Elasticsearch Engineer

About ShorePoint, LLC

ShorePoint is a fast-growing, industry-recognized and award-winning cybersecurity services firm with a focus on high-profile, high-threat, private and public-sector customers who demand experience and proven security models to protect their data. ShorePoint subscribes to a “work hard, play hard” mentality and celebrates individual and company successes. We are passionate about our mission and going above and beyond to deliver for our customers. We are equally passionate about an environment that supports creativity, accountability, diversity, inclusion and a focus on giving back to our community.

The Perks

As recognized members of the Cyber Elite, we work together in partnership to defend our nation’s critical infrastructure while building meaningful and exciting career development opportunities in a culture tailored to the individuals technical and professional growth. We are committed to the belief that our team members do their best work when they are happy and well cared for. In support of this philosophy, we offer a comprehensive benefits package, including major carriers for health care providers. Highlighted benefits offered: 144 hours of PTO, 11 holidays, 85% of insurance premium covered, 401k, continued education, certifications maintenance and reimbursement and more.

Who We’re Looking For

We are seeking an Elasticsearch Engineer with expertise in designing, deploying and optimizing Elastic Stack solutions in federal environments. This role supports the delivery of Elastic-based solutions across cloud, on-prem and hybrid infrastructures to enable security operations and data-driven outcomes. The Elasticsearch Engineer will lead technical implementations, support migrations and contribute to scalable architectures while engaging directly with client stakeholders. This is a unique opportunity to shape the growth, development and culture of an exciting and fast-growing company in the cybersecurity market.

What You’ll Be Doing

• Architect, deploy and tune Elastic Stack solutions (Elastic Cloud Enterprise (ECE), Elastic Cloud on Kubernetes (ECK), Elastic Cloud) across cloud, on-prem and hybrid environments.
• Execute legacy security platform migrations, including detection translation (e.g., Search Processing Language (SPL) → (ES|QL) Elasticsearch Query Language) and analyst workflow modernization.
• Design and implement data ingestion pipelines using Elastic Agent, Fleet, Logstash and Beats.
• Harden deployments for federal compliance, including Transport Layer Security (TLS), Personal Identity Verification/Common Access Card (PIV/CAC), Single Sign-On (SSO) / Security Assertion Markup Language (SSO/SAML), Security Technical Implementation Guide (STIG) and audit logging.
• Build outcome-driven dashboards and advanced Kibana visualizations.
• Develop automation using Infrastructure-as-Code (IaC) tools (Ansible, Terraform or equivalent).
• Communicate technical decisions and trade-offs directly to client stakeholders.
• Contribute to internal IP, including reusable templates, automation and reference architectures.

What You Need to Know

• Understanding of Elastic Stack capabilities and use cases across deployment, security and operations.
• Knowledge of distributed cluster architecture at scale, including multi-tenant and CCS environments.

Must-Haves

• Proven ability to analyze complex requirements and translate them into clear, actionable tasks and processes through critical thinking.
• Strong problem-solving skills and a self-starter mentality.
• Solid written and verbal communication skills.
• Linux CLI fundamentals and basic networking knowledge.
• Familiarity with (or the drive to rapidly learn) the Elastic Stack.
• Applicants must be a U.S. citizen and eligible to obtain and maintain a security clearance, in compliance with federal contract requirements.
• Journeyman Level and Above: 2+ years of production Elastic Stack experience.
• Hands-on experience with containerization and IaC tooling.
• Proficiency with at least one major cloud provider.
• Experience with federal security controls (TLS, SSO/SAML, PIV/CAC, STIG).
• Client-facing communication skills.
• Senior: 6+ years in systems engineering or infrastructure with deep Elastic expertise.
• Proven track record leading engagements from scoping through delivery.
• Deep knowledge of distributed cluster architecture at scale, including multi-tenant and CCS environments.
• Ability to drive client relationships and identify expansion opportunities.

Beneficial to Have

• Bachelor’s degree in Cybersecurity, Computer Science, Information Technology, Engineering or a related field.
• Elastic certifications (ECE or being on a defined certification track).
• Elastic Security (SIEM, detection engineering, threat hunting and legacy migration).
• Detection translation experience (SPL → ES|QL or equivalent).
• Scripting proficiency (Python, Bash or PowerShell).
• Exposure to AI-augmented search, RAG or semantic search use cases.
• Prior professional services or consulting experience.

Where it’s Done

Remote (Reston, VA with up to 25% travel to client sites).

Key skills/competency

• Elasticsearch Engineer
• Elastic Stack
• Cybersecurity
• Federal Environments
• Cloud, On-prem, Hybrid
• Data Ingestion
• Kibana
• Infrastructure-as-Code
• Client Stakeholders
• Security Clearance