IT Patch Management & Cybersecurity Engineer

We are seeking a skilled and proactive IT Patch Management & Cybersecurity Engineer to join our IT security team. This role is responsible for ensuring the security and integrity of our enterprise systems by managing operating system and application patching, implementing cybersecurity best practices, and mitigating vulnerabilities across the organization. The ideal candidate will have a strong background in patch management, system hardening, endpoint protection, and vulnerability remediation in a complex enterprise environment.

Key Responsibilities

• Patch Management
• Develop, maintain, and execute patch management processes for servers, endpoints, and applications across multiple environments (on-premises and cloud).
• Test and deploy security updates, hotfixes, and patches to ensure system stability and compliance.
• Coordinate patch schedules with IT operations, infrastructure, and business units to minimize downtime and disruption.
• Monitor patch compliance, generate reports, and address systems that fall out of compliance.
• Cybersecurity Operations
• Identify, assess, and remediate security vulnerabilities discovered through vulnerability scans, penetration testing, or threat intelligence.
• Implement system hardening and baseline security configurations following industry standards (CIS, NIST, ISO).
• Support endpoint detection and response (EDR) tools, antivirus/antimalware platforms, and intrusion prevention systems.
• Collaborate with the SOC team to respond to security incidents, investigate root causes, and apply remediation.
• Governance, Risk, and Compliance
• Ensure patching and security operations comply with internal policies, regulatory frameworks, and external audits.
• Contribute to risk assessments, vulnerability management strategies, and continuous improvement of security controls.
• Maintain detailed documentation of patch management processes, procedures, and change logs.
• Collaboration & Continuous Improvement
• Work closely with infrastructure, application, and network teams to maintain secure environments.
• Stay current with emerging threats, vulnerabilities, and security technologies.
• Provide input into cybersecurity strategy, architecture, and tool selection.
  

Qualifications

• Education & Experience
• Bachelor’s degree in Information Technology, Computer Science, Cybersecurity, or equivalent experience.
• 3–5 years of experience in IT security, patch management, or system administration.
• Experience in large-scale enterprise IT environments.
• Technical Skills
• Strong knowledge of Windows and Linux patching tools (WSUS, SCCM/MECM, Intune, Ansible, or similar).
• Experience with vulnerability management platforms (Qualys, Tenable, Rapid7, or similar).
• Familiarity with cloud environments (Azure, AWS, or GCP) patching and security operations.
• Understanding of network security principles, endpoint security tools, and security frameworks (NIST, CIS, ISO 27001).
• Scripting knowledge (PowerShell, Python, or Bash) is a plus.
• Certifications (Preferred)
• CompTIA Security , CySA , or equivalent.
• Microsoft, Red Hat, or Linux certifications.
• CISSP, CISM, or similar (nice to have).