Who we are:
ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.
The Perks:
As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.
Who we’re looking for:
We are seeking a Zero Trust Security Architect & Engineer who has experience providing support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market. The Zero Trust Security Architect & Engineer will have the opportunity to be exposed to all aspects of a Zero Trust Architecture initiative, drive the strategy for a federal customer, and be encouraged to grow as the organization expands.
What you’ll be doing:
- Providing hands-on execution, strategic oversight, and peer review of organizational Zero Trust maturity assessments as defined by the CISA Zero Trust Maturity Model v2.0.
- Writing and reviewing semi-technical documentation to support the assessment and implementation processes to mature an enterprise multi-tenant Zero Trust Architecture (ZTA).
- Coordinating with multiple teams that are each responsible for a segment of the Zero Trust (ZT) program.
- Evaluating on-premises and cloud networking technologies to determine which NIST 800-53r5 controls are satisfied by current configurations and correlating those controls to ZTA requirements.
- Assisting with architecting and selecting enterprise IT systems that meet ZTA requirements and drafting a phased deployment plan to incrementally achieve an Optimum Zero Trust Maturity Level.
- Plans, implements, and operates network services/systems, to include hardware and virtual environments.
- Supports network integration and implementation of SASE solution.
- Supports migration of current information systems into SASE environment.
- Review existing network infrastructure and coordinate with other stakeholders and contractors to perform a network assessment to include but not limited to reviewing existing circuits, connection types, bandwidth, types of traffic, routing protocols, and more.
- Develops a roadmap for Zero Trust Use Case implementation and make recommendations on how the Government should implement and migrate to the solution.
- Support the Department migration from Multiprotocol Label Switching (MPLS) to a SASE Branch Office architecture.
- Coordinate with other Government PMO’s and respective contractors to ensure a successful migration of Zero Trust capabilities.
- Develop and implement network backup and recovery procedures.
- Assist with integration of new systems into existing network architecture.
What you need to know:
- Must be able to conceptualize, define, initiate, and lead strategies to achieve target customer outcomes in an emerging market area (Zero Trust).
- Must have the ability to adapt to evolving needs and priorities based on customer input.
- Must have the ability to understand target business and functional outcomes and delineate them down into discrete tasks and plans to accomplish objectives.
- Must be able to create and present complex ideas to groups in a simplified manner.
- Ability to take a general request, drawing on past-experience and conversations to create well defined tasks.
- Work collaboratively with team members to communicate and share task status and articulate when work requires assistance from the team toward completion.
- Expert knowledge of routing, TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services.
- Expert knowledge of network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.
- Must have working knowledge of NIST 800, CISA ZT Maturity Model, OMB mandates and other Zero Trust directives.
- Must have working knowledge of leading SASE solutions including Palo Alto Prisma Access
- Must have working knowledge of the UNIX, Linux and Windows Operating System’s and familiarity with a variety of subsidiary support systems.
- Must have working knowledge of Active Directory, Office 365, Azure, and AWS cloud services.
- Must have working knowledge of virtualization technologies including VMWare ESX and RedHat OS.
- Experience with monitoring, data backups and recovery techniques, system utilization, and recovery testing.
- Experience creating and maintaining network and system diagrams.
- Knowledge of cybersecurity and privacy principles used to manage risks related to the use, processing, storage, and transmission of information or data.
- Must have the ability and desire to solve problems and work in a highly technical environment.
- Must be detailed oriented and possess good technical writing skills.
- Ability to function in a fast-paced environment and effectively manage multiple tasks simultaneously; coordinating resources and ensuring scheduled goals are met.
- Ability to make decisions and resolve problems effectively – seek out information and data to evaluate, prioritize and formulate best solution or practice.
- Must be able to multi-task, work independently and as part of a team, share workloads, and deal with sudden shifts in project priorities.
- Must have understanding of how NIST security controls influence customer security policies.
Must have’s:
- Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field At least 5 years of directly related work experience.
- Demonstrated ability to apply critical thinking to develop undefined tasks into actionable processes and work streams.
- Ability to obtain and maintain customer required security clearance.
Beneficial to have the following:
- Relevant industry certification preferred.
- Background and working knowledge of Zero Trust Architecture fundamentals.
- Experience with design, implementation, or maintenance of a Zero Trust architecture in a Federated enterprise environment.
Where it’s done: