The Vulnerability and Patch Management Specialist will play a leading role in driving information security analysis and vulnerability remediation. This position will report to the Head of Operations. This role is a key business enabler to provide information security risk analysis and strategic recommendations for the ongoing improvement of Information Security. In this role, you will be engaging with program employees, stakeholders, and executives to ensure appropriate and up-to-date security management.
Assess vulnerability, patch information from compliance scans for Microsoft Windows, RedHat Enterprise Linux and determine application and production impacts.
Assess vulnerability, patch information for network equipment including Firewalls from various manufacturers and determine application and production impacts.
Provides remediation services to infrastructure teams based on vulnerability & policy compliance scans.
Actively participates in project activities, strategic and tactical Patch and improvement of procedures and standards.
Assists in proactively developing patch and vulnerability management procedures and processes within the operations team and in conjunction with business and IT partners.
Identify and assess security deficiencies and provide recommendation regarding remediation.
Ensure patch configuration is up to date ensuring compliance.
Utilize tools to automate patch deployment, such as HCL BigFix, RedHat Ansible etc.
Competent in using VA/PT tools such as Tenable to ensure patches are being remediated in a timely manner and taking the leadership working with different stakeholders across various teams to ensure the environment are compliant to organization Patch Management Process and IT Security Policies.
Responsible for patching assets in test and production environments while ensuring quality.
Participate where required in the Change Advisory Board and technical review meetings to discuss patching, vulnerability impacts and considerations.
Change Management is key which involves keeping track of all updates, to strictly comply with the change process.
Documentation of the version and configurations in order to roll back is a must.
Negotiate, plan and manage patch activities to implement during approved downtime.
Regular audit and assessment of whether applications have been patched for known security vulnerabilities and audit reports are a must to assist the business to understand what systems need to be patched for a given vulnerability and to ensure that all systems are in compliance.
Interfaces with business units and IT stakeholders to identify and understand security monitoring and response requirements to meet business unit and IT stakeholder needs
Maintains an up-to-date understanding of emerging cyber threats facing financial institution.
Applies new techniques and trends that are in line with overall information security objectives and risk tolerance
Builds effective relationships with key stakeholders who own and support IT infrastructure, applications, processes, and operations
Provide and demonstrate strong leadership, and organizational abilities applied across a large team with diverse skills
Help to formulate vulnerability management frameworks and working structures for initiatives associated with infrastructure technology and solution delivery teams.
The person needs to know:
Windows
Unix.
Tenable Nessus, Security Center
Certification in the following areas will be beneficial.
RedHat Certified Engineer
Tenable Certified SecurityCenter
Microsoft Certified IT Professional(MCITP)/Microsoft Certified Solution Associate(MCSA)
VMware Certified Professional/Associate – Data Center Virtualization
VMware Certified Professional/Associate - Network Virtualization
