RemoteLeaf Logo
Log in Sign up

Lead Cyber Hygiene Engineer

1 month, 1 week ago
United States
Full-time
Lead
Security Engineer
DevOps and Infrastructure
Agile Bash CI/CD Cybersecurity DevSecOps DynamoDB Encryption Linux MongoDB MySQL Oracle PostgreSQL PowerShell Python SIEM Splunk SQL Server
Apply Now
True Zero Technologies

True Zero Technologies

True Zero Technologies specializes in cybersecurity programs and software solutions, focusing on proactive defense and IT engineering services.

Internet Software & Services
11-50
Founded 2016
View All Jobs 8

Description

  • Oversee RBAM projects, schedules, milestones, and team execution.
  • Facilitate meetings and brief leadership on status, risks, priorities, and progress.
  • Lead enterprise vulnerability management activities, including identification, prioritization, remediation tracking, and validation.
  • Coordinate remediation efforts with system owners, engineers, administrators, database teams, and other stakeholders.
  • Apply CVE, CVSS, NVD, and CISA KEV data to prioritize vulnerabilities and remediation sequencing.
  • Establish, manage, and enforce secure configuration baselines across Windows, Linux, network, cloud, containerized, and database environments.
  • Coordinate database hardening activities across relational, NoSQL, and cloud-native database environments.
  • Develop dashboards, reports, metrics, and evidence artifacts in Splunk or similar SIEM platforms.
  • Use enterprise ticketing systems such as ServiceNow to document findings, assign actions, and track remediation progress.
  • Support automation, DevSecOps, and CI/CD integration through scripting, reporting, and repeatable workflows.

Requirements

  • Bachelor’s degree in Information Technology, Information Systems, Computer Science, Computer Engineering, Electrical Engineering, or a related technical field, or equivalent additional experience.
  • 7+ years of total professional experience.
  • 5+ years of technical experience in vulnerability management, configuration management, database hardening, or related security operations.
  • Experience leading technical teams or workstreams in dynamic environments.
  • Strong experience managing vulnerability remediation efforts across enterprise environments.
  • Experience using vulnerability scanning tools such as Tenable/Nessus.
  • Strong experience establishing, maintaining, and enforcing configuration baselines.
  • Familiarity with remediation practices across Windows, Linux, network devices, containers, and cloud platforms.
  • Strong knowledge of CVE, CVSS, NVD, and the CISA KEV catalog.
  • Familiarity with DISA STIGs, CIS Benchmarks, and secure hardening practices.
  • Experience with enterprise dashboards, reporting, and ticketing workflows.
  • Experience with scripting and automation using Python, PowerShell, Bash, or similar tools.
  • Experience with relational, NoSQL, and cloud-native database technologies such as Oracle, PostgreSQL, MySQL, MS SQL, MongoDB, Amazon RDS, Azure SQL, and DynamoDB.
  • Familiarity with DevSecOps and CI/CD pipeline concepts.
  • Ability to assess and secure on-premises and cloud-hosted database environments.
  • Experience with audit logging, encryption, masking, and technical evidence generation for compliance needs.
  • Strong written and verbal communication skills.
  • One active certification such as CASP, GSEC, GSLC, CISSP, CEH, CISM, CISA, or comparable.
  • One active Agile certification such as PMI-ACP, SAFe Agilist, CSM, or comparable.

Benefits

  • Competitive salary, paid twice per month.
  • Best-in-class medical coverage.
  • 100% of medical premiums covered by True Zero.
  • Company-wide new business incentive programs.
  • Contribution incentives for white papers, blog posts, and internal webinars.
  • 3 weeks of PTO starting, plus 11 paid holidays annually.
  • 401(k) program with 100% company match on the first 4%.
  • Monthly reimbursement for cell phone and home internet costs.
  • Paternity and maternity leave.
  • Investment in training and certifications to broaden and deepen technical skills.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

The Missing Link

Saviynt IAM Specialist

The Missing Link 51-250 Internet Software & Services

The Missing Link is seeking a Security Engineer - Saviynt to support large enterprise identity governance initiatives, design and deliver Saviynt-based solutions, and strengthen its growing cyber security practice.

India Full-time Mid Level Security Engineer
Active Directory Azure Cybersecurity JavaScript PowerShell REST API SAP SQL
7 hours, 1 minute ago
EnableComp

AI Security Architect (REMOTE - United States)

EnableComp 251-1K Insurance

EnableComp is seeking a remote AI Security Architect to secure and govern its AI and machine learning initiatives within its healthcare revenue cycle management environment.

United States Full-time Senior AI Engineer Security Engineer
Azure Cybersecurity HIPAA LLM Machine Learning
7 hours, 16 minutes ago
Dropbox

Senior Infrastructure Security Engineer

Dropbox 1K-5K Internet Software & Services

Dropbox is hiring a Security Engineer to secure its AI and agentic infrastructure while helping protect products and users across cloud and on-prem environments.

Canada Full-time Lead Infrastructure Engineer Security Engineer
$152k-$206k
Bash CI/CD CrowdStrike Go Java Kubernetes Linux LLM Node.js OAuth OpenID Connect OWASP Python Ruby Rust SIEM
7 hours, 16 minutes ago
Fullscript

Staff, Security Engineer

Fullscript 251-1K Health Care Providers & Services

Fullscript is hiring a Staff Security Engineer to lead hands-on security engineering across its healthcare technology platform, shaping secure product development and protecting systems that support practitioners and patients.

United States Canada Full-time Lead Security Engineer
AWS GitHub GitLab GraphQL JavaScript Node.js Penetration Testing Ruby on Rails
7 hours, 46 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers