and coffee stations, and a subsidized café with free breakfast toast Responsibilities Security Monitoring & Incident Response: Use SIEM tools like Exabeam, LogRhythm, Splunk, or Arcsight to monitor security events, detect threats, and analyze data to address incidents swiftly. Vulnerability Management Tools: Conduct regular vulnerability assessments, prioritize and remediate issues More ❯
technology vendors and stakeholders. Demonstrable experience in supporting large, complex Networks and Hosting Estates using multiple technologies including: Managing SIEM's - (Qradar Preferred) (e.g. ArcSight/AlienVault/Microsoft Sentinel/LogRhythm). Enterprise level Operating Systems RedHat Linux & Windows Server command line required. Vulnerability Management Technologies (e.g. Qualys More ❯
solutions In-depth knowledge of architecture, engineering, and operations of at least one enterprise SIEM platform (e.g. Sentinel, Nitro/McAfee Enterprise Security Manager, ArcSight, QRadar, LogLogic, Splunk) Understanding of mobile technology and OS (i.e. Android, iOS, Windows), Experienced in Cloud Security principles As a National Security Vetting clearance More ❯
recommendations for use based on business value Skills & Qualifications Requirements SIEM administration, configuration, and optimization experience with platforms such as Alien Vault, IBM QRadar, ArcSight or LogRhythm Threat hunting experience Malware reverse engineering and outbreak management experience Experience participating in and acting as an escalation point for complex network More ❯
network. Advanced knowledge of Windows and Linux operating environments, including standard commands, file systems, and user authentication mechanisms. Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis; some exposure to additional analysis tools such as basic XDR platforms. Able to demonstrate proficient knowledge using More ❯
network. Advanced knowledge of Windows and Linux operating environments, including standard commands, file systems, and user authentication mechanisms. Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis; some exposure to additional analysis tools such as basic XDR platforms. Able to demonstrate proficient knowledge using More ❯
Leominster, Herefordshire, United Kingdom Hybrid / WFH Options
Leidos
work independently and collaboratively. Desirable Skills: Familiarity with security frameworks such as CIS benchmarks or ISO 27001. Experience with log management and SIEM solutions (ArcSight, Splunk, ELK Stack). Hands-on experience with Linux-based high availability and disaster recovery solutions. Familiarity with virtualization technologies. Experience with automated patch More ❯
in tools such as Kafka, Kubernetes, Zookeeper, and HDFS. oProficiency in Linux, specifically Red Hat Enterprise Linux (RHEL). oFamiliarity with SIEM platforms (especially ArcSight) or legacy Java-based applications is a plus. • DevOps Mindset: An understanding of DevOps principles, with hands-on experience automating releases using Ansible. Programming More ❯
Strong grasp of networking concepts, IP addressing, and traffic flow, with advanced knowledge of Windows and Linux systems. Proficient in using SIEM tools like ArcSight and Azure Sentinel; experienced with KQL and basic XDR platforms. Familiar with OSINT techniques for threat intelligence and incident investigation. Holds or is working More ❯
advanced networking concepts, including IP addressing and basic network protocols Advanced knowledge of Windows and Linux operating environments Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis Able to demonstrate proficient knowledge using Kusto Query Language (KQL) to search and filter logs effectively. Familiar More ❯
advanced networking concepts, including IP addressing and basic network protocols Advanced knowledge of Windows and Linux operating environments Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis Able to demonstrate proficient knowledge using Kusto Query Language (KQL) to search and filter logs effectively. Familiar More ❯
in tools such as Kafka, Kubernetes, Zookeeper, and HDFS. Proficiency in Linux, specifically Red Hat Enterprise Linux (RHEL). Familiarity with SIEM platforms (especially ArcSight) or legacy Java-based applications is a plus. DevOps Mindset: An understanding of DevOps principles, with hands-on experience automating releases using Ansible. Programming More ❯
basic network protocols, and how traffic flows within a network. - Advanced knowledge of Windows and Linux operating environments - Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis. - University Degree/Diploma in Cyber Security or Equivalent experience - Other IT certifications or experience such as More ❯
network. Advanced knowledge of Windows and Linux operating environments, including standard commands, file systems, and user authentication mechanisms. Competence in using SIEM solutions (e.g., ArcSight, Azure Sentinel) for monitoring and log analysis; some exposure to additional analysis tools such as basic XDR platforms. Able to demonstrate proficient knowledge using More ❯
and implement security rules and configurations. You have strong communication skills for reporting and collaboration. Added bonus Familiarity with SIEM tools (e.g., Splunk, QRadar, ArcSight) or scripting (Python, PowerShell). Certifications like CompTIA CySA+, Security+, or CEH. Training in incident response or network security. We're on the move More ❯
clearance level of DV must be obtained; it is an essential requirement for this role. Job Functions: Drive technical and architectural improvements of the ArcSight SIEM managed service and related tools. Manage operations involving support, incident response, and change control. Handle version management to ensure appropriate ArcSight version … documentation of the managed infrastructure. Engage with other DXC technical teams and provide technical assistance where appropriate. Serve as a technical escalation point for ArcSight SIEM incidents, both service-related and technical. Design, review, and implement ArcSight architecture and components. Demonstrate troubleshooting skills on ArcSight and its More ❯
