Role: Solutions Engineer - Security (Perl Scripts)

The candidate for this position will work in the Strategic Application Solutions Team which is located in the ArcSight development team. The candidate will be researching and developing industry solutions that address the security needs of Fortune 500 companies, ranging from regulatory compliance to insider threat. The ideal candidate will be a detail-level expert on Log Analysis, Intrusion Prevention, Vulnerability Assessment and Regulatory Compliance.

Position Responsibilities:

* Understand customer problems and use-cases and implement solutions to address them
* Create and maintain a knowledge base of customer use-cases and solution content
* Research, analyze and understand novel log sources, such as information leak prevention systems, or identity management solutions
* Research and develop content for Solution Packages, including correlation rules, dashboards, reports, visualizations, etc.
* Deliver world-class solution packages to customers

Required Experience:

* Prior experience in business consulting and security solution implementation
* 4+ years of hands-on experience in network security and risk management
* Experience in creating new IDS signatures to detect specific attacks
* Hands-on experience in scripting language such as Perl
* Experience in deploying and managing intrusion detection/prevention systems, such as Snort, RealSecure, Tripwire, etc
* Experience with one or more of the following Security Information Management products: ArcSight, HP OpenView, Tivoli, CA, BMC, etc.
* Good knowledge of analyzing low level logs to detect suspicious activities
* Must possess excellent interpersonal, communication and writing skills
* Must possess ability and desire to learn new technologies fast and be detailed oriented

Desired Experience:

* Working knowledge of incident response management
* Expertise with IT frameworks, such as ITIL, Cobit, COSO, ISO17799
* Experience in an agile scrum development environment a plus

Education:

* BS in Computer Science or an equivalent degree
* CISSP or GCIA a plus

Location:

* Cupertino

Please send resumes to job600@arcsight.com