ShorePoint is a cybersecurity services firm with a focus on high-profile, high-threat private and public-sector customers who demand experience and proven security models to protect their data. We are seeking a Security Baseline Engineer who has experience building security baseline configuration guidelines for various technologies within the federal market. This is a unique opportunity to shape the growth, development and culture of an exciting and emerging company in the cybersecurity market.


Roles and Responsibilities

Develop and implement security solutions in alignment with security strategy. Maintain an awareness of market and technology trends to bring best of breed solutions to the client. Apply leading-edge principles, theories, and concepts and contribute to the development of new principles and concepts. Work on unusually complex problems and provide highly innovative solutions. Work closely with government stakeholders in understanding the vision and direction of the information technology program and decompose this architecture and associated use cases into discrete components that can be addressed from a cybersecurity engineering standpoint. Understand proposed and in-place architectures at a level that enables the identification and understanding of possible security risks and propose solutions for risk mitigation.


Required Skills

  • Experience with creating, reviewing and customizing general security configuration baselines including DoD, STIGs, and CIS Benchmarks
  • Experience with translating the low-level security baseline requirements into high-level FISMA and NIST requirements and client-specific security policies
  • Experience working with the NIST 800 Special Publication series guidance related to risk management and security control implementation, including 800-30,800-37, 800-53, 800-60, 800-63, 800-115, or 800-137
  • Experience with one or more of the following technologies: Networking, including CISCO, Juniper, or Palo Alto, operating systems, including Windows Server, Redhat, or Linux, cloud services, including AWS, Azure, Salesforce, Okta, O365, or ServiceNow, or Mobile Technologies, including iOS or Xen Mobile
  • Knowledge of the National Vulnerability Database (NVD) and Common Vulnerability Enumeration (CVE)

Desired Skills

  • Experience with designing, building, and implementing automation tools, including Ansible, Chef, or Puppet
  • Experience with Infrastructure as Code tools, including Cloud Formations or Terraform
  • Experience with container platforms, including OpenShift
  • Experience with chaos engineering and blue or green deployments
  • Experience with Serverless, including Lambda, API Gateway, Step Functions, and SAM
  • Experience with application performance analysis and monitoring, including ELK
  • Experience with an Agile release methodology

Education Requirement

  • BA or BS degree in Information Security, Computer Engineering, Information Systems, Telecommunications, or Technology

Years of Experience Requirement

  • A minimum of five (5) to eight (8) years of relevant work experience in the area of network security engineering or security operations, including hands-on experience with security tools and devices such as Apcon, A10 load balancers, FireEye

Certification Requirement

  • Maintain at least one current professional certification. Acceptable certifications include: Any SANS GIAC Security certifications (Administration, Software, Forensics, or GSE Expert), ISC2 CISSP, or any security systems vendor administration-level certifications. AWS Certified Solutions Architect or Developer Certification. CCNA, MSCE, RHCSA, EBSA or ECSS Certification


  • Washington, D.C

Security Clearance

  • Must be a U.S. Citizen

Sound like the job for you?

Send us a link to your resumé or portfolio to become part of our talent pool.

Click here to apply