×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security Systems Engineer

Senior Director of Subject Matter Expert – CTEM, RBVM, ASPM – Risk Operation Center; ROC

Job in Foster City, San Mateo County, California, 94420, USA
Listing for: QLYS_US Qualys, Inc.
Full Time position
Listed on 2026-05-31
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security, Systems Engineer
Salary/Wage Range or Industry Benchmark: 200000 - 235000 USD Yearly USD 200000.00 235000.00 YEAR
Job Description & How to Apply Below
Position: Senior Director of Subject Matter Expert – CTEM, RBVM, ASPM – Risk Operation Center (ROC)

Senior Director of Subject Matter Expert - CTEM, RBVM, ASPM - Risk Operation Center (ROC)

Location: Foster City, CA, USA
Organization: Product GTM & SME
Reports To: SVP of Product Management

Role Overview

We are seeking a Senior Director – Subject Matter Expert (SME) to lead deep technical expertise and field architecture & deployment for the Qualys Enterprise Tru Risk Management (ETM) platform and Risk Operations Center (ROC) operating model. This role is a hands-on technical SME leadership position responsible for driving the architecture, deployment strategy, and customer adoption of Qualys exposure management solutions, including:

  • Enterprise Tru Risk Management (ETM)
  • Risk Operations Center (ROC)
  • Cyber Risk Quantification (CRQ)
  • Vulnerability Management Detection & Response (VMDR)
  • Cyber Security Asset Management (CSAM)
  • External Attack Surface Management (EASM)

The Senior Director will serve as a technical authority and practitioner working directly with engineering, product management, and enterprise customers to operationalize Continuous Threat Exposure Management (CTEM) and modern risk-centric security operations - ROC. This role will lead a small elite team of 5-6 technical SMEs responsible for architecture guidance, field enablement, customer advisory, leading POCs/POVs and feedback into the product roadmap.

Key Responsibilities

Technical Leadership & Architecture

  • Act as the deep technical authority for Qualys exposure management architecture, including ETM risk correlation and prioritization, ROC operational workflows, vulnerability management and remediation orchestration, ASPM & CNAPP integration to Exposure Management Platform (ETM), and cross-domain exposure analytics across infrastructure, cloud, identity, and applications.
  • Design and guide enterprise implementations that integrate VMDR vulnerability telemetry, asset intelligence from CSAM, external attack surface data from EASM, cloud posture insights from Total Cloud, application security insights from ASPM / Total App Sec , and third‑party ecosystems such as CNAPP, App Sec, IoT/OT, Identity, CMDB, etc.
  • Lead the development of reference architectures and deployment models for large global enterprises.

Outbound Customer and Sales Enablement

  • Develop sales enablement collateral, including customer product presentations, decks and demo scripts.
  • Help develop messaging and product positioning in collaboration with PM and PMM leads.
  • Research the competitive landscape, determine how competitors are positioned, and develop optimized positioning strategies and support documents for the CTEM, CAASM, CRQ, and RBVM.
  • Educate the sales team on how to address competitors in the field with Qualys’ unique positioning.
  • Develop collateral and be an expert on CTEM and RBVM technology and terminology.
  • Be an expert in explaining the product to sales and be involved with demos and presentations to customers.
  • Foster strong relationships with customers to gather feedback, understand pain points, and translate insights into product requirements.
  • Design, deliver, and train the Qualys Sales Team on value‑based demonstration of our products.

Hands-On Platform Expertise

  • Work directly with engineering and product teams to prototype new ETM and ROC capabilities, validate exposure management workflows, test integrations with Dev Sec Ops  pipelines and CI/CD environments, and provide technical feedback on product architecture and scalability.
  • Provide deep expertise in vulnerability lifecycle management, exposure prioritization and Tru Risk scoring, attack path analysis, cyber risk quantification, remediation orchestration, and ASPM and application risk correlation.

Risk Operations Center (ROC) Strategy

  • Define how enterprises implement the Risk Operations Center model using Qualys ETM.
  • Develop best practices and implementation playbooks for cross-team risk prioritization, exposure triage workflows, remediation SLAs, executive risk reporting, and operationalizing CTEM across security teams.

Customer Advisory & Strategic Engagement

  • Act as trusted technical advisor to CISOs, security architects, and Dev Sec Ops  leaders.
  • Lead architecture workshops, executive technical briefings, strategic…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search