SIEM Resource

• Development Testing and Deployment of Flex Connectors to integrate application logs with ArcSight SIEM.
•  SIEM ArcSight End to End Administration.
•  Configuration of ArcSight as per best practices and ensuring the tools 100% compliance to Security standards (ISO, PCI etc.)
•  Upgrade all the SIEM components (ESM, Logger, Connectors, and Console) to the latest version.
•  Daily SIEM Health check and troubleshooting the issues.
•  In-depth log analysis to create use cases based on anomalies.
•  Implementation of the new networking, hardware, operating systems and infrastructure applications for ArcSight Platform
•  Flex development for in house/custom applications/non-standard devices etc.
•  Automate / perform the configuration backup of ArcSight components (Logger, ESM, etc)
•  Regularly check & take the logger Event Archives backup to NAS and to TAPE.
•  Conduct recurring interaction with SOC team to Monitoring Enhancement.
•  Non Complaint Incidents
•  Participate on projects and recommend secure solutions based on policies, standards and best practices
•  Respond to GISD RFIs