Description
This posting Cover 2 specific areas: Threat hunting and Arcsight Development
Threat hunting:
Evaluate application risk using proven methods of threat modeling and data flow diagramming. Act as consultant in defining sound solutions related to implementation of application security practices. Advise and support analysts, developers and other IT experts in their application security work by providing technical expertise, especially in the area of Threat Hunting. Interpret application security test results (code scanning, application intrusions). Follow up on application security issues and inherent and residual risks. Evaluate new application security tools and participate in their configuration and deployment. Contribute to preparation and improvement of development standards, methods and tools in the application security field. Inform and raise employee awareness of standards, methods and tools in application security development. Evaluate application risk using proven threat modeling methods and data flow diagrams.Arcsight:
Interpret business needs for security surveillance in Arcsight. Document and draw up security surveillance rules and content in Arcsight. Develop or maintain Arcsight content. Diagnose problems related to data collection. Manage and resolve problem situations raised by surveillance team. Participate in developing documentation related to Arcsight and UseCases. Participate in keeping the content developed up to date. Produce ArcSight reportsBilingual candidates are preferred. Working location is only Montreal, Arcsight expertise a must (we don't need other SIEM expertise than Arcsight)