Job Summary
We are looking for a skilled Patch Management Engineer to join our Cybersecurity team. The ideal candidate will be responsible for planning, testing, deploying, and monitoring security patches across enterprise environments to ensure systems remain secure, compliant, and protected against vulnerabilities. The role requires experience with Windows and Linux environments, vulnerability management tools, endpoint management solutions, and enterprise patch deployment processes.
Key Responsibilities
- Plan, schedule, test, and deploy security patches for Windows, Linux, and third-party applications.
- Manage enterprise patching using tools such as Microsoft SCCM (MECM), Intune, WSUS, BigFix, Tanium, Ivanti, or equivalent.
- Perform vulnerability remediation based on reports from Qualys, Tenable Nessus, Rapid7, or similar tools.
- Ensure timely deployment of critical, security, and emergency patches.
- Monitor patch compliance and generate compliance reports.
- Coordinate maintenance windows with application and infrastructure teams.
- Validate successful patch installation and troubleshoot deployment failures.
- Execute rollback procedures when required.
- Collaborate with Security Operations, Infrastructure, Cloud, and Application teams to resolve vulnerabilities.
- Support audit and compliance requirements (ISO 27001, NIST, PCI DSS, CIS, etc.).
- Automate patch deployment using PowerShell, Bash, Python, or Ansible where applicable.
- Maintain documentation, patch schedules, standard operating procedures (SOPs), and change records.
- Follow ITIL Change Management processes for all production changes.
Required Skills
- Strong knowledge of Patch Management and Vulnerability Management.
- Hands-on experience with:
- Microsoft SCCM (MECM)
- Microsoft Intune
- WSUS
- BigFix / Tanium / Ivanti (any one)
- Experience with vulnerability scanners:
- Qualys
- Tenable Nessus
- Rapid7 InsightVM
- Microsoft Defender Vulnerability Management
- Experience managing:
- Windows Server
- Windows 10/11
- Linux (Red Hat, Ubuntu, CentOS, SUSE)
- Knowledge of PowerShell, Bash, or Python scripting.
- Experience with ServiceNow, Jira, or other ITSM tools.
- Understanding of CVEs, CVSS scoring, security baselines, and remediation processes.
- Knowledge of ITIL Change Management.
Preferred Skills
- Experience with Azure, AWS, or GCP cloud environments.
- Familiarity with Azure Update Manager or AWS Systems Manager (SSM).
- Experience with automation tools such as Ansible, Puppet, or Chef.
- Knowledge of CIS Benchmarks, NIST, ISO 27001, PCI DSS, or HIPAA.
- Experience managing enterprise environments with 1,000+ endpoints.
Qualifications
- Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field.
- 3–6 years of experience in Patch Management, Endpoint Management, System Administration, or Cybersecurity.
Preferred Certifications
- Microsoft Certified: Endpoint Administrator Associate
- Microsoft Certified: Azure Administrator Associate
- CompTIA Security+
- CompTIA CySA+
- CEH (Certified Ethical Hacker)
- RHCSA (Red Hat Certified System Administrator)
- ITIL Foundation
Key Technologies
- SCCM (MECM)
- Microsoft Intune
- WSUS
- BigFix
- Tanium
- Ivanti
- Qualys
- Tenable Nessus
- Rapid7
- Windows Server
- Linux
- PowerShell
- Bash
- Python
- Azure
- AWS
- ServiceNow
- Jira
Pay: ₹50,000.00 - ₹80,000.00 per month
Work Location: In person