ShorePoint, LLCRemote
Post-Quantum Cryptography (PQC) Security Engineer
United States of America
Full Time
3 weeks ago
No H1B
Key skills
AgileRisk ManagementCommunicationCritical ThinkingNetwork SecurityZero Trust
About this role
ShorePoint, LLC is a fast-growing cybersecurity services firm focused on high-profile customers. They are seeking a Post-Quantum Cryptography (PQC) Security Engineer to lead the engineering aspects of a PQC migration program and enforce cryptographic-based security measures and policies.
Responsibilities:
- Serve as the technical SME on information systems and infrastructure security, designing and enforcing cryptographic-based security measures and policies
- Lead engineering aspects of a Post-Quantum Cryptography (PQC) migration program, advising on emerging technologies and translating strategy into operational outcomes
- Support modernization of cryptographic inventory from manual to fully automated processes using discovery and inventory tools
- Design and execute test plans for cryptographic tools, products and services in controlled lab and pre-production environments, documenting results and configuration settings based on findings
- Assess quantum vulnerabilities, conduct risk assessments and support migration to quantum-resistant encryption aligned to NIST FIPS 203, 204 and 205
- Collaborate with ISOs and ISSOs to enforce security policies and maintain compliance with federal IT security requirements
- Research evolving PQC standards, tools and methodologies and synthesize findings into actionable engineering guidance
- Contribute to large deliverables across the full program, including areas adjacent to the primary expertise
- Communicate proactively across a fully remote, distributed team; written and async communication is core to how this team operates
- Support Agile ceremonies, sprint coordination, stakeholder engagement and meeting documentation
Requirements:
- Bachelor's degree in Cybersecurity, Computer Science, Information Technology, Engineering or 4+ additional years of relevant experience in lieu of degree
- 5+ years of experience in information security engineering, including network security, cryptographic systems and risk management
- (ISC)2 Certified Information Security Professional (CISSP) or Certified Information Security Manager (CISM)
- Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking
- Experience implementing security controls and policies in enterprise IT environments
- Hands-on experience with security tools and automation
- Familiarity with NIST cryptographic standards, PKI, TLS and Zero Trust Architecture (ZTA) frameworks
- Applicants must be a U.S. citizen in compliance with federal contract requirements
- Prior experience working directly with or in support of federal agency IT programs, including familiarity with federal governance structures, compliance frameworks and inter-agency coordination
- ZTA principles and how they intersect with cryptographic security controls
- Hands-on experience with PQC concepts or NIST PQC algorithms (FIPS 203, 204, 205)
- Familiarity with automated cryptographic discovery and inventory tools, DevSecOps pipelines or FedRAMP environments