ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a CybersecurityGovernance Lead with a background in building, managing, and operating enterprise wide cybersecurity programs. The ideal candidate will also have experience in the DHS CISA Continuous Diagnostics and Mitigation (CDM) program and 5 plus years of experience with enterprise FISMA compliance reporting. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity and federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

Roles and Responsibilities

  • Serve as team member for evaluating and recommending changes to a large Federal Agency enterprise cybersecurity program
  • Evaluate complete FISMA inventory and provide best practice recommendations on system boundary definitions
  • Develop strategy and program-specific deliverables regarding ways to provide centralized visibility into the enterprise security program
  • Provide subject matter expertise on FISMA specific requirements
  • Evaluate enterprise level ISSO program and provide recommendations on current state vs. future state
  • Support the development of cybersecurity and risk management decision support tools such as CONOPS, business processes, policies and SOPs
  • Provide guidance on connecting current cyber programs with CDM including a roadmap for CDM capability implementation
  • Provide subject matter expertise on federal enterprise security operations centers and agency SOCs including organizational constructs and operating processes
  • Support development and delivery of cybersecurity governance guidance and technical assistance programs
  • Provide training development and delivery related to continuous diagnostics data analysis and risk escalation

Required Skills

  • Bachelor’s Degree with at least 10 years of professional work experience, or Master’s Degree with at least 8 years of professional work experience
  • Demonstrated experience and understanding of information security concepts, principles, and drivers, specifically as it applies to risk management, governance and training
  • Demonstrated experience and understanding of cybersecurity standards, guidelines, and principles as it applies to the federal government, to include applicable NIST standards and RMF
  • Demonstrated excellent oral and written communications, including presentation skills for audiences of varying levels of technical understanding – strong customer orientation
  • Self-driven with an aptitude to learn new technologies
  • Ability to create success with minimal oversight and management

Certification Requirement 

  • Security certifications such as CISSP, CISM, or CISA


  • Reston, VA or Ballston, VA

Security Clearance

  • Will be required to obtain EOD/DHS suitability

Sound like the job for you?

Send us a link to your resumé or portfolio to become part of our talent pool.

Click here to apply