Purpose-Driven Careers

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a motivated Blue Team Engineer with expertise in defensive cybersecurity tools and techniques to conduct threat simulations. The ideal candidate will replicate both insider and external threats to operational systems and networks, contributing to the defense of high-profile environments. This is a unique opportunity to shape the growth and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Conduct automated and manual tests on information systems using industry-standard tools such as vulnerability scans, source code reviews, and web application testing.
• Develop test plans, execute tests, and prepare detailed after-action reports.
• Document testing processes in accordance with agency regulations and Standard Operating Procedures (SOPs).
• Contribute to Authorization & Accreditation (A&A), Plan of Action & Milestones (POA&M), vulnerability management, and continuous monitoring efforts.
• Use signature-based scanners, data collection tools, and hardware analysis tools to assess potential threat events.
• Perform Security Information and Event Management (SIEM) reviews to ensure proper detection and notification of threats.
• Support vulnerability analysis and develop mitigation strategies to prevent future threats.
• Support remote locations with traveling assessments as scheduled (30% travel expected, Continental United States).

What you need to know:

• Broad knowledge of security methodologies, solutions, and industry best practices.
• Experience with open-source and commercial testing tools such as Nessus, Metasploit, Burp Suite, App Detective, and Nmap.
• Advanced understanding of security tools with the ability to configure and troubleshoot them as needed.
• Expertise in Unix/Linux or Microsoft operating systems, with extensive experience in at least one.
• Familiarity with security policies of the Department of Justice (DOJ), FBI, and National Institute of Standards and Technology (NIST) guidelines (e.g., 800-53, 800-53a).
• Strong critical thinking and analytical skills, with the ability to interpret and synthesize complex data.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field, or 10 years of relevant IT experience.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• Expertise in at least one of the following areas: Web applications and technologies, Networking technologies, Enterprise solutions, storage, and databases, Cross-domain solutions, Virtualization technologies, Mainframes.
• One or more of the following certifications: CISSP, ISACA, OSCP, CISA, GPEN, GWAPT, or CEH.
• Active Top Secret with SCI eligibility and ability to pass a Counterintelligence (CI) polygraph.

Where it’s done:

• Washington, DC (Hybrid: 3 days onsite/2 days remote per week.)
• Remote Locations (Travel to these locations once per quarter.)

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an Data Infrastructure Engineer who has experience providing support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market. The Data Infrastructure Engineer will have the opportunity to be exposed to all aspects of support to a federal client and will be encouraged to grow as the organization expands. 

What you’ll be doing:

• Integrate multiple Commercial Off the Shelf (COTS) and open-source products, software configuration packages and custom code to work together to operate as a single solution, tailored to meet customer requirements.
• Work as part of an agile development team to conduct systems design, analysis and development of the solution.
• Create data pipelines and implement ETL processes for both stream processing (such as tool and sensor log data) and batch processing (such as daily vulnerability updates), integrating functionality between applications, leveraging APIs and scripting languages (Python preferred).
• Conduct data modeling, hands on configuration, tuning and operating of distributed data storage stacks, with a focus on Elasticsearch and Kafka.
• Query data to include aggregations, calculations, and producing metrics from data; design and implement data visualizations.
• Engage in all agile ceremonies including backlog grooming, demos and retrospectives.

What you need to know:

• Demonstrated experience writing well-structured code and applications using coding best practices to deliver enterprise applications.
• Proven experience in developing robust, scalable data pipelines and integrations.
• Solid understanding of application architecture and interfaces as well as experience with data modeling.
• Expertise in working with streaming data and implementing real-time data processing solutions.
• Ability to develop and deploy in containerized environments (Docker, Kubernetes).
• Experience with open-source tools including Kafka, Logstash, Beats, Elasticsearch, Kibana, or Splunk.

Must have’s:  

• Minimum of 5-7 years of relevant experience.
• Strong written and verbal communication skills.
• Strong documentation skills.
• Experience leveraging data processing technologies such as Apache Kafka and Elasticsearch.
• Skilled problem-solver with strong ability to troubleshoot complex data pipeline issues.
• Ability to work with cross functional teams.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• This position requires U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• Industry related certifications.
• Experience with cloud platforms (AWS, Azure, GCP).
• Familiarity with cybersecurity concepts and tools.
• Experience with real-time data processing frameworks (e.g., Apache Flink, Apache Spark).

Where it’s done:

• Remote (Herndon, VA). 

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an Elasticsearch (Elastic/ELK/ECE) Engineer who has experience providing support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market. The Elasticsearch (Elastic/ELK/ECE) Engineer will have the opportunity to be exposed to all aspects of Systems Engineering and will be encouraged to grow as the organization expands.

What you’ll be doing:

• Responsible for working with the Integration, and Architecture teams to design, document, build, secure, and maintain Elasticsearch, Logstash, Kibana (and X-Pack) Enterprise solutions deployed in the Cloud or on-premises environment.
• Work closely with architects, engineers, and integrators to assess customer requirements and to design and support an Elasticsearch Stack solution to ensure compliance with data requirements.
• Follow life cycle processes to move solutions from Dev to Test to Production.
• Participate in group sessions as well as attend and share in agile sprint daily meetings to track progress to ensure development of solutions is in support of the project and customer requirements.
• Serve as a trusted advisor, providing subject matter expertise, guidance, and best practice recommendations.
• Configure and maintain Linux based Operating system files in support of the Elasticsearch products (yum updates and product version upgrades).
• Install and configure an Elastic Cloud Enterprise solution and ensuring communication and integration among the Elasticsearch products and data sources.
• Document the installation and configuration for deployment.
• Secure the solution by being familiar with TLS, certificates, SSO/PIV authentication, and encryption technologies.
• Work with the data lifecycle management team.
• Test data flows, troubleshooting issues, and monitoring the health of the solution and servers to maximize performance and minimize downtime.
• Work with a team and provide analysis of alternatives and progress status in daily sprint meetings.
• Meet professional obligations through efficient work habits such as, meeting deadlines, honoring schedules, coordinating resources and meetings in an effective and timely manner.
• Develop and manage effective working relationships with other departments, groups, and personnel with whom work must be coordinated or interface.
• Recommend enhancements and modifications to optimize business intelligence processes.

What you need to know:

• Software Development using Java with an IDE (e.g. Eclipse, CodeReady).
• Parsing File formats (e.g., JSON, XML, and CSV).
• SQL SERVER database design, programming, tuning, writing SQL queries/procedures.
• Developing/automating test procedures.
• Web services client development using REST API.
• Release Management and build tools (e.g., Maven, Jenkins) and configuration tools (e.g., SVN).
• Secure coding practices including use of encryption (e.g., Certificates, TLS Connections).

Must have’s:  

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 2+ years of relevant experience.
• Expertise in Kubernetes (K8s).
• Strong knowledge of observability practices, including Application Performance Management (APM) and Elastic Cloud on Kubernetes (ECK).
• Security+ Certification.
• Must have an active Secret clearance to start.

Beneficial to have the following:  

• Experience with SAML authentication, familiarity with domain structures, user authentication, and PKI.
• Experience with Messaging Queues (e.g., RabbitMQ).
• Experience with Microsoft SQL.
• Experience with programming and working with regular expressions (XML, Java, JSON, Python, PowerShell, painless, grok).
• Relevant security certifications a plus: CISSP, CISM, CISA, Security+, CEH.
• Understanding of interrelationships between critical infrastructure protection and cybersecurity.
• Knowledge and experience with Assessment & Authorization (A&A) processes in Federal environments, preferably with experience utilizing the NIST Risk Management Framework (RMF).

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community. 

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an experienced Penetration Tester with a strong background in providing cybersecurity assessment services in dynamic, fast-paced public sector environments. The ideal candidate will bring expertise in cybersecurity tools, proven methodologies, and industry best practices within the federal market. This is a unique opportunity to contribute to the growth and culture of an emerging cybersecurity company. The role also offers travel opportunities to client sites both locally and nationally.

What you’ll be doing:

• Deliver comprehensive cybersecurity scanning and testing services to assess vulnerabilities and risks in customer systems.
• Integrate threat intelligence to provide clients with findings that support risk management and decision-making processes.
• Coordinate and manage assessment equipment, ensuring up-to-date images, on-site setup and teardown, and ongoing maintenance.
• Operate cybersecurity assessment tools in collaboration with government teams to provide insights into system vulnerabilities.
• Support the IT Security Expert Level II in developing and documenting assessment reports, following government report templates.

What you need to know:

• Knowledge of host identification and vulnerability exploitation.
• Familiarity with phishing techniques and payload crafting.
• Skills in script writing, database operations, and system/network administration.
• Proficiency with assessment tools, including but not limited to Metasploit, Nmap, Burp Suite, Powersploit, and Cobalt Strike.
• Ability to perform effectively in critical and dynamic environments.
• In-depth knowledge of FISMA and NIST 800 series standards.
• Extensive experience with network mapping, vulnerability scanning, penetration testing, and web application testing.
• Expertise in phishing assessments, wireless assessments, operating system security assessments, and database assessments.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 2+ years of operational experience in penetration testing.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• One or more of the following certifications: OSCP, OSCE, GPEN, GXPN, or equivalent.
• Active Public Trust clearance and ability to pass a federal background check.

Where it’s done:

• Remote (Herndon, VA) with up to 25% travel.

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a Security Systems Administrator responsible for deploying, implementing, and maintaining cyber defense systems within the federal sector. The ideal candidate will have experience with DLP systems, a solid understanding of data classification processes, and a strong UNIX background. The Security Systems Administrator role plays a key part in ensuring the security of critical infrastructure and collaborates closely with cybersecurity teams to uphold our security standards. As a fast-growing cybersecurity company, we offer a dynamic environment where you’ll have the chance to shape both our development and culture.

What you’ll be doing:

• Test, implement, deploy, maintain, and administer dedicated cyber defense hardware and software.
• Perform system administration on specialized cyber defense applications (e.g., EDR, SASE, CTEM, DLP), including installation, configuration, maintenance, backup, and restoration.
• Coordinate with Cyber Defense Analysts to manage and update rules and signatures (e.g., intrusion detection/protection systems, antivirus, content blacklists) for specialized cyber defense applications.
• Assist in identifying, prioritizing, and coordinating the protection of critical cyber defense infrastructure and key resources.
• Assess the impact of sustaining dedicated cyber defense infrastructure and support test bed administration, including testing applications, hardware, and configurations managed by service providers.
• Identify and resolve potential conflicts with the implementation of cyber defense tools, including tool and signature testing.
• Implement Risk Management Framework (RMF)/Security Assessment and Authorization (SA&A) requirements for dedicated cyber defense systems and maintain documentation.
• Create, assess, and update system/application security configuration baselines to validate system compliance with required security baselines.
• Conduct security reviews to identify gaps in architecture and perform risk analyses for major system or application changes.

What you need to know:

• Intermediate knowledge of network and host-based firewalls, intrusion detection/prevention systems, data loss prevention, vulnerability scanning, anti-malware and spam protection, secure data transmission, and network monitoring/protection solutions.
• Experience with various cybersecurity tools, including Configuration Assessment, Log Aggregation, Integrity Verification, Web Application Security Testing, Network Access Control, Secure Access Service Edge (SASE), network intrusion prevention, and endpoint security.
• Working knowledge of SIEM/VTM technologies, cloud security, application security, network security, and disaster recovery.
• Proven ability to deploy, configure, and manage security implementation across IT systems, including antivirus management, vulnerability scanning, and firewall policies.
• Strong written and verbal technical communication skills.
• Proven ability to develop effective working relationships that improve the quality of work products.
• Ability to maintain focus and develop proficiency in new skills rapidly.
• Excellent organizational skills with the ability to handle competing priorities.
• Ability to thrive in a fast-paced environment, manage multiple tasks simultaneously, coordinate resources, and ensure scheduled goals are met.
• Strong problem-solving skills, with the ability to seek out data and evaluate solutions effectively.
• Must be able to multi-task, work independently and as part of a team, share workloads, and deal with sudden shifts in project priorities.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field or additional 3-5 years of relevant experience. (Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Engineering, or 4 years of relevant experience in lieu of degree)
• 4 to 6 years of relevant experience.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• Experience working with Data Loss Prevention (DLP) systems and a solid understanding of data classification processes.
• Strong UNIX background with experience in administering and securing UNIX-based systems.
• This position requires U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Relevant industry certification.
• Ability to provide guidance on Enterprise Logging configurations for endpoint security technologies, firewalls, routers, switches, and CTEM monitoring applications.
• Experience analyzing audit results and working with stakeholders to resolve vulnerabilities and document exceptions.
• Strong ability to develop partnerships across IT functions where they intersect with security.
• Knowledge of modern software development and deployment practices, including unit testing, CI/CD (continuous integration/continuous deployment).

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a skilled Lead Cybersecurity and Cloud Security Engineer with expertise in designing, implementing, and maintaining secure system architectures. The ideal candidate will bring experience in solving complex security challenges, configuring security tools, and supporting incident response in high-stakes environments. The Lead Cybersecurity and Cloud Security Engineer role requires a balance of technical proficiency and leadership, with a focus on improving security environments, mentoring teams, and driving innovation. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing: 

• Perform analysis, design, and development of security features for system architectures.
• Design, develop, and implement solutions that meet the security requirements of the agency customer.
• Analyze security-related technical challenges and provide engineering and technical support to resolve issues.
• Ensure all information systems are functional, secure, and in compliance with agency policies.
• Assign tasks and responsibilities to team members based on their skills and project requirements.
• Monitor individual and team performance, providing feedback and coaching to optimize productivity.
• Conduct regular team meetings to discuss progress, identify roadblocks, and align on goals.
• Foster a positive team culture, encouraging collaboration and knowledge sharing.
• Work with stakeholders to define project scope, timelines, and deliverables.
• Break down large projects into manageable tasks and milestones.
• Track project progress and identify potential risks to proactively address issues.
• Manage project budgets and resource allocation.
• Provide technical expertise and guidance to team members on complex engineering problems.
• Stay updated on industry trends and technologies to drive innovation within the team.
• Stay ahead of emerging cybersecurity threats, technologies, and regulatory changes to ensure a proactive security posture.
• Develop and execute a cybersecurity strategy for the team that aligns with the agency’s roadmap and business objectives.
• Effectively communicate project status, updates, and roadblocks to stakeholders and management.
• Collaborate with cross-functional teams to ensure alignment on project objectives.
• Collaborate with key stakeholders, including senior leadership and other departments, to implement cybersecurity initiatives.
• Facilitate open communication within the engineering team to address concerns and promote collaboration.
• Lead and mentor a diverse team of cybersecurity architects and engineers, providing guidance, coaching, and professional development.

What you need to know: 

• Experience performing analysis of proposed changes to security controls.
• Ability to support security workflows by performing analysis of DLP, SafeLink, and log file reviews.
• Expertise in configuring, implementing, and maintaining security tools.
• Experience analyzing and optimizing security tools (e.g., Microsoft Sentinel, Microsoft Defender for Cloud, Azure Information Protection) to ensure alignment with agency policies and procedures.
• Knowledge of tools and scoring frameworks such as Microsoft Secure Score or Guard Duty.
• Ability to continuously research, engineer, and recommend improvements to the agency’s security environment and toolset.
• Experience supporting incident response and security operations, including coordinating with agency service providers and directly participating in investigations.
• Ability to develop and execute security tests on cloud resources, including data loss prevention and security configuration testing using native tools.

Must have’s: 

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field from an accredited college or university.
• Minimum of 5 years of IT Security experience, preferably in a security engineering or cloud engineering role.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• Proven experience leading and mentoring teams, including assigning tasks, monitoring performance, and fostering collaboration.
• Ability to manage projects, including defining scope, breaking down large projects into milestones, tracking progress, and addressing risks proactively.
• Experience providing technical guidance on complex engineering problems and communicating effectively with stakeholders at all levels.
• One or more certification in information technology security that meets or exceeds DoD 8570 IAM Level II.
• Experience with NIST 800 series publications.
• U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Industry recognized certifications.

Where it’s done: 

• Remote (Herndon, VA)

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a Mid-Level SOC Analyst (Shift Work) – Top Secret Clearance with experience in monitoring, detecting, and responding to cybersecurity threats in a high-security environment. The ideal candidate will have a strong foundation in SOC operations and a passion for protecting mission-critical systems. The Mid-Level SOC Analyst (Shift Work) – Top Secret Clearance role involves real-time alert monitoring, incident analysis, and response, with exposure to hybrid environments that include both on-premises equipment and cloud services. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Monitor and triage real-time security alerts to identify potential threats.
• Coordinate and assist with the preparation of incident reports.
• Conduct incident analysis, including reviewing forensic artifacts and basic malware analysis.
• Support incident containment, eradication, and recovery efforts.
• Assist in maintaining and updating the Incident Response Plan (IR Plan).
• Collaborate on incident response testing and training initiatives.
• Generate and contribute to SOC best practices reports to enhance cybersecurity controls.
• Provide support for Continuity of Operations (COOP) as needed.
• Work alongside senior team members to ensure effective SOC operations.

What you need to know:

• Real-time alert monitoring, incident reporting, and analysis.
• incident containment and recovery procedures.
• Familiarity with forensic artifact and malware analysis techniques.
• Understanding of FISMA, NIST SP 800 series, and other federal cybersecurity mandates and policies.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field (or 4 additional years of experience in lieu of a degree).
• 5+ years of experience providing cybersecurity operations or consulting.
• Experience in cybersecurity incident management and SOC operations.
• Strong understanding of cybersecurity frameworks and standards.
• Active Top-Secret agency required security clearance to start.

Beneficial to have the following:

• Industry recognized certification.

Where it’s done:

• Washington D.C.

Shift Schedule:

• Rotating schedule (specific details to be determined).

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a Product Engineering Specialist – Kafka who has experience providing support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market. The Product Engineering Specialist – Kafka will have the opportunity to be exposed to all aspects of support to a federal client and will be encouraged to grow as the organization expands. 

What you’ll be doing:

• Design, implement, and optimize Kafka-based data streaming architectures for cybersecurity data collection and processing.
• Develop and maintain Kafka clusters, ensuring high availability, fault tolerance, and scalability.
• Configure and tune Kafka for optimal performance, considering factors such as partitioning, replication, and consumer group strategies.
• Implement data replication strategies between edge Kafka deployments and centralized Kafka clusters.
• Collaborate with integration engineers to design and implement efficient data pipelines from data source to Kafka to the Elastic Stack.
• Engage in all agile ceremonies including backlog grooming, demos and retrospectives.
• Provide expertise and guidance on Kafka security features, including encryption, authentication, and authorization.
• Conduct capacity planning and performance testing for Kafka deployments.
• Troubleshoot complex issues in Kafka systems.
• Develop and maintain documentation for Kafka configurations, best practices, and troubleshooting procedures.

What you need to know:

• Strong experience with Kafka and other big data, distributed and data streaming technologies.
• In-depth knowledge of all the functionalities surrounding Kafka.
• Proficient with Java or Python for developing Kafka-related applications and tools.
• Ability to install, maintain and troubleshoot Kafka.
• Understanding of data serialization formats (e.g. Avro, Protobuf) and schema management.
• Ability to design secure configurations and access to shared Kafka deployments.
• Excellent troubleshooting skills.
• Excellent communication and interpersonal skills.

Must have’s:  

• 5 years of relevant experience.
• Ability to design, build and maintain message configuration and flows in high-throughput, low-latency scenarios.
• Strong problem-solving skills and ability to provide issue analysis on Kafka applications and other complex distributed systems.
• Experience documenting tests and presenting findings.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• This position requires U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Engineering or a related field.
• Industry related certifications.
• Familiarity with containerization and orchestration technologies (Docker, Kubernetes)
• Experience deploying Kafka in cloud-based environments (AWS, Azure, GCP)
• Experience with Infrastructure as Code tools for deploying and managing Kafka clusters.

Where it’s done:

• Remote (Herndon, VA). 

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a Splunk Cluster Engineer with expertise in Splunk Enterprise Architecture, automation, and integration to support enterprise security operations. The ideal candidate will have experience in optimizing Splunk performance, developing automated interfaces, and integrating Splunk with diverse data sources and enterprise platforms. The Splunk Cluster Engineer role requires strong Linux administration skills and a proactive approach to securing Splunk resources and access. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Automate threat feeds and integrate them with Splunk Enterprise Security.
• Develop Splunk modules to support implementation, deployment, and evolution of security monitoring capabilities.
• Build and maintain automated Splunk interfaces and data feeds, ensuring seamless integration with enterprise security platforms, databases, and legacy data sources.
• Support Splunk performance optimization efforts to ensure efficient operation.
• Design and contribute to Splunk architectures that align with evolving security monitoring needs.
• Collaborate with stakeholders to gather business requirements and translate them into Splunk capabilities.
• Ensure the security of Splunk resources, systems, and access by implementing best practices and monitoring configurations.

What you need to know:

• Hands-on experience with Splunk Enterprise Architecture and Design in large-scale environments.
• Proficiency in Linux administration for system configurations, deployments, and troubleshooting.
• Knowledge of integrating Splunk with external systems, including enterprise platforms, databases, and legacy data sources.
• Strong skills in performance optimization and architecture design to enhance Splunk’s operational efficiency.
• Familiarity with enterprise security operations, including automated threat feed integrations.
• Ability to ensure Splunk resources and systems meet security and compliance standards.

Must have’s:

• Associate degree substitutes 2 years of experience; Bachelor’s degree substitutes 3 years.
• 5+ years of relevant work experience.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• Experience in Linux systems for managing Splunk environments.
• Experience in Splunk Enterprise Architecture and Design.
• Splunk Core Certified Consultant certification.
• Requires U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Industry related certifications.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking an Security Systems Engineer with a strong background in assessing, implementing, securing, and administering dedicated cyber defense software within the federal market. The ideal candidate will have expertise in designing and maintaining robust security configurations, architectures, and policies across various cybersecurity technologies. The Security Systems Engineer requires hands-on experience with Azure Policy, including building custom policies using JSON, and the ability to manage policies using Azure CLI, APIs, and/or PowerShell. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Create, assess, and update system/application security configuration baselines by defining, establishing, and validating systems’ compliance with security baselines.
• Design, develop, test, and evaluate information system security throughout the system development life cycle.
• Implement and update system security measures that ensure confidentiality, integrity, availability, authentication, and non-repudiation.
• Develop risk mitigation strategies to address vulnerabilities and recommend necessary security changes.
• Conduct security reviews to identify security gaps in system architecture.
• Perform risk analysis (threat, vulnerability, and probability assessments) when systems or applications undergo major changes.
• Identify and resolve conflicts in the implementation of cyber defense tools, including tool configurations, policies, and signature optimization.
• Implement Risk Management Framework (RMF)/Security Assessment and Authorization (SA&A) requirements for dedicated cyber defense systems and maintain relevant documentation.
• Access Azure subscriptions to apply Azure Policies at the management group, subscription, or resource group level to enforce security rules and ensure compliance with the Agency Hardening Guide.
• Build and maintain custom Azure Policies in JSON to enforce compliance requirements, monitor resource configurations, and mitigate security risks.
• Use Azure CLI, APIs, and PowerShell to create, modify, and update Azure Policies across the organization.
• Monitor resource configurations to identify potential security risks through policy evaluations.
• Collaborate with various teams to maintain and update deployed Azure Policies as changes are made to the Agency Hardening Guide.

What you need to know:

• Experience developing and deploying critical security architecture solutions and hardening guides across technologies, such as firewalls, Web Application Firewalls (WAFs), CASB/SASE, proxies, Network Security Groups (NSGs), and other cybersecurity solutions.
• Proficiency in developing custom JSON-based policies to enforce security compliance and automate policy management within Azure environments.
• Intermediate knowledge of network and host-based firewalls, intrusion detection/prevention systems, vulnerability scanning, anti-malware protection, secure data transmission technologies, and network monitoring/protection solutions.
• Familiarity with multiple cybersecurity tools, including Configuration Assessment, Log Aggregation, Integrity Verification, Network Access Control System, and Endpoint Security Solutions.
• Working knowledge of cloud security, application security, network security, and disaster recovery.
• Strong written and verbal technical communication skills.
• Proven ability to develop effective working relationships that improve the quality of work products.
• Ability to maintain focus and develop proficiency in new skills rapidly.
• Excellent organizational skills with the ability to handle competing priorities.
• Ability to thrive in a fast-paced environment, manage multiple tasks simultaneously, coordinate resources, and ensure scheduled goals are met.
• Strong problem-solving skills, with the ability to seek out data and evaluate solutions effectively.
• Familiarity with Azure CLI, PowerShell scripting, and APIs for policy management.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 7+ years of relevant cybersecurity experience.
• Hands-on experience with building, managing, and customizing Azure Policies using JSON, Azure CLI, APIs, and/or PowerShell.
• Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
• Requires U.S. citizenship in compliance with federal contract requirements.

Beneficial to have the following:

• Ability to provide guidance on Enterprise Logging configurations for endpoint security technologies, firewalls, routers, switches, and CTEM monitoring applications.
• Experience analyzing audit results and working with stakeholders to resolve vulnerabilities and document exceptions.
• Strong ability to develop partnerships across IT functions where they intersect with security.
• Knowledge of modern software development and deployment practices, including unit testing, CI/CD (continuous integration/continuous deployment).
• Relevant industry certification.

Where it’s done:

• Remote (Herndon, VA).