Title:Information Security Analyst with PCI DSS exp is plus
Location:San Francisco, CA
Spruce Technology is a mid-size and rapidly-growing Information Technology services firm headquartered in New Jersey. An award-winning firm (Inc 5000, SmartCEO) with a steadily growing portfolio of commercial and government clients, Spruce Technology provides innovative technology solutions, specialized IT staff, and IT strategy consulting nationwide.
Spruce Technology, Inc. is an Equal Opportunity Employer that does not discriminate on the basis of actual or perceived age, sex, pregnancy, race, creed, color, national origin, disability, marital status, sexual orientation, citizenship status, genetic information, religion, or any other characteristic protected by applicable federal, state or local laws.
Job Position Summary
The Information Security Engineer will have a passion for managing corporate security along with a desire to relentlessly champion best practices. This role is responsible for performing all functions required to support day-to-day data security operations, supporting and maintaining a broad suite of information security infrastructure, accountable for security and networking infrastructure component availability and integrity, monitoring compliance with IT security policy, and coordinating investigation and reporting of security incidents. Participate in the planning, design, installation, and maintenance of security systems in support of security policies. Work with Information Technology staff and business units to assess risk and address security issues.
The Information Security team is responsible for managing security tools, security initiatives and programs, and mitigating risks. This is a highly technical, hands-on role that requires a wide and deep experience in the technical aspects of security as well as the soft skills needed to move at the speed of business. This position requires practical knowledge of security technologies, operations and concepts as well as data privacy and protection.
Develop a set of security standards and best practices for the organization and recommend security enhancements to management as needed; develop strategies to respond to and recover from security incidents/breaches; educate the workforce on information security through training and building awareness.
Install and use software (e.g. firewalls, data encryption programs) to protect organization's sensitive information; assist with installation or processing of new security products and procedures.
Conduct or manage penetration testing, in which simulated attacks on systems are highlighted to find any weaknesses that might be exploited by a malicious party.
Manage security tools that help identify intrusions and watch for irregular system or user behavior.
Lead technical and forensic investigation into how the incident/breach occurred and the extent of the damage; prepare reports of findings to be reported to management.
Responsible for the engineering, design, implementation, maintenance, analysis, and administration of security technologies.
Take SME responsibilities for specific projects. This includes and isn t limited to design, vendor management, implementation and accountability for delivery of a given project.
Bachelor s degree from an accredited university required; Computer Science program strongly preferred
If your interested please reply me to my email id : firstname.lastname@example.org or call me at : 973.524.7659