Cybersecurity Tools Engineer

Who we are: 

ShorePoint is a fast-growing, industry recognized, and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion, and a focus on giving back to our community.   

The perks: 

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individual technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certification maintenance and reimbursement, etc. 

Who we’re looking for: 

We are seeking a Cybersecurity Tools Engineer who has experience providing support in a dynamic, fast-paced environment within the public sector. The Cybersecurity Tools Engineer will have an opportunity to shape the growth of the company by to provide unparalleled support to our customer through the Continuous Diagnostic & Mitigation (CDM) Program. This is a unique opportunity to join an exciting company where you will have a voice and be an active participant in driving growth and shaping our companies’ culture. 

What you’ll be doing: 

SkyBox Management: 50% : Technical management of SkyBox functionality, upgrades, patching, and user account administration.  

• Development and management of all necessary SkyBox SOPs (users, admin, reports, etc.) 
• Create and implement changes as required in accordance with USAID change management processes and scheduled timelines in order to avoid SLA penalties
  

• Firewall Audit: Creating and maintain the process and completing firewall audits that create action items to improve the security footprint, and efficiency of the Firewalls across USAID

Tenable-Nessus Engineer/Administrator: 50% 

• Installing and Configuring Nessus, Nessus Manager, Nessus Agents, Log Correlation Engine, Nessus Network Monitor, and Security Center on both Linux/Unix and Windows based environments 
• Responsible for installing and configuring Nessus Agents 
• Secure Tenable server an Enable SSL 

• Integrating Tenable products with LDAP, and Active Directory 
• Responsible for the creation of tenable Organizations, Repositories, and Scan Zones. 
• Responsible for local and LDAP based user management. 
• Responsible for configuring tenable plugins/feeds and adding audit files 
  

• Responsible for adding scan policies, audit policies, and credentials to Security Center, and Nessus Manager. 
• Responsible for configuring Nessus Manager scan pulls to Security Center   

• Highly skilled tools engineer to perform in a fast-paced customer needs driven environment. Ability to change directions based on cyber threat and mitigation strategies
  
• Manage tools in accordance with the TAD (Technical Architecture Document) documentation. Ability to create a TAD where one does not exist to document current state design and implementation 
• Work closely with the Splunk team for log ingestion into a wider log aggregation capability for security monitoring, alerting and after the fact investigations 
• Work closely with architects, engineers, and integrators to assess customer requirements and to design and support differing tool set solutions to ensure alignment with customer needs 
  

• Ability to deliver ad-hoc briefs of status of responsible tool sets to a wider audience to help them understand capability, next actions, and communicate deliverable timeframes 
  
• Participate in group sessions as well as attend and share in agile sprint daily meetings to track progress to ensure development of solutions is in support of the CDM project and customer requirements 
• Serve as a trusted advisor, providing subject matter expertise, guidance, and best practice recommendations 

• Document the installation and configuration for deployment into production 
• Secure the solution by being familiarity with TLS, certificates, SSO/PIV authentication, and encryption technologies 
  
• Test data flows, troubleshooting issues, and monitoring the health of the solution and servers to maximize performance and minimize downtime 

What you need to know: 

• Experience with Tenable products, including Tenable.SC and Nessus 

• Experience with configuration management of operating system and applications of popular security benchmarks published by DoD STIG, USGCB, and FDCC 
• Experience with designing, implementing, configuring, and operating information security continuous monitoring tools 
• Maintain and/or update system architecture to fit changes in environment. Automate task depending upon OS. Routinely research assigned tools for vulnerabilities and system patches 
• Follow strict change management guidelines in Service Now to implement changes in support of SLAs and SLOs
  

• Windows and Linux Server commands, networking knowledge, and PKI knowledge assist in troubleshooting testing scenarios, implementations, and system patches/updates

Must have’s: 

• BS in Computer Science or related field experience required 
• Minimum of 2+ years of experience 
• Linux administration experience and strong scripting knowledge
• Must be a US citizen (non-dual citizenship) with an Active Secret Clearance 

 Where it’s done: 

• (Remote)