Job Description :
At Micro Focus, everything we do is based on a simple idea : The fastest way to get results is to build on what you have.
Our software solutions enable organizations to do just that. Secure and scalable, with analytics built in, they bridge the gap between existing and emerging IT fast-tracking digital transformations across DevOps, Hybrid IT, Security, and Predictive Analytics.
In the race to innovate, Micro Focus customers have the clear advantage.
Our portfolio spans the following areas :
DevOps IT Operations Cloud Security Info Governance Big Data, Machine Learning, & Analytics
The successful candidate for this position will work on the ArcSight Connector Content team. This is a hands-on position that will require the candidate to work with data collected from various network devices both on-premise and cloud services in combination with the various ArcSight product lines in order to deliver content that will help address the needs of all of ArcSight's customers.
The ideal candidate will have a solid understanding of enterprise cloud and on-prem security coupled with hands-on networking and security skills as well as an ability to write and understand scripting languages such as Perl, Python.
Research, analyze and understand log sources, particularly from various devices in an enterprise network
Appropriately categorize the security messages generated by various sources into the multi-dimensional ArcSight
Write and modify scripts to parse out messages and interface with the ArcSight categorization database
Work on content and vulnerability update releases
Write scripts and automation to optimize various processes involved
Understand content for ArcSight ESM, including correlation rules, dashboards, reports, visualizations, etc.
Experience with IT compliance and risk management requirements (eg. security, privacy, SOX, HIPPA etc.)
Assist in building comprehensive, correct and useful ArcSight Connector and ESM content to ArcSight customers
Excellent knowledge of IT operations, administration, and security
Hands-on experience in one of the major cloud providers products - AWS, Azure, GCP
Hands-on experience of a variety of different networking and security devices, such as Firewalls, Routers, IDS / IPS etc.
Ability to examine operational and security logs generated by networking and security devices, identify the meaning and severity of them
Understand different logging mechanisms, standards, and formats
Very strong practical Linux-based and Windows-based system administration skills
Strong scripting skills using languages (Shell, Perl, Python etc), and Regex
Hands-on experience of database such as MySQL
Knowledge of Security Information Management solution such as ArcSight ESM
Experience with a version control system (Perforce, GitHub)
Proven experience with software development life cycle (SDLC) and agile / iterative methodologies required
Excellent written and verbal communication skills
Must possess the ability and desire to learn new technologies quickly while remaining detailed oriented
Strong analytical skill and problem-solving skills, multi-tasking
Demonstrated success as a Cloud Infrastructure architect or consultant working with various platforms
Work experience in security operation center (SOC)
BS or MS in Computer Science or related field
5 to 7 years of hands-on experience in network security and enterprise-level security management.