IT security Automation engineer Vulnerability and patch management

Job Description

This position is part of shared services team responsible for securing cross functional IT infrastructure through patch management. This team is responsible for Business Systems, End user devices, Network devices and other production environments within Citrix. This is an individual contributor role with responsibility of automating patch management process and ensure successful patching of all systems at Citrix.The ideal candidate needs to have 6-8 years of experience in security and patch automation with Microsoft, Unix, Network, Database and application platforms. Experience in patching Azure, AWS and Google cloud based compute devices using CLI and tooling via API will be plus.Roles and Responsibilities

• Analyze the list of vulnerabilities and recommended patches provided by Global security organization.
• Build automation platform using Service Now as ticketing platform for patching deployment on demand.
• Assess existing patching methods. Automate the entire patching process according to patching policies.
• Ensure all systems are up to date with the vulnerability fixing. Create and Report Dashboards.
• Perform emergency patch role outs and Patch revert as and when required. Perform post patching activities.
• Must have a security and automation mindset. Experience working in Data Center environments performing hardware installation, Firmware upgrades.
• Ensures that all phases of patching and support, including installations, firmware upgrades, security and OS patches, upgrades, software, hardware, operating systems, and operating system configuration issues, are properly configured, monitored, tracked, and resolved.
• Participate in a 24x7 on-call rotation. Work in different shift timings as required.
• Interact with the Global Security Architecture team, Operations team and other IT departments and functions.
• Ensure all Metrics of the department are achieved. SLA/SLO s are achieved as committed.
• Train junior staff within the team.
• Represent team in Change Management and other ITIL functions.

Basic Qualifications

• Requires a University Degree or equivalent experience and minimum 6 years of prior relevant experience; or Master s degree with 4 years; or PhD with 2 years of experience.
• Requires deep knowledge of job area obtained through advanced education combined with experience.
• Viewed as having a specialty within discipline.
• Knowledge of enterprise ticket software solutions such as Service NOW and other monitoring tools including SCOM and BPM.
• Experience in enterprise Vulnerability detection & patching platforms such as Service now Vulnerability Management module, Solaris winds, SCCM, WSUS, BigFix, Tanium, Qualys, Nessus, Tivoli End point Management, etc.
• Experience in automation of server installs, procedures and cloud resources. Experience working in public cloud environments (Azure, AWS and GCP) including account management, patching and configuration of cloud resources.
• Experience in scripting for Unix, Windows, Network and Storage systems. Powershell, Python and perl scripting experience will preferred.
• Experience with scripting/coding languages (Powershell, Batch, Visual Basic) including the development and execution of Powershell scripts to automate IT tasks and processes
• Experience with the following cloud & virtualization technologies are preferred: Microsoft Azure, Amazon AWS, Google GCP, Hyper-V Virtualization
• Experience with Microsoft Server 2012 through Server 2016- OS installation/configuration
• Experience with Windows failover clustering, file services, DFS (2012/2016/2019)
• Experience with Linux/Unix administration and patching
• Enterprise patching, software and OS image deployment- Microsoft Configuration Manager (SCCM) or similar technologies
• Experience with security monitoring tools, incident management tools, orchestration, automation, logging platforms, and application performance tools such as Defender ATP, Dome9, NewRelic, Splunk, SumoLogic, Azure Security Center, Swimlane, etc.
• Experience with security frameworks such as NIST Cybersecurity Framework, Microsoft Secure Development Lifecycle, and, Center for Internet Security Framework
• Knowledge of TCP/IP, routing, switching, and networking technologies
• Experience in Citrix products (NetScaler, XenApp, XenDesktop, XenMobile) desirable.
• Ability to communicate technical and security-related concepts to a focused audience of technical and non-technical employees.
• CISSP or GIAC certifications desirable. ITIL and PMP certifications preferred.

,

Keyskills :
network devicesfile services data centervisual basic global teamsprogramming storage systemsmusic making