Position Description and Job Skill Set:
This position will be accountable for performing a wide range of complex security procedures and processes necessary
to ensure the safety of information systems and assets and protect systems and data from intentional or inadvertent
access or destruction. Ensures that users understand and adhere to the necessary procedures and processes to
maintain security. Conducts complex IT data and security forensic investigations. Conducts internal vulnerability
management to meet regulatory and standards compliance. Requires knowledge of domain structures, user
authentication and digital signatures. Requires in-depth knowledge of intrusion detection and internet architecture.
Implements and administers Cybersecurity related systems.
Required:
5+ years of Cybersecurity related experience.
Tenable/Nessus Or Other Vulnerability Scanning Experience.
Endpoint protection, AV/XDR, AV/XDR policy config, endpoint agents.
SIEM, logging/syslog, Alerting.
Windows/Linux Server administration of on-premise Cybersecurity applications.
Experience with cybersecurity tools used for routine security related tasks. Example: Nmap, Wireshark, phishing sim.
Experience participating in situational tabletop exercises (malware, phishing, ransomware).
Experience with vulnerability scanning, identification and remediation, penetration testing, endpoint
protection/hardening, CIS benchmarks, NIST/Cybersecurity frameworks, MITRE Telecommunication&CK Matrix, IRS 1075, SSA, PII,
threat vectors, threat hunting, incident response and remediation.
Experience with common IT infrastructure found in most large organizations including but not limited to load balancers,
network LAN/WAN, firewall, email, AV, SIEM, GPO, web proxy, web, application development processes, database,
Windows/Linux server, Windows workstation, wireless, 365 ATP/DLP.
Strong written and verbal communication. Office (Word Excel Outlook One-Drive SharePoint).
Preferred Skills:
XQL, Python, PowerShell
Cybersecurity certification
Spruce Technology, Inc. is a mid-size, award-winning (Inc 5000, SmartCEO, Entrepreneur of the Year) technology services firm with a steadily growing portfolio of commercial and government clients. Spruce provides innovative technology solutions, specialized IT staff, and IT strategy consulting nationwide. Spruce maintains partnerships with major technology vendors and continually develops leading-edge offerings in service areas such as digital experience, data services, application development, infrastructure, cyber security, and IT staffing.
Spruce Technology, Inc. is an affirmative action and equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information. Consistent with the Americans with Disabilities Act, it is the policy of Spruce Technology, Inc. to provide reasonable accommodation when requested by a qualified applicant or employee with a disability, unless such accommodation would cause an undue hardship. The policy regarding requests for reasonable accommodation applies to all aspects of employment, including the application process.
