Cloud Security Engineer (Q Clearance)

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a work hard, play hard mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 18 days of PTO, 11 holidays, 80% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we're looking for:

We are seeking a Cloud Security Engineer for a potential opportunity with deep cybersecurity expertise and automation capabilities to strengthen the security posture across Azure, VMware VCF and on-premise infrastructure. This role supports Zero Trust and DevSecOps initiatives, enforces compliance and streamlines operations through secure architecture design, automation and advanced threat detection. The Cloud Security Engineer will play a critical role in securing cloud environments, supporting authorization efforts and integrating security throughout the development lifecycle. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market. Employment for this position is dependent on the successful award of the contract.

What you'll be doing:

• Serve as subject matter expert (SME) for cloud security incidents, coordinating with Cyber Operations and Security Control Assessor teams.
• Integrate security scanning tools into CI/CD pipelines (e.g., Gitlab, SonarQube, Trivy).
• Support and enhance Zero Trust architecture implementations, including Conditional Access, Privileged Identity Management (PIM) and Identity Governance.
• Perform cloud compliance checks aligned with DoD and FedRAMP baselines (NIST 800-53, RMF).
• Monitor and manage cloud-native SIEM tools (e.g., Azure Sentinel, SPLUNK) and log analytics for threat detection and operational insights.
• Automate security and operational tasks through scripting and platform-native automation tools (e.g., Logic Apps, PowerShell, Python).
• Contribute to risk assessments, Authorization to Operate (ATO) documentation and policy enforcement strategies.
• Assist with token management, certificate renewal automation and credential lifecycle tasks.
• Support performance monitoring, system patching and endpoint protection across the cloud landscape.

What you need to know:

• Strong understanding of secure cloud architecture, Zero Trust principles and identity governance.
• Proficiency in integrating security tools into CI/CD pipelines and automating security workflows.
• Hands-on experience with cloud-native SIEM platforms and log analytics.
• Ability to support ATO documentation, compliance activities and enforcement of security policies.
• Skilled in scripting for security automation using platform-native tools and languages.

Must have's:

• Bachelor's degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 5+ years of experience in:
  • Cybersecurity Expertise and Automation.
  • Designing and implementing automated operations across IL2/IL3 / IL4 environments using tools like Azure Policy, VMWARE Auria and Gitlab.
  • Experience in Microsoft Azure, including security and identity management.
  • Develop and manage Infrastructure as Code (IaC) for repeatable, secure cloud deployments using Terraform, Bicep or ARM templates.
  • Proficient with IaC tools (Terraform, Bicep) and automation scripting (PowerShell, Python).
  • DoD cybersecurity frameworks (RMF, NIST 800-53, STIGs).
  • Experience with CI/CD pipelines, Gitlab and security integration.
  • Strong understanding of networking, firewalls and role-based access control (RBAC).
  • Analyzing logs and security alerts and develop proactive countermeasures.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Applicants must currently hold and maintain an active DOE Q or equivalent DoD Top Secret clearance.

Beneficial to have the following:

• Master's degree in Cybersecurity, Information Systems or a related technical discipline.
• Experience with cloud security architectures in AWS and Azure.
• Proficiency with containerization and orchestration technologies such as Docker and Kubernetes.
• Knowledge of DevSecOps best practices.

Where it's done:

• Onsite (Washington, D.C.)