Today
Public Trust
Unspecified
Unspecified
Security
Remote/Hybrid• (Off-Site/Hybrid)
Who we are:
ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a "work hard, play hard" mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to provide quality and consistent consultations and deliverables for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.
The Perks:
As recognized members of the Cyber Elite, we work together in partnership to defend our nation's critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.
Who we're looking for:
We are seeking a Zero Trust Architecture (ZTA) Security Controls Assessor who will work on an existing and established team conducting security controls assessments correlating to CISA's Zero Trust Maturity Model 2.0 and NIST's 800-53r5 & 800-207. The goal is to understand the existing environment and aid our client to move to their desired state by performing gap analyses, populating a requirements traceability matrix, developing Zero Trust roadmaps, and aligning cybersecurity strategies with federal policies and requirements. The ideal candidate will have a deep understanding of the Risk Management Framework (RMF) and how RMF maps to the Zero Trust Framework, including Executive Orders and other federal mandates, and will engage with stakeholders to deliver comprehensive assessment results contributing to the agencies Zero Trust maturity goals. The ZTA Security Controls Assessor role requires expertise in analyzing systems, documenting requirements, and designing secure architectures that meet both immediate and long-term objectives. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.
What you'll be doing:
What you need to know:
Must have's:
Beneficial to have the following:
Where it's done:
ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a "work hard, play hard" mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to provide quality and consistent consultations and deliverables for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.
The Perks:
As recognized members of the Cyber Elite, we work together in partnership to defend our nation's critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.
Who we're looking for:
We are seeking a Zero Trust Architecture (ZTA) Security Controls Assessor who will work on an existing and established team conducting security controls assessments correlating to CISA's Zero Trust Maturity Model 2.0 and NIST's 800-53r5 & 800-207. The goal is to understand the existing environment and aid our client to move to their desired state by performing gap analyses, populating a requirements traceability matrix, developing Zero Trust roadmaps, and aligning cybersecurity strategies with federal policies and requirements. The ideal candidate will have a deep understanding of the Risk Management Framework (RMF) and how RMF maps to the Zero Trust Framework, including Executive Orders and other federal mandates, and will engage with stakeholders to deliver comprehensive assessment results contributing to the agencies Zero Trust maturity goals. The ZTA Security Controls Assessor role requires expertise in analyzing systems, documenting requirements, and designing secure architectures that meet both immediate and long-term objectives. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market.
What you'll be doing:
- Conduct Zero Trust-focused gap analyses, mapping current capabilities to the five pillars of the CISA security model and aligning them with the CISA ZTA Maturity Model 2.0 and NIST standards to highlight current and desired states of maturity.
- Review, decompose, and consolidate requirements from diverse government policies, memoranda, and directives.
- Develop and execute a Zero Trust roadmap for implementing and maintaining enterprise cybersecurity capabilities in on-premises and cloud environments.
- Analyze existing capabilities, propose modernization strategies, and incorporate approved recommendations into roadmaps and documentation such as Integrated Master Schedules.
- Document and implement Zero Trust security solutions for on-premises and cloud-based environments, following guidance outlined in OMB Memo M-22-09.
- Collaborate with program managers, technical teams, and stakeholders to define project scope, deliverables, and timelines.
- Provide technical guidance on the realization of cross-cutting security solutions that leverage Zero Trust product services and capabilities.
- Assist in developing and delivering client-facing materials, including presentations, training curricula, whitepapers, and other technical documentation.
- Lead and support the development of documentation for system requirements, system analysis, and integration activities.
What you need to know:
- Strong understanding of the Zero Trust Architecture, including federal policies, CISA guidance, and NIST standards.
- Experience conducting gap analyses and aligning cybersecurity strategies with organizational and federal objectives.
- Knowledge of OMB Memo M-22-09, CISA Zero TrustMaturity Model 2.0, and methodologies for system analysis and risk assessments.
- Familiarity with IT Enterprise architectural principles, including cloud, on-premise, centralized, and federated systems.
- Understanding of integration challenges, cost estimation, system requirements determination, and methodologies for system analysis.
- Ability to develop and deliver effective presentations, training materials, and reports to diverse stakeholders.
- Ability to build and maintain positive relationships, fostering collaboration and support for cybersecurity endeavors across a range of management and IT support staff.
- Strong skills in decomposing and consolidating requirements, strategic planning, and aligning cybersecurity initiatives with organizational goals.
- Familiarity with IT risk assessments, system verification/ hardening, and compliance standards, including Mac, Linux-based, and Microsoft operating systems.
Must have's:
- Bachelor's degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
- Demonstrated ability to apply analysis and critical thinking to develop undefined tasks into actionable processes and work streams.
- Experience with mapping CISA Zero Trust model pillars to Zero Trust solutions and developing comprehensive security roadmaps.
- Knowledge of federal cybersecurity standards and compliance requirements, including FISMA, NIST SP 800 series, and OMB guidelines.
- Exceptional analytical thinking and problem-solving skills, with a focus on aligning cybersecurity initiatives with organizational goals.
- Strong communication and collaboration skills to engage with diverse stakeholders effectively.
- Exceptional attention to detail with high standards while delivering high quality deliverables and outcomes.
- Requires U.S. citizenship in compliance with federal contract requirements.
Beneficial to have the following:
- Cybersecurity related certifications such as Security+, CASP or CISSP.
Where it's done:
- Remote (Herndon, VA).
group id: 91085370
