• Act as the primary onsite expert for the ArcSight SIEM platform, ensuring real-time monitoring, detection, and response to security incidents.
• Configure, fine-tune, and maintain ArcSight components, including loggers, connectors, and correlation rules.
• Collaborate with the IT and SOC teams to design and implement ArcSight use cases based on organizational security needs.
• Perform health checks and system upgrades to ensure optimal system performance and reliability.
• Provide advanced troubleshooting for ArcSight-related issues, minimizing downtime and resolving security gaps.
• Conduct regular training and knowledge transfer sessions to upskill the client's internal teams.
• Generate detailed security reports and dashboards for key stakeholders.

Requirements

• Expertise in ArcSight SIEM architecture, deployment, and management.
• Strong understanding of cybersecurity principles and incident response workflows.
• Knowledge of scripting languages (e.g., Python, Perl) for automation.
• Relevant certifications, such as ArcSight Certified Specialist or CISSP, are preferred.