WAF system and DB Firewall - Imperva SecureSphere;
SIEM-systems - HP ArcSight ESM, Splunk, BlackStratus (netForensics nFX Sim One);
Logging system - HP ArcSight Logger;
Vulnerability Management System - Qualys;
Network traffic interception, distribution and mirroring system - Gigamon.
- Development of the correlation rules and profiles in SIEM-systems for databases and applications;
- Control of changes in the audit, privileges and password policies in databases, as well as the creation of privileged users;
- Development and implementation of IS policies for the SOX-controls audit check;
- Development of recommendations (standards) for SOX-controls passing for databases and applications;
- Development and configuration of ArcSight SmartConnectors & FlexConnectors agents for audit collection of personal data and subscriber information;
- Correction of web-applications vulnerabilities by means of Imperva SecureSphere using Qualys web-application reports (virtual patching);
- Investigation, documenting and reporting external attacks detection on the web-sites, DB unauthorized access;
- New Information Security Systems testing and deployment.
Ukrainian & Russian – Native or bilingual proficiency. English – Limited working proficiency.