Purpose-Driven Careers

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a motivated Blue Team Engineer with expertise in defensive cybersecurity tools and techniques to conduct threat simulations. The ideal candidate will replicate both insider and external threats to operational systems and networks, contributing to the defense of high-profile environments. This is a unique opportunity to shape the growth and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Conduct automated and manual tests on information systems using industry-standard tools such as vulnerability scans, source code reviews, and web application testing.
• Develop test plans, execute tests, and prepare detailed after-action reports.
• Document testing processes in accordance with agency regulations and Standard Operating Procedures (SOPs).
• Contribute to Authorization & Accreditation (A&A), Plan of Action & Milestones (POA&M), vulnerability management, and continuous monitoring efforts.
• Use signature-based scanners, data collection tools, and hardware analysis tools to assess potential threat events.
• Perform Security Information and Event Management (SIEM) reviews to ensure proper detection and notification of threats.
• Support vulnerability analysis and develop mitigation strategies to prevent future threats.
• Support remote locations with traveling assessments as scheduled (30% travel expected, Continental United States).

What you need to know:

• Broad knowledge of security methodologies, solutions, and industry best practices.
• Experience with open-source and commercial testing tools such as Nessus, Metasploit, Burp Suite, App Detective, and Nmap.
• Advanced understanding of security tools with the ability to configure and troubleshoot them as needed.
• Expertise in Unix/Linux or Microsoft operating systems, with extensive experience in at least one.
• Familiarity with security policies of the Department of Justice (DOJ), FBI, and National Institute of Standards and Technology (NIST) guidelines (e.g., 800-53, 800-53a).
• Strong critical thinking and analytical skills, with the ability to interpret and synthesize complex data.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 8 years+ of relevant experience. Equivalent combinations of education, certifications or demonstrable work may be considered in lieu of direct experience.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• Expertise in at least one of the following areas: Web applications and technologies, Networking technologies, Enterprise solutions, storage, and databases, Cross-domain solutions, Virtualization technologies, Mainframes.
• One or more of the following certifications: CISSP, ISACA, OSCP, CISA, GPEN, GWAPT or CEH.
• Active Top Secret clearance required. SCI access will be sponsored for qualified candidates. Must be able to pass a Counterintelligence (CI) polygraph.

Where it’s done:

• Washington, DC.
• Remote Locations (Travel to these locations once per quarter.)

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are looking for a Elasticsearch (Elastic/ELK/ECE) Engineer to join our dynamic, fast-paced team within the public sector. The ideal candidate will not only bring technical expertise but also a passion for learning and growth. The Elasticsearch (Elastic/ELK/ECE) Engineer will have exposure to all facets of Systems Engineering and be encouraged to continuously expand your skill set as the company evolves. This is a unique opportunity to play a key role in a fast-growing company at the forefront of the cybersecurity market.

What you’ll be doing:

• Collaborate with the Integration and Architecture teams to design, document, build, secure, and maintain Elasticsearch, Logstash, Kibana (and X-Pack) enterprise solutions in both cloud and on-premises environments.
• Work closely with architects, engineers, and integrators to assess customer requirements and design Elasticsearch Stack solutions that meet data compliance and performance needs.
• Follow the development lifecycle processes to transition solutions from Dev to Test to Production environments.
• Participate in Agile sprint meetings, share progress, and ensure that the development aligns with project and customer requirements.
• Serve as a subject matter expert and trusted advisor, providing guidance and best practice recommendations for Elasticsearch deployments.
• Configure and maintain Linux-based operating systems (including updates and version upgrades) to support the Elasticsearch platform.
• Install, configure, and manage Elastic Cloud Enterprise (ECE) solutions, ensuring seamless communication and integration among Elasticsearch components and data sources.
• Create detailed installation and configuration documentation to support deployment.
• Secure the solution by implementing TLS, certificates, SSO/PIV authentication, and encryption technologies.
• Collaborate with the data lifecycle management team to ensure optimal data flow and integrity.
• Troubleshoot and monitor data flows and the overall health of the Elasticsearch solution to maximize performance and minimize downtime.
• Provide regular status updates and analysis of alternatives in daily sprint meetings.
• Build and maintain effective working relationships across departments and teams to coordinate work and deliver results on schedule.

What you need to know:

• Experience in software development using Java with an IDE (e.g., Eclipse, CodeReady).
• Proficiency in parsing file formats (e.g., JSON, XML, CSV).
• Knowledge of SQL Server database design, programming, tuning, and writing SQL queries/procedures.
• Experience in developing/automating test procedures.
• Familiarity with REST API web services client development.
• Experience with release management, build tools (e.g., Maven, Jenkins), and configuration tools (e.g., SVN).
• Understanding of secure coding practices, including encryption (e.g., certificates, TLS connections).

Must have’s:  

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field or relevant experience in lieu of degree.
• 2+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Must be a U.S. citizen (non-dual citizenship) and able to obtain and maintain federal agency required security clearance.

Beneficial to have the following:  

• Experience with SAML authentication, familiarity with domain structures, user authentication, and PKI.
• Experience with Messaging Queues (e.g., RabbitMQ).
• Experience with Microsoft SQL.
• Experience with programming and working with regular expressions (XML, Java, JSON, Python, PowerShell, painless, grok).
• Relevant security certifications a plus: CISSP, CISM, CISA, Security+, CEH.
• Understanding of interrelationships between critical infrastructure protection and cybersecurity.
• Knowledge and experience with Assessment & Authorization (A&A) processes in Federal environments, preferably with experience utilizing the NIST Risk Management Framework (RMF).

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a Mid-Level SOC Analyst (Rotating Shift) – Top Secret Clearance with experience in monitoring, detecting, and responding to cybersecurity threats in a high-security environment. The ideal candidate will have a strong foundation in SOC operations and a passion for protecting mission-critical systems. The Mid-Level SOC Analyst (Rotating Shift) – Top Secret Clearance role involves real-time alert monitoring, incident analysis, and response, with exposure to hybrid environments that include both on-premises equipment and cloud services. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Monitor and triage real-time security alerts to identify potential threats.
• Coordinate and assist with the preparation of incident reports.
• Conduct incident analysis, including reviewing forensic artifacts and basic malware analysis.
• Support incident containment, eradication, and recovery efforts.
• Assist in maintaining and updating the Incident Response Plan (IR Plan).
• Collaborate on incident response testing and training initiatives.
• Generate and contribute to SOC best practices reports to enhance cybersecurity controls.
• Provide support for Continuity of Operations (COOP) as needed.
• Work alongside senior team members to ensure effective SOC operations.

What you need to know:

• Real-time alert monitoring, incident reporting, and analysis.
• incident containment and recovery procedures.
• Familiarity with forensic artifact and malware analysis techniques.
• Understanding of FISMA, NIST SP 800 series, and other federal cybersecurity mandates and policies.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field (or 4 additional years of experience in lieu of a degree).
• 5+ years of experience providing cybersecurity operations or consulting.
• Experience in cybersecurity incident management and SOC operations.
• Strong understanding of cybersecurity frameworks and standards.
• Flexibility to work rotating day and night shifts including weekends and holidays.
• Active Top-Secret agency required security clearance to start.

Rotating Shift Schedule:

• Day and night shifts including weekends and holidays. Flexibility required

Beneficial to have the following:

• Industry recognized certifications.

Where it’s done:

• Washington D.C.

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an Data Infrastructure Engineer who has experience providing support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market. The Data Infrastructure Engineer will have the opportunity to be exposed to all aspects of support to a federal client and will be encouraged to grow as the organization expands. 

What you’ll be doing:

• Integrate multiple Commercial Off the Shelf (COTS) and open-source products, software configuration packages and custom code to work together to operate as a single solution, tailored to meet customer requirements.
• Work as part of an agile development team to conduct systems design, analysis and development of the solution.
• Create data pipelines and implement ETL processes for both stream processing (such as tool and sensor log data) and batch processing (such as daily vulnerability updates), integrating functionality between applications, leveraging APIs and scripting languages (Python preferred).
• Conduct data modeling, hands on configuration, tuning and operating of distributed data storage stacks, with a focus on Elasticsearch and Kafka.
• Query data to include aggregations, calculations and producing metrics from data.
• Design and implement data visualizations.
• Engage in all agile ceremonies including backlog grooming, demos and retrospectives.

What you need to know:

• Demonstrated experience writing well-structured code and applications using coding best practices to deliver enterprise applications.
• Proven experience in developing robust, scalable data pipelines and integrations.
• Solid understanding of application architecture and interfaces as well as experience with data modeling.
• Expertise in working with streaming data and implementing real-time data processing solutions.
• Ability to develop and deploy in containerized environments (Docker, Kubernetes).
• Experience with open-source tools including Kafka, Logstash, Beats, Elasticsearch, Kibana, or Splunk.

Must have’s:  

• Minimum of 5-7 years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Strong written and verbal communication skills.
• Strong documentation skills.
• Experience leveraging data processing technologies such as Apache Kafka and Elasticsearch.
• Skilled problem-solver with strong ability to troubleshoot complex data pipeline issues.
• Ability to work with cross functional teams.
• Requires U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• Industry related certifications.
• Experience with cloud platforms (AWS, Azure, GCP).
• Familiarity with cybersecurity concepts and tools.
• Experience with real-time data processing frameworks (e.g., Apache Flink, Apache Spark).

Where it’s done:

• Remote (Herndon, VA). 

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an Application Security Engineer with expertise in Veracode and a strong background in application security testing. You will play a key role in securing enterprise applications by identifying vulnerabilities, integrating security best practices, and ensuring compliance with federal security standards. The Application Security Engineer role will focus on performing SAST and DAST testing, collaborating with developers, and designing security controls. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Perform Static and Dynamic Application Security Testing (SAST & DAST) using Veracode to identify and remediate vulnerabilities.
• Collaborate with development teams to integrate security best practices into IDE environments such as Eclipse, JDeveloper, or Visual Studio.
• Conduct in-depth security assessments for enterprise applications, using tools like Burp Suite, OWASP ZAP, and Selenium to ensure secure coding practices.
• Implement enterprise-wide security controls to protect applications, networks, and infrastructure services.
• Ensure compliance with federal security standards, including NIST 800-53, FIPS, and FedRAMP.
• Troubleshoot and secure Linux/UNIX environments, including addressing website connectivity and security issues.
• Utilize security frameworks (e.g., OWASP Top 10, CVSS, CWE, WASC, SANS-25) to analyze and mitigate risks.
• Support security automation by writing Bash scripts and developing security pipelines.

What you need to know:

• Expertise in Veracode for SAST, DAST, and IDE Plug-in environments.
• Programming skills in Java, Python, .NET, or C# for secure coding and remediation.
• Experience conducting security assessments with Burp Suite, OWASP ZAP, and Selenium.
• Proven ability to design and implement enterprise-wide security controls for applications, networks, and infrastructure.
• Strong knowledge of federal security compliance standards, including NIST 800-53, FIPS, and FedRAMP.
• Experience securing enterprise web applications using OWASP Top 10, CVSS, CWE, WASC, and SANS-25.
• Familiarity with Linux/UNIX environments for troubleshooting and securing web applications.
• Ability to automate security processes through Bash scripting and pipeline development.

Must have’s:

• 6+ years of Information Technology experience.
• 3+ years of experience with supporting Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and IDE Plug-in environments using Veracode.
• 3+ years of experience with Burp Suite.
• 3+ years of experience using the design and implementation of enterprise-wide security controls to secure applications, systems, network, or infrastructure services
• 2+ years of experience with Java, Python, .NET, or C#.
• Demonstrated ability to apply critical thinking in decomposing complex requirements into actionable tasks and processes.
• Experience with Eclipse, JDeveloper or Visual Studio, including pipeline development.
• Experience securing enterprise web applications and applying OWASP Top 10, CVSS, CWE, WASC, and SANS-25.
• Knowledge of federal compliance standards, including NIST 800-53, FIPS, or FedRAMP.
• Knowledge of Linux or UNIX environments, including navigating and troubleshooting basic website connectivity issues.
• S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• Industry recognized certifications.
• Experience with IAST (Interactive Application Security Testing) capabilities and tools.
• Experience with Selenium for security testing.
• Experience writing Bash scripts to automate security processes.
• Experience with OWASP ZAP or Burp Proxy.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We’re looking for an experienced Network Monitoring Engineer (ExtraHop) to lead the implementation, management and optimization of our ExtraHop platform. This role focuses on leveraging network performance monitoring and security analytics to extract actionable insights and enhance infrastructure efficiency. The Network Monitoring Engineer (ExtraHop) will play a critical role in improving application performance and strengthening our overall security posture. This role provides an opportunity to contribute to a high impact cybersecurity mission supporting federal infrastructure and operations.

What you’ll be doing:

• Serve as the primary point of contact and technical authority for all matters related to the ExtraHop platform.
• Lead the planning, design, implementation, configuration and integration of the ExtraHop deployment.
• Develop and implement best practices for utilizing ExtraHop in network performance monitoring, application performance management (APM) and security investigations.
• Create and customize dashboards, alerts, reports and triggers to support the needs of teams across Network, Security and Applications.
• Proactively monitor the ExtraHop environment to ensure optimal performance, scalability and operational health.
• Troubleshoot complex issues related to network and application performance, as well as security incidents, using ExtraHop data.
• Collaborate with Network Engineering, Security Operations, Application Development and IT Operations teams to deliver data-driven insights and recommendations.
• Develop and maintain documentation on ExtraHop configurations, processes and system architecture.
• Provide training and knowledge transfer to team members on effective use of the ExtraHop platform.
• Stay current with ExtraHop features and enhancements and proactively recommend and implement improvements.
• Coordinate with ExtraHop support and professional services to resolve issues and integrate new functionalities.
• Contribute to the development and refinement of security policies and procedures informed by ExtraHop insights.
• Support capacity planning and forecasting efforts for the ExtraHop environment.

What you need to know:

• Working knowledge of network and application performance monitoring methodologies.
• Ability to develop data-driven insights to support IT operations, cybersecurity and application teams.
• Familiarity with SIEM and SOAR platforms for correlated threat detection and automated response.
• Understanding of how to align ExtraHop capabilities with security policy development and operational processes.
• Adaptability to stay current with evolving ExtraHop features, updates and best practices.
• Effective collaboration skills across multidisciplinary technical teams.
• Strong documentation and knowledge-sharing capabilities to support team development.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field
• 3+ years of experience as an ExtraHop administrator or subject matter expert.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Proven ability to design, implement and manage large-scale ExtraHop deployments.
• Hands-on experience with ExtraHop Reveal(x) and other ExtraHop modules.
• Deep understanding of network protocols (TCP/IP, DNS, HTTP), network infrastructure (routers, switches, firewalls, load balancers) and application architectures.
• Experience creating custom dashboards, alerts and reports within ExtraHop.
• Strong analytical and problem-solving skills with the ability to translate complex data into actionable insights.
• Familiarity with security concepts, threat detection methodologies and SIEM platforms such as Splunk.
• Experience integrating ExtraHop with tools like Splunk, Splunk SOAR and Palo Alto firewalls.
• Excellent written and verbal communication skills, with the ability to explain technical concepts to both technical and non-technical audiences.
• Ability to work independently and collaboratively within a team environment.
• U.S. citizenship required for federal compliance and eligibility to obtain and maintain agency required clearance.

Beneficial to have the following:

• ExtraHop certification(s), such as ExtraHop Certified Administrator.
• Experience integrating ExtraHop with security and IT tools including Splunk SOAR and Palo Alto firewalls.
• Familiarity with scripting languages such as Python for automation and data manipulation.

Where it’s done:

• Hybrid with ability to travel to customer site minimum 2-3 days per week (Rockville, MD).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community. 

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an Incident Response Manager who has experience providing support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market. The Incident Response Manager will have the opportunity to be exposed to all aspects of support to a federal client and will be encouraged to grow as the organization expands. 

What you’ll be doing:

• Advise senior management on risk levels and security posture.
• Coordinate and provide technical support for Cyber Fusion Center operations.
• Provide advice and input for Disaster Recovery, Contingency and Continuity of Operations Plans.
• Provide 24x7x365 support for cyber incident identification, triage, escalation and tactical coordination for Amtrak Digital Technology Incident Management Severity Bridges.
• Responds to crises or urgent situations within the pertinent domain to mitigate immediate and potential threats.
• Uses mitigation, preparedness and response and recovery approaches, as needed, to maximize survival of life, preservation of property and information security. Investigates and analyzes all relevant response activities.
• Analyze incident data to identify vulnerabilities and recommend remediation.
• Perform log file analysis to detect potential threats.
• Conduct cyber defense incident triage and trend analysis.
• Interface with internal and external organizations for incident dissemination.
• Perform real-time incident handling tasks and document incident lifecycle.
• Write and publish incident findings and after-action reviews.
• Coordinate incident response functions and provide cybersecurity recommendations.
• Support Disaster Recovery and Continuity of Operations Plans.
• Provide 24×7 support for cyber incident identification and escalation.
• Create and maintain Standard Operating Procedures and knowledge base articles.
• Respond to crises and investigate and analyze response activities.
• Supervise and lead cyber incident response activities.
• Provide overwatch coverage and on-call status during off hours.

What you need to know:

• Conduct vulnerability scans and assess resource requirements.
• Develop cyber incident plans in compliance with regulations.
• Tailor technical information for different audiences.
• Apply cybersecurity principles to organizational requirements.
• Utilize cyber investigative tools and processes.

Must have’s:

• 5-8 years of relevant experience.
• Determine security system functionality and protection needs.
• Preserve evidence integrity and perform damage assessments.
• Recognize vulnerabilities and perform incident handling.
• Evaluate security controls and use security event correlation tools.
• Apply crisis planning procedures and prepare briefings.
• Ability to tailor technical and planning information to a customer’s level of understanding.
• Ability to develop cyber incident plans and strategy in compliance with laws, regulations, policies and standards in support of organizational cyber activities.
• Ability to obtain and maintain customer required Secret clearance.

Beneficial Knowledge:

• Cyber risk management processes, laws and regulations.
• Intrusion detection methodologies and hacking methodologies.
• Incident response and handling methodologies.
• System and application security threats and vulnerabilities.
• Knowledge of Supply Chain Risk Management Practices (NIST SP 800-161).
• Knowledge of cyber attackers and attack stages.

Where it’s done:

• Hybrid – Washington, D.C. (2-3 times per week). 

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community. 

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an experienced Penetration Tester with a strong background in providing cybersecurity assessment services in dynamic, fast-paced public sector environments. The ideal candidate will bring expertise in cybersecurity tools, proven methodologies and industry best practices within the federal market. This is a unique opportunity to contribute to the growth and culture of an emerging cybersecurity company. The role also offers travel opportunities to client sites both locally and nationally.

What you’ll be doing:

• Deliver comprehensive cybersecurity scanning and testing services to assess vulnerabilities and risks in customer systems.
• Integrate threat intelligence to provide clients with findings that support risk management and decision-making processes.
• Coordinate and manage assessment equipment, ensuring up-to-date images, on-site setup and teardown and ongoing maintenance.
• Operate cybersecurity assessment tools in collaboration with government teams to provide insights into system vulnerabilities.
• Support the IT Security Expert Level II in developing and documenting assessment reports, following government report templates.

What you need to know:

• Knowledge of host identification and vulnerability exploitation.
• Familiarity with phishing techniques and payload crafting.
• Skills in script writing, database operations and system/network administration.
• Proficiency with assessment tools, including but not limited to Metasploit, Nmap, Burp Suite, Powersploit and Cobalt Strike.
• Ability to perform effectively in critical and dynamic environments.
• In-depth knowledge of FISMA and NIST 800 series standards.
• Extensive experience with network mapping, vulnerability scanning, penetration testing and web application testing.
• Expertise in phishing assessments, wireless assessments, operating system security assessments and database assessments.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 2+ years of operational experience in penetration testing.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• One or more of the following certifications: OSCP, OSCE, GPEN, GXPN or equivalent.
• Active Public Trust clearance and ability to pass a federal background check.

Where it’s done:

• Remote (Herndon, VA) with up to 40% travel.

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community. 

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a highly skilled and experienced Cyber Risk Management Framework (RMF) Lead to join our cybersecurity team. The ideal candidate will have an eye for detail and possess a strong background in program/project management, cybersecurity and standing up RMF processes within a federated Federal Agency, along with relevant certifications and experience. Additionally, the ideal candidate will possess strong communication skill across all levels of an organization, from staff to executives, in verbal and written form. The Cyber RMF Lead will manage and support the creation of a new RMF program along with the processes, documentation and appropriate governance to ensure the security and resilience of IT and cybersecurity operations. This is a unique opportunity to join an exciting company where you will have a voice and be an active participant in driving growth and shaping our company’s culture.

What you’ll be doing:

• Oversee the RMF program management, ensuring alignment with the Enterprise Cybersecurity program goals.
• Develop a communication strategy to facilitate a general understanding of the RMF program.
• Identify, develop, implement and assist in planning, directing, executing and overseeing RMF activities.
• Facilitate or lead program management meetings and coordinate communication between customer stakeholders.
• Manage cross-functional teams and ensure adherence to federal government IT security requirements.
• Oversee and provide recommendations for the evaluation of options specific to the identification, development, maintenance and optimization of RMF processes, templates and procedures.
• Support the transition of Cybersecurity Assurance from current to future state.
• Ensure all RMF work products and deliverables meet the highest quality standards and align with the Enterprise Cybersecurity Program requirements.

What you need to know:

• Strong knowledge and experience in risk management and cybersecurity frameworks.
• Familiarity with federal government IT security requirements and compliance standards.
• Excellent program management skills, including experience with Scrum, Kanban and PMBOK methodologies.
• Ability to manage and lead matrixed, cross-functional teams and work collaboratively with representatives and stakeholders.
• Experience in developing and implementing cybersecurity policies and procedures.
• Strong analytical and problem-solving skills, with the ability to track, mitigate and report on risks.
• Strong documentation skills, specifically in Microsoft Word and PowerPoint for the creation of templates and/or documents from scratch or editing and completing existing documents from various starting points.
• Excellent communicator and facilitator to drive actions across the team, set of processes and procedures to catch errors before submission to customer and reevaluate on the fly as changes are required.

Must have’s:

• 7 – 10 years of experience serving as a Program Manager on enterprise cybersecurity support government contracts.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Shall possess one or more of the following certifications: PMI Agile Certified Practitioner (PMI-ACP), Certified ScrumMaster (CSM), Professional Scrum Master (PSM), Kanban Management Professional (KMP) and Project Management Professional (PMP).
• U.S. citizenship and eligibility to obtain and maintain a Q clearance, as required by the federal contract.

Beneficial to have the following:

• Bachelor’s degree in Computer Science, Information Systems, Engineering or a related field.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an Security Systems Engineer with a strong background in assessing, implementing, securing and administering dedicated cyber defense software within the federal market. The ideal candidate will be skilled in designing and maintaining robust security configurations and architectures across various cybersecurity technologies. The Security Systems Engineer role includes applying and managing Azure Policy to enforce security compliance and identify potential risks across cloud resources. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Create, assess and update system/application security configuration baselines by defining, establishing and validating systems’ compliance with security baselines.
• Design, develop, test and evaluate information system security throughout the system development life cycle.
• Implement and update system security measures that ensure confidentiality, integrity, availability, authentication and non-repudiation.
• Develop risk mitigation strategies to address vulnerabilities and recommend necessary security changes.
• Conduct security reviews to identify security gaps in system architecture.
• Perform risk analysis (threat, vulnerability and probability assessments) when systems or applications undergo major changes.
• Identify and resolve conflicts in the implementation of cyber defense tools, including tool configurations, policies and signature optimization.
• Implement Risk Management Framework (RMF)/Security Assessment and Authorization (SA&A) requirements for dedicated cyber defense systems and maintain relevant documentation.
• Access Azure subscriptions to apply Azure Policies at the management group, subscription, or resource group level to enforce security rules and ensure compliance with the Agency Hardening Guide.
• Monitor resource configurations to identify potential security risks through policy evaluations.
• Collaborate with various teams to maintain and update deployed Azure Policies as changes are made to the Agency Hardening Guide.

What you need to know:

• Experience developing and deploying critical security architecture solutions and hardening guides across technologies, such as firewalls, Web Application Firewalls (WAFs), CASB/SASE, proxies, Network Security Groups (NSGs) and other cybersecurity solutions.
• Intermediate knowledge of network and host-based firewalls, intrusion detection/prevention systems, vulnerability scanning, anti-malware protection, secure data transmission technologies and network monitoring/protection solutions.
• Familiarity with multiple cybersecurity tools, including Configuration Assessment, Log Aggregation, Integrity Verification, Network Access Control System and Endpoint Security Solutions.
• Working knowledge of cloud security, application security, network security and disaster recovery.
• Strong written and verbal technical communication skills.
• Proven ability to develop effective working relationships that improve the quality of work products.
• Ability to maintain focus and develop proficiency in new skills rapidly.
• Excellent organizational skills with the ability to handle competing priorities.
• Ability to thrive in a fast-paced environment, manage multiple tasks simultaneously, coordinate resources and ensure scheduled goals are met.
• Strong problem-solving skills, with the ability to seek out data and evaluate solutions effectively.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 7+ years of relevant cybersecurity experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Experience implementing and managing Azure Policies to enforce security compliance and evaluate risks.
• U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Ability to provide guidance on Enterprise Logging configurations for endpoint security technologies, firewalls, routers, switches and CTEM monitoring applications.
• Experience analyzing audit results and working with stakeholders to resolve vulnerabilities and document exceptions.
• Strong ability to develop partnerships across IT functions where they intersect with security.
• Knowledge of modern software development and deployment practices, including unit testing, CI/CD (continuous integration/continuous deployment).
• Relevant industry certification.

Where it’s done:

• Remote (Herndon, VA).