ArcSight Careers - Information Systems

ArcSight, Inc. headquartered in Cupertino, California is a leading provider of enterprise software solutions that enable large organizations to manage security as a critical business process while protecting vital information assets and functions.

We're searching for dynamic and intelligent professionals located in the San Francisco Bay Area for the following positions, click on the listings below to view the requirements:

• Network Security Analyst/Engineer

Job Applicant
Please print and complete the following information IF you have an interview scheduled at ArcSight. ArcSight is an equal opportunity employer, we encourage you to complete the voluntary Affirmative Action questionnaire and return it with your application.

• Employment Application
• State Generic FCRA and CA Compliant Release Authorization
• A Summary of Your Rights Under the FCRA  
• Summary of Your Rights under California Civil Code 1786.22
• Interview Confidentiality Agreement
• Affirmative Action Questionnaire

Recruiters: please read our Recruiters Policy.

Network Security Analyst/Engineer

Position Description:

ArcSight Inc. is seeking a Network Security Analyst/Engineer for a permanent position in Cupertino, CA. The Network Security Analyst will be responsible for ensuring the continuous operation of network and security enabled solutions. Additional duties/services to include: security monitoring, firewall/IDS/IPS management, router and switch management, vulnerability management, incident response, computer security forensics, and vulnerability/penetration testing.

Position Responsibilities:

• Use various tools, techniques, and procedures to include: end point security, intrusion prevention, vulnerability assessment, and forensics
• Provide security assessments and architecture recommendations to management
• Provide technical security support to IT Customer Support and IT Operations groups
• Isolate and resolve security infrastructure related incidents/problems
• Configuration, management, and maintenance of Checkpoint, Cisco, and Juniper Netscreen Firewall infrastructure
• Perform operational security related tasks
• Employ, maintain, and adhere to internal change management process
• Utilize network, server management, and security tools
• Research, analyze and understand log sources, particularly security and networking devices (such as firewalls, routers, anti-virus products, and operating systems)
• Research and develop content for ArcSight ESM, including correlation rules, dashboards, reports, visualizations, etc.

Required Experience:

• Minimum of 3-5 years of relevant operational network security, risk management, incident response, and problem management (root cause analysis) is required
• Configuration, management, and maintenance of Checkpoint, Cisco, and Juniper Netscreen Firewall infrastructure in an enterprise
• Monitoring of real-time security events generated by varying network security technologies in order to discover potential threats to the enterprise
• Experience with two or more of the following: perimeter security, encryption, penetration testing, policy enforcement, secure wireless, content filtering, and data loss prevention
• Hands-on experience with the at least two of the following technologies is required: Intrusion Prevention Systems (IPS), Security Information and Event Management (SIEM), routers, switches, firewalls, wireless access points, and other network devices; Solaris/Linux; Microsoft Windows; OSX; Forensic tools; developing and/or analyzing scripting code
• Working knowledge of information systems security methodologies and practices (e.g. access control and system hardening, system audit and log files monitoring, security policies, incident handling)
• Experience with Perl, shell scripting, data extraction/manipulation, and auditing tools
• Experience examining logs and output from security and networking devices and an ability to quickly and accurately identify the meaning and severity of the messages
• Must possess excellent interpersonal, communication and writing skills
• Experience with a Security Information Management solution such as ArcSight ESM
• Possess the ability to be a self driven quick learner with attention to details and quality

Desired Experience:

• Implementation of security & network device infrastructures
• Hands-on experience analyzing network traffic and implementing IDS/IPS signatures
• Experience with security incident response within medium or large organizations
• Familiarity with common security practices and policies

Education:

• BS in Computer Science or equivalent degree preferrered
• Security or network device certifications a plus: GIAC, CISSP, CISM, CISA, CCSP, CIA, CCSE, CCIE, and/or MCSE

Location:

• Cupertino, CA

Please send resumes to Laurie DeGange

<top>

Recruiters: please read our Recruiters Policy.