Risk-Based Asset Manager

Job not on LinkedIn

🕒 April 20

🏛️ District of Columbia, Maryland, +2 more states – Remote

🏛️ District of Columbia – Remote 🦀 Maryland – Remote ⚔️ Virginia – Remote ☕ Washington – Remote

⏰ Full Time

🟠 Senior

🔴 Lead

🎲 Risk

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

True Zero Technologies, LLC

WebsiteLinkedInAll Job Openings

11 - 50 employees

🔒 Cybersecurity

🏢 Enterprise

☁️ SaaS

Cybersecurity • Enterprise • SaaS

True Zero Technologies, LLC is a veteran-owned company specializing in cybersecurity solutions. The company offers a range of services including security engineering and architecture, emerging technology adoption, cyber operations, cyber threat intelligence, penetration testing, and information assurance. True Zero is also recognized for its managed services and cloud security capabilities. The company partners with technology leaders such as Tanium, Splunk, Cribl, and Zscaler to deliver high-impact, high-value solutions that help organizations innovate while enhancing their security and operational programs. True Zero is committed to empowering organizations with actionable insights to secure their IT environments effectively.

📋 Description

• Oversee RBAM projects, schedules, milestones, and team execution • Facilitate meetings and brief leadership on status, risks, priorities, and progress • Direct and support enterprise vulnerability scanning, analysis, remediation prioritization, and reporting • Guide the development and enforcement of secure configuration baselines across systems and platforms • Coordinate database hardening, patching, scanning, and compliance activities with stakeholders • Review cyber hygiene findings and translate results into actionable remediation plans • Support evaluation of new technologies and products through security review and software approval processes • Develop or enhance dashboards, reporting, and metrics to improve visibility into risk and remediation progress • Support process improvement, automation, and operational maturity efforts across the RBAM function • Ensure work products, reporting, and technical activities align with DHS, client, and federal cybersecurity expectations • Lead and coordinate vulnerability management, configuration management, and database hardening activities

🎯 Requirements

• Bachelor’s degree in Information Technology, Information Systems, Computer Science, Computer Engineering, Electrical Engineering, or related technical field; or equivalent additional experience • 7+ years of total professional experience • 5+ years of technical experience in vulnerability management, configuration management, database hardening, or related security operations • Experience leading technical teams or workstreams in dynamic environments • Strong experience managing vulnerability remediation efforts across enterprise environments • Experience using vulnerability scanning tools such as Tenable/Nessus • Strong experience establishing, maintaining, and enforcing configuration baselines • Familiarity with remediation practices across Windows, Linux, network devices, containers, and cloud platforms • Strong knowledge of CVE, CVSS, NVD, and the CISA KEV catalog • Strong knowledge of configuration management principles and secure baseline enforcement • Familiarity with DISA STIGs, CIS Benchmarks, and secure hardening practices • Experience with enterprise dashboards, reporting, and ticketing workflows • Experience with scripting and automation using tools such as Python, PowerShell, Bash, or similar • Experience with a wide range of database technologies including: • Relational databases: Oracle, PostgreSQL, MySQL, MS SQL • NoSQL Databases: MongoDB • Cloud-native databases: AmazonRDS, Azure SQL, DynamoDB • Familiarity with DevSecOps and CI/CD pipeline concepts • Ability to assess and secure on-premises and cloud-hosted database environments • Experience with audit logging, encryption, masking, and technical evidence generation for compliance needs • Strong written and verbal communication skills • One active certification such as CASP, GSEC, GSLC, CISSP, CEH, CISM, CISA, or comparable • One active Agile certification such as PMI-ACP, SAFe Agilist, CSM, or comparable

🏖️ Benefits

• Competitive salary, paid twice per month • Best in class medical coverage • 100% of medical premiums covered by True Zero • Company wide new business incentive programs • Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.) • 3 weeks of PTO starting + 11 Paid Holidays Annually • 401k Program with 100% company match on the first 4% • Monthly reimbursement of Cell Phone and Home Internet costs • Paternity/Maternity Leave • Investment in training and certifications to broaden and deepen your technical skills