Systems Engineer III - Patch Management
Role details
Job location
Tech stack
Job description
- Strategy Development: Creating and implementing comprehensive patch management strategies and policies for Windows OS endpoints
- Patch Evaluation: Assessing vulnerabilities, determining patch criticality and impact, and ensuring compatibility with existing systems and applications.
- Testing: Designing and executing detailed test cases for patches in controlled environments to ensure functionality, stability, and compatibility.
- Deployment: Planning and executing the rollout of patches across the Windows 10 & 11 fleet and monitoring the process for successful completion.
- Vulnerability Remediation: Deploying critical security patches in a timely manner to mitigate vulnerabilities and ensure compliance.
- Troubleshooting: Resolving issues with failed patch installations and other problems that arise during the patching process.
- Automation: Developing custom scripts (as needed) and leveraging automation tools to streamline patch deployment, vulnerability remediation, and compliance tracking.
- Monitoring & Reporting: Tracking patch compliance metrics and producing regular reports on the effectiveness and status of the patching program.
- Collaboration: Working closely with various internal teams and OEMs to align with enterprise standards and address security threats.
- Documentation: Creating and maintaining documentation for patching procedures, troubleshooting steps, and user support knowledge bases.
Requirements
Bachelor's Degree and 6 years of experience in Systems engineer and systems programmer OR High School Diploma or GED and 10 years of experience in Systems engineer and systems programmer
-
7+ years of deep exposure in workstation patch management, vulnerability remediation, and compliance using various tools (MECM, BigFix, Qualys, PowerShell scripting).
-
Strong knowledge of Windows 10 & Windows 11 Operating Systems along with patch deployment and troubleshooting skills
-
Advanced knowledge of BigFix endpoint management (baseline ) patching, troubleshooting and compliance reporting
-
Understanding of utilizing WSUS and BigFix environment for approving, declining, and managing patches
-
Strong understanding of third-party software updates with third party patching tools like PMPC, Ivanti etc.
-
Proficiency in PowerShell for automation and system management; Should be able to create, modify, update complex scripts to build solutions.
-
Excellent troubleshooting and problem-solving skills to address complex technical issues.
-
Good to have
-
Understanding of software package creation and deployments
-
Understanding and exposure to vulnerability management tools (Qualys).
-
In-depth understanding of patching best practices, compliance, and IT security standards.
-
Identify, understand, and collaborate with OEM/Vendors to resolve patch related issues
-
Familiarity with ITIL frameworks and best practices
-
Soft Skills:
-
Excellent written and verbal communication along with strong documentation skills, including the ability to communicate complex technical concepts to non-technical stakeholders.
-
Ability to work independently and as part of a team in a fast-paced environment.
-
Self-motivated, with a "can-do" attitude and comfort working with ambiguity.
-
Strong customer service skills and a customer-focused mindset.
Preferred Qualifications:
- Experience working in the banking or financial services industry is a plus.
- Knowledge of network topology and security principles.
- Knowledge of collaboration tools like Jira, or Confluence.