Infrastructure Analyst

Title: Patch Analyst/Infrastructure Analyst

Location: San Antonio, TX

Duration: 6 Months Contract Possibility of Extension

Shift: 8:00 AM to 5:00 PM (Monday and Friday)

Note: Those Candidates who can work on W2 basis without any sponsorship are encouraged to apply.

Job Description:

• This position is responsible for tracking and executing the distribution of security releases (patches, updates, upgrades) to company-owned infrastructure, including server environments and third-party software.
• The role requires independent execution of patch lifecycle activities, maintenance of audit-ready documentation, generation of compliance and operational reports, and adherence to established change management and regulatory processes.
• The Patch Analyst supports vulnerability remediation activities and ensures timely escalation when deadlines or compliance risks are identified.
• Coordinate with business areas to develop mitigation plans for systems or non-critical releases to be tested and implemented based on patch management strategies.

Tasks and Responsibilities:

• Track and document security releases from receipt through assessment, implementation, validation, or mitigation, including reporting on SLA adherence for implementation and mitigation deadlines.
• Coordinate with relevant teams and application owners to evaluate security releases and schedule implementation activities.
• Document service and change requests with appropriate dates and evidence of release assessment, approval, and implementation within configuration management and change control processes.
• Monitor mitigation plans and implementation deadlines to ensure policy-aligned extensions and escalate to management when releases are at risk of missing required timelines.
• Ensure patch management processes and activities are documented accurately and remain compliant with Company policies and regulatory requirements.
• Generate recurring patch compliance and vulnerability remediation reports, including aging reports for open vulnerabilities and mitigation items.
• Maintain accurate metrics reflecting patch distribution performance, compliance status, SLA adherence, and risk exposure.
• Utilize automated software tools to evaluate applicable patches, validate remediation status, and report findings.
• Utilize reporting tools to develop clear, actionable operational reports.
• Support audit and regulatory activities by compiling and validating required documentation artifacts.
• Participate in patch compliance and coordination meetings, providing clear and concise status updates.
• Assist with process improvement initiatives related to patch tracking, reporting, and compliance workflows, as well as special reports and projects.
• Work with SMEs to apply patches to applicable devices consistent with established procedures, ensuring operational constraints are respected.

Minimum Knowledge, Skills & Abilities:

• Hands-on experience administering or supporting Windows and Linux server environments.
• Understanding of software development lifecycle and experience managing patch lifecycle activities.
• Relevant professional experience administering vulnerability remediation processes.
• Knowledge of operationalizing security requirements.
• Understanding of configuration management and change control processes.
• Experience generating patching or compliance metrics to measure effectiveness and consistency.
• Proficient in Excel (pivot tables, formulas, structured data analysis).
• Ability to execute assigned responsibilities independently within defined workflows.
• Strong documentation discipline in audit-sensitive or regulated environments.
• Ability to manage multiple deadlines and escalate appropriately when risks arise.
• Clear and concise written and verbal communication skills.

Preferred Qualifications

• Bachelor’s degree in Computer Science, Information Systems, or related field from an accredited university.
• Experience in regulated critical infrastructure environments.
• IT auditing and/or security background.
• Cyber vulnerability management experience.
• Familiarity with vulnerability scanning tools (Tenable/Nessus preferred).
• Experience with reporting dashboards or data visualization tools (Power BI preferred).
• Entry-level security certifications such as Security (preferred).
• Competencies
• Communicating Effectively
• Coordinating Project Activities
• Working with Ambiguity
• Serving Customers
• Demonstrating Accountability
• Acting Decisively