Cyber Security Engineer – Patch & Vulnerability Management

Cyber Security Engineer Patch & Vulnerability Management Hybrid (3 Days Onsite: Phoenix, AZ or Charlotte, NC)

We are seeking an experienced Patch Management Engineer to strengthen our IT security and infrastructure posture. This role involves managing and optimizing patch and vulnerability management processes, ensuring timely security patching, and maintaining compliance across all systems. The ideal candidate is detail oriented, proactive, and passionate about maintaining a secure, well patched enterprise environment.

Key Responsibilities

• Collaborate with service providers to tune patch and vulnerability management tools for improved coverage and reduced false positives/negatives.
• Manage and optimize Windows Server and workstation patching cycles, ensuring timely deployment of security updates.
• Actively verify, test, and apply security patches in production and non production environments.
• Conduct routine audits to ensure compliance with internal standards, policies, and configuration guidelines.
• Develop and maintain PowerShell scripts to automate patching and system management tasks.
• Create and update documentation for patch management procedures, system configurations, and change management records.
• Drive vulnerability assessment and support remediation across servers, endpoints, and cloud systems.
• Provide escalation support for complex patching and workstation related issues.
• Support IT governance frameworks and adhere to established change management processes.
• Contribute to a continuous improvement culture by investigating and mitigating emerging risks or vulnerabilities.
• Mentor and train team members on patching methodologies and security best practices.
• Generate and present vulnerability management reports and metrics for leadership and audit reviews.
  
  

Qualifications

• Bachelor's or Associate degree in Computer Science, Cybersecurity, Computer Engineering, or related discipline.
• 8 years of hands on experience in patch and vulnerability management within enterprise environments.
• Strong knowledge of Windows Server environments, endpoint patching, and PowerShell scripting.
• Familiarity with cloud and container security (e.g., Azure, AWS, Kubernetes) and modern application security practices.
• Understanding of web based attacks and effective mitigation strategies.
• Proven track record of implementing risk reduction and remediation strategies.
• Excellent problem solving, analytical, and critical thinking skills.
• Strong communication and interpersonal abilities to convey technical information to diverse audiences.
• Diligent, proactive, and highly attentive to detail.