ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Security Operations Center (SOC) Manager who has experience leading a 24x7x365 SOC. This team will provide initial levels of incident identification, analysis, and triage. They will also provide baseline health reporting of the core SOC toolset, including availability of security log and data sources and integration of threat intelligence feeds. Proactive threat hunting will be a regular duty of the team. The team will mitigate incidents directly where possible, escalating incidents as needed to the Incident Response and Management Team. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

Roles and Responsibilities

• Establish incident response process and procedures
• Oversee and perform Computer Security Incident Response activities for a large global enterprise, coordinate with other enterprise IT teams to record and report incidents
• Ensure all incidents are worked from initial assignment to final resolution and escalation to IR team.
• Oversee and perform Root Cause Analysis (RCA) and make preventative recommendations
• Oversee and conduct investigations as needed using security tools such as Splunk, FireEye HX, FireEye ETP, Tenable SC, Cisco FireSight, Service Now, etc.
• Oversee and recognize potential, successful, and unsuccessful intrusion attempts and compromises through reviews and analysis of security tools
• Oversee, investigate, interpret, and respond to complex security incidents
• Attend and participate in Change Control Board/Change Approval Board (CCB/CAB) meetings as needed
• Author and update SOPs as needed or directed
• Fully document assigned tickets to show all work performed in order to pass SLRs
• Create, track, and work to resolution Normal and Standard job-related Change Requests
• Deliver daily SOC briefing to customer leadership

Required Skills

• Demonstrated experience / capability in bringing to fruition, basic SOC capability to a more robust visualized, industry standard support model, methodology, and tiered security professionals.
• Build SOC performance metrics that showcases the value being delivered along with the ability to communicate risks associated with activity seen across the infrastructure.
• Demonstrated capability to lead a team of varying experience levels to effectively monitor and investigate security incidents as well as make recommendations to improve the security posture of a large organization
• Strong foundation of Network and Security skills, fundamental knowledge of Windows, Linux and Cisco operating systems, networking protocols and network traffic analysis
• Experience implementing or working with Log management and Security Information and Event Management (SIEM) products such as Splunk in a complex network environment and assist security analysts in building operational processes around the SIEM ecosystems
• Experience with IT security tools, working technical knowledge of network, server, storage and desktop hardware and software
• Demonstrated ability to work with matrixed resources in a team environment
• Excellent written and verbal communication skills
• Ability to be successful in a high-intensity and customer needs driven environment

Education Requirement

• BS/BA in Computer Science, Information Systems, Engineering, Business, Physical Science, or other technology-related discipline or 5+ years in a technical management role is preferred. AA degree with 9 years of relevant experience can also be substituted.

Years of Experience Requirement

• 5 years desired but not required depending on work history

Certification Requirement

• Must have one of the following: Security+, Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), GIAC Certified Incident Handler (GCIH), GIAC Reverse Engineering Malware (GREM), GIAC Certified Forensic Examiner (GCFE), or GIAC Certified Forensic Analyst (GCFA) Certification

Location

• Herndon, VA with option to telework

Security Clearance

• Secret clearance

ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Cybersecurity & Services Data Analytics SME who has experience providing data analysis and product development in the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

Roles and Responsibilities

The ideal candidate will provide expert-level technical support and data analytics services across a broad portfolio of cybersecurity, risk management, and service delivery domains. Our customer’s requirements are dynamic and complex; we are seeking individuals who can effectively balance strategic, long-term planning with the tactical day-to-day demands of supporting a mission-focused customer. The ideal candidate must be a fast learner, and able to effectively engage resources and work across teams to decompose large, complex problems into workable solutions. An aptitude for learning, strategic planning and the ability to effectively communicate at all levels of the organization are a must.

• Collection, cleansing, management, and analysis of diverse cybersecurity, risk, and service delivery and management data sets to improve federal and national risk insights and adoption of cybersecurity services
• Generation of data products and reports that organize data analysis in a consumable format for stakeholders, including interactive data visualizations and infographics
• Correlating a variety of data sets to generate cyber performance context, products and discussion points for stakeholders; Support communication of complex data to a variety of stakeholders, tailored to the audience. Produce communication materials (reports, briefings, demos, presentations) for data projects, tailored to stakeholder audience.
• Participate in data forums and exchanges, communicating data priorities and details; Advise government leads and stakeholders on cybersecurity performance data topics.
• Conduct data analysis, processing, and data cleansing activities using innovative tools and approached to organize qualitative and quantitative data for analysis. Conduct data
• cleansing activities to detect, prevent, and correct data errors.
• Conduct research to identify potential opportunities to apply mathematical and/or statistical analysis in order to enhance government wide cybersecurity priorities.

Required Skills

• Expert-level experience using business intelligence and data analysis tools, using a variety of techniques and approaches to turn data into actionable insight. Experience with Tableau, R and R Studio, Python, VBA, and Tableau Server.
• Expert-level experience generating data products and reports that organize data analysis in a consumable format for a broad range of stakeholders, including interactive data visualizations and infographics.
• Expert-level experience using tools like Tableau and R for forecasting, data mining, text mining, and linear programming to identify common issues, challenges and risks, informing recommendations based on factual data.
• Demonstrated experience conducting research and analysis to define and implement enhanced models for data analytics, data modeling and Machine Learning, including the analysis and implementation of new tools and capabilities.
• Demonstrated ability to interact comfortably with Senior Leadership and/or Government Executives and staff on a day-to-day basis
• Strong team building and client interfacing skills: a positive attitude, highly motivated, excellent written and verbal communication  skills; An ability to clearly communicate technical concepts to both technical and non-technical users.
• Demonstrated aptitude for working in a fast-paced, dynamic, matrixed work environment; Ability to elicit and shape work requirements based on an understanding of higher-level objectives.
• Ability to provide thought leadership and influence through consultative, analytical, and technical planning skills
• Strong interpersonal and communication skills
• Demonstrated technical writing and presentation skills
• Knowledge of Federal Cybersecurity and Federal Cybersecurity and Risk Management Policies and practices, including: FISMA; NIST 800-37, 800-30, 800-39; FedRAMP

Desired Skills

• Knowledge and experience providing Cyber risk reporting and insights following FISMA reporting requirements (Cyberscope & Cyberstat)
• Experience working with DHS, specifically the Cybersecurity and Infrastructure Security Agency (CISA)

Education Requirement

• Bachelors Degree in computer science, information systems management, mathematics, engineering, or other relevant discipline.

Location

• Arlington, VA

 Security Clearance 

• Must be a US Citizen & able to obtain a Public Trust Clearance

ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking an Enterprise Risk Management SME who has experience providing cybersecurity architecture, engineering, and strategic consulting services in the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

Roles and Responsibilities

The ideal candidate will provide expert-level technical support services across a broad portfolio of cybersecurity and engineering domains, with an emphasis on enterprise level risk analysis, mitigation, and management. The Enterprise Risk Subject Matter Expert will help lead the maturation of federal Enterprise Risk Management (ERM) capabilities. The SME will provide thought leadership to guide decision making and innovation at the enterprise level and will identify and implement improvements to increase the value and effectiveness of current and emerging risk management and mitigation strategies and best practices. Our customer’s requirements are dynamic and complex; we are seeking individuals who can effectively balance strategic, long-term planning with the tactical day-to-day demands of supporting a mission-focused customer. The ideal candidate must be a fast learner, and able to effectively engage resources and work across teams to decompose large, complex problems into workable solutions. An aptitude for learning, strategic planning, and the ability to effectively communicate at all levels of the organization are a must

Required Skills

• Deep understanding of Federal Risk Management policies, practices, and requirements (FISMA, NIST Risk Management Framework – 800-37, 800-30, 800-39)
• Experience performing security and risk assessments across numerous enterprise and/or large scale mission systems
• Experience developing FISMA reporting (CyberScope & OMB FISMA reporting requirements) and supporting narratives for compliance and/or gaps in compliance with FISMA reporting requirements
• An understanding of a wide variety of IT system infrastructure and application development methodologies

Desired Skills 

• Security Engineering expertise in support of the security architecture of large scale and complex enterprise and/or major mission systems/investment programs – from initial threat and risk assessments, to security architecture requirement development and implementation
• Experience providing cybersecurity engineering, support, analysis, documentation, and/or validation services for a broad set of IT solutions, including applications, networks, systems, architectures, and infrastructure
• Experience developing and implementing security and risk mitigation strategies, technical and operational controls, POA&Ms, Risk Acceptance and Waivers
• Extensive understanding of managing system vulnerabilities and associated Risk Management processes and artifacts
• Experience developing and executing cybersecurity assessment plans, testing procedures, and providing risk mitigation guidance
• Experience developing and providing guidance to organizations and/or program/system owners and teams in vulnerability and risk identification, remediation, as well as risk posture determination and risk mitigation
• Knowledge of Analytic Hierarchy Process (AHP) with Pairwise comparison process and its use to inform decisioning

Education Requirement

• Bachelor’s Degree desired

Years of Experience Requirement 

• 6+ years working within Federal Enterprises supporting cybersecurity related programs

Location 

• Arlington, VA

Security Clearance

• Must be a US Citizen & be able to obtain a Public Trust Clearance

ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking Cybersecurity Engineers who have strong familiarity providing Cybersecurity assessment services utilizing a multitude of cyber tools, proven methodologies and industry best practices in the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market. This position provides the opportunity to travel to client sites both locally and nationally.

Roles and Responsibilities

As part of the Cyber Assessments team, provide cybersecurity scanning and testing services, threat intelligence integration to provide cybersecurity customers with findings and information that informs the risk management and decision-making processes.

Required Skills 

• Knowledge of host identification and exploitation of vulnerabilities
• Knowledge of phishing procedures
• Knowledge of script writing and crafting of payloads
• Knowledge of database operations and system/network administration
• In-depth knowledge and understanding of operation of assessment tools (including but not limited to Metasploit, Nmap, Burp Suite, Powersploit, and Cobalt Strike)
• Ability to operate in a critical fashion in dynamic environments
• Knowledge of FISMA and NIST 800 series standards
• In-depth knowledge of network mapping, vulnerability scanning, penetration testing, and Web Application testing
• In-depth knowledge of the procedures of Phishing Assessments, Wireless
• Assessments, Operating System Security Assessments, and Database Assessments
• Coordinates assessment equipment, including ensuring images on assessment equipment are up to date, equipment transport, setup and tear-down of equipment on-site, and general maintenance
• Operates assessment tools, under the direction of the Government, the IT
• Security Expert Level II, and NCATS Assessment Standard Operating Procedures
• Assists the IT Security Expert Level II with development of documentation and reporting for coordination of Assessment report in accordance with the appropriate report template at the direction of the Government

Education Requirement

• Bachelor’s Degree in related field

Years of Experience Requirement 

• Minimum of 2 years operational experience

Certification Requirement

• At least one of the following: OSCP, OSCE, GPEN, GXPN, or equivalent

Location 

• Arlington, VA

Security Clearance

• All personnel must have at least a PUBLIC TRUST clearance and pass a DHS background check

ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Mid-level Developer who has experience working as part of an agile development team performing hands on development of a solution in the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

Roles and Responsibilities

• Designing and developing solutions using a combination of COTS, open source and custom code, to consume and transform data to present data of significance from disparate sets of data.
• Consumption of RESTful APIs for data access, and sending between environments through message queue technologies.
• Assist in the development of dashboard solutions to visualize cyber security related data: Hardware Assets, Software, Vulnerabilities, Configuration, Users, Incidents, Compliance Scores / POA&Ms, Risk Scores, etc.

Required Skills

• Experience developing enterprise-level applications, working with common VCS and associated workflows (Git)
• Advanced experience with Python, with a focus in areas of systems integration
• Experience with one or more message queuing systems. RabbitMQ or Kafka preferred
• Experience with hands on configuration, tuning and operating of distributed systems. Open source tools including Kafka, Logstash, Beats, Elasticsearch, Kibana, or Splunk preferred
• Experience querying data to include aggregations, calculations, and producing metrics from data
• Experience designing and implementing data visualizations
• Experience evaluating new methodologies and technologies to meet requirements and deliver capabilities

Desired Skills

• Experience working on an Agile development team
• Contributor to open source projects
• Experience with ALM tools, esp Jira
• Experience with Elastic Common Schema or Splunk Common Information Model
• Experience with tools in both Linux and Windows environments
• Experience creating data pipelines to include ETL and streaming data such as log data or tool/sensor data to indices. Experience with Splunk forwarders, Kafka, Logstash, Beats, or ES/Splunk python libraries preferred
• Cloud workload experience (Amazon Web Services, Azure)
• Understanding of machine learning, and it’s use in anomaly detection

Education and Years of Experience Requirement

• Must have a BS (STEM degree) and 4-8 years of relevant experience

Location

• Fairfax, VA

Security Clearance

• Must be a U.S. Citizen

• Must be able to obtain DHS Suitability

ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking Blue Team Engineers with experience utilizing offensive tools and techniques to conduct exercises for a government agency that mimic both insider and external threats to operational systems and networks. Activities include but are not limited to network discovery threat detection, forensic support and reporting. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

Roles and Responsibilities

• Conduct automated and manual test of information systems using industry best tools, to include vulnerability scans, source code review and web application testing
• Develop test plans, perform tests and prepare after-action reports for information systems
• Document tests in accordance with agency regulations and SOPs
• Contribute to A&A, POA&M vulnerability management, and continuous monitoring efforts by providing trend analysis and briefings
• Utilize signature-based scanners, data collection tools, and hardware analysis tools to determine the footprint and impact of potential events
• Conduct SIEM reviews to ensure proper detection and notification of threat events
• Support vulnerability analysis and mitigation strategies to prevent additional occurrences of threat events

Required Skills

• The candidate should be comfortable researching and understanding a wide variety of information systems and emerging technologies
• Have a broad knowledge of security methodologies, solutions and best practices
• Have experience with multiple open source and commercial testing tools; a non-comprehensive list includes Nessus, App Detective, Metasploit, Burp Suite, and nmap
• Advanced understanding of the strengths and weaknesses of security tools with the ability to select the right tool for the job; ability to configure and troubleshoot tools if necessary
• Be comfortable using, configuring, troubleshooting, and administrate both Unix/Linux and Microsoft operating systems; extensive systems engineering experience with at least one of these OSs
• Solid understand of the security policies of Department of Justice and FBI, as well as security guidelines published by the National Institute of Standards (e.g., 800-53 and 800-53a)
• Have the ability to think critically and creatively; capable of synthesizing and analyzing large amounts of data related to complex systems; ability to articulate thoughts and findings in a concise and comprehensive manner

The ideal candidate must have an expert understanding of at least one of the following technologies and their security vulnerabilities:

• Web applications and technologies. Advanced understanding of application programming languages, application servers, Web services, and Web browsers. Candidate should also understand the vulnerabilities related to these technologies, as well as security best practices when using them. Candidate should also be able to use automated assessment tools and manual testing techniques to assess these applications. Familiarity with OWASP testing methodology is also required.
• Networking technologies. Advanced proficiency with various networking skills and technologies, including (but not limited to) Cisco hardware and IOS, firewalls, IDS and IPSs, packet analysis, and high level network architecture fundamentals.
• Enterprise solutions, storage and databases. Advanced understanding of relational databases, database management systems, enterprise storage solutions, and security concerns specific to these technologies.
• Cross domain solutions and trusted operating systems. Advanced experience with a range of Cross Domain Solutions, or CDSs, and advanced understanding of the unique security requirements of CDSs and trusted OSs such as trusted Solaris v8, Solaris v10 with trusted extensions and Security Enhanced Linux.
• Virtualization technologies. Advanced experience with VMware products, Microsoft virtualization technologies and/or similar technologies.
• Advanced hardware, OSs, networking, and security best practices

Certification Requirement

• Must have one of the following certifications: CISSP, ISACA, OSCP, CISA, GPEN or GWAPT, C|EH

Education Requirement

• Bachelor’s degree or ten (10) years of IT experience

Location

• Washington, D.C.

Security Clearance

• Top Secret with SCI eligibility and ability to pass a Counter-Intelligence (CI) polygraph

ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Tenable Security Engineer who has experience operating and maintaining Tenable security suite for purposes of managing security configuration settings against defined security hardening guidance and on compliance status in the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

Required skills

• Experience with maintaining, optimizing, and troubleshooting the Tenable solution currently deployed in a UNIX environment, including Tenable.sc, Tenable.io, NNM, LCE, Nessus Manager, Agents, and Scanner
• Experience with deploying, configuring, and maintaining Nessus agents in an enterprise environment, including the application of best practices for schedules and integration with Tenable.sc
• Experience with supporting upgrades of Tenable.sc, Nessus Manager, Nessus scanners, LCE, and PVS
• Experience with performing security compliance and vulnerability assessments specifically developing and applying STIG or CIS baselines for various operating systems, including Windows or RHEL and CentOS
• Experience with configuring authentication methods, including PIV, SAML and LDAP, and development of role-based access controls (RBAC)
• Experience with performing enterprise-wide networking scanning, agent scan, container, including credential scan of UNIX, Windows, Network devices, and VMware
• Ability to provide design and architectural guidance for tool capabilities during technical stakeholder meetings
• Ability to prepare and maintain solution documentation, including security, configuration, and CONOPS

Desired skills 

• Experience with using Tenable APIs, integrating tenable products and automating daily activities
• Experience with creating dynamic asset, dashboards, and reports
• Experience with administering Windows and UNIX in an enterprise environment
• Experience with using security tools and technologies, including Domain Naming Service (DNS), Active Directory (AD), Windows PowerShell, Windows credential stores, Microsoft Certificate Authority, Python, REST, JSON, SOAP, Shell Scripting, TCP stack, and Wireshark

Roles and Responsibilities

• As the Elastic Product Owner, you will lead the Elasticsearch deployment in the cloud and on premise
• Collaborate with Data Architects and Data Scientists to help design our Elasticsearch systems
• Ability to develop the solution with the end-state in mind
• Optimize the deployed solutions; such as view customization, search tuning and schema mapping
• Works closely with other service area leads to ensure deployed solutions remain capable of meeting ongoing and future requirements
• Champion development and implementation of quality controls and standards
• Develop, recommend and implement metrics/measures to tune and show improvements to data ingestion, parsing, transformation and visualization
• Maintaining high-level oversight on data quality metrics and deliverables
• A strong understanding of Project Management, Kanban Boards and Agile methodologies
• Escalate issues to project leaders as per established project and corporate requirements
• Provides technical leadership for the Data integration into the ELK Stack

Required Skills

• Experience in architecting, designing, developing solutions using the ELK (Elasticsearch, Logstash and Kibana) stack in a production environment
• Hands-on configuration, deployment, integration, and maintenance of systems using Kafka, Logstash, Elasticsearch, Kibana and REST API integration
• Understanding of installation, system level tasks, handling data collections, network issues, data pipes, and cluster level administration
• Proven experience with Python
• Ability to perform data related benchmarking, performance analysis and tuning
• Experience in cloud IaaS environments such as AWS, GCP or Azure
• Experience developing code releases using Agile/Scrum software development methodologies
• Detail-oriented with excellent writing, verbal, and technical skills
• Proven ability to lead small- to medium-sized development teams (5-15 people) to prioritize and accomplish business and mission objectives
• Expert level communicator to all levels of personnel

Desired Skills

• Excellent understanding of database administration and data management functions
• Prior experience in data conversion, data migration, requirements gathering, data mapping and data source gap analysis
• Experience optimizing software to run fast, be reliable and fail safely

Roles and Responsibilities

• Elastic SIEM solution development, integration, platform architecture, and capacity planning in mission-critical environments
• Deploying additional Elastic clusters using infrastructure as code (Ansible playbooks)
• Maintain, secure, and upgrade ECE deployments
• Integrate log and sensor data into ELK
• Data modeling, query development and optimization, cluster tuning and scaling with a focus on fast search and analytics at scale
• Streamline cybersecurity tactics, techniques and procedures
• Create dashboards and reports in ELK
• Leverage data analytics can machine learning algorithms for cyber operations
• Provide adoption awareness and training for the ELK SIEM
• Working with a multi-tenant platform and working with tenants to understand requirements
• Providing subject matter expertise to assist the rest of the team in their roles

Required Skills

• 4+ years of experience with IT with a focus in Linux sysadmin, databases, containers or cyber operations
• 3+ years of experience with hands on operations of sizing, monitoring, and management, and open-source tools, including Kafka, Logstash, Beats, Elasticsearch, Kibana, or Splunk
• Knowledge of planning and executing data retention and life cycle management plans
• Hands-on experience administrating Elasticsearch clusters (10+ Data nodes)
• Knowledge of information retrieval and/or analytics domain
• Experience with load balancing, DNS, TLS certificate generation and SAML integration.
• Experience working with data solutions in a public sector
• Excel at working directly with customers to gather, prioritize, plan and execute solutions to customer business requirements as it relates to our technologies
• Familiar with SOC operations, open-source security frameworks, and Linux

ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Security Baseline Assessor who has experience with system/application security configuration baselines (defining, establishing, reviewing, running tools to ensure a systems compliance with the required security baselines, etc.). This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

Roles and Responsibilities

• Conducts independent comprehensive assessments of the management, operational, and technical security/privacy controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST SP 800-37).

Required Skills

• Experience with creating, reviewing and customizing general security configuration baselines including DoD, STIGs, and CIS Benchmarks
• Experience with translating the low-level security baseline requirements into high-level FISMA and NIST requirements and client-specific security policies
• Extensive experience conducting cloud security control assessments using FEDRAMP, including preparation of complete authorization packages Experience as a member of a certified FedRAMP Third-party Assessment Organization (3PAO) desired
• Experience working with the NIST 800 Special Publication series guidance related to risk management and security control implementation, including 800-30,800-37, 800-53, 800-60, 800-63, 800-115, or 800-137
• Technical skills in performing security reviews, identifying gaps in security architectures, and developing a security risk management plan
• Expertise in technical security assessment techniques, tools, and practices
• Experience performing risk analysis (e.g., threat, vulnerability, and probability of occurrence) whenever an application or system undergoes a major change
• Experience in reviewing authorization and assurance documents to confirm that the level of risk is within acceptable limits for each software application, system, and network
• Experience in developing security compliance processes and/or audits for external services (e.g., cloud service providers, data centers).
• Ability to function in a fast-paced environment and effectively manage multiple tasks simultaneously; coordinating resources and ensuring scheduled goals are met
• Ability to make decisions and resolve problems effectively – Seek out information and data to evaluate, prioritize and formulate best solution or practice
• Must be able to multi-task, work independently and as part of a team, share workloads,and deal with sudden shifts in project priorities

Desired Skills

• Developing knowledge in the following areas: network and host based firewalls, intrusion detection/prevention systems, data loss prevention, vulnerability scanning, anti-malware and spam protection, secure data transmission technologies, and network monitoring/protection solutions
• Understanding and proficiency in network security architecture concepts including topology, protocols, components, and principles
• Knowledge of modern software development and deployment practices including unit testing, continuous integration and continuous deployment
• Skill in designing security controls based on cybersecurity principles and tenets
• Ability to effectively interact with various levels of senior management is necessary
• Experience as a member of a certified FedRAMP Third-party Assessment Organization (3PAO) desired

Education Requirement

• BA/BS in Computer Science, Engineering or related technical IT field

Years of Experience Requirement

• Four (4) to six (6) years of relevant cyber-security experience

Certification Requirement

• Required – ISC2 Certified Information Systems Security Professional (CISSP)
• Preferred – Global Information Assurance Certification (GIAC)

Location

• Arlington, VA

Security Clearance

• Eligibility to obtain and maintain customer required security clearance

ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Security Engineering Technical Lead/ Technical Architect who is a motivated individual with strong technical competency that will guide an integrated approach to all Enterprise Solutions and Solutions Architecture support services.  The candidate will also perform Security application and System Administration support for a variety of security tools for a customer in the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

Ensures that the security requirements necessary to protect the organization’s mission and business processes are properly addressed in all aspects of enterprise architecture. This includes reference models, segment and solution architectures, and the resulting systems supporting those missions and business processes.

Required Skills

• Experience with Security Assessment and Authorization process
• Experience in designing countermeasures to identified security risks
• Experience designing the integration and optimization of hardware and software solutions in an enterprise environment
• Experience configuring and utilizing software-based computer protection tools (e.g., software firewalls, antivirus software, anti-spyware)
• Experience using Public-Key Infrastructure (PKI) encryption and digital signature capabilities into applications (e.g., S/MIME email, SSL traffic)
• Experience applying methods, standards, and approaches for describing, analyzing, and documenting an organization’s enterprise information technology (IT) architecture (e.g., Open Group Architecture Framework [TOGAF], Department of Defense Architecture Framework [DoDAF], Federal Enterprise Architecture Framework [FEAF])
• Experience conducting vulnerability scans and recognize vulnerabilities and cyber threats in security systems and optimizing systems to meet enterprise performance requirements
• Experience applying security systems design, tools, methods and techniques
• Experience applying cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)
• Experience serving as the primary liaison between the enterprise architect and the systems security engineer and coordinates with system owners, common control providers, and system security officers on the allocation of security controls as system-specific, hybrid, or common controls

Desired Skills

• Knowledge of computer networking concepts and protocols, and network security methodologies
• Knowledge of risk management processes and methodology (e.g., methods for assessing and mitigating risk)
• Knowledge of capabilities and requirements analysis
• Knowledge of new and emerging information technology (IT) and cybersecurity technologies
• Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL])
• Knowledge of CSP (AWS OR Azure)
• Knowledge of N-tiered typologies (e.g. including server and client operating systems)
• Knowledge of configuration management techniques
• Knowledge of Information Theory (e.g., source coding, channel coding, algorithm complexity theory, and data compression)

ShorePoint is seeking a Cybersecurity Analyst for a Federal client in Chantilly, Virginia. The Cybersecurity Analyst provides 24×7 analysis and collection of relevant incident information for further investigation and possible escalation, as well as logs, tracks, prioritizes, and reports cyber incidents according to standard incident reporting protocols and categories as outlined in the CSOC SOP. The Cybersecurity Analyst also provides support for internal/external investigations to include combining disparate data sources to identify anomalous trends and activities, and acknowledging and disseminating vulnerability alerts, bulletins, and other taskings.

ShorePoint is a Cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are  This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the Cybersecurity market.

Roles and Responsibilities

• Provides detection, identification, and reporting of possible cyber-attacks/intrusions, anomalous activities, and misuse activities
• Characterizes and performs analysis of network traffic and system data to identify anomalous activity and potential threats to resources
• Performs security event and incident correlation using information gathered from a variety of sources within the enterprise
• Performs cyber incident triage to include determining scope, urgency, and potential impact; identify the specific vulnerability and make recommendations which enable expeditious remediation
• Tracks and documents cyber incidents from initial detection through final resolution
• Analyzes and assesses damage to the data / infrastructure as a result of cyber incidents
• Performs cyber incident trend analysis and reporting

Required Skills

•  Proficient in Windows and Linux Operating Systems
•  Experience working in a Cybersecurity Operations Center environment
•  Experience with COTS technologies used in a Cybersecurity Operations Center environment
•  Working knowledge of current COTS Cybersecurity technologies
• Working knowledge of database and operations system security
• Understanding of latest security principles, techniques, and protocols
• Ability to function in a fast-paced environment and effectively manage mutliple tasks simultaneously; coordinating resources and ensuring scheduled goals are met
• Candidates must have excellent oral and written communication skills
• Ability to make decisions and resolve problems effectively – Seek out information and data to evaluate, prioritize and formulate best solution or practice

ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Principle Security Engineer (Elastic Stack Enterprise) who have experience with design, documenting, build, and securing of Elastic Stack solutions in the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

Roles and Responsibilities

• Responisible for working with the technical team to design, document, build, secure and maintain Elastic Stack Enterprise solutions (Elasticsearch, Logstash, Kibana, and Beats) deployed in the Cloud or on-premise to support federal agency production deployments
• Works closely with architects, engineers, developers, and integrators to assess customer requirements and to design and support an Elasticsearch Stack solution to ensure compliance with dashboard data requirements
• Participate in group sessions as well as attend and share in agile sprint daily meetings in order to track progress to ensure development of solutions is in support of the customer requirements.
• Serve as a trusted advisor, providing subject matter expertise, guidance, and best practice recommendations
• Configuring and maintaining Linux based Operating Systems in support of the Elasticsearch products (yum updates and product version upgrades)
• Working with a team and providing analysis of alternatives and progress status in daily sprint meetings
• Meet professional obligations through efficient work habits such as, meeting deadlines, honoring schedules, coordinating resources and meetings in an effective and timely manner
• Develop and manage effective working relationships with other departments, groups and personnel with whom work must be coordinated or interface
• Recommend enhancements and modifications to optimize business intelligence processes

Required Skills

• Knowledge and experience using NoSQL and related solutions
• Experience with engineering and administrating the Elastic Stack (Elasticsearch,Logstash, Kibana, Beats) in production at scale (multi-node clusters, hot/warm architectures, index lifecycle management, snapshots, etc.)
• Experience managing Linux hosts (CentOS / RHEL 7.X preferred), to include securing to defined baselines (such as NIST 800-53, DISA STIGs, etc.)
• Experience with data lifecycle management, to include common ETL (Extract,Transform, Load) techniques, preferably with Logstash and Beats
• Experience planning and integrating data schemas and KQL / Lucene query syntax
• Experience developing custom visualizations (preferably in Kibana) to convey business analytics of value to customers
• Experience with automated configuration management tools (Ansible, Chef, Puppet, SaltStack) and containers/orchestration (Docker, Kubernetes), and version control systems (GitHub, GitLab)
• Experience with cloud infrastructure, preferably Amazon Web Services (AWS)
• Experience with implementation of and challenges with message queue technologies, such as Apache or Confluent Kafka, RabbitMQ, SQS, etc
• Proficiency with programming and scripting concepts, preferably in Python, for custom development and integrations
• Strong networking background with analytical and problem-solving/troubleshooting skills to effectively resolve problems both in development and production
• Experience working in DevOps structured and Agile organizations

Desired Skills

• Experience with RMF process a plus
• Experience with ECE/ECK a plus