Vulnerability and Patch Management - Singapore - MATRIX PROCESS AUTOMATION PTE. LTD.

MATRIX PROCESS AUTOMATION PTE. LTD.

Verified Company

Singapore

1 week ago

Posted by:

Wei Jie

beBee Recruiter

Description

The Vulnerability and Patch Management Specialist will play a leading role in driving information security analysis and vulnerability remediation. This position will report to the Head of Operations.

This role is a key business enabler to provide information security risk analysis and strategic recommendations for the ongoing improvement of Information Security.

In this role, you will be engaging with program employees, stakeholders, and executives to ensure appropriate and up-to-date security management.

Provides remediation services to infrastructure teams based on vulnerability & policy compliance scans.

Actively participates in project activities, strategic and tactical Patch and improvement of procedures and standards.

Assists in proactively developing patch and vulnerability management procedures and processes within the operations team and in conjunction with business and IT partners.

Identify and assess security deficiencies and provide recommendation regarding remediation.

Ensure patch configuration is up to date ensuring compliance.

Utilize tools to automate patch deployment, such as HCL BigFix, RedHat Ansible etc.

Competent in using VA/PT tools such as Tenable to ensure patches are being remediated in a timely manner and taking the leadership working with different stakeholders across various teams to ensure the environment are compliant to organization Patch Management Process and IT Security Policies.

Responsible for patching assets in test and production environments while ensuring quality.

Participate where required in the Change Advisory Board and technical review meetings to discuss patching, vulnerability impacts and considerations.

Change Management is key which involves keeping track of all updates, to strictly comply with the change process.

Documentation of the version and configurations in order to roll back is a must.

Negotiate, plan and manage patch activities to implement during approved downtime.

Interfaces with business units and IT stakeholders to identify and understand security monitoring and response requirements to meet business unit and IT stakeholder needs

Maintains an up-to-date understanding of emerging cyber threats facing financial institution.

Applies new techniques and trends that are in line with overall information security objectives and risk tolerance

Provide and demonstrate strong leadership, and organizational abilities applied across a large team with diverse skills

Help to formulate vulnerability management frameworks and working structures for initiatives associated with infrastructure technology and solution delivery teams.

The person needs to know:

Windows

Unix.

Tenable Nessus, Security Center

Certification in the following areas will be beneficial.
RedHat Certified Engineer

Tenable Certified SecurityCenter

Microsoft Certified IT Professional(MCITP)/Microsoft Certified Solution Associate(MCSA)

VMware Certified Professional/Associate - Data Center Virtualization

VMware Certified Professional/Associate - Network Virtualization