True Zero Technologies, a veteran-owned small business, was founded on the principle that the purposeful enablement of people and technology in an organization directly ties to the quality of its outcomes. True Zero recognizes that those outcomes begin and end with our people, and that is what we have built a community of like-minded, driven, and passionate individuals and innovators who are aligned in a common goal of delivering top-tier services to our customers. Our culture and commitment have been recognized through numerous accolades, including being named one of the Best Places to Work in 2023 in two categories (“Prosperous and Thriving” ($5MM–$50MM in gross revenue) and “Mid-Atlantic Region” (DC, DE, MD, NC, VA, WV)), and again in 2025 as a Best Places to Work honoree. In addition, True Zero earned coveted spots on the Inc. 5000 list of fastest-growing companies in America in 2022, 2023, and 2025, a testament to our sustained growth driven by our people-first approach and unwavering dedication to excellence.
Supports database security and hardening activities across on-premises and cloud-hosted database environments to ensure secure configuration, audit readiness, compliance with applicable benchmarks, and alignment with the risk-based asset management program's overall mission.
Job Responsibilities
- Support database security and hardening activities across system boundaries
- Support database hardening activities across enterprise database environments, including relational, NoSQL, and cloud-native platforms
- Assess database configurations against applicable hardening standards, including DISA STIGs, CIS Benchmarks, and organizational security baselines
- Identify database security gaps, misconfigurations, excessive privileges, insecure default settings, logging deficiencies, encryption gaps, and audit-readiness issues
- Support vulnerability remediation for database platforms by coordinating with DBAs, system owners, application teams, cloud teams, and security stakeholders
- Apply database security and administration experience to help translate security requirements into practical, operationally feasible database configurations
- Support secure configuration and hardening of Oracle, PostgreSQL, MySQL, MS SQL, MongoDB, Amazon RDS, Azure SQL, DynamoDB, and similar database technologies
- Assist with database patching, remediation planning, configuration validation, and evidence collection
- Implement, review, and validate database audit logging, data masking, encryption, access controls, and related security mechanisms
- Use scanning tools and manual validation methods to verify database hardening compliance and identify remediation needs
- Coordinate database scanning, patching, and remediation activities with stakeholders and infrastructure teams
- Assess hardening compliance levels using reporting and scanning tools
- Assist with reporting and dashboard development related to database security posture
- Develop, maintain, and improve database hardening scripts and technical processes
- Support implementation and maintenance of audit logging, encryption, masking, and related security controls
- Help identify and remediate database configuration weaknesses and compliance gaps
- Assist with documentation, reporting, and evidence collection for audits and reviews
- Support secure operation of on-premises and cloud-hosted database platforms
- Contribute to process improvement, standardization, and automation efforts
Job Qualifications
- Bachelor’s degree in Information Technology, Computer Science, Information Systems, or related technical field; or equivalent experience
- 5+ years of experience in database administration, database security, database engineering, or related work
- Experience supporting relational databases such as Oracle, PostgreSQL, MySQL, or SQL Server
- Familiarity with remediation practices across Windows, Linux, cloud platforms, and containerized environments as they relate to database hosting and operations
- Experience using enterprise ticketing systems such as ServiceNow to document findings, track remediation, and support audit ability
- Familiarity with Splunk or similar SIEM/reporting tools for database logging, dashboarding, reporting, or evidence support
- Familiarity with scripting or automation tools such as SQL, Python, PowerShell, Bash, or similar technologies.
- Familiarity with DevSecOps and CI/CD pipeline development processes as they relate to database deployment, configuration, and security validation
- Strong written and verbal communication skills with the ability to explain database security issues to technical and non-technical stakeholders
- Ability to work as part of a cross-functional cybersecurity team supporting vulnerability management, configuration management, database hardening, remediation tracking, and compliance reporting
- Familiarity with NoSQL and cloud-native database technologies is preferred
- Experience with database hardening, patching, scanning, and security compliance activities
- Experience using vulnerability scanning and assessment tools such as Tenable/Nessus
- Familiarity with DISA STIGs, CIS Benchmarks, and secure database configuration practices
- Experience with audit logging, encryption, masking, and access control concepts
- Ability to interpret compliance or audit requirements and translate them into technical actions
- Strong troubleshooting, reporting, and documentation skills
- Ability to work across teams to support secure and reliable database operations
Preferred Certifications
CASP, GSEC, GSLC, CISSP, CEH, CISM, CISA, PMI-ACP, SAFe Agilist, CSM, or comparable certifications
Clearance Required
Public Trust or ability to obtain and maintain required DHS suitability/access
We’re actively searching for talented security and technology practitioners who are ready to experience the True Zero difference. As a True Zero team member, you'll enjoy:
- Competitive salary, paid twice per month
- Best in class medical coverage
- 100% of medical premiums covered by True Zero
- Company wide new business incentive programs
- Contribution Incentives (i.e. white papers, blog posts, internal webinars, etc.)
- 3 weeks of PTO starting + 11 Paid Holidays Annually
- 401k Program with 100% company match on the first 4%
- Monthly reimbursement of Cell Phone and Home Internet costs
- Paternity/Maternity Leave
- Investment in training and certifications to broaden and deepen your technical skills