The Role
Lead analysis of Tanium data to identify security vulnerabilities, manage threat intelligence, and improve compliance while reporting to an executive level.
Summary Generated by Built In
True Zero Technologies, a veteran-owned small business, was founded on the principle that the purposeful enablement of people and technology in an organization directly ties to the quality of its outcomes. True Zero recognizes that those outcomes begin and end with our people, and that is what we have built a community of like-minded, driven, and passionate individuals and innovators who are aligned in a common goal of delivering top-tier services to our customers. Our culture and commitment have been recognized through numerous accolades, including being named one of the Best Places to Work in 2023 in two categories (“Prosperous and Thriving” ($5MM–$50MM in gross revenue) and “Mid-Atlantic Region” (DC, DE, MD, NC, VA, WV)), and again in 2025 as a Best Places to Work honoree. In addition, True Zero earned coveted spots on the Inc. 5000 list of fastest-growing companies in America in 2022, 2023, and 2025, a testament to our sustained growth driven by our people-first approach and unwavering dedication to excellence.
Job Responsibilities
- Endpoint Data Analysis: Lead the team in analyzing data from Tanium modules (Asset, Discover, and Inventory) to identify unauthorized hardware, software discrepancies, and gaps in enterprise visibility.
- Vulnerability & Compliance Assessment: Interpret results from the Comply and Patch modules to perform deep-dive analysis into the organization’s attack surface. Prioritize remediation efforts based on risk scoring, exploitability, and mission impact.
- Threat Hunting & Pattern Recognition: Utilize the Threat Response and Impact modules to analyze Indicators of Compromise (IoCs). Conduct trend analysis to identify recurring threat vectors and suspicious endpoint behavior.
Cross-Functional Impact Analysis: Analyze USCC and DCDC directives to determine the specific operational risks to enterprise systems. Translate these directives into technical queries and monitoring strategies. - Intel & IoC Management: Evaluate intelligence feeds to identify relevant IoCs. Manage the lifecycle of these indicators within the Tanium platform, ensuring detection logic is refined to reduce false positives.
- ACEM Analytics: Monitor Automated Continuous Endpoint Monitoring (ACEM) outputs to provide real-time situational awareness of the network's security posture.
- Reporting and Documentation: Manage and generate cybersecurity RMF artifacts such as System Security Plans, POA&M (Plans of Action & Milestones), and security CONOPS (Concept of Operations).
Executive Dashboards: Design and manage Trend boards to communicate complex security metrics to leadership, focusing on long-term risk reduction and security posture maturation. - Continuous Process Improvement: Regularly review and update vulnerability management processes and procedures (SOP) based on lessons learned from routine and event-oriented incidents in accordance with DoD regulations, directives, and industry best practices.
- Excellent communication skills along with Team management able to do planning and scheduling with team members.
Preferred/Required Qualifications
- Active DoD Secret Clearance - Tier 5 Single Scope Background Investigation (SSBI)
- Active DoD 8570 IAT Level III certification (CASP+CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, or CCSP)
- 8+ years working with Information Technology with a focus on Information Security
- 5+ years of Hands-on experience with Tanium modules (Interact, Impact, Asset, Discover, Comply, Patch, Threat Response, and Trend)
- This is a remote position located in the USA and based upon customer hours.
- We are seeking a Cybersecurity Tanium SME to support one of our federal government clients. The successful candidate MUST possess an active Secret Security Clearance. The primary focus will be on advanced data analysis, threat hunting, and risk interpretation within DoD unclassified and classified environments. This position is remote based in the USA
We’re actively searching for talented security and technology practitioners who are ready to experience the True Zero difference. As a True Zero team member, you'll enjoy:
- Competitive salary, paid twice per month
- Best in class medical coverage
- 100% of medical premiums covered by True Zero
- Company wide new business incentive programs
- Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)
- 3 weeks of PTO starting + 11 Paid Holidays Annually
- 401k Program with 100% company match on the first 4%
- Monthly reimbursement of Cell Phone and Home Internet costs
- Paternity/Maternity Leave
- Investment in training and certifications to broaden and deepen your technical skills
Skills Required
- Active DoD Secret Clearance - Tier 5 SSBI
- Active DoD 8570 IAT Level III certification
- 8+ years working with Information Technology focused on Information Security
- 5+ years of hands-on experience with Tanium modules
Am I A Good Fit?
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.
Success! Refresh the page to see how your skills align with this role.
The Company
What We Do
True Zero Technologies is a Professional Services firm and authorized product reseller. Made up of passionate technologists, TZT delivers services for both the public and private sector, creating unique and scalable solutions based on business context driven requirements. TZT is rapidly expanding it's team to meet demand, we have many opportunities including long-term, multi-year contracts supporting Splunk instances large and small with ample opportunity to help shape large operational and security programs. Apply today! https://truezerotech.applicantpro.com/jobs/
.png)
