Job Description

Role Purpose

We are looking for a Vulnerability Management & Patching Engineer to support enterprise infrastructure and application security operations. The role will be responsible for vulnerability remediation, OS and database patching automation, certificate lifecycle management, change lifecycle governance, and security compliance (PCI) across on‑prem and AWS cloud environments. The ideal candidate has strong hands‑on experience with automation pipelines (Jenkins/Chef/XL Release/Bitbucket), monitoring/validation via Splunk, and structured operational execution through playbooks and change controls.

͏

Key Responsibilities

• Perform end‑to‑end vulnerability management to ensure security posture and compliance adherence.
• Execute OS patching activities using Chef Automate and Jenkins pipelines.
• Automate patching and release workflows using Bitbucket, Jenkins, and XL Release.
• Manage patching of PostgreSQL and Cassandra servers, ensuring minimal downtime and adherence to change windows.
• Handle certificate lifecycle management including installation, renewal, and retirement using Venafi.
• Own the complete change lifecycle including planning, implementation, validation, documentation, and closure.
• Support AWS cloud security initiatives and vulnerability remediation activities.
• Use Splunk to monitor systems and validate patching outcomes/post‑change health checks.
• Support application security activities including PCI compliance requirements.
• Create and maintain Full and Lite PLL (Production Launch/Readiness or equivalent lifecycle documentation) for new applications.
• Deploy planned application hotfixes and support controlled releases.
• Maintain operational playbooks/runbooks and support deployments and operational readiness.

͏

Required Skills & Qualifications

Technical Skills

• Strong experience in Vulnerability Management and security remediation processes.
• Hands‑on expertise in OS patching and patch automation.
• Proven experience with Chef Automate and Jenkins for patch orchestration.
• Experience building/operating automation pipelines using Bitbucket + Jenkins + XL Release.
• Working knowledge of PostgreSQL and Cassandra patching/maintenance activities.
• Experience with Venafi (or similar) for certificate installation, renewal, and decommissioning.
• Monitoring and validation experience using Splunk (dashboards, alerts, verification checks).
• Experience supporting AWS security and vulnerability remediation in cloud environments.
• Exposure to PCI compliance and application security controls.

Process & Operational Skills

• Strong understanding of change management processes (implementation, validation, closure, evidence).
• Ability to create and maintain playbooks/runbooks for operations and deployments.
• Comfortable working in production environments under strict compliance and audit requirements.

͏

Preferred Skills (Good to Have)

• Experience with hotfix deployments and release coordination.
• Familiarity with security tooling (scanners, ticketing workflows, evidence collection).
• Experience with SRE/DevOps operational practices (incident response, post-change verification, standardization).

͏

Deliver