Title: Information Security Engineer
Job Type: Contract
Duration: 6 Months
Location: Mesa, AZ (2 days on-site work)
Description:
Key Responsibilities
- Implement security solutions that reinforce a defense-in-depth and zero-trust approach.
- Contribute to complex security projects.
- Install, configure, maintain, patch and troubleshoot all information security tools and infrastructure including but not limited to SIEM, SOAR, WAF, PAM, firewalls, secure web/email gateways.
- Perform routine configuration reviews of information security technology and infrastructure against industry best practices, vendor supplied recommendations and the company's own internal baselines.
- Create and maintain internal documentation such as network, architectural and data flow diagrams and internal procedures for all information security owned products and tools.
- Train the security team on newly deployed technologies and act as an escalation point and subject matter expert for all information security owned systems.
- Support proof of concept efforts of new security technology solutions while working closely with established vendors and resellers. Implement and test new security technologies deployed to safeguard access to resources, enterprise networks and computer systems as directed by the Information Security Manager.
- Participate and lead security incident response procedures as outlined in the company security incident response plan. Responsibilities may include playing a role as the senior technical resource leading triage efforts and taking the lead on communications with senior leadership.
- Work closely with the Governance, Risk, Compliance team to document internal operational and audit procedures around information security owned infrastructure, gather technical evidence, speak to cybersecurity procedures and standards.
Required Skills
- Bachelor's degree in computer science, cybersecurity (or related field), or 2 years of professional experience as an information security engineer.
- Experience with security tools including SIEM, SOAR, WAF, PAM, firewalls, secure web/email gateways.
- Articulate with strong business acumen and executive presence.
- Coachable and willing to learn with an emphasis on positive demeanor.
- Ability to take initiative and drive results.
Preferred Skills:
- Information security industry certifications such as CISSP, CompTIA Security+. CEH, OSCP.
- Experience with the CrowdStrike suite of cybersecurity tools.
- Proficiency in scripting languages (e.g., Python, PowerShell, Bash) for automation and tool development.
- Extensive knowledge of networking protocols, operating systems (Windows, Linux).
- Experience in security operations and incident response.
Desired Skills:
- Experience securing cloud-native environments (Kubernetes, Docker) and implementing DevSecOps practices.
- Experience with zero-trust architecture.
- Knowledge of machine learning for anomaly detection or threat intelligence.
Spruce Technology, Inc. is a mid-size, award-winning (Inc 5000, SmartCEO, Entrepreneur of the Year) technology services firm with a steadily growing portfolio of commercial and government clients. Spruce provides innovative technology solutions, specialized IT staff, and IT strategy consulting nationwide. Spruce maintains partnerships with major technology vendors and continually develops leading-edge offerings in service areas such as digital experience, data services, application development, infrastructure, cyber security, and IT staffing.
Spruce Technology, Inc. is an affirmative action and equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information. Consistent with the Americans with Disabilities Act, it is the policy of Spruce Technology, Inc. to provide reasonable accommodation when requested by a qualified applicant or employee with a disability, unless such accommodation would cause an undue hardship. The policy regarding requests for reasonable accommodation applies to all aspects of employment, including the application process.
All full-time employees are eligible for the following benefits:
Medical, dental, vision health benefits
Life Insurance and AD&D (paid by company)
401k, Flexible and Dependent Care Spending Account plans.
Paid-time Off or Paid Sick Leave (amount dependent on position level and if required by state).
Never miss an opportunity! Create an alert based on the job you applied for.
