ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Cybersecurity Audit Lead who has experience conducting evaluations of IT programs to determine compliance with published standards in the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

 

Roles and Responsibilities

Apply knowledge of data, information, processes, and analytical expertise. Execute duties governing hardware, software, and information system acquisition programs and other program management policies. Provide direct support in applying IT-related laws and policies, and provides IT-related guidance throughout the total acquisition life cycle.

Required Skills

  • Possess experience in federal audit reporting
  • Possess technical expertise and analytical skills to support complete, timely and high-quality deliverables
  • Ability to ensure security practices are followed throughout the acquisition process
  • Skill in conducting audits or reviews of technical systems
  • Knowledge of industry-standard and organizationally accepted analysis principles and methods
  • Knowledge of cybersecurity and privacy principles
  • Knowledge of specific operational impacts of cybersecurity lapses
  • Knowledge of system life cycle management principles, including software security and usability
  • Knowledge of computer networking concepts and protocols, and network security methodologies
  • Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy

Desired Skills

  • Knowledge of information technology (IT) acquisition/procurement requirements
  • Knowledge of organizational process improvement concepts and process maturity models (e.g., Capability Maturity Model Integration (CMMI) for Development, CMMI for Services, and CMMI for Acquisitions)
  • Knowledge of Risk Management Framework (RMF) requirements
  • Knowledge of Supply Chain Risk Management Practices (NIST SP 800-161)
  • Knowledge of information technology (IT) architectural concepts and frameworks

Education Requirement

  • Bachelor’s Degree preferred (or additional four years of experience)

Years of Experience Requirement

  • 8-10 years of experience in Cybersecurity and Policy

Certification Requirement

  • Certified Information Security Manager (CISM), preferred
  • Certified Information Systems Security Professional (CISSP), preferred

Location

  • National Capital Region

Security Clearance

  • Must be a U.S Citizen

Sound like the job for you?

Send us a link to your resumé or portfolio to become part of our talent pool.

Click here to apply

Warning: Invalid argument supplied for foreach() in /var/www/wp-includes/class-wp-list-util.php on line 157