Job Search



-
VaporVM is looking for an experienced SOC Administrator to join their team in Dubai. This full-time, on-site role focuses on ArcSight SIEM, with responsibilities including device onboarding, custom parser development, and the integration of diverse log sources. The ideal candidate will have expertise in ArcSight, log normalization, and correlation, as well as a solid understanding of various log formats and security data sources.
Key Responsibilities:
-
Manage end-to-end device onboarding with ArcSight SIEM.
-
Integrate various log sources into ArcSight, ensuring proper data normalization and correlation.
-
Develop custom parsers (JSON, XML, Syslog) for unsupported devices.
-
Analyze and interpret diverse log formats and patterns.
-
Maintain documentation and provide support for log source onboarding and parser configurations.
-
Collaborate with cross-functional teams to ensure successful deployment and performance optimization.
-
Engage with stakeholders to gather integration requirements and provide technical guidance.
Ideal Candidate Profile:
-
Minimum 6 years of hands-on experience in device onboarding and integration with ArcSight SIEM.
-
Proven expertise in developing custom parsers using JSON, XML, and Syslog.
-
Strong understanding of ArcSight architecture, components, and data flow.
-
Solid knowledge of various log formats and security data sources.
-
Excellent problem-solving and communication skills.
-
Experience in a telecom environment is a strong advantage.
