The bank for a changing world

Information Security Engineer Sr (Arcsight)




United States-Nebraska-Omaha

Job function




What sets Bank of the West apart from other banks is our team members–they embody the optimistic spirit of the West. There is a spirit here that drives us to do more. Our team of more than 10,000 employees is vital to the success of our Bank. They reflect our modern western values—straightforward, entrepreneurial and optimistic. We seek to create a corporate culture that fosters and rewards excellence, encourages creative thinking and respects diversity – an environment where team members are engaged, supportive of one another and enthusiastic about serving our customers. Bank of the West offers the stability of a company that has a 135 year history and is part of BNP Paribas, a European leader in global banking and financial services and one of the 6 strongest banks in the world. We offer opportunities across our diverse business lines – Retail Banking, Commercial Banking, and Wealth Management.

We are seeking candidates who are passionate in working with heterogeneous environments and taking on the challenge of designing and developing innovative solutions to address the latest threats and vulnerabilities in the Information/Cyber security landscape based on ArcSight products and solutions. The SIEM Security Engineer is responsible for the health and availability SIEM infrastructure including architecture, and system performance of the SIEM tool. The engineer performs all management, and configuration tasks related to the SIEM system. The SIEM Security Engineer will also partner closely with the SIOC to develop security use-cases based on Security Information, Event Management (SIEM) policy, and content. The scope of responsibilities includes all administration, management, configuration, testing, and integration tasks related to the SIEM system with emphasis on use-case development to include reports, dashboards, real-time rules, filters, and active channels. 


Specifically, the SIEM Security Engineer will:

·         Develop, implement, and execute the standard procedures for the administration, backup, disaster recovery, and operation of the SIEM systems infrastructure including;

o   Operating system security hardening,

o   Backup management,

o   Capacity planning,

o   Change management,

o   Version/patch management, and

o   Lifecycle upgrade management

·         Develop and maintain the technical architecture of the SIEM system, and ensuring all SIEM components perform as expected meeting established service level objectives for system uptime

·         Develop and Deploy content and security use-cases for the SIEM infrastructure in close partnership with the SIOC

·         Develops, tests and coordinates the implementation of innovative and enhanced security content solutions

·         Analyzes and reports performance metrics, trends, and performance improvement options to senior management and business leaders

·         Configure rules within the SIEM to correlate events from various devices throughout the network and identify anomalies that require further investigation

·         Manages SIEM content within the corporate change management system

·         Maintain up to date documentation of designs/configurations

·         Maintain hardware/software revisions, SIEM content, security patches, hardening, and documentation

·         Monitor and optimize data flow using aggregation, filters, and use cases to improve the SOC monitoring and response capabilities

·         Coordinate and conduct event collection, log management, event management, compliance automation, and identity monitoring activities

·         Respond to after hours (On-call support) infrastructure issues as required






·         5+ years of Information Technology and Engineering related experience.

  • 5+ years of experience in monitoring, developing and implementation of info security systems

·         3+ years of Information Security related experience, preferably specific to SIEM technology and security engineering

·         Information Security Certification such as: MCSE, CISSP, CISM, GCIH, GCIA, GCFA, GREM, CCNA, CCNP

·         Hands-on experience assessing security controls and managing risk

·         Hands-on experience in the following areas:  network and information system security, vulnerability assessments, penetration testing, SIEM tools, DLP solutions, IDS & IPS and Active Directory

·         Working knowledge and experience in n-tier network security architectures

·         Ability to understand networking and network protocols analyzers

·         Understanding of vulnerability and risk management

·         Working knowledge of information security risks and counter measures for Windows and Unix/Linux platforms


·         Bachelor’s Degree in a relevant area of: Computer Science, Information Technology, Assurance/Security.

·         Programming languages; Python, Perl, VBS, RegEx, Boolean, and Scripting skills

Technical Skills:


·         Must have 2+ years of SIEM experience (highly desirable ArcSight ESM)

·         InfoSec background (highly desirable CISSP, CEH, SANS certifications)

·         Network experience (Protocols, Ports, Router, Switch)

·         Perimeter security devices experience (Firewalls, IDS/IPS, VPN)

·         OS administration experience (Windows/Unix/Linux)

·         Basic Script language programming   (desirable PERL)

·         Database concepts and operations (desirable)

·         Experience configuring and using Virtual Machines


Soft Skills:


·         Team work

·         Possess the ability to be a self-driven, quick learner, and strong orientation to details and quality

·         Must possess excellent interpersonal and communication skills

·         Time/project management

·         Agile methodology (desirable)

·         Version controlling (desirable)

·         Strong customer orientation



The above statements are intended to describe the general nature and level of work being performed.  They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified.


Bank of the West is an Equal Opportunity employer and proud to provide equal employment opportunity to all job seekers without regard to any status protected by applicable law.   Bank of the West is also an Affirmative Action employer - Minority / Female / Disabled / Veteran.


Bank of the West will consider for employment qualified applicants with criminal histories pursuant to the San Francisco Fair Chance Ordinance subject to the requirements of all state and federal laws and regulations.