Patching & Vulnerability Engineer

The Patching & Vulnerability Engineer is responsible for governance, delivery and continuous improvement of patching policies across Microsoft, macOS, Linux and third-party applications. The role drives patching & vulnerability remediation leverages automation and ensures security standards are aligned across the global client base., 1. Patching & Update Management

Build and manage client patching policies across all major OS and application platforms.

Use Ninja RMM to configure patching, reporting and automation routines.

Optimise patch deployment windows, reboot processes and exception handling.

2. Vulnerability Management

Monitor vulnerabilities across clients, prioritising remediation based on CVSS scoring.

Work alongside Cyber Security teams to address critical and high-risk exposures.

Track, schedule and document remediation activities and outcomes.

3. Automation & Efficiency

Leverage RMM tools, scripting and automation to accelerate vulnerability remediation.

Identify automation opportunities to reduce manual workload.

4. Compliance & Governance

Ensure patching and remediation KPIs/SLA commitments are met across all clients.

Manage end-of-life systems, ensuring upgrades or decommissioning are actioned.

Document client-approved risk acceptances and suppression decisions.

5. Knowledgebase & Reporting

Maintain patching runbooks, technical documentation and FAQ guides.

Provide reports on patch compliance, vulnerability status and remediation metrics.

Do you have experience in macOS?, * Extensive experience managing patching within Ninja RMM (essential).

• Strong knowledge of patching across Windows, macOS, Linux and third-party apps.
• Familiarity with vulnerability scanners (Defender, Nessus, Rapid7).
• Understanding of cyber security best practices.
• Strong scripting experience (PowerShell preferred)., * Microsoft SC-200 or SC-300
• CompTIA Security+
• AZ-104 or MS-102
• ITIL v4 Foundation