ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Lead Information System Security Officer who has experience designing, developing,  testing, and evaluating information system security throughout the systems development lifecycle in the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.

 

Roles and Responsibilities

Consult with customers to evaluate functional requirements and translate functional requirements into technical solutions. Monitor organizations IT system to look for threats to security, establish protocols for identifying and neaturlizing threats. 

Required Skills

  • Expert knowledge of risk management processes (e.g., methods for assessing and mitigating risk)
  • Expert knowledge of cybersecurity and privacy principles
  • Expert knowledge of cyber threats and vulnerabilities
  • Expert knowledge of installation, integration, and optimization of system components
  • Expert knowledge of system life cycle management principles, including software security and usability
  • Expert knowledge of information security systems engineering principles (NIST SP 800-160)
  • Expert knowledge of Supply Chain Risk Management Practices (NIST SP 800-161)
  • Expert knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption)
  • Expert knowledge of policy-based and risk adaptive access controls
  • Expert knowledge of Personally Identifiable Information (PII) data security standards
  • Skilled in designing countermeasures to identified security risks
  • Skilled in designing security controls based on cybersecurity principles and tenets
  • Skilled in evaluating the adequacy of security designs
  • Skilled in discerning the protection needs (i.e., security controls) of information systems and networks
  • Skilled in conducting audits or reviews of technical systems
  • Ability to produce technical documentation
  • Ability to ensure security practices are followed throughout the acquisition process
  • Ability to apply cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation)

Desired Skills

  • Ability to identify systemic security issues based on the analysis of vulnerability and configuration data
  • Skill in conducting vulnerability scans and recognizing vulnerabilities in security systems
  • Skill in designing the integration of hardware and software solutions
  • Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services
  • Knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools
  • Knowledge of software development models (e.g., Waterfall Model, Spiral Model)

Education Requirement

  • Bachelor’s Degree preferred (or additional four years of experience)

Years of Experience Requirement

  • 7-10 years of experience in Cybersecurity Assurance

Certification Requirement

  • Certified Information Systems Security Professional (CISSP) preferred

Location

  • National Capital Region

Security Clearance

  • Must be a U.S Citizen

Sound like the job for you?

Send us a link to your resumé or portfolio to become part of our talent pool.

Click here to apply

Warning: Invalid argument supplied for foreach() in /var/www/wp-includes/class-wp-list-util.php on line 157