Purpose-Driven Careers

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a motivated Blue Team Engineer with expertise in defensive cybersecurity tools and techniques to conduct threat simulations. The ideal candidate will replicate both insider and external threats to operational systems and networks, contributing to the defense of high-profile environments. This is a unique opportunity to shape the growth and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Conduct automated and manual tests on information systems using industry-standard tools such as vulnerability scans, source code reviews, and web application testing.
• Develop test plans, execute tests, and prepare detailed after-action reports.
• Document testing processes in accordance with agency regulations and Standard Operating Procedures (SOPs).
• Contribute to Authorization & Accreditation (A&A), Plan of Action & Milestones (POA&M), vulnerability management, and continuous monitoring efforts.
• Use signature-based scanners, data collection tools, and hardware analysis tools to assess potential threat events.
• Perform Security Information and Event Management (SIEM) reviews to ensure proper detection and notification of threats.
• Support vulnerability analysis and develop mitigation strategies to prevent future threats.
• Support remote locations with traveling assessments as scheduled (30% travel expected, Continental United States).

What you need to know:

• Broad knowledge of security methodologies, solutions, and industry best practices.
• Experience with open-source and commercial testing tools such as Nessus, Metasploit, Burp Suite, App Detective, and Nmap.
• Advanced understanding of security tools with the ability to configure and troubleshoot them as needed.
• Expertise in Unix/Linux or Microsoft operating systems, with extensive experience in at least one.
• Familiarity with security policies of the Department of Justice (DOJ), FBI, and National Institute of Standards and Technology (NIST) guidelines (e.g., 800-53, 800-53a).
• Strong critical thinking and analytical skills, with the ability to interpret and synthesize complex data.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field, or 10 years of relevant IT experience.
• 5+ years of relevant experience in cybersecurity.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• Expertise in at least one of the following areas: Web applications and technologies, Networking technologies, Enterprise solutions, storage, and databases, Cross-domain solutions, Virtualization technologies, Mainframes.
• One or more of the following certifications: CISSP, ISACA, OSCP, CISA, GPEN, GWAPT, or CEH.
• Active Top Secret with SCI eligibility and ability to pass a Counterintelligence (CI) polygraph.

Where it’s done:

• Washington, DC – 70% of time
• Remote locations – 30% of time (Continental United States)

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an Data Infrastructure Engineer who has experience providing support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market. The Data Infrastructure Engineer will have the opportunity to be exposed to all aspects of support to a federal client and will be encouraged to grow as the organization expands. 

What you’ll be doing:

• Integrate multiple Commercial Off the Shelf (COTS) and open-source products, software configuration packages and custom code to work together to operate as a single solution, tailored to meet customer requirements.
• Work as part of an agile development team to conduct systems design, analysis and development of the solution.
• Create data pipelines and implement ETL processes for both stream processing (such as tool and sensor log data) and batch processing (such as daily vulnerability updates), integrating functionality between applications, leveraging APIs and scripting languages (Python preferred).
• Conduct data modeling, hands on configuration, tuning and operating of distributed data storage stacks, with a focus on Elasticsearch and Kafka.
• Query data to include aggregations, calculations, and producing metrics from data; design and implement data visualizations.
• Engage in all agile ceremonies including backlog grooming, demos and retrospectives.

What you need to know:

• Demonstrated experience writing well-structured code and applications using coding best practices to deliver enterprise applications.
• Proven experience in developing robust, scalable data pipelines and integrations.
• Solid understanding of application architecture and interfaces as well as experience with data modeling.
• Expertise in working with streaming data and implementing real-time data processing solutions.
• Ability to develop and deploy in containerized environments (Docker, Kubernetes).
• Experience with open-source tools including Kafka, Logstash, Beats, Elasticsearch, Kibana, or Splunk.

Must have’s:  

• Minimum of 5-7 years of relevant experience.
• Strong written and verbal communication skills.
• Strong documentation skills.
• Experience leveraging data processing technologies such as Apache Kafka and Elasticsearch.
• Skilled problem-solver with strong ability to troubleshoot complex data pipeline issues.
• Ability to work with cross functional teams.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• This position requires U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• Industry related certifications.
• Experience with cloud platforms (AWS, Azure, GCP).
• Familiarity with cybersecurity concepts and tools.
• Experience with real-time data processing frameworks (e.g., Apache Flink, Apache Spark).

Where it’s done:

• Remote (Herndon, VA). 

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an Elasticsearch (Elastic/ELK/ECE) Engineer who has experience providing support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market. The Elasticsearch (Elastic/ELK/ECE) Engineer will have the opportunity to be exposed to all aspects of Systems Engineering and will be encouraged to grow as the organization expands.

What you’ll be doing:

• Responsible for working with the Integration, and Architecture teams to design, document, build, secure, and maintain Elasticsearch, Logstash, Kibana (and X-Pack) Enterprise solutions deployed in the Cloud or on-premises environment.
• Work closely with architects, engineers, and integrators to assess customer requirements and to design and support an Elasticsearch Stack solution to ensure compliance with data requirements.
• Follow life cycle processes to move solutions from Dev to Test to Production.
• Participate in group sessions as well as attend and share in agile sprint daily meetings to track progress to ensure development of solutions is in support of the project and customer requirements.
• Serve as a trusted advisor, providing subject matter expertise, guidance, and best practice recommendations.
• Configure and maintain Linux based Operating system files in support of the Elasticsearch products (yum updates and product version upgrades).
• Install and configure an Elastic Cloud Enterprise solution and ensuring communication and integration among the Elasticsearch products and data sources.
• Document the installation and configuration for deployment.
• Secure the solution by being familiar with TLS, certificates, SSO/PIV authentication, and encryption technologies.
• Work with the data lifecycle management team.
• Test data flows, troubleshooting issues, and monitoring the health of the solution and servers to maximize performance and minimize downtime.
• Work with a team and provide analysis of alternatives and progress status in daily sprint meetings.
• Meet professional obligations through efficient work habits such as, meeting deadlines, honoring schedules, coordinating resources and meetings in an effective and timely manner.
• Develop and manage effective working relationships with other departments, groups, and personnel with whom work must be coordinated or interface.
• Recommend enhancements and modifications to optimize business intelligence processes.

What you need to know:

• Software Development using Java with an IDE (e.g. Eclipse, CodeReady).
• Parsing File formats (e.g., JSON, XML, and CSV).
• SQL SERVER database design, programming, tuning, writing SQL queries/procedures.
• Developing/automating test procedures.
• Web services client development using REST API.
• Release Management and build tools (e.g., Maven, Jenkins) and configuration tools (e.g., SVN).
• Secure coding practices including use of encryption (e.g., Certificates, TLS Connections).

Must have’s:  

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 2+ years of relevant experience.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• Must be a US citizen (non-dual citizenship) and be able to obtain and maintain agency required clearance.

Beneficial to have the following:  

• Experience with SAML authentication, familiarity with domain structures, user authentication, and PKI.
• Experience with Messaging Queues (e.g., RabbitMQ).
• Experience with Microsoft SQL.
• Experience with programming and working with regular expressions (XML, Java, JSON, Python, PowerShell, painless, grok).
• Relevant security certifications a plus: CISSP, CISM, CISA, Security+, CEH.
• Understanding of interrelationships between critical infrastructure protection and cybersecurity.
• Knowledge and experience with Assessment & Authorization (A&A) processes in Federal environments, preferably with experience utilizing the NIST Risk Management Framework (RMF).

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community. 

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an experienced Penetration Tester with a strong background in providing cybersecurity assessment services in dynamic, fast-paced public sector environments. The ideal candidate will bring expertise in cybersecurity tools, proven methodologies, and industry best practices within the federal market. This is a unique opportunity to contribute to the growth and culture of an emerging cybersecurity company. The role also offers travel opportunities to client sites both locally and nationally.

What you’ll be doing:

• Deliver comprehensive cybersecurity scanning and testing services to assess vulnerabilities and risks in customer systems.
• Integrate threat intelligence to provide clients with findings that support risk management and decision-making processes.
• Coordinate and manage assessment equipment, ensuring up-to-date images, on-site setup and teardown, and ongoing maintenance.
• Operate cybersecurity assessment tools in collaboration with government teams to provide insights into system vulnerabilities.
• Support the IT Security Expert Level II in developing and documenting assessment reports, following government report templates.

What you need to know:

• Knowledge of host identification and vulnerability exploitation.
• Familiarity with phishing techniques and payload crafting.
• Skills in script writing, database operations, and system/network administration.
• Proficiency with assessment tools, including but not limited to Metasploit, Nmap, Burp Suite, Powersploit, and Cobalt Strike.
• Ability to perform effectively in critical and dynamic environments.
• In-depth knowledge of FISMA and NIST 800 series standards.
• Extensive experience with network mapping, vulnerability scanning, penetration testing, and web application testing.
• Expertise in phishing assessments, wireless assessments, operating system security assessments, and database assessments.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 2+ years of operational experience in penetration testing.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• One or more of the following certifications: OSCP, OSCE, GPEN, GXPN, or equivalent.
• Active Public Trust clearance and ability to pass a federal background check.

Where it’s done:

• Remote (Herndon, VA) with up to 25% travel.

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a Platform Specialist who has experience providing support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market. The Platform Specialist will have the opportunity to be exposed to all aspects of support to a federal client and will be encouraged to grow as the organization expands

What you’ll be doing:

• Support the deployment and implementation of cyber engineering strategies, tools, and techniques which contribute to enhancing cybersecurity posture.
• Design and automate cloud environments at scale using Infrastructure as Code and Configuration Management tools.
• Provide design, engineering and deployment support for distributed cloud-based environments consisting of multiple COTS tools and custom integration packages.
• Develop technical documentation, architecture diagrams, processes and procedures.
• Support the full system engineering life cycle, including requirements analysis, design, development, integration, test, documentation, and implementation.
• Engage in all agile ceremonies including backlog grooming, demos and retrospectives.
• Define and execute effective cloud monitoring solutions leveraging technologies such as CloudWatch or the Elastic Stack.
• Build, implement, and administer one or more COTS products in Windows and Linux environments.
• Continuously perform capacity planning, evaluating and implementing cloud cost optimization strategies.

What you need to know:

• Experience in architecting, designing, developing, implementing and securing cloud solutions.
• Strong understanding of scripting languages such as Python.
• Experience maintaining applications and infrastructure for cloud-based technology and platforms.
• Experience with cloud platforms or technologies (AWS, Azure, GCP).
• Strong understanding of cloud networking concepts and best practices.
• Experience with containerization technologies and orchestration platforms (Docker, Kubernetes).
• Experience with infrastructure-as-code and configuration management tools (Terraform, Chef, Puppet, Ansible).
• Understanding of DevOps principles and experience building automated CI/CD pipelines.
• Experience with monitoring tools (Elastic Stack, CloudWatch, Datadog, Prometheus).

Must have’s:  

• Minimum of 5-7 years of relevant experience.
• Strong written and verbal communication skills
• Strong documentation skills.
• Strong problem-solving skills and ability to troubleshoot complex cloud infrastructure issues.
• Experience creating, managing, and supporting automation solutions for deployment and orchestration in cloud environments.
• Ability to work with cross functional teams.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• This position requires U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• Industry related certifications.
• Experience with data processing technologies like Apache Kafka and Elasticsearch.
• Experience with multi-cloud or hybrid cloud architectures.

Where it’s done:

• Remote (Herndon, VA). 

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a Product Engineering Specialist – Kafka who has experience providing support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market. The Product Engineering Specialist – Kafka will have the opportunity to be exposed to all aspects of support to a federal client and will be encouraged to grow as the organization expands. 

What you’ll be doing:

• Design, implement, and optimize Kafka-based data streaming architectures for cybersecurity data collection and processing.
• Develop and maintain Kafka clusters, ensuring high availability, fault tolerance, and scalability.
• Configure and tune Kafka for optimal performance, considering factors such as partitioning, replication, and consumer group strategies.
• Implement data replication strategies between edge Kafka deployments and centralized Kafka clusters.
• Collaborate with integration engineers to design and implement efficient data pipelines from data source to Kafka to the Elastic Stack.
• Engage in all agile ceremonies including backlog grooming, demos and retrospectives.
• Provide expertise and guidance on Kafka security features, including encryption, authentication, and authorization.
• Conduct capacity planning and performance testing for Kafka deployments.
• Troubleshoot complex issues in Kafka systems.
• Develop and maintain documentation for Kafka configurations, best practices, and troubleshooting procedures.

What you need to know:

• Strong experience with Kafka and other big data, distributed and data streaming technologies.
• In-depth knowledge of all the functionalities surrounding Kafka.
• Proficient with Java or Python for developing Kafka-related applications and tools.
• Ability to install, maintain and troubleshoot Kafka.
• Understanding of data serialization formats (e.g. Avro, Protobuf) and schema management.
• Ability to design secure configurations and access to shared Kafka deployments.
• Excellent troubleshooting skills.
• Excellent communication and interpersonal skills.

Must have’s:  

• 5 years of relevant experience.
• Ability to design, build and maintain message configuration and flows in high-throughput, low-latency scenarios.
• Strong problem-solving skills and ability to provide issue analysis on Kafka applications and other complex distributed systems.
• Experience documenting tests and presenting findings.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• This position requires U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Engineering or a related field.
• Industry related certifications.
• Familiarity with containerization and orchestration technologies (Docker, Kubernetes)
• Experience deploying Kafka in cloud-based environments (AWS, Azure, GCP)
• Experience with Infrastructure as Code tools for deploying and managing Kafka clusters.

Where it’s done:

• Remote (Herndon, VA). 

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a Security Systems Engineer with a strong background in assessing, implementing, securing, and administering dedicated cyber defense software within the federal market. The ideal candidate will be skilled in designing and maintaining robust security configurations and architectures across various cybersecurity technologies. The Security Systems Engineer  requires the ability to adapt quickly, work collaboratively, and support the cybersecurity needs of high-profile environments. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Create, assess, and update system/application security configuration baselines by defining, establishing, and validating systems’ compliance with security baselines.
• Design, develop, test, and evaluate information system security throughout the system development life cycle.
• Implement and update system security measures that ensure confidentiality, integrity, availability, authentication, and non-repudiation.
• Develop risk mitigation strategies to address vulnerabilities and recommend necessary security changes.
• Conduct security reviews to identify security gaps in system architecture.
• Perform risk analysis (threat, vulnerability, and probability assessments) when systems or applications undergo major changes.
• Identify and resolve conflicts in the implementation of cyber defense tools, including tool configurations, policies, and signature optimization.
• Implement Risk Management Framework (RMF)/Security Assessment and Authorization (SA&A) requirements for dedicated cyber defense systems and maintain relevant documentation.

What you need to know:

• Experience developing and deploying critical security architecture solutions and hardening guides across technologies, such as firewalls, Web Application Firewalls (WAFs), CASB/SASE, proxies, Network Security Groups (NSGs), and other cybersecurity solutions.
• Intermediate knowledge of network and host-based firewalls, intrusion detection/prevention systems, vulnerability scanning, anti-malware protection, secure data transmission technologies, and network monitoring/protection solutions.
• Familiarity with multiple cybersecurity tools, including Configuration Assessment, Log Aggregation, Integrity Verification, Network Access Control System, and Endpoint Security Solutions.
• Working knowledge of cloud security, application security, network security, and disaster recovery.
• Strong written and verbal technical communication skills.
• Proven ability to develop effective working relationships that improve the quality of work products.
• Ability to maintain focus and develop proficiency in new skills rapidly.
• Excellent organizational skills with the ability to handle competing priorities.
• Ability to thrive in a fast-paced environment, manage multiple tasks simultaneously, coordinate resources, and ensure scheduled goals are met.
• Strong problem-solving skills, with the ability to seek out data and evaluate solutions effectively.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 7+ years of relevant cybersecurity experience.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• This position requires U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Ability to provide guidance on Enterprise Logging configurations for endpoint security technologies, firewalls, routers, switches, and CTEM monitoring applications.
• Experience analyzing audit results and working with stakeholders to resolve vulnerabilities and document exceptions.
• Strong ability to develop partnerships across IT functions where they intersect with security.
• Knowledge of modern software development and deployment practices, including unit testing, CI/CD (continuous integration/continuous deployment).
• Relevant industry certification.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a Senior SOC Analyst (Night Shift) – Top Secret Clearance to support the monitoring, detecting, and responding to cybersecurity threats within a dynamic and high-security environment. This role includes real-time alert monitoring, incident analysis, forensic artifact and malware analysis, and incident response in a hybrid environment, including on-premises equipment and cloud services. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Monitor and triage real-time security alerts.
• Coordinate and manage incident reports.
• Perform incident analysis, including forensic artifact and malware analysis.
• Execute incident containment, eradication, and recovery.
• Provide incident response support and assist with Continuity of Operations (COOP).
• Maintain and update the Incident Response Plan (IR Plan).
• Identify and assign incident response roles and responsibilities.
• Develop and implement incident report templates and procedures.
• Conduct annual incident response testing and training.
• Generate SOC best practices reports and ensure cybersecurity controls.
• Develop and manage SOC transition plans to ensure seamless service continuity.

What you need to know:

• Real-time alert monitoring, incident report coordination, incident analysis, and forensic artifact and malware analysis.
• Incident containment, eradication, and recovery, including fly-away incident response.
• Familiarity with COOP planning and execution.
• Understanding of FISMA, NIST SP 800 series, and other federal cybersecurity mandates and policies.

Must have’s:

• Bachelor’s degree in Computer Science, Information Systems, Engineering, or a related field, plus 8 years of relevant experience.
• Experience in cybersecurity incident management and SOC operations.
• Proficiency in forensic artifact and malware analysis.
• Strong understanding of cybersecurity frameworks and standards.
• Experience with cloud environments such as Microsoft Azure and AWS.
• Active Top-Secret agency required security clearance to start.

Where it’s done:

• Washington D.C.

Shift Schedule:

• Rotating schedule (specific details to be determined).

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a skilled Cybersecurity and Cloud Security Engineer with a strong background in designing, implementing, and maintaining secure system architectures. The ideal candidate will bring expertise in analyzing and resolving security challenges, configuring and optimizing security tools, and ensuring the functionality and security of information systems. The Cybersecurity and Cloud Security Engineer role requires a proactive approach to improving the security environment and supporting incident response and operations. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing: 

• Perform analysis, design, and development of security features for system architectures.
• Design, develop, and implement solutions that meet the security requirements of the agency customer.
• Analyze security-related technical challenges and provide engineering and technical support to resolve issues.
• Ensure all information systems are functional, secure, and in compliance with agency policies.

What you need to know: 

• Experience performing analysis of proposed changes to security controls.
• Ability to support security workflows by performing analysis of DLP, SafeLinks, and log file reviews.
• Expertise in configuring, implementing, and maintaining security tools.
• Experience analyzing and optimizing security tools (e.g., Microsoft Sentinel, Microsoft Defender for Cloud, Azure Information Protection) to ensure alignment with agency policies and procedures.
• Knowledge of tools and scoring frameworks such as Microsoft Secure Score or Guard Duty.
• Ability to continuously research, engineer, and recommend improvements to the agency’s security environment and toolset.
• Experience supporting incident response and security operations, including coordinating with agency service providers and directly participating in investigations.
• Ability to develop and execute security tests on cloud resources, including data loss prevention and security configuration testing using native tools.

Must have’s: 

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field from an accredited college or university.
• Minimum of 5 years of IT Security experience, preferably in a security engineering or cloud engineering role.
• One or more certification in information technology security that meets or exceeds DoD 8570 IAM Level II.
• Excellent written and verbal communications skills including the ability to communicate effectively with internal stakeholders.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• Experience with NIST 800 series publications.
• U.S. citizenship in compliance with federal contract requirements.

Where it’s done: 

• Remote (Herndon, VA)

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a Mid-Level SOC Analyst (Shift Work) – Top Secret Clearance with experience in monitoring, detecting, and responding to cybersecurity threats in a high-security environment. The ideal candidate will have a strong foundation in SOC operations and a passion for protecting mission-critical systems. The Mid-Level SOC Analyst (Shift Work) – Top Secret Clearance role involves real-time alert monitoring, incident analysis, and response, with exposure to hybrid environments that include both on-premises equipment and cloud services. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Monitor and triage real-time security alerts to identify potential threats.
• Coordinate and assist with the preparation of incident reports.
• Conduct incident analysis, including reviewing forensic artifacts and basic malware analysis.
• Support incident containment, eradication, and recovery efforts.
• Assist in maintaining and updating the Incident Response Plan (IR Plan).
• Collaborate on incident response testing and training initiatives.
• Generate and contribute to SOC best practices reports to enhance cybersecurity controls.
• Provide support for Continuity of Operations (COOP) as needed.
• Work alongside senior team members to ensure effective SOC operations.

What you need to know:

• Real-time alert monitoring, incident reporting, and analysis.
• incident containment and recovery procedures.
• Familiarity with forensic artifact and malware analysis techniques.
• Understanding of FISMA, NIST SP 800 series, and other federal cybersecurity mandates and policies.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field (or 4 additional years of experience in lieu of a degree).
• 5+ years of experience providing cybersecurity operations or consulting.
• Experience in cybersecurity incident management and SOC operations.
• Strong understanding of cybersecurity frameworks and standards.
• Active Top-Secret agency required security clearance to start.

Beneficial to have the following:

• Industry recognized certification.

Where it’s done:

• Washington D.C.

Shift Schedule:

• Rotating schedule (specific details to be determined).

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an Security Systems Engineer with a strong background in assessing, implementing, securing, and administering dedicated cyber defense software within the federal market. The ideal candidate will be skilled in designing and maintaining robust security configurations and architectures across various cybersecurity technologies. The Security Systems Engineer role includes applying and managing Azure Policy to enforce security compliance and identify potential risks across cloud resources. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Create, assess, and update system/application security configuration baselines by defining, establishing, and validating systems’ compliance with security baselines.
• Design, develop, test, and evaluate information system security throughout the system development life cycle.
• Implement and update system security measures that ensure confidentiality, integrity, availability, authentication, and non-repudiation.
• Develop risk mitigation strategies to address vulnerabilities and recommend necessary security changes.
• Conduct security reviews to identify security gaps in system architecture.
• Perform risk analysis (threat, vulnerability, and probability assessments) when systems or applications undergo major changes.
• Identify and resolve conflicts in the implementation of cyber defense tools, including tool configurations, policies, and signature optimization.
• Implement Risk Management Framework (RMF)/Security Assessment and Authorization (SA&A) requirements for dedicated cyber defense systems and maintain relevant documentation.
• Access Azure subscriptions to apply Azure Policies at the management group, subscription, or resource group level to enforce security rules and ensure compliance with the Agency Hardening Guide.
• Monitor resource configurations to identify potential security risks through policy evaluations.
• Collaborate with various teams to maintain and update deployed Azure Policies as changes are made to the Agency Hardening Guide.

What you need to know:

• Experience developing and deploying critical security architecture solutions and hardening guides across technologies, such as firewalls, Web Application Firewalls (WAFs), CASB/SASE, proxies, Network Security Groups (NSGs), and other cybersecurity solutions.
• Intermediate knowledge of network and host-based firewalls, intrusion detection/prevention systems, vulnerability scanning, anti-malware protection, secure data transmission technologies, and network monitoring/protection solutions.
• Familiarity with multiple cybersecurity tools, including Configuration Assessment, Log Aggregation, Integrity Verification, Network Access Control System, and Endpoint Security Solutions.
• Working knowledge of cloud security, application security, network security, and disaster recovery.
• Strong written and verbal technical communication skills.
• Proven ability to develop effective working relationships that improve the quality of work products.
• Ability to maintain focus and develop proficiency in new skills rapidly.
• Excellent organizational skills with the ability to handle competing priorities.
• Ability to thrive in a fast-paced environment, manage multiple tasks simultaneously, coordinate resources, and ensure scheduled goals are met.
• Strong problem-solving skills, with the ability to seek out data and evaluate solutions effectively.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 7+ years of relevant cybersecurity experience.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• Experience implementing and managing Azure Policies to enforce security compliance and evaluate risks.
• This position requires U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Ability to provide guidance on Enterprise Logging configurations for endpoint security technologies, firewalls, routers, switches, and CTEM monitoring applications.
• Experience analyzing audit results and working with stakeholders to resolve vulnerabilities and document exceptions.
• Strong ability to develop partnerships across IT functions where they intersect with security.
• Knowledge of modern software development and deployment practices, including unit testing, CI/CD (continuous integration/continuous deployment).
• Relevant industry certification.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a Security Systems Administrator responsible for deploying, implementing, and maintaining cyber defense systems within the federal sector. The ideal candidate will have experience with DLP systems, a solid understanding of data classification processes, and a strong UNIX background. The Security Systems Administrator role plays a key part in ensuring the security of critical infrastructure and collaborates closely with cybersecurity teams to uphold our security standards. As a fast-growing cybersecurity company, we offer a dynamic environment where you’ll have the chance to shape both our development and culture.

What you’ll be doing:

• Test, implement, deploy, maintain, and administer dedicated cyber defense hardware and software.
• Perform system administration on specialized cyber defense applications (e.g., EDR, SASE, CTEM, DLP), including installation, configuration, maintenance, backup, and restoration.
• Coordinate with Cyber Defense Analysts to manage and update rules and signatures (e.g., intrusion detection/protection systems, antivirus, content blacklists) for specialized cyber defense applications.
• Assist in identifying, prioritizing, and coordinating the protection of critical cyber defense infrastructure and key resources.
• Assess the impact of sustaining dedicated cyber defense infrastructure and support test bed administration, including testing applications, hardware, and configurations managed by service providers.
• Identify and resolve potential conflicts with the implementation of cyber defense tools, including tool and signature testing.
• Implement Risk Management Framework (RMF)/Security Assessment and Authorization (SA&A) requirements for dedicated cyber defense systems and maintain documentation.
• Create, assess, and update system/application security configuration baselines to validate system compliance with required security baselines.
• Conduct security reviews to identify gaps in architecture and perform risk analyses for major system or application changes.

What you need to know:

• Intermediate knowledge of network and host-based firewalls, intrusion detection/prevention systems, data loss prevention, vulnerability scanning, anti-malware and spam protection, secure data transmission, and network monitoring/protection solutions.
• Experience with various cybersecurity tools, including Configuration Assessment, Log Aggregation, Integrity Verification, Web Application Security Testing, Network Access Control, Secure Access Service Edge (SASE), network intrusion prevention, and endpoint security.
• Working knowledge of SIEM/VTM technologies, cloud security, application security, network security, and disaster recovery.
• Proven ability to deploy, configure, and manage security implementation across IT systems, including antivirus management, vulnerability scanning, and firewall policies.
• Strong written and verbal technical communication skills.
• Proven ability to develop effective working relationships that improve the quality of work products.
• Ability to maintain focus and develop proficiency in new skills rapidly.
• Excellent organizational skills with the ability to handle competing priorities.
• Ability to thrive in a fast-paced environment, manage multiple tasks simultaneously, coordinate resources, and ensure scheduled goals are met.
• Strong problem-solving skills, with the ability to seek out data and evaluate solutions effectively.
• Must be able to multi-task, work independently and as part of a team, share workloads, and deal with sudden shifts in project priorities.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field or additional 3-5 years of relevant experience. (Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Engineering, or 4 years of relevant experience in lieu of degree)
• 4 to 6 years of relevant experience.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• Experience working with Data Loss Prevention (DLP) systems and a solid understanding of data classification processes.
• Strong UNIX background with experience in administering and securing UNIX-based systems.
• This position requires U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Relevant industry certification.
• Ability to provide guidance on Enterprise Logging configurations for endpoint security technologies, firewalls, routers, switches, and CTEM monitoring applications.
• Experience analyzing audit results and working with stakeholders to resolve vulnerabilities and document exceptions.
• Strong ability to develop partnerships across IT functions where they intersect with security.
• Knowledge of modern software development and deployment practices, including unit testing, CI/CD (continuous integration/continuous deployment).

Where it’s done:

• Remote (Herndon, VA).