Senior Director, CTEM & RBVM SME — Risk Ops Lead

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world!

Job Description:

Senior Director of Subject Matter Expert – CTEM, RBVM, ASPM – Risk Operation Center (ROC)
Date posted:
March 2026

About the jobCome work at a place where innovation and teamwork come together to support the most exciting missions in the world!

Senior Director of Subject Matter Expert – CTEM, RBVM, CAASM – Risk Operation Center

Location:

Foster City, CA, USA Organization:
Product GTM & SME

Reports To:

SVP of Product Management

Role Overview We are seeking a Senior Director – Subject Matter Expert (SME) to lead deep technical expertise and field architecture & deployment for the Qualys Enterprise Tru Risk Management (ETM) platform and Risk Operations Center (ROC) operating model.

This role is a hands-on technical SME leadership position responsible for driving the architecture, deployment strategy, and customer adoption of Qualys exposure management solutions including:

Enterprise Tru Risk Management (ETM)
Risk Operations Center (ROC)
Cyber Risk Quantification (CRQ)
VMDR (Vulnerability Management Detection & Response)
Cyber Security Asset Management (CSAM)
External Attack Surface Management (EASM)
The Senior Director will serve as a technical authority and practitioner working directly with engineering, product management, and enterprise customers to operationalize Continuous Threat Exposure Management (CTEM) and modern risk-centric security operations - ROCThis role will lead a small elite team of 5–6 technical SMEs responsible for architecture guidance, field enablement, customer advisory, leading POC/POV and feedback into the product roadmap.

Key Responsibilities Technical Leadership & Architecture Act as the deep technical authority for Qualys exposure management architecture including:

ETM risk correlation and prioritization

ROC operational workflows

Vulnerability management and remediation orchestration

ASPM & CNAPP integration to Exposure Management Platform (ETM)
Cross-domain exposure analytics across infrastructure, cloud, identity, and applications

Design and guide enterprise implementations that integrate:

VMDR vulnerability telemetry

Asset intelligence from CSAMExternal attack surface data from EASMCloud posture insights from Total Cloud Application  security insights from ASPM / Total App Sec3rd  Party (Non-Qualys) Ecosystems such as CNAPP, App Sec, IoT/OT, Identity, CMDB, etc.

Lead the development of reference architectures and deployment models for large global enterprises.

Outbound Customer and Sales enablement Responsibilities:

Develop sales enablement collateral, including customer product presentations, decks and demo scripts.

Help develop messaging and product positioning in collaboration with PM and PMMs leads.

Research the competitive landscape, determine how competitors are positioned and develop optimized positioning strategies and support documents for the CTEM, CAASM, CRQ, and RBVM.Educate the sales team on how to address competitors in the field with Qualys’ unique positioning.

Develop collateral and be an expert on CTEM and RBVM technology and  an expert in explaining the product to sales and be involved with demos and presentations to customers.

Foster strong relationships with customers to gather feedback, understand pain points, and translate insights into product requirements.

Design, deliver, and train the Qualys Sales Team on value-based demonstration of our products

Hands-On Platform Expertise Work directly with engineering and product teams to:

Prototype new ETM and ROC capabilities

Validate exposure management workflows

Test integrations with Dev Sec Ops  pipelines and CI/CD environments

Provide technical feedback on product architecture and scalability

Provide deep expertise in:

Vulnerability lifecycle management

Exposure prioritization and Tru Risk scoring

Attack path analysis

Cyber Risk quantification

Remediation orchestration

ASPM and application risk correlation.

Risk Operations Center (ROC) Strategy Define how enterprises implement the Risk Operations Center model using Qualys ETM.Develop best practices and implementation playbooks for:

Cross-team risk…