Who we are:
ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.
The Perks:
As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement, etc.
Who we’re looking for:
We are seeking a highly skilled and experienced Lead Cybersecurity Analyst to join our cybersecurity team. The ideal candidate will have a strong background in cybersecurity, policy analysis, and risk management. The Lead Cybersecurity Analyst will play a crucial role in ensuring the security and resilience of IT operations by developing and implementing cybersecurity policies, analyzing risks, and leading cross-functional teams. This is an excellent opportunity to contribute to a dynamic organization where you can shape our cybersecurity strategies and drive growth.
What you’ll be doing:
- Develop, analyze, and update cybersecurity and privacy policies and procedures in accordance with applicable federal laws, regulations, and standards.
- Provide guidance and support in policy development, review, and preparation of final reports.
- Coordinate with stakeholders, system owners, and executive leadership to ensure implementation of practical and achievable policies and procedures.
- Conduct risk management activities, including identifying potential vulnerabilities and weaknesses, and recommending corrective actions.
- Lead cross-functional teams to implement cybersecurity strategies and ensure compliance with federal IT security requirements.
- Perform detailed analysis of work products, ensuring they meet the specified quality levels and comply with regulatory requirements.
- Present executive briefs to leadership and stakeholders, providing insights and recommendations for cybersecurity improvements.
- Utilize governance, risk, and compliance (GRC) tools to manage and mitigate risks effectively.
- Develop and deliver role-based cybersecurity training for personnel with inherent cybersecurity responsibilities.
What you need to know:
- Strong knowledge and experience in cybersecurity frameworks, risk management, and policy analysis.
- Familiarity with federal government IT security requirements and compliance standards.
- Excellent analytical and problem-solving skills, with the ability to conduct detailed risk assessments and recommend mitigation strategies.
- Experience in developing and implementing cybersecurity policies and procedures.
- Strong leadership and teamwork skills, with the ability to manage and lead cross-functional teams.
- Effective communication skills, both written and verbal, with the ability to present complex information to executive leadership and stakeholders.
Must have’s:
- 8 - 10 years of relevant work experience.
- Associate's degree substitutes for 2 years; Bachelor's degree substitutes for 3 years.
- Ability to manage and lead cybersecurity initiatives and policy development.
- Experience in presenting and communicating cybersecurity policies and recommendations.
- Ability to obtain and maintain agency-required Q clearance.
Beneficial to have the following:
-
Shall possess one or more of the following certifications: Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), and Project Management Professional (PMP).
Where it’s done: