Purpose-Driven Careers

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Senior Cyber Support Developer with expertise in ServiceNow development and integration. The ideal candidate will design, develop and implement ServiceNow solutions that address business requirements while ensuring high-quality, secure and maintainable code. The Sr. Cyber Support Developer role requires strong technical knowledge, hands-on software development experience and the ability to collaborate effectively with stakeholders to deliver scalable solutions in a mission-driven environment. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Develop ServiceNow solutions and enhancements using core platform capabilities.
• Develops the applications including configuration, report development and data migration as required.
• Identify and implement best-practice solutions to meet client requirements.
• Perform unit testing and resolve code defects.
• Migrate code changes into the production environment.
• Assist with technical design activities and prepare supporting documentation.
• Collaborate with internal stakeholders and team members to build ServiceNow solutions aligned with business needs.

What you need to know:

• Strong knowledge of ServiceNow development.
• Experience with one or more scripting languages.
• Understanding of software development lifecycle practices including testing, migration and documentation.
• Familiarity with secure coding practices and compliance requirements in federal environments.
• Ability to troubleshoot, problem-solve and deliver scalable technical solutions.

Must have’s:

• Bachelor’s degree or 4+ additional years of software development experience in lieu of degree.
• DoD 8570 certification meeting IAT Level II requirements (e.g., CCNA-Security, CySA+ GICSP, GSEC, Security+ or SSCP) or ability to obtain within six (6) months of hire.
• 5+ years of software development experience, including 2+ years on large and complex development projects.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Experience developing Service Catalog and ServiceNow workflows.
• Experience with at least one scripting language (Ruby, Python, Perl, Bash or JavaScript).
• Applicants must currently hold and maintain an active TS/SCI clearance with Polygraph.

Beneficial to have:

• Certified ServiceNow Administrator (CSA).

Where it’s done:

• Onsite (Denver, CO).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Cyber Incident Responder with experience supporting defensive cybersecurity operations across enterprise environments. This role focuses on assessing system security, validating controls and identifying vulnerabilities through testing, analysis and monitoring activities. The Cyber Incident Responder supports authorization, continuous monitoring and threat detection efforts while working closely with stakeholders to strengthen overall security posture. This is a unique opportunity to shape the growth and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Support incident response, threat hunting and forensics activities, while also conducting security assessments and vulnerability testing.
• Use signature-based scanners, data collection tools and hardware analysis tools to assess potential threat events.
• Perform Security Information and Event Management (SIEM) reviews to ensure proper detection and notification of threats.
• Support vulnerability analysis and develop mitigation strategies to prevent future threats.
• Contribute to Authorization & Accreditation (A&A), Plan of Action & Milestones (POA&M), vulnerability management and continuous monitoring efforts.
• Conduct automated and manual tests on information systems using industry-standard tools such as vulnerability scans, source code reviews and web application testing.
• Develop test plans, execute tests and prepare detailed after-action reports.
• Document testing processes in accordance with agency regulations and Standard Operating Procedures (SOPs).
• Support remote locations with traveling assessments as scheduled (~60% travel expected, Continental United States).

What you need to know:

• Experience with open-source and commercial testing tools such as Nessus, Metasploit, Burp Suite, App Detective and Nmap.
• Familiarity with security policies of the Department of Justice (DOJ), FBI and National Institute of Standards and Technology (NIST) guidelines (e.g., 800-53, 800-53a).
• Advanced understanding of security tools with the ability to configure and troubleshoot them as needed.
• Expertise in Unix/Linux or Microsoft operating systems, with extensive experience in at least one.
• Broad knowledge of security methodologies, solutions and industry best practices.
• Strong critical thinking and analytical skills, with the ability to interpret and synthesize complex data.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field or 10 years of relevant IT experience.
• 8 years+ of relevant experience. Equivalent combinations of education, certifications or demonstrable work may be considered in lieu of direct experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Expertise in at least one of the following areas: Web applications and technologies, Networking technologies, Enterprise solutions, storage and databases, Cross-domain solutions, Virtualization technologies, Mainframes.
• One or more of the following certifications: CISSP, ISACA, OSCP, CISA, GPEN, GWAPT or CEH.
• Applicants must hold and maintain an active Top Secret with SCI eligibility and ability to pass a Counterintelligence (CI) polygraph.

Where it’s done:

• Onsite (Washington, DC; ~60% travel within the continental United States).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are looking for a Elasticsearch (Elastic/ELK/ECE) Architect to join our dynamic, fast-paced team within the public sector. The ideal candidate will not only bring technical expertise but also a passion for learning and growth. The Elasticsearch (Elastic/ELK/ECE) Architect will have exposure to all facets of Systems Engineering and be encouraged to continuously expand your skill set as the company evolves. This is a unique opportunity to play a key role in a fast-growing company at the forefront of the cybersecurity market.

What you’ll be doing:

• Assess current Elasticsearch deployment and architecture, including validation of ingestion patterns, index lifecycle management (ILM) and data retention configurations.
• Ingest and normalize at least five data sources using the Elastic Common Schema (ECS) format.
• Verify ILM policies and retention requirements and perform upgrades of the existing Elastic Stack as needed.
• Provide enablement for dashboards and SIEM capabilities following ingestion, validation and upgrade activities.
• Design and implement containerized Elastic deployments to support multiple Docker containers per server, including deployment of Elastic Agent and Defender.
• Collaborate with the Integration and Architecture teams to design, document, build, secure and maintain Elasticsearch, Logstash, Kibana (and X-Pack) enterprise solutions in both cloud and on-premises environments.
• Work closely with architects, engineers and integrators to assess customer requirements and design Elasticsearch Stack solutions that meet data compliance and performance needs.
• Follow the development lifecycle processes to transition solutions from Dev to Test to Production environments.
• Participate in Agile sprint meetings, share progress and ensure that the development aligns with project and customer requirements.
• Serve as a subject matter expert and trusted advisor, providing guidance and best practice recommendations for Elasticsearch deployments.
• Configure and maintain Linux-based operating systems (including updates and version upgrades) to support the Elasticsearch platform.
• Install, configure and manage Elastic Cloud Enterprise (ECE) solutions, ensuring seamless communication and integration among Elasticsearch components and data sources.
• Create detailed installation and configuration documentation to support deployment.
• Secure the solution by implementing TLS, certificates, SSO/PIV authentication and encryption technologies.
• Collaborate with the data lifecycle management team to ensure optimal data flow and integrity.
• Troubleshoot and monitor data flows and the overall health of the Elasticsearch solution to maximize performance and minimize downtime.
• Build and maintain effective working relationships across departments and teams to coordinate work and deliver results on schedule.
• Recommend and implement enhancements to optimize business intelligence processes.

What you need to know:

• Experience in software development using Java with an IDE (e.g., Eclipse, CodeReady).
• Proficiency in parsing file formats (e.g., JSON, XML, CSV).
• Knowledge of SQL Server database design, programming, tuning and writing SQL queries/procedures.
• Experience in developing/automating test procedures.
• Familiarity with REST API web services client development.
• Experience with release management, build tools (e.g., Maven, Jenkins) and configuration tools (e.g., SVN).
• Understanding of secure coding practices, including encryption (e.g., certificates, TLS connections).

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field or relevant experience in lieu of degree.
• 2+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must hold and maintain an active Top Secret clearance.

Beneficial to have:

• Experience with SAML authentication and familiarity with domain structures, user authentication and PKI.
• Experience with Messaging Queues (e.g., RabbitMQ).
• Knowledge of Microsoft SQL.
• Experience with programming and regular expressions (XML, Java, JSON, Python, PowerShell, Painless, Grok).
• Relevant security certifications such as CISSP, CISM, CISA, Security+ or CEH.
• Understanding of the relationship between critical infrastructure protection and cybersecurity.
• Knowledge and experience with Assessment & Authorization (A&A) processes in federal environments, including familiarity with the NIST Risk Management Framework (RMF).

Where it’s done:

• On-site (Buckley SFB – Aurora or Schriever SFB – Colorado Springs, CO).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking an Risk Management Framework (RMF) Process Architect to lead the design, documentation and optimization of cybersecurity and RMF processes in a dynamic federal environment. The ideal candidate will collaborate across technical and governance teams to define workflows, align stakeholders and support compliance with NIST and federal security standards. The RMF Process Architect role acts as a bridge between technical subject-matter experts and executive leadership by translating complex RMF requirements into actionable, well-documented processes and clear visual materials for program briefings. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Design and document RMF aligned cybersecurity processes that support assessment, authorization and continuous monitoring activities.
• Develop process workflows, diagrams and supporting materials that communicate RMF requirements clearly and effectively.
• Collaborate with technical and governance teams to define process ownership, handoffs and decision points.
• Facilitate stakeholder alignment to ensure process consistency, traceability and compliance with federal security standards.
• Translate technical RMF requirements into well-structured operational processes suitable for leadership review and program reporting.
• Produce visual materials, process maps and briefing content that support executive-level communication and decision making.
• Support process optimization efforts that enhance efficiency, standardization and audit readiness across RMF activities.

What you need to know:

• Strong understanding of process architecture and workflow design principles.
• Knowledge of the NIST RMF and federal cybersecurity requirements.
• Ability to translate complex RMF requirements into clear, actionable process documentation.
• Strong analytical, communication and documentation skills.

Must have’s:

• 3+ years of relevant work experience.
• Associate’s degree substitutes for 2 years of experience; a bachelor’s degree substitutes for 3 years of experience; A postgraduate degree from an accredited university may substitute for 6 years of experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Demonstrated ability to lead cross-functional discussions and achieve consensus among technical and executive stakeholders.
• Experience developing high-quality documentation, diagrams and visual deliverables for federal cybersecurity programs.
• Strong analytical organizational and facilitation skills with attention to detail.
• Applicants must hold and maintain an active DOE Q or equivalent DoD Top Secret clearance.

Beneficial to have:

• Industry recognized certifications.
• Prior experience supporting federal civilian agencies or other national security agencies.
• Familiarity with DevSecOps, Continuous ATO (cATO) or cloud security authorization processes.
• Knowledge of NIST 800-39 (ERM) and OMB A-123 risk integration.
• Working knowledge of AI-driven documentation or visualization tools.
• Experience mentoring or training teams on RMF process implementation.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Cloud Security Engineer for a potential opportunity with deep cybersecurity expertise and automation capabilities to strengthen the security posture across Azure, VMware VCF and on-premise infrastructure. This role supports Zero Trust and DevSecOps initiatives, enforces compliance and streamlines operations through secure architecture design, automation and advanced threat detection. The Cloud Security Engineer will play a critical role in securing cloud environments, supporting authorization efforts and integrating security throughout the development lifecycle. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market. Employment for this position is dependent on the successful award of the contract.

What you’ll be doing:

• Serve as subject matter expert (SME) for cloud security incidents, coordinating with Cyber Operations and Security Control Assessor teams.
• Integrate security scanning tools into CI/CD pipelines (e.g., Gitlab, SonarQube, Trivy).
• Support and enhance Zero Trust architecture implementations, including Conditional Access, Privileged Identity Management (PIM) and Identity Governance.
• Perform cloud compliance checks aligned with DoD and FedRAMP baselines (NIST 800-53, RMF).
• Monitor and manage cloud-native SIEM tools (e.g., Azure Sentinel, SPLUNK) and log analytics for threat detection and operational insights.
• Automate security and operational tasks through scripting and platform-native automation tools (e.g., Logic Apps, PowerShell, Python).
• Contribute to risk assessments, Authorization to Operate (ATO) documentation and policy enforcement strategies.
• Assist with token management, certificate renewal automation and credential lifecycle tasks.
• Support performance monitoring, system patching and endpoint protection across the cloud landscape.

What you need to know:

• Strong understanding of secure cloud architecture, Zero Trust principles and identity governance.
• Proficiency in integrating security tools into CI/CD pipelines and automating security workflows.
• Hands-on experience with cloud-native SIEM platforms and log analytics.
• Ability to support ATO documentation, compliance activities and enforcement of security policies.
• Skilled in scripting for security automation using platform-native tools and languages.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 5+ years of experience in:
  • Cybersecurity Expertise and Automation.
  • Designing and implementing automated operations across IL2/IL3 / IL4 environments using tools like Azure Policy, VMWARE Auria and Gitlab.
  • Experience in Microsoft Azure, including security and identity management.
  • Develop and manage Infrastructure as Code (IaC) for repeatable, secure cloud deployments using Terraform, Bicep or ARM templates.
  • Proficient with IaC tools (Terraform, Bicep) and automation scripting (PowerShell, Python).
  • DoD cybersecurity frameworks (RMF, NIST 800-53, STIGs).
  • Experience with CI/CD pipelines, Gitlab and security integration.
  • Strong understanding of networking, firewalls and role-based access control (RBAC).
  • Analyzing logs and security alerts and develop proactive countermeasures.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must currently hold and maintain an active DOE Q or equivalent DoD Top Secret clearance.

Beneficial to have the following:

• Master’s degree in Cybersecurity, Information Systems or a related technical discipline.
• Experience with cloud security architectures in AWS and Azure.
• Proficiency with containerization and orchestration technologies such as Docker and Kubernetes.
• Knowledge of DevSecOps best practices.

Where it’s done:

• Onsite (Washington, D.C.)

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are looking for a Elasticsearch (Elastic/ELK/ECE) Engineer to join our dynamic, fast-paced team within the public sector. The ideal candidate will not only bring technical expertise but also a passion for learning and growth. The Elasticsearch (Elastic/ELK/ECE) Engineer will have exposure to all facets of Systems Engineering and be encouraged to continuously expand your skill set as the company evolves. This is a unique opportunity to play a key role in a fast-growing company at the forefront of the cybersecurity market.

What you’ll be doing:

• Lead and support SIEM migration activities, including transitioning customers from ArcSight to the Elastic Stack.
• Implement, configure, and document four Elasticsearch clusters in support of enterprise SIEM and analytics requirements.
• Develop detailed installation, configuration, and operational documentation to support deployment and sustainment.
• Design and implement data pipelines to support log ingestion, normalization, enrichment, and analytics.
• Support SIEM development activities, including migration execution, validation, and reporting.
• Collaborate with the Integration and Architecture teams to design, document, build, secure and maintain Elasticsearch, Logstash, Kibana (and X-Pack) enterprise solutions in both cloud and on-premises environments.
• Work closely with architects, engineers and integrators to assess customer requirements and design Elasticsearch Stack solutions that meet data compliance and performance needs.
• Follow the development lifecycle processes to transition solutions from Dev to Test to Production environments.
• Participate in Agile sprint meetings, share progress and ensure that the development aligns with project and customer requirements.
• Serve as a subject matter expert and trusted advisor, providing guidance and best practice recommendations for Elasticsearch deployments.
• Configure and maintain Linux-based operating systems (including updates and version upgrades) to support the Elasticsearch platform.
• Install, configure and manage Elastic Cloud Enterprise (ECE) solutions, ensuring seamless communication and integration among Elasticsearch components and data sources.
• Create detailed installation and configuration documentation to support deployment.
• Secure the solution by implementing TLS, certificates, SSO/PIV authentication and encryption technologies.
• Collaborate with the data lifecycle management team to ensure optimal data flow and integrity.
• Troubleshoot and monitor data flows and the overall health of the Elasticsearch solution to maximize performance and minimize downtime.
• Provide regular status updates and analysis of alternatives in daily sprint meetings.
• Build and maintain effective working relationships across departments and teams to coordinate work and deliver results on schedule.
• Recommend and implement enhancements to optimize business intelligence processes.

What you need to know:

• Experience in software development using Java with an IDE (e.g., Eclipse, CodeReady).
• Proficiency in parsing file formats (e.g., JSON, XML, CSV).
• Knowledge of SQL Server database design, programming, tuning and writing SQL queries/procedures.
• Experience in developing/automating test procedures.
• Familiarity with REST API web services client development.
• Experience with release management, build tools (e.g., Maven, Jenkins) and configuration tools (e.g., SVN).
• Understanding of secure coding practices, including encryption (e.g., certificates, TLS connections).

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field or relevant experience in lieu of degree.
• 2+ years of relevant experience.
• CompTIA Security + certification.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must hold and maintain an active Secret clearance.

Beneficial to have:

• Experience with SAML authentication and familiarity with domain structures, user authentication and PKI.
• Experience with Messaging Queues (e.g., RabbitMQ).
• Knowledge of Microsoft SQL.
• Experience with programming and regular expressions (XML, Java, JSON, Python, PowerShell, Painless, Grok).
• Relevant security certifications such as CISSP, CISM, CISA, Security+ or CEH.
• Understanding of the relationship between critical infrastructure protection and cybersecurity.
• Knowledge and experience with Assessment & Authorization (A&A) processes in federal environments, including familiarity with the NIST Risk Management Framework (RMF).

Where it’s done:

• On-site (Schriever SFB – Colorado Springs, CO).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Malware/Forensics Analyst to support cyber investigations through malware analysis and digital evidence collection. This role applies advanced analytic techniques to uncover adversary capabilities, identify security weaknesses and provide actionable findings. The Malware/Forensics Analyst position requires deep technical knowledge, proficiency in digital forensics and the ability to collaborate with internal experts to solve difficult problems. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Analyze malware samples to determine functionality, intent and potential impact.
• Collect, preserve and examine digital evidence in support of cyber investigations.
• Apply advanced analytics to identify patterns, anomalies and indicators of compromise.
• Develop forensic reports and communicate findings to investigators and stakeholders.
• Collaborate with internal experts to develop solutions for complex technical problems.
• Support incident response teams with forensic analysis and malware insights.
• Contribute to improving forensic methodologies, processes and tools.
• Provide input into strategies that strengthen enterprise cybersecurity posture.

What you need to know:

• Strong knowledge of malware analysis and reverse engineering techniques.
• Expertise in digital forensics, evidence handling and forensic reporting.
• Familiarity with advanced analytics methods to support cyber investigations.
• Experience working in SOC environments and supporting incident response.
• Ability to collaborate across teams to resolve unclear or complex technical issues.

Must have’s:

• Bachelor’s degree or 3+ additional years of relevant experience in lieu of degree.
• 7+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must hold and maintain an active Secret clearance.

Beneficial to have the following:

• Industry-recognized certifications.

Where it’s done:

• Onsite (Washington, DC).

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are looking for a Elasticsearch (Elastic/ELK/ECE) Engineer to join our dynamic, fast-paced team within the public sector. The ideal candidate will not only bring technical expertise but also a passion for learning and growth. The Elasticsearch (Elastic/ELK/ECE) Engineer will have exposure to all facets of Systems Engineering and be encouraged to continuously expand your skill set as the company evolves. This is a unique opportunity to play a key role in a fast-growing company at the forefront of the cybersecurity market.

What you’ll be doing:

• Collaborate with the Integration and Architecture teams to design, document, build, secure, and maintain Elasticsearch, Logstash, Kibana (and X-Pack) enterprise solutions in both cloud and on-premises environments.
• Work closely with architects, engineers, and integrators to assess customer requirements and design Elasticsearch Stack solutions that meet data compliance and performance needs.
• Follow the development lifecycle processes to transition solutions from Dev to Test to Production environments.
• Participate in Agile sprint meetings, share progress, and ensure that the development aligns with project and customer requirements.
• Serve as a subject matter expert and trusted advisor, providing guidance and best practice recommendations for Elasticsearch deployments.
• Configure and maintain Linux-based operating systems (including updates and version upgrades) to support the Elasticsearch platform.
• Install, configure, and manage Elastic Cloud Enterprise (ECE) solutions, ensuring seamless communication and integration among Elasticsearch components and data sources.
• Create detailed installation and configuration documentation to support deployment.
• Secure the solution by implementing TLS, certificates, SSO/PIV authentication, and encryption technologies.
• Collaborate with the data lifecycle management team to ensure optimal data flow and integrity.
• Troubleshoot and monitor data flows and the overall health of the Elasticsearch solution to maximize performance and minimize downtime.
• Provide regular status updates and analysis of alternatives in daily sprint meetings.
• Build and maintain effective working relationships across departments and teams to coordinate work and deliver results on schedule.

What you need to know:

• Experience in software development using Java with an IDE (e.g., Eclipse, CodeReady).
• Proficiency in parsing file formats (e.g., JSON, XML, CSV).
• Knowledge of SQL Server database design, programming, tuning, and writing SQL queries/procedures.
• Experience in developing/automating test procedures.
• Familiarity with REST API web services client development.
• Experience with release management, build tools (e.g., Maven, Jenkins), and configuration tools (e.g., SVN).
• Understanding of secure coding practices, including encryption (e.g., certificates, TLS connections).

Must have’s:  

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field or relevant experience in lieu of degree.
• 2+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must be a U.S. citizen (non-dual citizenship) and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:  

• Experience with SAML authentication, familiarity with domain structures, user authentication, and PKI.
• Experience with Messaging Queues (e.g., RabbitMQ).
• Experience with Microsoft SQL.
• Experience with programming and working with regular expressions (XML, Java, JSON, Python, PowerShell, painless, grok).
• Relevant security certifications a plus: CISSP, CISM, CISA, Security+, CEH.
• Understanding of interrelationships between critical infrastructure protection and cybersecurity.
• Knowledge and experience with Assessment & Authorization (A&A) processes in Federal environments, preferably with experience utilizing the NIST Risk Management Framework (RMF).

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Product Engineering Specialist – Kafka with deep expertise in Kafka to design and optimize scalable data streaming architectures. The ideal candidate will apply strong engineering, troubleshooting and architectural skills to support high-throughput cybersecurity data processing. The Product Engineering Specialist-Kafka role focuses on building resilient Kafka environments, improving performance and supporting cloud-based data streaming solutions. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Design, implement and optimize Kafka-based data streaming architectures for cybersecurity data collection and processing.
• Develop and maintain Kafka clusters to ensure high availability, fault tolerance and scalability.
• Configure and tune Kafka for optimal performance, including partitioning, replication and consumer group strategies.
• Collaborate with integration engineers to design and implement efficient data pipelines from data sources through Kafka into downstream platforms.
• Participate in Agile ceremonies including backlog grooming, demos and retrospectives.
• Provide expertise on Kafka security features including encryption, authentication and authorization.
• Conduct capacity planning and performance testing for Kafka deployments.
• Troubleshoot complex issues in Kafka systems.
• Develop and maintain documentation for Kafka configurations, best practices and troubleshooting procedures.

What you need to know:

• Strong experience with Kafka and other distributed, big data or data streaming technologies.
• In-depth knowledge of Kafka functionality and operational workflows.
• Ability to install, maintain and troubleshoot Kafka clusters.
• Understanding of data serialization formats and schema management.
• Ability to design secure configurations and access controls for shared Kafka deployments.
• Excellent troubleshooting, communication and interpersonal skills.

Must have’s:

• 5+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Ability to design, build and maintain message configurations and flows in high-throughput, low-latency environments.
• Strong problem-solving skills with the ability to analyze issues in Kafka and other complex distributed systems.
• Experience documenting tests and presenting findings.
• Demonstrated ability to apply critical thinking to translate undefined tasks into actionable work streams.
• Experience deploying Kafka in cloud-based environments (AWS preferred; Azure and GCP also acceptable).
• Proven ability to write documentation and communicate effectively with cross-functional teams.
• Familiarity with containerization and orchestration technologies such as Docker and Kubernetes.
• Experience operating and monitoring large-scale production clusters.
• Applicants must be a U.S. citizen in compliance with federal contract requirements.

Beneficial to have:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Engineering or a related field.
• Experience with configuration management tools such as Ansible or Helm.
• Proficiency in Java or Python for developing Kafka-related applications and tools.
• Experience providing technical guidance or mentorship to team members.
• Industry recognized certifications.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Director of Proposal Operations who has experience providing support in a dynamic, fast-paced environment within the public sector. The Director of Proposal Operations will develop, refine and lead all aspects of proposal processes, resources, systems and contributors to drive high quality, compelling proposal artifacts that fuel ShorePoint growth and competitive differentiation in the market. The Director of Proposal Operations must establish the proposal function as a strategic and differentiating capability that is seamlessly integrated with Capture, Business Development, Intellectual Property Development, Marketing and Corporate Go-To-Market strategies. The proposal function must be structured for long-term growth and be capable of onboarding and engaging new resources and systems resulting from both organic and inorganic growth investments. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Support corporate growth as the overall Director and driver of the proposal process while remaining hands-on to assist with proposal content (i.e. owning and/or contributing to sections such as management/technical/past performance/resumes).
• Actively participate in all proposal/solution workshops to ensure well-rounded understanding of solution, proactively identify disconnects/gaps and contribute to theme/content presentation strategies to maximize impact and space availability in proposals.
• Provide clear instruction for all proposal/artifact development tasking with action, owner and schedule.
• Populate and tailor relevant content/artifacts within proposal outlines/templates to inform/support writer development.
• Ensure high quality artifacts for reviews and submissions – free of errors, structured for maximized impact/ease of evaluation and adhering to requirements.
• Develop and maintain a comprehensive repository of proposal artifacts and templates.
• Collaborate across various technical and back-office teams to elicit and develop content for proposals, White Papers, brochures, research and analysis summary documents for customer presentations and marketing.
• Lead, develop and manage all proposal resources (including Proposal Operations Managers, Proposal Coordinators, Proposal Writers, etc.) to ensure continuous skill, career and personal development while iteratively improving the maturity of the overall proposal function within ShorePoint.

What you need to know:

• Strong understanding of business development, capture and proposal processes.
• Experience with federal contracting business development, government contracting capture and proposal processes and procedures.
• Experience across Federal Civilian Executive Branch, Department of Defense and Intelligence Community proposals and contract vehicles.
• Proficiency in MS Office 365, MS SharePoint, Adobe Acrobat, Adobe Creative Suite.
• Experience with publication-quality printing and production equipment.
• Experience editing or writing technical or business documents.
• Strong leadership to drive people and process.

Must have’s:

• Bachelor’s degree or 6 years of work experience in lieu of degree.
• 5+ years of managing multi-volume proposals that have resulted in Federal contract awards.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Exceptional written and verbal communication skills with the ability to convey complex information clearly and support effective collaboration across cross functional teams and all levels of the organization.
• Applicants must be able to obtain clearance issued by federal government if required.

Beneficial to have: 

• Association of Proposal Management Professionals (APMP) Foundation Certification (preferred).
• Background in editing and/or graphic development.

Where it’s done:

• Hybrid (must be local to Herndon, VA and attend in person meetings as needed).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a DOE Sector Growth and Capture Manager with experience supporting dynamic, fast-paced public sector environments. This role provides broad exposure to program strategy, partner engagement, business development and capture execution. The DOE Sector Growth and Capture Manager will play a key role in driving program success on the CIO Business Support Services (CBOSS) 2 Program by supporting development, execution and collaboration with partners as a prime contractor. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Program Strategy and Execution: Develop and execute a comprehensive DOE sector and CBOSS 2-specific program strategy aligned with company goals and objectives. Define the go-to-market strategy using market trends, corporate capabilities and customer priorities. Support program planning and execution activities that advance DOE sector objectives.
• Partner Relationship Management: Cultivate and maintain relationships with strategic partners to ensure alignment, communication and shared success. Collaborate with internal teams to manage partner expectations and support delivery commitments.
• Program Growth and Business Development: Support, identify and execute growth strategies for existing DOE programs within and outside of CBOSS 2. Identify, develop and pursue DOE Task Order opportunities that contribute to revenue growth and market expansion. Align pursuit activities with ShorePoint capabilities, go-to-market strategy and business objectives.
• Capture Management: Build, maintain and execute comprehensive Capture Plans for strategic pursuits. Coordinate capture activities using matrixed resources across internal and external team members. Support solution development, win strategy formulation, teaming and competitive positioning.
• Market Analysis and Insight Development: Stay informed about industry trends, market shifts and DOE strategic and priority initiatives to identify new opportunities and potential risks. Use market insights to refine business development and capture strategies.
• Matrixed Portfolio Leadership: Work collaboratively with ShorePoint Director of Business Development and Capture, Director of Proposal Operations and Executive Director of DOE and Federal Law Enforcement. Contribute to a collaborative, accountable and results-driven environment positioned for consistent growth.

What you need to know:

• Excellent leadership and creative problem-solving skills with the ability to understand customer priorities and drive program strategy and solution development.
• Effective approaches for identifying and executing growth strategies for existing and new business opportunities.
• Proficiency in ShorePoint’s CRM system (Salesforce) and the Microsoft Office Suite.

Must have’s:

• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Proven experience in Business Development and Capture Management, preferably in cybersecurity.
• Strong track record of driving customer engagement, growth and revenue generation.
• Exceptional interpersonal and communication skills with the ability to build and maintain relationships at all levels.
• Strategic thinker with demonstrated ability to develop and execute complex program strategies.
• Ability to contribute to solution development, content creation and quality reviews throughout the pre-proposal and proposal lifecycle.
• Ability and willingness to travel up to 25 percent for onsite meetings and events.
• Applicants must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:

• Demonstrated success growing DOE professional services revenue.
• Strong analytical skills.
• Experience supporting AI-driven use case implementation.

Where it’s done:

• Hybrid (must be local to Herndon, VA and attend in person meetings as needed).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community. 

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 144 hours of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking an Information Technology (IT) Manager with experience planning, implementing and supporting secure, Federally compliant and cost-effective technology environments. This role partners with leadership to understand business needs, manage IT budgets and vendors, establish policies and security standards and maintain compliance with frameworks such as NIST 800-53, NIST 800-171, CMMC and FISMA. The IT Manager provides hands-on technical expertise while guiding long-term technology planning, ensuring reliable systems, strong security posture and effective end-user support. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Oversee administration, monitoring and maintenance of Microsoft 365 GCC High and Azure Active Directory (Entra ID).
• Manage user and service accounts, groups, MFA, Conditional Access and role-based access control (RBAC).
• Implement identity protection and Zero Trust policies, including just-in-time access and privileged identity management.
• Configure and maintain Microsoft Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud and Sentinel, including alert triage and tuning.
• Monitor and respond to security alerts and incidents through Microsoft Sentinel, leveraging advanced analytics and automation.
• Manage Azure Security Center, Secure Score and continuous security posture improvement.
• Implement and maintain compliance and data protection controls using Microsoft Purview (DLP, labels, retention, insider risk, eDiscovery) to support NIST 800-171 and CMMC requirements.
• Ensure Controlled Unclassified Information (CUI) is processed, stored and transmitted only within approved environments such as Microsoft 365 GCC High, Azure Government workloads, AWS and authorized third-party services, with strong access controls, encryption and auditing in place.
• Support audit, assessment and ATO processes through accurate documentation and evidence collection.
• Administer Azure resources including virtual networks, storage, virtual machines and resource groups.
• Manage Intune (Endpoint Manager) for device compliance, application deployment and endpoint security baselines.
• Monitor system health, capacity and performance across GCC High and AWS environments.
• Design, build and administer an isolated AWS cloud lab environment for development, testing, training and proof-of-concept activities.
• Implement cost controls and guardrails in cloud lab environments, including service quotas, SCPs and budget alarms.
• Develop and maintain PowerShell and KQL scripts for automation, reporting and incident investigation.
• Integrate or support ERP, CRM, HRIS, ITSM and other business systems using secure APIs, SSO/federation where supported and approved middleware or connectors, ensuring compliance with GCC High and Azure Government constraints.
• Oversee IT systems and infrastructure including deployment, maintenance, upgrades and end-user support.
• Establish and maintain IT policies, standards and security practices to ensure reliable and compliant operations.
• Develop and manage IT budgets, business cases, vendor relationships, contracts and procurement.
• Stay current on emerging technologies and Federal security requirements and make recommendations to support business goals.
• Maintain job knowledge through training, professional publications, personal networks and participation in professional organizations.
• Show initiative in reassessing technology requirements and proactively suggesting improvements.
• Serve as a technical advisor to support complex decisions, risk evaluations and security compliance strategies.
• Advise leadership on technology innovations, security threats and evolving industry trends.

What you need to know:

• Several years of hands-on experience administering Microsoft 365 and Azure in a production environment, including security and compliance configurations.
• Deep knowledge of Entra ID (Azure AD), Conditional Access, MFA, Intune and core Microsoft 365 services.
• Practical experience with Microsoft Defender products and Microsoft Sentinel or another SIEM.
• Familiarity operating in Microsoft 365 GCC or GCC High, AWS or other regulated cloud environments mapped to frameworks such as NIST 800-171 or CMMC.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 5+ years administering Microsoft 365, Azure and AWS environments, including 2+ years in GCC High or similar compliance-constrained environments.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Experience with Microsoft Defender suite and Purview compliance tools.
• Working understanding of NIST SP 800-171, CMMC, FedRAMP and federal information security frameworks.
• Proficiency with PowerShell, KQL and automation scripting.
• Understanding of foundational AWS identity and security capabilities such as IAM roles and policies, AWS Organizations, CloudTrail, Config, GuardDuty and Security Hub, applying least-privilege, logging and monitoring best practices in sandbox environments.
• Strong troubleshooting and documentation skills.
• Strong decision-making skills under changing priorities or dynamic technical conditions.
• Skilled in balancing project requirements, timelines and stakeholder expectations.
• Ability to assess and interpret security threats, industry trends and innovation opportunities to guide enterprise strategies.
• Ability to operate independently while supporting collaborative, team-based delivery.
• Strong communication skills for both technical colleagues and executive leadership.
• Ability to manage multiple tasks simultaneously, coordinate resources and meet scheduled goals.
• Ability to evaluate information, prioritize needs and formulate effective solutions.
• Proven ability to multi-task, work independently and collaboratively, share workloads and adapt to shifting priorities.
• Applicants must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:

• Relevant technical certifications such as CISSP, CCSP or CASP+.
• Microsoft certifications such as Administrator Expert (MS-102), Azure Administrator Associate (AZ-104), Security Engineer Associate (AZ-500) or Security Administrator.
• AWS certifications such as Cloud Practitioner, Solutions Architect – Associate, SysOps Administrator – Associate or AWS Security.

Where it’s done:

• Hybrid (must be local to Herndon, VA and attend in person meetings as needed).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Contracts Manager to oversee the full contract lifecycle with Government clients, Prime Contractors and Subcontractors. This role is responsible for ensuring contractual compliance, negotiating terms, tracking deliverables and mitigating legal and contractual risk to protect the Company. The Contracts Manager will work under the guidance of the EVP and Chief Administrative Officer and will provide oversight and direction to the Contracts Administrator. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Work closely with Program Managers to ensure ongoing contract compliance, deliverable tracking and reporting requirements for Government clients and Prime Contractors.
• Engage directly with Subcontractor contracts personnel to ensure required documentation remains current, including representations and certifications, insurance and contract close-out materials.
• Provide subject matter expertise (SME) related to U.S. General Services Administration (GSA) Schedules, Contractor Team Arrangements and Joint Ventures.
• Serve as the escalation point for the Contracts Administrator on negotiation of contract terms with customers and partners.
• Review contractual agreements, including nondisclosure agreements, teaming agreements, contracts and subcontracts, for accuracy and completeness.
• Maintain accurate and complete contract records throughout the contract lifecycle, including awards, modifications and supporting documentation.

What you need to know:

• Proven experience supporting government contracting, including direct experience with Joint Ventures.
• Understanding of legal requirements related to contractual agreements as well as the Federal Acquisition Regulation (FAR).
• Experience drafting, editing and reviewing business and contractual documents.
• Strong attention to detail with the ability to manage multiple priorities effectively.
• Strong analytical organizational and time-management skills.
• Proficiency with Microsoft Office 365 applications.
• Excellent customer service, communication and negotiation skills.

Must have’s:

• Bachelor’s degree or 4+ additional years of relevant work experience in lieu of degree.
• 4+ years of experience in contracts administration.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must be a U.S. citizen in compliance with federal contract requirements.

Beneficial to have:

• Certified Professional Contracts Manager or similar professional certification.

Where it’s done:

• Hybrid (must be local to Herndon, VA and attend in person meetings as needed.

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a DevSecOps Engineer with hands-on experience supporting cloud-based cybersecurity data systems in fast-paced public sector environments. The ideal candidate will drive operational excellence by engineering, operating and monitoring distributed data infrastructure in collaboration with data engineers, architects and security analysts. The DevSecOps Engineer role offers a unique opportunity to contribute to government cyber data modernization through observability, automation and DevOps practices. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Provide operational engineering support for cyber data systems in government cloud environments.
• Build and integrate IT best practices and operational excellence into all areas of the project.
• Ensure system availability by building observability into large, distributed cybersecurity data infrastructures.
• Develop and maintain systems to monitor data ingestion and storage pipelines.
• Produce dashboards and reports to inform stakeholders on operational metrics, system status, performance and capacity.
• Operate, administer and maintain cloud-based infrastructure and platform services.
• Collaborate in an Agile DevOps team using continuous integration and delivery (CI/CD) tools and practices.
• Communicate effectively with team members and maintain documentation for technical procedures.

What you need to know:

• DevOps Infrastructure-as-Code tools such as Terraform, Helm, Ansible, Git and CI/CD pipelines.
• System automation languages such as Python, Bash and use of editors like VSCode.
• IT operations and troubleshooting, including resolving issues related to data connections and sources.
• System maintenance tasks such as patching and vulnerability management.
• Implementation of IT best practices, including ITIL, change management and configuration management.
• Advanced Linux systems administration and performance tuning.
• AWS cloud services including EKS, VPC, EC2, IAM, Config, SecurityHub and AWS CLI usage.
• Configuration and monitoring using Elasticsearch, Splunk, Grafana and other time-series data platforms.

Must have’s:

• 5+ years of experience operating and maintaining large-scale IT systems or supporting system/application integration.
• Proven ability to analyze ambiguous requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Proficiency in administering Linux operating systems.
• Proficiency in Kubernetes via the command line.
• Experience querying APIs to extract and use performance metrics.
• AWS cloud experience, including AWS CLI, Config, Secrets Manager and SecurityHub.
• Intermediate proficiency in Python programming (e.g., AWS Lambda, Boto3 and requests).
• Experience with infrastructure automation tools such as Ansible, Helm and Terraform.
• Must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• Familiarity with government cloud environments.
• Knowledge of cyber data analytics.
• Experience with distributed systems integration.
• Intermediate networking experience (e.g., DNS, ports, firewalls, VPC networking).
• Understanding of information security principles.
• Familiarity with Elastic infrastructure and observability.
• Familiarity with Kafka infrastructure management, deployment and monitoring.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance, reimbursement and more.

Who we’re looking for:

We are seeking an Application Security Engineer with expertise in Static and Dynamic Application Security Testing (SAST & DAST) methodologies and enterprise-level security controls. Your mission is to fortify our software supply chain by integrating rigorous security testing directly into the development lifecycle to preemptively neutralize vulnerabilities. The Application Security Engineer will be responsible for the end-to-end administration of Burp Suite and Veracode, managing Integrated Development Environment (IDE) plugins and ensuring all enterprise web applications align with federal compliance and OWASP standards. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Support and operate application security testing capabilities across SAST, DAST and IDE plug-in environments, with primary focus on Burp Suite and Veracode.
• Configure, maintain and troubleshoot Burp Suite and Veracode integrations to enable consistent application security testing workflows.
• Partner with development and engineering teams to identify, validate and remediate security vulnerabilities.
• Apply vulnerability standards and scoring methodologies to findings, including OWASP Top 10, CVSS, CWE, WASC and SANS-25.
• Navigate and troubleshoot within Linux or UNIX environments, including basic website connectivity issues.
• Support the design and implementation of enterprise-wide security controls that secure applications, systems, networks or infrastructure services.
• Use IDEs and development toolchains (Eclipse, JDeveloper, Visual Studio) to support developer workflows, including pipeline development activities where applicable.
• Support compliance-aligned security activities in federal environments leveraging NIST 800-53, FIPS and/or FedRAMP standards.

What you need to know:

• Strong understanding of application security testing concepts and operational support for SAST, DAST and IDE plug-in environments.
• Hands-on capability with enterprise web application security and common vulnerability classes.
• Familiarity with vulnerability scoring, classification and prioritization frameworks (OWASP Top 10, CVSS, CWE, WASC, SANS-25).
• Working knowledge of federal compliance standards (NIST 800-53, FIPS, FedRAMP).
• Ability to work effectively in Linux or UNIX environments for navigation and basic troubleshooting.
• Ability to communicate findings clearly and work cross-functionally to support remediation.

Must have’s:

• Bachelor’s degree in an IT-related field.
• 6+ years of Information Technology experience.
• 3+ years of experience supporting SAST, DAST and IDE plug-in environments using Burp Suite, including 3+ years of hands-on Burp Suite experience.
• 1+ year of experience supporting SAST, DAST and IDE plug-in environments using Veracode.
• 3+ years of experience using the design and implementation of enterprise-wide security controls to secure applications, systems, networks or infrastructure services.
• 2+ years of experience with Java, Python, .NET or C#.
• 2+ years of experience working in Linux-based environments, including navigating and troubleshooting basic website connectivity issues.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Experience with Eclipse, JDeveloper and/or Visual Studio, including pipeline development experience.
• Experience securing enterprise web applications, including familiarity with OWASP Top 10, CVSS, CWE, WASC and SANS-25.
• Knowledge of federal compliance standards, including NIST 800-53, FIPS and/or FedRAMP.
• Applicants must be a U.S. citizen in compliance with federal contract requirements.

Beneficial to have:

• Industry recognized certifications.
• Experience with Interactive Application Security Testing (IAST) tools and capabilities.
• Experience with HackerOne.
• Experience with Selenium.
• Experience writing bash scripts.
• Experience with OWASP ZAP or Burp Proxy.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals’ technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of premium insurance covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Senior SQL Developer to support a Zero Trust Architecture (ZTA) modernization initiative focused on identity, access and entitlement transformation. This role plays a critical part in reverse-engineering legacy data logic and translating it into modern, identity-centric models that align with Zero Trust principles. The ideal Senior SQL Developer candidate will bring deep SQL expertise, strong analytical skills and hands-on experience modernizing legacy relational systems in mission-critical environments. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Reverse-engineer legacy stored procedures to determine how user permissions, entitlements, and roles are calculated, translating that logic into modern, Zero Trust–aligned identity and access models.
• Design and maintain logical and physical data models that support identity, authorization and access use cases, including mapping complex relational schemas to flat or attribute-based identity profiles.
• Design and build custom data extraction and transformation routines using T-SQL and scripting languages (Python/PowerShell) to migrate and integrate data from Sybase into Okta and related platforms.
• Analyze and optimize stored procedures, queries, indexing strategies and data pipelines to ensure scalability, reliability and performance in high-volume and mission-critical environments.
• Implement database-level security controls, auditing, encryption and least-privilege access patterns in alignment with Zero Trust principles and federal security requirements.
• Produce high-quality technical documentation, architectural diagrams and repeatable migration recipes to guide developers and stakeholders through the new identity data structures.
• Translate business, security and IAM requirements into scalable SQL and data integration designs that support Zero Trust objectives.
• Collaborate with product, engineering and security teams; provide architectural guidance; conduct code reviews; and mentor developers to promote consistent, high-quality data solutions.
• Develop reconciliation and validation scripts to ensure 100% data integrity between legacy Sybase systems and target identity platforms.

What you need to know:

• Expert-level understanding of relational database design, SQL development and performance optimization in enterprise environments.
• Strong experience modernizing legacy databases and translating procedural data logic into identity-centric and access-driven models.
• Deep understanding of how identity, entitlement and authorization data supports Zero Trust architecture.
• Ability to design secure, auditable and scalable database solutions aligned with least privilege and compliance requirements.
• Proven capability to document complex technical solutions clearly for both technical and non-technical stakeholders.
• Experience working in environments where legacy systems are actively being modernized or decommissioned.

Must have’s:

• Bachelor’s degree; master’s degree preferred.
• 10+ years of experience with advanced T-SQL development, including stored procedures, triggers, Common Table Expressions (CTEs), performance tuning and bulk data tools such as Bulk Copy Program (BCP) and SQL Server Integration Services (SSIS).
• 10+ years of experience developing in at least one modern programming language (Python, C# or Java) for automation and custom integration.
• 7+ years of proven experience migrating legacy relational systems to modern platforms, including data profiling, schema mapping and transformation to identity-centric models.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Excellent verbal and written communication skills, with the ability to explain complex technical concepts to both technical and non-technical audiences.
• Demonstrated ability to design scalable, maintainable data architectures and models that support enterprise identity, access and Zero Trust initiatives.
• Ability to operate effectively in a fast-paced environment with evolving priorities as legacy systems are modernized and decommissioned.
• Applicants must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements (no dual citizenship).

Beneficial to have:

• Industry recognized certifications.
• Experience integrating SQL-based data solutions with cloud or Software as a Service (SaaS) platform.
• Demonstrated ability to present architectural designs and migration strategies to senior leadership and client stakeholders.

Where it’s done:

• Remote (Herndon, VA).