Security Architect

Who we are:

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.  

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.

Who we’re looking for:

We are seeking a Security Architect who has experience providing support in a dynamic, fast-paced environment within the public sector. This is a unique opportunity to shape the growth, development, and culture of an exciting and fast-growing company in the cybersecurity market. The Security Architect will have the opportunity to be exposed to all aspects of the program and will be encouraged to grow as the organization expands. 

What you’ll be doing:

• Provide technical subject matter expertise on multiple IT security domains across client engagements and initiatives.
• Support information technology (IT) governance and drive security architecture and business requirements during engagement delivery.
• Recommend improvements in IT security implementation and design while leveraging the use of existing solutions and investments.
• Responsible for managing the collaboration of key security and risk stakeholders to develop and review enterprise IT security and risk strategies.
• Develop solutions and direct technical teams in the investigation and resolution of complex IT security issues and initiatives.
• Assist in drafting and proposing organization-wide IT security and action plans based on security risk and analysis based on potential and emerging threats to the client’s environment.
• Recommend and implement IT security strategies and actions in support of client organizations’ wider risk management program.
• Develop short and long-term security initiatives that align with client executives’ goals and business plans.
• Manage technologies that support information systems and IT security requirements throughout the system development life cycle.
• Support management of multiple project timelines, deliverables, and information requests of IT security initiatives and engagements
• Play a lead role in technology and security exercises related to architecture and participate in platform audits of both business process and technology.
• Document and implement Zero Trust security solutions in both on-premises and cloud-based environments.
• Developing and executing Zero Trust roadmaps for implementing and maintaining enterprise cyber security capabilities and mapping the 5 pillars of the CISA ZTA maturity model v2.0 and the respective cross-cutting capabilities to ZT solutions
• Reviewing, decomposing, and consolidating requirements from diverse government memoranda, policies, and directives
• Engaging with stakeholders and support the technical team in delivering high-quality products, including requirements documentation, gap analysis, Zero Trust roadmaps, and presentations, to meet customer needs.
• Working with customers to outline roadmaps, strategies, and approaches for the realization of cross-cutting security solutions that utilize ZTA product services and capabilities.  

What you need to know:

• Understanding of Zero Trust Framework, with experience performing gap analysis based on policy and requirements.
• Deep understanding of federal policy that adhere to CISA’s ZTA Maturity Model 2.0, Executive Orders, memorandums, and NIST standards; achieving Zero Trust security goals follow the guidance outlined in OMB Memo M-22-09
• Experience designing and implementing enterprise cybersecurity architectures.
• Experience developing requirements for enterprise cybersecurity architectures from Federal Government customers with a focus on Zero Trust
• Experience with baseline enterprise cybersecurity capability configurations 
• Experience validating and verifying enterprise cybersecurity capability implementation success and ongoing configuration changes. 
• Experience designing and implementing enterprise cybersecurity capability capabilities.

Must have’s:

• 6-9 years’ experience in similar or relevant role
• Master’s degree (or bachelor’s degree + 2 years of relevant experience
• Ability to obtain agency required security clearance.
• Ability to decompose and consolidate requirements from multiple policy sources.
• Ability to interpret and implement functional requirements for zero trust architectures.
• Ability to work directly with program managers and technical team members.
• Ability to actively participate in team discussions and brainstorming sessions.
• Ability to create, discuss, and explain technical documentation.
• Ability to create presentation slides or graphics for customer stakeholders and project team, and effectively communicate technical information to diverse audiences. 
• Strong communication skills to effectively convey complex cybersecurity concepts and initiatives.
• Ability to interpret and implement functional requirements for zero trust architectures.
• Ability to conduct stakeholder interviews and guide stakeholders through the gap analysis process.
• Ability to effectively conduct meetings with stakeholders driving progress toward Zero Trust initiatives.
• Adaptability, flexibility, and open mind to changing requirements.
• Ability to navigate tasks that are not well-defined.

Beneficial to have the following:

• Multiple industry recognized IT security vendor or vendor-agnostic certifications
• Analytical and critical thinking is crucial for decomposing and consolidating requirements in system planning, along with the ability to determine information system requirements through evaluation.
• Proficiency in problem-solving to address challenges and obstacles encountered during the execution of cybersecurity initiatives.
• Relationship Building - Ability to build and maintain positive relationships with diverse stakeholders, fostering collaboration and support for cybersecurity endeavors.

Where it’s done:

• Herndon, VA or Remote