maintenance, performance tuning, and troubleshooting of Splunk/HP ArcSight SIEMs
Ability to perform network analysis to confirm capability to support anticipated event load
Ability to analyze end device availability and capability to provide critical business information
Ability to define anticipated user types and roles
Qualifications:
Basic Qualifications:
Bachelor's degree in an IT related field or equivalent experience
8 or more years ArcSight IDS experience
4 or more years IDS ArcSight experience in a DOD enviorment
DoD 8570 IAT Level II CND Analyst certification
ArcSight Certification
TS/SCI- (DIA Adjudicated or capable of reciprocal acceptance by DIA) clearance
Notice:
CSRA is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.
Options:

Don't Be Fooled

The fraudster will send a check to the victim who has accepted a job. The check can be for multiple reasons such as signing bonus, supplies, etc. The victim will be instructed to deposit the check and use the money for any of these reasons and then instructed to send the remaining funds to the fraudster. The check will bounce and the victim is left responsible.

More Jobs

Security Information Event Management (SIEM) A...
Springfield, VA CACI International Inc.
Cyber Strategic Planner / SME
Springfield, VA Arena Technical Resources, LLC
JSP End Point Security - HBSS Specialist
Arlington, VA CSRA Inc.
Emergency Management/Preparedness SME
McLean, VA Prescient Edge
Sr. Records Management SME
McLean, VA Prescient Edge