Information Technology (IT) Manager

Who we are:

ShorePoint is a fast-growing, industry recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a "work hard, play hard" mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.

The Perks:

As recognized members of the Cyber Elite, we work together in partnership to defend our nation's critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 144 hours of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who we're looking for:

We are seeking an Information Technology (IT) Manager with experience planning, implementing and supporting secure, Federally compliant and cost-effective technology environments. This role partners with leadership to understand business needs, manage IT budgets and vendors, establish policies and security standards and maintain compliance with frameworks such as NIST 800-53, NIST 800-171, CMMC and FISMA. The IT Manager provides hands-on technical expertise while guiding long-term technology planning, ensuring reliable systems, strong security posture and effective end-user support. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What you'll be doing:

• Oversee administration, monitoring and maintenance of Microsoft 365 GCC High and Azure Active Directory (Entra ID).
• Manage user and service accounts, groups, MFA, Conditional Access and role-based access control (RBAC).
• Implement identity protection and Zero Trust policies, including just-in-time access and privileged identity management.
• Configure and maintain Microsoft Defender for Endpoint, Defender for Office 365, Defender for Identity, Defender for Cloud and Sentinel, including alert triage and tuning.
• Monitor and respond to security alerts and incidents through Microsoft Sentinel, leveraging advanced analytics and automation.
• Manage Azure Security Center, Secure Score and continuous security posture improvement.
• Implement and maintain compliance and data protection controls using Microsoft Purview (DLP, labels, retention, insider risk, eDiscovery) to support NIST 800-171 and CMMC requirements.
• Ensure Controlled Unclassified Information (CUI) is processed, stored and transmitted only within approved environments such as Microsoft 365 GCC High, Azure Government workloads, AWS and authorized third-party services, with strong access controls, encryption and auditing in place.
• Support audit, assessment and ATO processes through accurate documentation and evidence collection.
• Administer Azure resources including virtual networks, storage, virtual machines and resource groups.
• Manage Intune (Endpoint Manager) for device compliance, application deployment and endpoint security baselines.
• Monitor system health, capacity and performance across GCC High and AWS environments.
• Design, build and administer an isolated AWS cloud lab environment for development, testing, training and proof-of-concept activities.
• Implement cost controls and guardrails in cloud lab environments, including service quotas, SCPs and budget alarms.
• Develop and maintain PowerShell and KQL scripts for automation, reporting and incident investigation.
• Integrate or support ERP, CRM, HRIS, ITSM and other business systems using secure APIs, SSO/federation where supported and approved middleware or connectors, ensuring compliance with GCC High and Azure Government constraints.
• Oversee IT systems and infrastructure including deployment, maintenance, upgrades and end-user support.
• Establish and maintain IT policies, standards and security practices to ensure reliable and compliant operations.
• Develop and manage IT budgets, business cases, vendor relationships, contracts and procurement.
• Stay current on emerging technologies and Federal security requirements and make recommendations to support business goals.
• Maintain job knowledge through training, professional publications, personal networks and participation in professional organizations.
• Show initiative in reassessing technology requirements and proactively suggesting improvements.
• Serve as a technical advisor to support complex decisions, risk evaluations and security compliance strategies.
• Advise leadership on technology innovations, security threats and evolving industry trends.

What you need to know:

• Several years of hands-on experience administering Microsoft 365 and Azure in a production environment, including security and compliance configurations.
• Deep knowledge of Entra ID (Azure AD), Conditional Access, MFA, Intune and core Microsoft 365 services.
• Practical experience with Microsoft Defender products and Microsoft Sentinel or another SIEM.
• Familiarity operating in Microsoft 365 GCC or GCC High, AWS or other regulated cloud environments mapped to frameworks such as NIST 800-171 or CMMC.

Must have's:

• Bachelor's degree in Cybersecurity, Computer Science, Information Systems, Mathematics, Engineering or a related field.
• 5+ years administering Microsoft 365, Azure and AWS environments, including 2+ years in GCC High or similar compliance-constrained environments.
• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Experience with Microsoft Defender suite and Purview compliance tools.
• Working understanding of NIST SP 800-171, CMMC, FedRAMP and federal information security frameworks.
• Proficiency with PowerShell, KQL and automation scripting.
• Understanding of foundational AWS identity and security capabilities such as IAM roles and policies, AWS Organizations, CloudTrail, Config, GuardDuty and Security Hub, applying least-privilege, logging and monitoring best practices in sandbox environments.
• Strong troubleshooting and documentation skills.
• Strong decision-making skills under changing priorities or dynamic technical conditions.
• Skilled in balancing project requirements, timelines and stakeholder expectations.
• Ability to assess and interpret security threats, industry trends and innovation opportunities to guide enterprise strategies.
• Ability to operate independently while supporting collaborative, team-based delivery.
• Strong communication skills for both technical colleagues and executive leadership.
• Ability to manage multiple tasks simultaneously, coordinate resources and meet scheduled goals.
• Ability to evaluate information, prioritize needs and formulate effective solutions.
• Proven ability to multi-task, work independently and collaboratively, share workloads and adapt to shifting priorities.
• Applicants must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.

Beneficial to have:

• Relevant technical certifications such as CISSP, CCSP or CASP+.
• Microsoft certifications such as Administrator Expert (MS-102), Azure Administrator Associate (AZ-104), Security Engineer Associate (AZ-500) or Security Administrator.
• AWS certifications such as Cloud Practitioner, Solutions Architect - Associate, SysOps Administrator - Associate or AWS Security

Where it's done:

• Hybrid (must be local to Herndon, VA and attend in person meetings as needed).