Home › Companies › Truezerotech › Lead Cybersecurity Engineer – Vulnerability & Configuration Management (R-00155)
Lead Cybersecurity Engineer – Vulnerability & Configuration Management (R-00155)
Truezerotech · Washington DC · Remote · Active · Lever
Job facts
| Field | Value |
|---|---|
| Company | Truezerotech |
| Title | Lead Cybersecurity Engineer – Vulnerability & Configuration Management (R-00155) |
| Normalized title | - |
| Department / team | Security Resilience / Security Compliance Team |
| Location | Washington DC, DC, United States |
| Work model | Remote / Remote |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | Lever |
| Posted / first seen | 2026-04-17 / 2026-05-29 |
| Changed / last seen | 2026-05-29 / 2026-06-04 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Truezerotech. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Lever. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Washington DC. | Open |
| Department jobs | Active postings in Security Resilience. | Open |
| Work model jobs | Active Remote postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Truezerotech |
| Source | fd7b3fad-f07f-4438-ad90-754976718dfe |
| ATS provider | Lever |
Description
True Zero Technologies, a veteran-owned small business, was founded on the principle that the purposeful enablement of people and technology in an organization directly ties to the quality of its outcomes. True Zero recognizes that those outcomes begin and end with our people, and that is what we have built a community of like-minded, driven, and passionate individuals and innovators who are aligned in a common goal of delivering top-tier services to our customers. Our culture and commitment have been recognized through numerous accolades, including being named one of the Best Places to Work in 2023 in two categories (“Prosperous and Thriving” ($5MM–$50MM in gross revenue) and “Mid-Atlantic Region” (DC, DE, MD, NC, VA, WV)), and again in 2025 as a Best Places to Work honoree. In addition, True Zero earned coveted spots on the Inc. 5000 list of fastest-growing companies in America in 2022, 2023, and 2025, a testament to our sustained growth driven by our people-first approach and unwavering dedication to excellence.
This candidate will lead risk-based asset management efforts across vulnerability management, configuration management, and database hardening in support of a federal cybersecurity program. Additionally, this role will coordinate technical activities, guide prioritization based on business and security risk, and provide leadership visibility into remediation progress, operational gaps, and program performance. This position calls for a blend of hands-on technical depth and team leadership, with responsibility for driving process improvement, supporting automation, and helping mature enterprise security practices.
We’re actively searching for talented and expereinced professionals who are ready to experience the True Zero difference. As a True Zero team member, you'll enjoy:
- Competitive salary, paid twice per month
- Best in class medical coverage
- 100% of medical premiums covered by True Zero
- Company wide new business incentive programs
- Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)
- 3 weeks of PTO starting + 11 Paid Holidays Annually
- 401k Program with 100% company match on the first 4%
- Monthly reimbursement of Cell Phone and Home Internet costs
- Paternity/Maternity Leave
- Investment in training and certifications to broaden and deepen your technical skills
Job Responsibilities
Oversee RBAM projects, schedules, milestones, and team execution
Facilitate meetings and brief leadership on status, risks, priorities, and progress
Lead and coordinate vulnerability management activities across enterprise systems, including vulnerability identification, prioritization, remediation tracking, and validation
Oversee remediation efforts by working with system owners, engineers, administrators, database teams, and other stakeholders to ensure timely and risk-informed mitigation
Apply knowledge of CVE, CVSS, NVD, and the CISA KEV catalog to support risk-based vulnerability prioritization and remediation sequencing
Establish, manage, and enforce configuration baselines across Windows, Linux, network, cloud, containerized, and database environments
Incorporate security configuration baselines into configuration management processes, including operating system image hardening, automation, audit, and compliance validation
Support configuration management practices aligned with NIST SP 800-128 and other applicable federal guidance
Coordinate database hardening activities across relational, NoSQL, and cloud-native database environments
Apply DISA STIGs, CIS Benchmarks, and hardening best practices to support secure database configuration and compliance
Assess on-premises and cloud-hosted database environments for security posture, hardening compliance, logging, encryption, data masking, and audit readiness.
Use scanning and validation tools to verify database hardening compliance and identify configuration gaps
Translate audit requirements into actionable technical configurations, remediation tasks, dashboards, reports, and evidence artifacts
Develop, modify, and maintain dashboards and reports in Splunk or similar SIEM platforms to support leadership visibility, operational tracking, and program performance.
Use enterprise ticketing systems such as ServiceNow to document findings, assign remediation actions, track progress, and support auditability
Support automation through scripting, Splunk searches, and repeatable workflows using tools such as Python, PowerShell, Bash, or similar technologies
Support DevSecOps and CI/CD pipeline activities by helping integrate vulnerability management, configuration validation, and hardening requirements into development and deployment processes.
Coordinate with technical teams to ensure remediation, configuration, and database security activities are properly documented and supported by evidence
Provide technical guidance to stakeholders on remediation priorities, configuration risk, database hardening, and cyber hygiene improvement.
Support recurring reporting on vulnerability trends, remediation progress, configuration compliance, database hardening status, operational gaps, and risk reduction.
Help mature the risk-based asset management program by improving processes, automation, reporting, evidence generation, and stakeholder coordination
Direct and support enterprise vulnerability scanning, analysis, remediation prioritization, and reporting
Guide the development and enforcement of secure configuration baselines across systems and platforms
Coordinate database hardening, patching, scanning, and compliance activities with stakeholders
Review cyber hygiene findings and translate results into actionable remediation plans
Support evaluation of new technologies and products through security review and software approval processes
Develop or enhance dashboards, reporting, and metrics to improve visibility into risk and remediation progress
Support process improvement, automation, and operational maturity efforts across the RBAM function
Ensure work products, reporting, and technical activities align with DHS, client, and federal cybersecurity expectations
Lead and coordinate vulnerability management, configuration management, and database hardening activities
Job Qualifications
Bachelor’s degree in Information Technology, Information Systems, Computer Science, Computer Engineering, Electrical Engineering, or related technical field; or equivalent additional experience
7+ years of total professional experience
5+ years of technical experience in vulnerability management, configuration management, database hardening, or related security operations
Experience leading technical teams or workstreams in dynamic environments
Strong experience managing vulnerability remediation efforts across enterprise environments
Experience using vulnerability scanning tools such as Tenable/Nessus
Strong experience establishing, maintaining, and enforcing configuration baselines
Familiarity with remediation practices across Windows, Linux, network devices, containers, and cloud platforms
Strong knowledge of CVE, CVSS, NVD, and the CISA KEV catalog
Strong knowledge of configuration management principles and secure baseline enforcement
Familiarity with DISA STIGs, CIS Benchmarks, and secure hardening practices
Experience with enterprise dashboards, reporting, and ticketing workflows
Experience with scripting and automation using tools such as Python, PowerShell, Bash, or similar
Experience with a wide range of database technologies including:
Relational databases: Oracle, PostgreSQL, MySQL, MS SQL
NoSQL Databases: MongoDB
Cloud-native databases: AmazonRDS, Azure SQL, DynamoDB
Familiarity with DevSecOps and CI/CD pipeline concepts
Ability to assess and secure on-premises and cloud-hosted database environments
Experience with audit logging, encryption, masking, and technical evidence generation for compliance needs
Strong written and verbal communication skills
Required Certifications
One active certification such as CASP, GSEC, GSLC, CISSP, CEH, CISM, CISA, or comparable
One active Agile certification such as PMI-ACP, SAFe Agilist, CSM, or comparable
Full job record
| Job ID | a1524ce04f122a023d7f0e04d4d57e5c3966ca6f |
| Org ID | 7db049a1-c308-497e-8ef0-4ae8ac5e3083 |
| Source ID | fd7b3fad-f07f-4438-ad90-754976718dfe |
| Board ID | fd7b3fad-f07f-4438-ad90-754976718dfe |
| Provider | lever |
| Provider Job Key | 75cdccfc-0d77-456e-b250-9d741fb320ea |
| Title | Lead Cybersecurity Engineer – Vulnerability & Configuration Management (R-00155) |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Washington DC |
| Department | Security Resilience |
| Team | Security Compliance Team |
| Employment Type | Full-Time |
| Workplace Type | remote |
| Remote Policy | remote |
| Country | United States |
| Region | DC |
| City | Washington DC |
| Salary Raw | — |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://jobs.lever.co/truezerotech/75cdccfc-0d77-456e-b250-9d741fb320ea |
| Apply URL | https://jobs.lever.co/truezerotech/75cdccfc-0d77-456e-b250-9d741fb320ea/apply |
| First Seen At | 2026-05-29 07:10:49Z |
| Last Seen At | 2026-06-04 11:36:06Z |
| Last Checked At | 2026-06-04 11:36:06Z |
| Last Changed At | 2026-05-29 07:10:49Z |
| Inactive At | — |
| Source Posted At | 2026-04-17 21:19:19Z |
| Source Updated At | — |
| Raw Payload Uri | s3://bluework-jobs-prod-raw-590183727216/raw/provider=lever/board=truezerotech/date=2026-06-04/2026-06-04T11-36-05-837Z-fcb6ecd7fa4919f187062570656025383a3da23a15ee38f0e606e41db7c5d7b8.json |
Event Fields
{
"content_hash": "a1b7b7867f5a99038953246d757ee875a9e6c6bab8a2947f31f7f716272f427a",
"source_hash": "25272f1bef57ed9622c0adea6280d9eb209ca9aeba816c023a3daf3a4f0151e0",
"last_changed_at": "2026-05-29T07:10:49.241Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Washington DC",
"city": "Washington DC",
"region": "DC",
"country": "United States",
"is_remote": true,
"confidence": 0.75
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-04T11:36:06.350Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Washington DC",
"city": "Washington DC",
"region": "DC",
"country": "United States",
"is_remote": true,
"confidence": 0.75
},
"countries": [
"United States"
]
},
"remote_policy": "remote",
"salary_period": null,
"workplace_type": "remote",
"salary_currency": null
}Extensions
{}Native Structured
{
"lists": [
{
"text": "Job Responsibilities ",
"content": "\n<li data-sfc-root=\"c\" data-sfc-cb=\"\" data-hveid=\"CAMQBA\" data-processed=\"true\" style=\"list-style-type: none;\">\n<ul type=\"disc\">\n<li>Oversee RBAM projects, schedules, milestones, and team execution </li>\n<li>Facilitate meetings and brief leadership on status, risks, priorities, and progress </li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Lead and coordinate vulnerability management activities across enterprise systems, including vulnerability identification, prioritization, remediation tracking, and validation</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Oversee remediation efforts by working with system owners, engineers, administrators, database teams, and other stakeholders to ensure timely and risk-informed mitigation</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Apply knowledge of CVE, CVSS, NVD, and the CISA KEV catalog to support risk-based vulnerability prioritization and remediation sequencing</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Establish, manage, and enforce configuration baselines across Windows, Linux, network, cloud, containerized, and database environments</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Incorporate security configuration baselines into configuration management processes, including operating system image hardening, automation, audit, and compliance validation</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Support configuration management practices aligned with NIST SP 800-128 and other applicable federal guidance</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Coordinate database hardening activities across relational, NoSQL, and cloud-native database environments</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Apply DISA STIGs, CIS Benchmarks, and hardening best practices to support secure database configuration and compliance</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Assess on-premises and cloud-hosted database environments for security posture, hardening compliance, logging, encryption, data masking, and audit readiness.</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Use scanning and validation tools to verify database hardening compliance and identify configuration gaps</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Translate audit requirements into actionable technical configurations, remediation tasks, dashboards, reports, and evidence artifacts</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Develop, modify, and maintain dashboards and reports in Splunk or similar SIEM platforms to support leadership visibility, operational tracking, and program performance.</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Use enterprise ticketing systems such as ServiceNow to document findings, assign remediation actions, track progress, and support auditability</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Support automation through scripting, Splunk searches, and repeatable workflows using tools such as Python, PowerShell, Bash, or similar technologies</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Support DevSecOps and CI/CD pipeline activities by helping integrate vulnerability management, configuration validation, and hardening requirements into development and deployment processes.</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Coordinate with technical teams to ensure remediation, configuration, and database security activities are properly documented and supported by evidence</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Provide technical guidance to stakeholders on remediation priorities, configuration risk, database hardening, and cyber hygiene improvement.</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Support recurring reporting on vulnerability trends, remediation progress, configuration compliance, database hardening status, operational gaps, and risk reduction.</span></li>\n<li data-ogsc=\"rgb(0, 0, 0)\"><span role=\"presentation\">Help mature the risk-based asset management program by improving processes, automation, reporting, evidence generation, and stakeholder coordination</span></li>\n<li>Direct and support enterprise vulnerability scanning, analysis, remediation prioritization, and reporting </li>\n<li>Guide the development and enforcement of secure configuration baselines across systems and platforms</li>\n<li>Coordinate database hardening, patching, scanning, and compliance activities with stakeholders </li>\n<li>Review cyber hygiene findings and translate results into actionable remediation plans </li>\n<li>Support evaluation of new technologies and products through security review and software approval processes </li>\n<li>Develop or enhance dashboards, reporting, and metrics to improve visibility into risk and remediation progress </li>\n<li>Support process improvement, automation, and operational maturity efforts across the RBAM function </li>\n<li>Ensure work products, reporting, and technical activities align with DHS, client, and federal cybersecurity expectations </li>\n<li>Lead and coordinate vulnerability management, configuration management, and database hardening activities </li>\n\n\n</ul></li>"
},
{
"text": "Job Qualifications ",
"content": "<div>\n<ul type=\"disc\">\n<li>Bachelor’s degree in Information Technology, Information Systems, Computer Science, Computer Engineering, Electrical Engineering, or related technical field; or equivalent additional experience </li>\n<li>7+ years of total professional experience </li>\n<li>5+ years of technical experience in vulnerability management, configuration management, database hardening, or related security operations </li>\n<li>Experience leading technical teams or workstreams in dynamic environments </li>\n<li>Strong experience managing vulnerability remediation efforts across enterprise environments </li>\n<li>Experience using vulnerability scanning tools such as Tenable/Nessus </li>\n<li>Strong experience establishing, maintaining, and enforcing configuration baselines </li>\n<li>Familiarity with remediation practices across Windows, Linux, network devices, containers, and cloud platforms </li>\n<li>Strong knowledge of CVE, CVSS, NVD, and the CISA KEV catalog </li>\n<li>Strong knowledge of configuration management principles and secure baseline enforcement </li>\n<li>Familiarity with DISA STIGs, CIS Benchmarks, and secure hardening practices </li>\n<li>Experience with enterprise dashboards, reporting, and ticketing workflows </li>\n<li>Experience with scripting and automation using tools such as Python, PowerShell, Bash, or similar </li>\n<li>Experience with a wide range of database technologies including: </li>\n<ul type=\"circle\">\n<li>Relational databases: Oracle, PostgreSQL, MySQL, MS SQL</li>\n<li>NoSQL Databases: MongoDB</li>\n<li>Cloud-native databases: AmazonRDS, Azure SQL, DynamoDB</li>\n\n<li>Familiarity with DevSecOps and CI/CD pipeline concepts </li>\n<li>Ability to assess and secure on-premises and cloud-hosted database environments </li>\n<li>Experience with audit logging, encryption, masking, and technical evidence generation for compliance needs </li>\n<li>Strong written and verbal communication skills </li>\n\n<p><strong>Required Certifications</strong></p>\n<ul type=\"disc\">\n<li>One active certification such as CASP, GSEC, GSLC, CISSP, CEH, CISM, CISA, or comparable </li>\n<li>One active Agile certification such as PMI-ACP, SAFe Agilist, CSM, or comparable </li>\n\n<br clear=\"all\">\n<p> </p>\n</ul></ul></ul></div>"
}
],
"country": "US",
"createdAt": 1776460759784,
"updatedAt": null,
"categories": {
"team": "Security Compliance Team",
"location": "Washington DC",
"commitment": "Full-Time",
"department": "Security Resilience",
"allLocations": [
"Washington DC",
"Baltimore MD",
"Arlington VA",
"Columbia, MD",
"Fort Belvoir, VA",
"Fort Meade, MD",
"Herndon, VA",
"Fredericksburg, VA",
"Newport News, VA",
"Northern, VA",
"Northern VA (Telework Flexibility)",
"Quantico, VA"
]
},
"salaryRange": null,
"workplaceType": "remote"
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/a1524ce04f122a023d7f0e04d4d57e5c3966ca6f?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/7db049a1-c308-497e-8ef0-4ae8ac5e3083JSONGET https://api.bluedoor.sh/job-postings/v1/sources/fd7b3fad-f07f-4438-ad90-754976718dfeJSONGET https://api.bluedoor.sh/job-postings/v1/jobs/a1524ce04f122a023d7f0e04d4d57e5c3966ca6f/eventsJSON