Purpose-Driven Careers

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Senior Cyber Support Developer with expertise in ServiceNow development and integration. The ideal candidate will design, develop and implement ServiceNow solutions that address business requirements while ensuring high-quality, secure and maintainable code. The Sr. Cyber Support Developer role requires strong technical knowledge, hands-on software development experience and the ability to collaborate effectively with stakeholders to deliver scalable solutions in a mission-driven environment. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Develop ServiceNow solutions and enhancements using core platform capabilities.
• Develops the applications including configuration, report development and data migration as required.
• Identify and implement best-practice solutions to meet client requirements.
• Perform unit testing and resolve code defects.
• Migrate code changes into the production environment.
• Assist with technical design activities and prepare supporting documentation.
• Collaborate with internal stakeholders and team members to build ServiceNow solutions aligned with business needs.

What you need to know:

• Strong knowledge of ServiceNow development.
• Experience with one or more scripting languages.
• Understanding of software development lifecycle practices including testing, migration and documentation.
• Familiarity with secure coding practices and compliance requirements in federal environments.
• Ability to troubleshoot, problem-solve and deliver scalable technical solutions.

Must have’s:

• Bachelor’s degree or 4+ additional years of software development experience in lieu of degree.
• DoD 8570 certification meeting IAT Level II requirements (e.g., CCNA-Security, CySA+ GICSP, GSEC, Security+ or SSCP) or ability to obtain within six (6) months of hire.
• 5+ years of software development experience, including 2+ years on large and complex development projects.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Experience developing Service Catalog and ServiceNow workflows.
• Experience with at least one scripting language (Ruby, Python, Perl, Bash or JavaScript).
• Applicants must currently hold and maintain an active TS/SCI clearance with Polygraph.

Beneficial to have:

• Certified ServiceNow Administrator (CSA).

Where it’s done:

• Onsite (Denver, CO).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Senior Cyber Security Engineer (Splunk) to support mission-critical cybersecurity operations through administration and engineering of a large enterprise Splunk environment. The ideal candidate brings strong hands-on Splunk experience and works effectively with engineers and cyber analysts across a dynamic enterprise environment. The Sr. Cyber Security Engineer (Splunk) role contributes directly to cyber defense initiatives by maintaining, tuning and securing Splunk systems while supporting integrations and enterprise data collection. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Manage day-to-day operations of large enterprise Splunk deployments.
• Troubleshoot data collection issues and resolve system conditions impacting stability or integrity.
• Deploy and maintain supported and unsupported Splunk add-ons.
• Execute Splunk Enterprise upgrades and patches.
• Configure and deploy Splunk forwarders using centralized management tools.
• Maintain and tune Splunk Enterprise Security (ES) content and platform performance.
• Manage knowledge objects, data models, dashboards, alerts and operational content.
• Support API integrations and external system connectivity.
• Develop and maintain engineering and compliance documentation.
• Contribute to Splunk deployment documentation, architecture diagrams and system documentation.
• Enforce role-based access controls and operational security policies.
• Collaborate with cyber analysts and engineering teams to improve detection and response capabilities.
• Apply relevant security policies, standards and technical guidelines to ensure compliance.

What you need to know:

• Strong experience administering and engineering Splunk in large enterprise environments, including upgrades, patching, add-on management and forwarder deployment.
• Hands-on experience with Splunk Enterprise Security (ES), including content configuration, tuning and performance optimization.
• Ability to troubleshoot complex data collection and onboarding issues while maintaining platform stability, integrity and operational security controls (RBAC).
• Proficiency across Unix and Windows environments, with the ability to produce clear engineering and compliance documentation, diagrams and operational artifacts.

Must have’s:

• Bachelor’s degree or 4+ additional years of cybersecurity experience in lieu of a degree.
• 5+ years of experience in an enterprise and/or cybersecurity-focused environment.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Experience with Splunk administration and engineering.
• Experience with Splunk Enterprise Security (ES) operations and configurations.
• Proficiency with Unix and Windows environments.
• DoD 8570 IAT Level II certification (e.g., Security+, CCNA-Security, GSEC).
• Applicants must hold and maintain an active TS/SCI with CI Polygraph.

Beneficial to have:

• Splunk certifications such as Architect, Consultant I/II, Admin or Power User.
• Experience with scripting or programming languages (e.g., Bash, Python, Java, Perl, .NET).
• Familiarity with developing and deploying operational and security use cases within Splunk.

Where it’s done:

• Onsite (Chantilly, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Cyber Incident Responder with experience supporting defensive cybersecurity operations across enterprise environments. This role focuses on assessing system security, validating controls and identifying vulnerabilities through testing, analysis and monitoring activities. The Cyber Incident Responder supports authorization, continuous monitoring and threat detection efforts while working closely with stakeholders to strengthen overall security posture. This is a unique opportunity to shape the growth and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Support incident response, threat hunting and forensics activities, while also conducting security assessments and vulnerability testing.
• Use signature-based scanners, data collection tools and hardware analysis tools to assess potential threat events.
• Perform Security Information and Event Management (SIEM) reviews to ensure proper detection and notification of threats.
• Support vulnerability analysis and develop mitigation strategies to prevent future threats.
• Contribute to Authorization & Accreditation (A&A), Plan of Action & Milestones (POA&M), vulnerability management and continuous monitoring efforts.
• Conduct automated and manual tests on information systems using industry-standard tools such as vulnerability scans, source code reviews and web application testing.
• Develop test plans, execute tests and prepare detailed after-action reports.
• Document testing processes in accordance with agency regulations and Standard Operating Procedures (SOPs).
• Support remote locations with traveling assessments as scheduled (~60% travel expected, Continental United States).

What you need to know:

• Experience with open-source and commercial testing tools such as Nessus, Metasploit, Burp Suite, App Detective and Nmap.
• Familiarity with security policies of the Department of Justice (DOJ), FBI and National Institute of Standards and Technology (NIST) guidelines (e.g., 800-53, 800-53a).
• Advanced understanding of security tools with the ability to configure and troubleshoot them as needed.
• Expertise in Unix/Linux or Microsoft operating systems, with extensive experience in at least one.
• Broad knowledge of security methodologies, solutions and industry best practices.
• Strong critical thinking and analytical skills, with the ability to interpret and synthesize complex data.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field or 10 years of relevant IT experience.
• 8 years+ of relevant experience. Equivalent combinations of education, certifications or demonstrable work may be considered in lieu of direct experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Expertise in at least one of the following areas: Web applications and technologies, Networking technologies, Enterprise solutions, storage and databases, Cross-domain solutions, Virtualization technologies, Mainframes.
• One or more of the following certifications: CISSP, ISACA, OSCP, CISA, GPEN, GWAPT or CEH.
• Applicants must hold and maintain an active Top Secret with SCI eligibility and ability to pass a Counterintelligence (CI) polygraph.

Where it’s done:

• Onsite (Washington, DC; ~60% travel within the continental United States).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are looking for a Elasticsearch (Elastic/ELK/ECE) Architect to join our dynamic, fast-paced team within the public sector. The ideal candidate will not only bring technical expertise but also a passion for learning and growth. The Elasticsearch (Elastic/ELK/ECE) Architect will have exposure to all facets of Systems Engineering and be encouraged to continuously expand your skill set as the company evolves. This is a unique opportunity to play a key role in a fast-growing company at the forefront of the cybersecurity market.

What you’ll be doing:

• Assess current Elasticsearch deployment and architecture, including validation of ingestion patterns, index lifecycle management (ILM) and data retention configurations.
• Ingest and normalize at least five data sources using the Elastic Common Schema (ECS) format.
• Verify ILM policies and retention requirements and perform upgrades of the existing Elastic Stack as needed.
• Provide enablement for dashboards and SIEM capabilities following ingestion, validation and upgrade activities.
• Design and implement containerized Elastic deployments to support multiple Docker containers per server, including deployment of Elastic Agent and Defender.
• Collaborate with the Integration and Architecture teams to design, document, build, secure and maintain Elasticsearch, Logstash, Kibana (and X-Pack) enterprise solutions in both cloud and on-premises environments.
• Work closely with architects, engineers and integrators to assess customer requirements and design Elasticsearch Stack solutions that meet data compliance and performance needs.
• Follow the development lifecycle processes to transition solutions from Dev to Test to Production environments.
• Participate in Agile sprint meetings, share progress and ensure that the development aligns with project and customer requirements.
• Serve as a subject matter expert and trusted advisor, providing guidance and best practice recommendations for Elasticsearch deployments.
• Configure and maintain Linux-based operating systems (including updates and version upgrades) to support the Elasticsearch platform.
• Install, configure and manage Elastic Cloud Enterprise (ECE) solutions, ensuring seamless communication and integration among Elasticsearch components and data sources.
• Create detailed installation and configuration documentation to support deployment.
• Secure the solution by implementing TLS, certificates, SSO/PIV authentication and encryption technologies.
• Collaborate with the data lifecycle management team to ensure optimal data flow and integrity.
• Troubleshoot and monitor data flows and the overall health of the Elasticsearch solution to maximize performance and minimize downtime.
• Build and maintain effective working relationships across departments and teams to coordinate work and deliver results on schedule.
• Recommend and implement enhancements to optimize business intelligence processes.

What you need to know:

• Experience in software development using Java with an IDE (e.g., Eclipse, CodeReady).
• Proficiency in parsing file formats (e.g., JSON, XML, CSV).
• Knowledge of SQL Server database design, programming, tuning and writing SQL queries/procedures.
• Experience in developing/automating test procedures.
• Familiarity with REST API web services client development.
• Experience with release management, build tools (e.g., Maven, Jenkins) and configuration tools (e.g., SVN).
• Understanding of secure coding practices, including encryption (e.g., certificates, TLS connections).

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field or relevant experience in lieu of degree.
• 2+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must hold and maintain an active Top Secret clearance.

Beneficial to have:

• Experience with SAML authentication and familiarity with domain structures, user authentication and PKI.
• Experience with Messaging Queues (e.g., RabbitMQ).
• Knowledge of Microsoft SQL.
• Experience with programming and regular expressions (XML, Java, JSON, Python, PowerShell, Painless, Grok).
• Relevant security certifications such as CISSP, CISM, CISA, Security+ or CEH.
• Understanding of the relationship between critical infrastructure protection and cybersecurity.
• Knowledge and experience with Assessment & Authorization (A&A) processes in federal environments, including familiarity with the NIST Risk Management Framework (RMF).

Where it’s done:

• On-site (Buckley SFB – Aurora or Schriever SFB – Colorado Springs, CO).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a SOC Project Technical Manager to lead cybersecurity operations and ensure effective incident response, comprehensive reporting and strong Bureau coordination. This role will guide a key workstream within SOC operations, driving collaboration across initiatives and ensuring alignment with enterprise cybersecurity objectives. The SOC Project Technical Manager position requires proven expertise in SOC management, large-scale incident response and hybrid environments. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Lead cybersecurity operations, ensuring unified execution and collaboration across SOC initiatives.
• Oversee incident response processes and ensure comprehensive incident reporting.
• Strengthen Bureau communications and coordination to support enterprise SOC integration.
• Collaborate with SOC project leadership and other operational leads to align priorities and objectives.
• Provide strategic and operational direction through subordinate managers and experienced specialists.
• Drive adoption of consistent practices, reporting and escalation standards.
• Influence executive leadership and stakeholders on cybersecurity operations performance.
• Ensure SOC operations align with the full NIST Cybersecurity Framework: Identify, Protect, Detect, Respond and Recover.

What you need to know:

• Expertise in managing enterprise SOC operations across hybrid on-premises and cloud environments.
• Strong background in incident response and operational reporting within large enterprise environments.
• Experience leading subordinate managers and technical teams in SOC operations.
• Ability to influence executive leadership and coordinate across multiple organizational levels.
• Familiarity with frameworks such as the NIST Cybersecurity Framework and enterprise SOC best practices.

Must have’s:

• Bachelor’s degree or 3+ additional years of relevant experience in lieu of degree.
• 10+ years’ experience managing SOC operations and incident response for enterprise environments (50,000+ endpoints), including 5+ years leading hybrid on-premises/cloud SOCs with full NIST Cybersecurity Framework coverage.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must possess an active Top Secret Clearance.

Beneficial to have the following:

• Industry-recognized certifications.

Where it’s done:

• Onsite (Washington, DC).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Cloud Security Engineer for a potential opportunity with deep cybersecurity expertise and automation capabilities to strengthen the security posture across Azure, VMware VCF and on-premise infrastructure. This role supports Zero Trust and DevSecOps initiatives, enforces compliance and streamlines operations through secure architecture design, automation and advanced threat detection. The Cloud Security Engineer will play a critical role in securing cloud environments, supporting authorization efforts and integrating security throughout the development lifecycle. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market. Employment for this position is dependent on the successful award of the contract.

What you’ll be doing:

• Serve as subject matter expert (SME) for cloud security incidents, coordinating with Cyber Operations and Security Control Assessor teams.
• Integrate security scanning tools into CI/CD pipelines (e.g., Gitlab, SonarQube, Trivy).
• Support and enhance Zero Trust architecture implementations, including Conditional Access, Privileged Identity Management (PIM) and Identity Governance.
• Perform cloud compliance checks aligned with DoD and FedRAMP baselines (NIST 800-53, RMF).
• Monitor and manage cloud-native SIEM tools (e.g., Azure Sentinel, SPLUNK) and log analytics for threat detection and operational insights.
• Automate security and operational tasks through scripting and platform-native automation tools (e.g., Logic Apps, PowerShell, Python).
• Contribute to risk assessments, Authorization to Operate (ATO) documentation and policy enforcement strategies.
• Assist with token management, certificate renewal automation and credential lifecycle tasks.
• Support performance monitoring, system patching and endpoint protection across the cloud landscape.

What you need to know:

• Strong understanding of secure cloud architecture, Zero Trust principles and identity governance.
• Proficiency in integrating security tools into CI/CD pipelines and automating security workflows.
• Hands-on experience with cloud-native SIEM platforms and log analytics.
• Ability to support ATO documentation, compliance activities and enforcement of security policies.
• Skilled in scripting for security automation using platform-native tools and languages.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 5+ years of experience in:
  • Cybersecurity Expertise and Automation.
  • Designing and implementing automated operations across IL2/IL3 / IL4 environments using tools like Azure Policy, VMWARE Auria and Gitlab.
  • Experience in Microsoft Azure, including security and identity management.
  • Develop and manage Infrastructure as Code (IaC) for repeatable, secure cloud deployments using Terraform, Bicep or ARM templates.
  • Proficient with IaC tools (Terraform, Bicep) and automation scripting (PowerShell, Python).
  • DoD cybersecurity frameworks (RMF, NIST 800-53, STIGs).
  • Experience with CI/CD pipelines, Gitlab and security integration.
  • Strong understanding of networking, firewalls and role-based access control (RBAC).
  • Analyzing logs and security alerts and develop proactive countermeasures.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must currently hold and maintain an active DOE Q or equivalent DoD Top Secret clearance.

Beneficial to have the following:

• Master’s degree in Cybersecurity, Information Systems or a related technical discipline.
• Experience with cloud security architectures in AWS and Azure.
• Proficiency with containerization and orchestration technologies such as Docker and Kubernetes.
• Knowledge of DevSecOps best practices.

Where it’s done:

• Onsite (Washington, D.C.)

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Journeyman Cyber Vulnerability Analyst for a potential opportunity to support ongoing vulnerability management efforts across critical systems. This role is responsible for conducting vulnerability scans, analyzing results and working with stakeholders to coordinate timely remediation. The Journeyman Cyber Vulnerability Analyst will bring a solid foundation in vulnerability assessment tools, a strong understanding of common exploits and proven organizational skills to effectively manage and prioritize multiple efforts. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market. Employment for this position is dependent on the successful award of the contract.

What you’ll be doing:

• Conducting vulnerability assessments and scans.
• Analyzing vulnerability reports and prioritizing risks.
• Coordinating with other teams to patch and mitigate vulnerabilities.
• Developing vulnerability management policies and procedures.

What you need to know:

• Strong understanding of vulnerability scanning and assessment tools.
• Knowledge of common vulnerabilities and exploits.
• Ability to analyze complex technical information.
• Strong organizational and time management skills.

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 4+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Must possess an active DOE Q Clearance or equivalent DoD Top Secret clearance at time of hire.

Beneficial to have the following:

• Industry recognized certifications.

Where it’s done:

• Onsite (Washington, D.C. or Las Vegas, NV)

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are looking for a Elasticsearch (Elastic/ELK/ECE) Engineer to join our dynamic, fast-paced team within the public sector. The ideal candidate will not only bring technical expertise but also a passion for learning and growth. The Elasticsearch (Elastic/ELK/ECE) Engineer will have exposure to all facets of Systems Engineering and be encouraged to continuously expand your skill set as the company evolves. This is a unique opportunity to play a key role in a fast-growing company at the forefront of the cybersecurity market.

What you’ll be doing:

• Lead and support SIEM migration activities, including transitioning customers from ArcSight to the Elastic Stack.
• Implement, configure, and document four Elasticsearch clusters in support of enterprise SIEM and analytics requirements.
• Develop detailed installation, configuration, and operational documentation to support deployment and sustainment.
• Design and implement data pipelines to support log ingestion, normalization, enrichment, and analytics.
• Support SIEM development activities, including migration execution, validation, and reporting.
• Collaborate with the Integration and Architecture teams to design, document, build, secure and maintain Elasticsearch, Logstash, Kibana (and X-Pack) enterprise solutions in both cloud and on-premises environments.
• Work closely with architects, engineers and integrators to assess customer requirements and design Elasticsearch Stack solutions that meet data compliance and performance needs.
• Follow the development lifecycle processes to transition solutions from Dev to Test to Production environments.
• Participate in Agile sprint meetings, share progress and ensure that the development aligns with project and customer requirements.
• Serve as a subject matter expert and trusted advisor, providing guidance and best practice recommendations for Elasticsearch deployments.
• Configure and maintain Linux-based operating systems (including updates and version upgrades) to support the Elasticsearch platform.
• Install, configure and manage Elastic Cloud Enterprise (ECE) solutions, ensuring seamless communication and integration among Elasticsearch components and data sources.
• Create detailed installation and configuration documentation to support deployment.
• Secure the solution by implementing TLS, certificates, SSO/PIV authentication and encryption technologies.
• Collaborate with the data lifecycle management team to ensure optimal data flow and integrity.
• Troubleshoot and monitor data flows and the overall health of the Elasticsearch solution to maximize performance and minimize downtime.
• Provide regular status updates and analysis of alternatives in daily sprint meetings.
• Build and maintain effective working relationships across departments and teams to coordinate work and deliver results on schedule.
• Recommend and implement enhancements to optimize business intelligence processes.

What you need to know:

• Experience in software development using Java with an IDE (e.g., Eclipse, CodeReady).
• Proficiency in parsing file formats (e.g., JSON, XML, CSV).
• Knowledge of SQL Server database design, programming, tuning and writing SQL queries/procedures.
• Experience in developing/automating test procedures.
• Familiarity with REST API web services client development.
• Experience with release management, build tools (e.g., Maven, Jenkins) and configuration tools (e.g., SVN).
• Understanding of secure coding practices, including encryption (e.g., certificates, TLS connections).

Must have’s:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field or relevant experience in lieu of degree.
• 2+ years of relevant experience.
• CompTIA Security + certification.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must hold and maintain an active Secret clearance.

Beneficial to have:

• Experience with SAML authentication and familiarity with domain structures, user authentication and PKI.
• Experience with Messaging Queues (e.g., RabbitMQ).
• Knowledge of Microsoft SQL.
• Experience with programming and regular expressions (XML, Java, JSON, Python, PowerShell, Painless, Grok).
• Relevant security certifications such as CISSP, CISM, CISA, Security+ or CEH.
• Understanding of the relationship between critical infrastructure protection and cybersecurity.
• Knowledge and experience with Assessment & Authorization (A&A) processes in federal environments, including familiarity with the NIST Risk Management Framework (RMF).

Where it’s done:

• On-site (Schriever SFB – Colorado Springs, CO).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Malware/Forensics Analyst to support cyber investigations through malware analysis and digital evidence collection. This role applies advanced analytic techniques to uncover adversary capabilities, identify security weaknesses and provide actionable findings. The Malware/Forensics Analyst position requires deep technical knowledge, proficiency in digital forensics and the ability to collaborate with internal experts to solve difficult problems. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Analyze malware samples to determine functionality, intent and potential impact.
• Collect, preserve and examine digital evidence in support of cyber investigations.
• Apply advanced analytics to identify patterns, anomalies and indicators of compromise.
• Develop forensic reports and communicate findings to investigators and stakeholders.
• Collaborate with internal experts to develop solutions for complex technical problems.
• Support incident response teams with forensic analysis and malware insights.
• Contribute to improving forensic methodologies, processes and tools.
• Provide input into strategies that strengthen enterprise cybersecurity posture.

What you need to know:

• Strong knowledge of malware analysis and reverse engineering techniques.
• Expertise in digital forensics, evidence handling and forensic reporting.
• Familiarity with advanced analytics methods to support cyber investigations.
• Experience working in SOC environments and supporting incident response.
• Ability to collaborate across teams to resolve unclear or complex technical issues.

Must have’s:

• Bachelor’s degree or 3+ additional years of relevant experience in lieu of degree.
• 7+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must hold and maintain an active Secret clearance.

Beneficial to have the following:

• Industry-recognized certifications.

Where it’s done:

• Onsite (Washington, DC).

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are looking for a Elasticsearch (Elastic/ELK/ECE) Engineer to join our dynamic, fast-paced team within the public sector. The ideal candidate will not only bring technical expertise but also a passion for learning and growth. The Elasticsearch (Elastic/ELK/ECE) Engineer will have exposure to all facets of Systems Engineering and be encouraged to continuously expand your skill set as the company evolves. This is a unique opportunity to play a key role in a fast-growing company at the forefront of the cybersecurity market.

What you’ll be doing:

• Collaborate with the Integration and Architecture teams to design, document, build, secure, and maintain Elasticsearch, Logstash, Kibana (and X-Pack) enterprise solutions in both cloud and on-premises environments.
• Work closely with architects, engineers, and integrators to assess customer requirements and design Elasticsearch Stack solutions that meet data compliance and performance needs.
• Follow the development lifecycle processes to transition solutions from Dev to Test to Production environments.
• Participate in Agile sprint meetings, share progress, and ensure that the development aligns with project and customer requirements.
• Serve as a subject matter expert and trusted advisor, providing guidance and best practice recommendations for Elasticsearch deployments.
• Configure and maintain Linux-based operating systems (including updates and version upgrades) to support the Elasticsearch platform.
• Install, configure, and manage Elastic Cloud Enterprise (ECE) solutions, ensuring seamless communication and integration among Elasticsearch components and data sources.
• Create detailed installation and configuration documentation to support deployment.
• Secure the solution by implementing TLS, certificates, SSO/PIV authentication, and encryption technologies.
• Collaborate with the data lifecycle management team to ensure optimal data flow and integrity.
• Troubleshoot and monitor data flows and the overall health of the Elasticsearch solution to maximize performance and minimize downtime.
• Provide regular status updates and analysis of alternatives in daily sprint meetings.
• Build and maintain effective working relationships across departments and teams to coordinate work and deliver results on schedule.

What you need to know:

• Experience in software development using Java with an IDE (e.g., Eclipse, CodeReady).
• Proficiency in parsing file formats (e.g., JSON, XML, CSV).
• Knowledge of SQL Server database design, programming, tuning, and writing SQL queries/procedures.
• Experience in developing/automating test procedures.
• Familiarity with REST API web services client development.
• Experience with release management, build tools (e.g., Maven, Jenkins), and configuration tools (e.g., SVN).
• Understanding of secure coding practices, including encryption (e.g., certificates, TLS connections).

Must have’s:  

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field or relevant experience in lieu of degree.
• 2+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must be a U.S. citizen (non-dual citizenship) and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:  

• Experience with SAML authentication, familiarity with domain structures, user authentication, and PKI.
• Experience with Messaging Queues (e.g., RabbitMQ).
• Experience with Microsoft SQL.
• Experience with programming and working with regular expressions (XML, Java, JSON, Python, PowerShell, painless, grok).
• Relevant security certifications a plus: CISSP, CISM, CISA, Security+, CEH.
• Understanding of interrelationships between critical infrastructure protection and cybersecurity.
• Knowledge and experience with Assessment & Authorization (A&A) processes in Federal environments, preferably with experience utilizing the NIST Risk Management Framework (RMF).

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Product Engineering Specialist – Kafka with deep expertise in Kafka to design and optimize scalable data streaming architectures. The ideal candidate will apply strong engineering, troubleshooting and architectural skills to support high-throughput cybersecurity data processing. The Product Engineering Specialist-Kafka role focuses on building resilient Kafka environments, improving performance and supporting cloud-based data streaming solutions. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Design, implement and optimize Kafka-based data streaming architectures for cybersecurity data collection and processing.
• Develop and maintain Kafka clusters to ensure high availability, fault tolerance and scalability.
• Configure and tune Kafka for optimal performance, including partitioning, replication and consumer group strategies.
• Collaborate with integration engineers to design and implement efficient data pipelines from data sources through Kafka into downstream platforms.
• Participate in Agile ceremonies including backlog grooming, demos and retrospectives.
• Provide expertise on Kafka security features including encryption, authentication and authorization.
• Conduct capacity planning and performance testing for Kafka deployments.
• Troubleshoot complex issues in Kafka systems.
• Develop and maintain documentation for Kafka configurations, best practices and troubleshooting procedures.

What you need to know:

• Strong experience with Kafka and other distributed, big data or data streaming technologies.
• In-depth knowledge of Kafka functionality and operational workflows.
• Ability to install, maintain and troubleshoot Kafka clusters.
• Understanding of data serialization formats and schema management.
• Ability to design secure configurations and access controls for shared Kafka deployments.
• Excellent troubleshooting, communication and interpersonal skills.

Must have’s:

• 5+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Ability to design, build and maintain message configurations and flows in high-throughput, low-latency environments.
• Strong problem-solving skills with the ability to analyze issues in Kafka and other complex distributed systems.
• Experience documenting tests and presenting findings.
• Demonstrated ability to apply critical thinking to translate undefined tasks into actionable work streams.
• Experience deploying Kafka in cloud-based environments (AWS preferred; Azure and GCP also acceptable).
• Proven ability to write documentation and communicate effectively with cross-functional teams.
• Familiarity with containerization and orchestration technologies such as Docker and Kubernetes.
• Experience operating and monitoring large-scale production clusters.
• Applicants must be a U.S. citizen in compliance with federal contract requirements.

Beneficial to have:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Engineering or a related field.
• Experience with configuration management tools such as Ansible or Helm.
• Proficiency in Java or Python for developing Kafka-related applications and tools.
• Experience providing technical guidance or mentorship to team members.
• Industry recognized certifications.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a DOE Sector Growth and Capture Manager with experience supporting dynamic, fast-paced public sector environments. This role provides broad exposure to program strategy, partner engagement, business development and capture execution. The DOE Sector Growth and Capture Manager will play a key role in driving program success on the CIO Business Support Services (CBOSS) 2 Program by supporting development, execution and collaboration with partners as a prime contractor. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Program Strategy and Execution: Develop and execute a comprehensive DOE sector and CBOSS 2-specific program strategy aligned with company goals and objectives. Define the go-to-market strategy using market trends, corporate capabilities and customer priorities. Support program planning and execution activities that advance DOE sector objectives.
• Partner Relationship Management: Cultivate and maintain relationships with strategic partners to ensure alignment, communication and shared success. Collaborate with internal teams to manage partner expectations and support delivery commitments.
• Program Growth and Business Development: Support, identify and execute growth strategies for existing DOE programs within and outside of CBOSS 2. Identify, develop and pursue DOE Task Order opportunities that contribute to revenue growth and market expansion. Align pursuit activities with ShorePoint capabilities, go-to-market strategy and business objectives.
• Capture Management: Build, maintain and execute comprehensive Capture Plans for strategic pursuits. Coordinate capture activities using matrixed resources across internal and external team members. Support solution development, win strategy formulation, teaming and competitive positioning.
• Market Analysis and Insight Development: Stay informed about industry trends, market shifts and DOE strategic and priority initiatives to identify new opportunities and potential risks. Use market insights to refine business development and capture strategies.
• Matrixed Portfolio Leadership: Work collaboratively with ShorePoint Director of Business Development and Capture, Director of Proposal Operations and Executive Director of DOE and Federal Law Enforcement. Contribute to a collaborative, accountable and results-driven environment positioned for consistent growth.

What you need to know:

• Excellent leadership and creative problem-solving skills with the ability to understand customer priorities and drive program strategy and solution development.
• Effective approaches for identifying and executing growth strategies for existing and new business opportunities.
• Proficiency in ShorePoint’s CRM system (Salesforce) and the Microsoft Office Suite.

Must have’s:

• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Proven experience in Business Development and Capture Management, preferably in cybersecurity.
• Strong track record of driving customer engagement, growth and revenue generation.
• Exceptional interpersonal and communication skills with the ability to build and maintain relationships at all levels.
• Strategic thinker with demonstrated ability to develop and execute complex program strategies.
• Ability to contribute to solution development, content creation and quality reviews throughout the pre-proposal and proposal lifecycle.
• Ability and willingness to travel up to 25 percent for onsite meetings and events.
• Applicants must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:

• Demonstrated success growing DOE professional services revenue.
• Strong analytical skills.
• Experience supporting AI-driven use case implementation.

Where it’s done:

• Hybrid (must be local to Herndon, VA and attend in person meetings as needed).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a DevSecOps Engineer with hands-on experience supporting cloud-based cybersecurity data systems in fast-paced public sector environments. The ideal candidate will drive operational excellence by engineering, operating and monitoring distributed data infrastructure in collaboration with data engineers, architects and security analysts. The DevSecOps Engineer role offers a unique opportunity to contribute to government cyber data modernization through observability, automation and DevOps practices. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Provide operational engineering support for cyber data systems in government cloud environments.
• Build and integrate IT best practices and operational excellence into all areas of the project.
• Ensure system availability by building observability into large, distributed cybersecurity data infrastructures.
• Develop and maintain systems to monitor data ingestion and storage pipelines.
• Produce dashboards and reports to inform stakeholders on operational metrics, system status, performance and capacity.
• Operate, administer and maintain cloud-based infrastructure and platform services.
• Collaborate in an Agile DevOps team using continuous integration and delivery (CI/CD) tools and practices.
• Communicate effectively with team members and maintain documentation for technical procedures.

What you need to know:

• DevOps Infrastructure-as-Code tools such as Terraform, Helm, Ansible, Git and CI/CD pipelines.
• System automation languages such as Python, Bash and use of editors like VSCode.
• IT operations and troubleshooting, including resolving issues related to data connections and sources.
• System maintenance tasks such as patching and vulnerability management.
• Implementation of IT best practices, including ITIL, change management and configuration management.
• Advanced Linux systems administration and performance tuning.
• AWS cloud services including EKS, VPC, EC2, IAM, Config, SecurityHub and AWS CLI usage.
• Configuration and monitoring using Elasticsearch, Splunk, Grafana and other time-series data platforms.

Must have’s:

• 5+ years of experience operating and maintaining large-scale IT systems or supporting system/application integration.
• Proven ability to analyze ambiguous requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Proficiency in administering Linux operating systems.
• Proficiency in Kubernetes via the command line.
• Experience querying APIs to extract and use performance metrics.
• AWS cloud experience, including AWS CLI, Config, Secrets Manager and SecurityHub.
• Intermediate proficiency in Python programming (e.g., AWS Lambda, Boto3 and requests).
• Experience with infrastructure automation tools such as Ansible, Helm and Terraform.
• Must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• Familiarity with government cloud environments.
• Knowledge of cyber data analytics.
• Experience with distributed systems integration.
• Intermediate networking experience (e.g., DNS, ports, firewalls, VPC networking).
• Understanding of information security principles.
• Familiarity with Elastic infrastructure and observability.
• Familiarity with Kafka infrastructure management, deployment and monitoring.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance, reimbursement and more.

Who we’re looking for:

We are seeking an Application Security Engineer with expertise in Static and Dynamic Application Security Testing (SAST & DAST) methodologies and enterprise-level security controls. Your mission is to fortify our software supply chain by integrating rigorous security testing directly into the development lifecycle to preemptively neutralize vulnerabilities. The Application Security Engineer will be responsible for the end-to-end administration of Burp Suite and Veracode, managing Integrated Development Environment (IDE) plugins and ensuring all enterprise web applications align with federal compliance and OWASP standards. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Support and operate application security testing capabilities across SAST, DAST and IDE plug-in environments, with primary focus on Burp Suite and Veracode.
• Configure, maintain and troubleshoot Burp Suite and Veracode integrations to enable consistent application security testing workflows.
• Partner with development and engineering teams to identify, validate and remediate security vulnerabilities.
• Apply vulnerability standards and scoring methodologies to findings, including OWASP Top 10, CVSS, CWE, WASC and SANS-25.
• Navigate and troubleshoot within Linux or UNIX environments, including basic website connectivity issues.
• Support the design and implementation of enterprise-wide security controls that secure applications, systems, networks or infrastructure services.
• Use IDEs and development toolchains (Eclipse, JDeveloper, Visual Studio) to support developer workflows, including pipeline development activities where applicable.
• Support compliance-aligned security activities in federal environments leveraging NIST 800-53, FIPS and/or FedRAMP standards.

What you need to know:

• Strong understanding of application security testing concepts and operational support for SAST, DAST and IDE plug-in environments.
• Hands-on capability with enterprise web application security and common vulnerability classes.
• Familiarity with vulnerability scoring, classification and prioritization frameworks (OWASP Top 10, CVSS, CWE, WASC, SANS-25).
• Working knowledge of federal compliance standards (NIST 800-53, FIPS, FedRAMP).
• Ability to work effectively in Linux or UNIX environments for navigation and basic troubleshooting.
• Ability to communicate findings clearly and work cross-functionally to support remediation.

Must have’s:

• Bachelor’s degree in an IT-related field.
• 6+ years of Information Technology experience.
• 3+ years of experience supporting SAST, DAST and IDE plug-in environments using Burp Suite, including 3+ years of hands-on Burp Suite experience.
• 1+ year of experience supporting SAST, DAST and IDE plug-in environments using Veracode.
• 3+ years of experience using the design and implementation of enterprise-wide security controls to secure applications, systems, networks or infrastructure services.
• 2+ years of experience with Java, Python, .NET or C#.
• 2+ years of experience working in Linux-based environments, including navigating and troubleshooting basic website connectivity issues.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Experience with Eclipse, JDeveloper and/or Visual Studio, including pipeline development experience.
• Experience securing enterprise web applications, including familiarity with OWASP Top 10, CVSS, CWE, WASC and SANS-25.
• Knowledge of federal compliance standards, including NIST 800-53, FIPS and/or FedRAMP.
• Applicants must be a U.S. citizen in compliance with federal contract requirements.

Beneficial to have:

• Industry recognized certifications.
• Experience with Interactive Application Security Testing (IAST) tools and capabilities.
• Experience with HackerOne.
• Experience with Selenium.
• Experience writing bash scripts.
• Experience with OWASP ZAP or Burp Proxy.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Power BI & Front-End Data Visualization Developer with expertise in designing and delivering dashboards and interactive analytics products. This role enables stakeholders to turn complex data into clear, actionable insights through data visualization and analytics solutions. The Power BI & Front-End Data Visualization Developer will build and enhance Power BI dashboards and front-end visualization applications using Databricks-hosted data, collaborating with technical teams and stakeholders to deliver mission-aligned reporting. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Design, develop and maintain Power BI dashboards and reports aligned to stakeholder and mission needs.
• Develop interactive data visualization apps using Databricks-hosted data.
• Apply data visualization, UX/UI and accessibility best practices to front-end analytics products.
• Collaborate with data engineers, analysts and product leads to translate requirements into effective solutions.
• Incorporate stakeholder feedback through iterative design and enhancement.
• Ensure consistency with visualization, branding and reporting standards

What you need to know:

• Advanced Power BI development, including dashboard development, DAX and data modeling.
• Modern front-end development concepts and frameworks used for data visualization (e.g., JavaScript, React, TypeScript, D3.js).
• UX/UI and accessibility best practices as applied to analytics and visualization products.

Must have’s:

• 2+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Advanced experience with Power BI (dashboard development, DAX, data modeling).
• Experience with modern front-end frameworks (e.g., JavaScript, React, TypeScript, D3.js).
• Strong understanding of data visualization best practices and storytelling with data.
• Ability to communicate effectively with technical and non-technical stakeholders.
• Applicants must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements (no dual citizenship).

Beneficial to have:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Engineering or a related field.
• Industry recognized certifications.
• Experience working with Databricks.
• Strong SQL skills, including querying analytical data stores.
• Proficiency in Python for data analysis and transformation.

Where it’s done:

• Remote (Northern Virginia preferred).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking an IT Project Manager – Senior with experience leading IT projects and coordinating end-to-end service delivery in a federal environment. In this role, you will drive successful delivery of IT services and projects by aligning customer needs, operational performance and cybersecurity requirements to measurable outcomes. The IT Project Manager – Sr. will manage stakeholder coordination, requirements and contract alignment, performance reporting, risk and compliance monitoring and continual service improvement across the project lifecycle. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Serve as a primary stakeholder in IT operational processes supporting the service, providing direction and monitoring significant activities to ensure successful delivery.
• Coordinate and manage end-to-end service delivery for customers, balancing requirements, constraints and priorities across stakeholders.
• Develop and manage system, network, performance and cybersecurity requirements and ensure they are incorporated into delivery plans and contract language.
• Define and manage Service-Level Agreements (SLAs) and support Operating Level Agreements (OLAs) with internal process owners to ensure performance expectations are clear and measurable.
• Lead and oversee project budgets, staffing and contractual performance, including tracking delivery against cost, schedule and quality objectives.
• Participate in acquisition activities as needed, ensuring procurements and outsourcing efforts include information security requirements consistent with organizational goals.
• Perform needs analysis to identify opportunities for new or improved business process solutions and provide recommendations for upgrades and enhancements.
• Develop methods to monitor and measure risk, compliance and assurance efforts for assigned projects, initiating corrective actions when issues or variances arise.
• Review service performance reports, ensure follow-up on outstanding issues and drive continual improvement through customer satisfaction and internal performance feedback.
• Conduct or support audits of IT projects and evaluate procurement effectiveness in meeting information security requirements, recommending improvements as needed.
• Conduct import/export reviews for acquiring systems and software and address supply chain risk considerations when applicable.

What you need to know:

• Advanced knowledge of the acquisition/procurement life cycle, including system life cycle management principles, software security and the integration of Risk Management Framework (RMF) requirements.
• Proficiency in Import/Export control regulations (specifically for cryptography and security technologies) and the ability to evaluate the trustworthiness of project suppliers and products.
• Mastery of service management concepts (ITIL) and organizational process improvement models, such as CMMI for Development, Services and Acquisitions.
• Understanding of Cloud-based knowledge management, enterprise architectural frameworks and the operational impacts of cybersecurity lapses on the organization’s core business mission.
• Skill in identifying system performance indicators and translating complex information needs into intelligence collection requirements across the extended enterprise.

Must have’s:

• Advanced degree in a technical/cyber-related field. Direct experience or relevant certifications may substitute for the academic credentials.
• 7+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:

• Industry recognized certifications

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking an IT Project Manager – Intermediate with experience leading IT projects and coordinating end-to-end service delivery in a federal environment. In this role, you will drive successful delivery of IT services and projects by aligning customer needs, operational performance and cybersecurity requirements to measurable outcomes. The IT Project Manager – Intermediate will manage stakeholder coordination, requirements and contract alignment, performance reporting, risk and compliance monitoring and continual service improvement across the project lifecycle. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Serve as a primary stakeholder in IT operational processes supporting the service, providing direction and monitoring significant activities to ensure successful delivery.
• Coordinate and manage end-to-end service delivery for customers, balancing requirements, constraints and priorities across stakeholders.
• Develop and manage system, network, performance and cybersecurity requirements and ensure they are incorporated into delivery plans and contract language.
• Define and manage Service-Level Agreements (SLAs) and support Operating Level Agreements (OLAs) with internal process owners to ensure performance expectations are clear and measurable.
• Lead and oversee project budgets, staffing and contractual performance, including tracking delivery against cost, schedule and quality objectives.
• Participate in acquisition activities as needed, ensuring procurements and outsourcing efforts include information security requirements consistent with organizational goals.
• Perform needs analysis to identify opportunities for new or improved business process solutions and provide recommendations for upgrades and enhancements.
• Develop methods to monitor and measure risk, compliance and assurance efforts for assigned projects, initiating corrective actions when issues or variances arise.
• Review service performance reports, ensure follow-up on outstanding issues and drive continual improvement through customer satisfaction and internal performance feedback.
• Conduct or support audits of IT projects and evaluate procurement effectiveness in meeting information security requirements, recommending improvements as needed.
• Conduct import/export reviews for acquiring systems and software and address supply chain risk considerations when applicable.

What you need to know:

• Knowledge of the acquisition/procurement life cycle, including system life cycle management principles, software security and the integration of Risk Management Framework (RMF) requirements.
• Proficiency in Import/Export control regulations (specifically for cryptography and security technologies) and the ability to evaluate the trustworthiness of project suppliers and products.
• Knowledge of service management concepts (ITIL) and organizational process improvement models, such as CMMI for Development, Services and Acquisitions.
• Understanding of Cloud-based knowledge management, enterprise architectural frameworks and the operational impacts of cybersecurity lapses on the organization’s core business mission.
• Skill in identifying system performance indicators and translating complex information needs into intelligence collection requirements across the extended enterprise.

Must have’s:

• Bachelor’s degree in a cyber-related field. Direct experience or relevant certifications may substitute for the academic credentials.
• 4+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:

• Industry recognized certifications

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Lead Security Architect who possesses deep technical mastery in designing resilient, enterprise-grade security frameworks. You will serve as the strategic visionary and technical anchor, ensuring our mission-critical systems are inherently secure by design and aligned with evolving federal defense standards. In this role, the Lead Security Architect will bridge the gap between complex engineering requirements and executive risk management orchestrating the transition to a robust Zero Trust environment. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Lead the design and evaluation of enterprise security architectures, ensuring all systems align with Zero Trust Architecture (ZTA) principles and organizational cybersecurity guidelines.
• Serve as the primary technical liaison between enterprise architects and systems security engineers to ensure security controls are correctly allocated and implemented.
• Convert complex operational needs and stakeholder security interests into detailed technical requirements and functional specifications.
• Provide critical input to the Risk Management Framework (RMF) process, including the development of system life-cycle support plans and operational procedures.
• Manage security requirements throughout the acquisition life cycle, from drafting statements of work to evaluating vendor-proposed security designs for adequacy.
• Perform regular security reviews and design modeling to identify architecture gaps, developing comprehensive risk management plans to address vulnerabilities.
• Categorize systems and define clear security boundaries, documenting the protection needs for information systems and networks.
• Advise senior leadership and authorized officials on design concepts, project costs and the potential adverse effects of identified vulnerabilities.

What you need to know:

• Deep proficiency in describing and documenting IT architectures using frameworks such as TOGAF, DoDAF or FEAF, with a focus on integrating security into the full system development life cycle.
• Mastery of Zero Trust Architecture (ZTA) principles, including identity management (PKI, Oauth, SAML), micro-segmentation and secure cloud/hybrid IT delivery models like DevOps and Agile.
• Comprehensive knowledge of NIST 800-series, FedRAMP and the Risk Management Framework (RMF) to ensure systems meet stringent federal and defense cybersecurity standards.
• Technical expertise in network security (TCP/IP, VPNs, firewalls), encryption algorithms and the ability to design countermeasures against complex cyber threats and vulnerabilities.
• Ability to translate operational requirements into technical protection needs and effectively communicate risk and design concepts to both technical experts and executive stakeholders.

Must have’s:

• 10+ years of professional experience in cybersecurity, including 5+ years in security architecture or a senior technical role
• One or more of the following certifications: (ISC)2 Certified Information Security Professional (CISSP), GIAC Security Enterprise Architect (GSEA) or GIAC Defensible Security Architecture (GDSA).
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Demonstrated experience architecting secure enterprise systems using Zero Trust Architecture (ZTA) principles.
• Applicants must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Engineering or a related field.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Security Systems Developer – Senior to design, develop and evaluate information system security throughout the entire development life cycle. You will act as a senior technical lead, integrating robust security measures that ensure confidentiality, integrity, availability and non-repudiation across hardware, software and network applications. The Security Systems Developer – Sr. role is vital in performing risk analysis and developing mitigation strategies to resolve architectural gaps and vulnerabilities in complex, multi-level classification environments. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Design hardware, operating systems, software applications and secure interfaces to meet cybersecurity requirements across information systems, physical systems and embedded technologies.
• Perform risk analysis (threat, vulnerability and probability of occurrence) when applications or systems undergo major changes and develop mitigation strategies for cost, schedule, performance and security risks.
• Conduct security reviews to identify gaps in architecture, recommend security changes to system components and incorporate vulnerability solutions into system designs.
• Design, develop, integrate and update system security measures that support confidentiality, integrity, availability, authentication and non-repudiation.
• Develop detailed security design documentation for components and interfaces, including functional descriptions of security implementation and keep documentation current.
• Identify components and elements, allocate security functions and describe relationships between system elements; trace requirements to design components and perform gap analysis.
• Implement security designs for new or existing systems and direct remediation of technical issues discovered during testing and implementation (including interoperability and protocol issues).
• Develop and direct system testing and validation procedures and documentation; analyze test data and translate results into evaluative conclusions.
• Identify, assess and recommend cybersecurity or cybersecurity-enabled products for system use, ensuring compliance with organizational evaluation and validation requirements.
• Provide input to implementation plans, SOPs, RMF process activities and documentation and support security/certification test and evaluation activities.
• Build, test and modify prototypes using working or theoretical models; use models and simulations to predict performance under different operating conditions.
• Verify stability, interoperability, portability and scalability of the system architecture and security design

What you need to know:

• Deep expertise in information security systems engineering principles, specifically NIST SP 800-160 and the application of security models such as Bell-LaPadula, Biba and Clark-Wilson.
• Proficiency in enterprise architecture methods (e.g., TOGAF, DoDAF, FEAF) and secure configuration techniques, including STIGs and CIS best practices.
• Mastery of network security architecture (defense-in-depth), traffic flow analysis (TCP/IP, OSI model) and identity management protocols (PKI, Oauth, SAML, SPML).
• Advanced knowledge of firewalls, DMZs, encryption algorithms and access authentication methods across both standard and specialized (ICS/SCADA) environments.
• Skill in applying mathematics (linear algebra, statistics, calculus, operational analysis) and Information Theory to solve problems in data compression, resiliency and system performance.
• Strong understanding of PII and PCI data security standards, alongside the legal and ethical policies governing cybersecurity and privacy.

Must have’s:

• 7+ years of relevant experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Engineering or a related field.
• Industry recognized certifications.

Where it’s done:

• Remote (Herndon, VA).

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we’re looking for:

We are seeking a Research and Development (R&D) Specialist with deep expertise in software and systems engineering and cybersecurity-focused R&D supporting a federal environment. In this role, you will develop new cyber capabilities by researching emerging technologies, designing and prototyping secure solutions and evaluating vulnerabilities across cyberspace systems. The R&D Specialist will lead technical research, tool development and vulnerability-driven capability enhancements while producing clear technical documentation and stakeholder-ready briefings. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you’ll be doing:

• Conduct software and systems engineering research to develop new cybersecurity capabilities and ensure security is integrated throughout the design and development lifecycle.
• Research current and emerging technologies to understand system/network capabilities and identify vulnerability and opportunity areas aligned to mission needs.
• Review and validate data mining and data warehousing programs, processes and requirements to support capability development.
• Collaborate with stakeholders to identify requirements and develop or recommend appropriate technical solutions and standards.
• Design, develop and troubleshoot prototypes and early-stage tools/technologies, resolving issues throughout design, development and pre-launch phases.
• Identify functional and security-related features that enable new capability development to exploit or mitigate vulnerabilities.
• Evaluate network infrastructure and systems to identify vulnerabilities and systemic security issues based on vulnerability and configuration data.
• Develop or enhance reverse engineering tools and techniques to support vulnerability discovery and capability improvement.
• Develop data management capabilities (for example, cloud-based centralized cryptographic key management) to support distributed and mobile workforce needs.
• Produce technical documentation and present briefings to communicate findings, designs, risks and recommendations to technical and non-technical stakeholders

What you need to know:

• Expert knowledge of computer architecture, operating system structures (process management, directory internals) and middleware (Enterprise Service Bus, message queuing) to identify vulnerabilities in complex system designs.
• Deep proficiency in hacking methodologies, penetration testing and software reverse engineering, with the ability to identify forensic footprints and analyze software communications for security gaps.
• Technical mastery of networking protocols, XML schemas and application firewall functions (including REST/JSON processing, SSL security and data anonymization for PCI/PII).
• Knowledge of cybersecurity laws and standards specifically for critical infrastructure, mobile communications architecture and the vulnerabilities inherent in hardware designed without security considerations.
• Skill in applying the systems engineering process, secure coding techniques and mathematical or statistical models to develop and integrate technologies across legacy and modern platforms.

Must have’s:

• 7+ years of relevant cyber security experience.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Engineering or a related field.
• Industry recognized certifications.

Where it’s done:

• Remote (Herndon, VA).