Infrastructure Engineer Patch Management

SVB Financial
Atlanta, GA
02 Dec 2024

Vacancy expired!

BE PART OF A BANK LIKE NO OTHER.

When you work with the world's most innovative companies, you know you're making a difference.

Our clients are the game changers, leaders and investors who fuel the global innovation economy. They're the businesses behind the next medical breakthroughs. And the visionaries whose new technologies could transform the way people live and work.

They come to SVB for our expertise, deep network and nearly forty years of experience in the industries we serve, and to partner with diverse teams of passionate, enterprising SVBers, dedicated to an inclusive approach to helping them grow and succeed at every stage of their business.

Join us at SVB and be part of bringing our clients' world-changing ideas to life. At SVB, we have the opportunity to grow and collectively make an impact by supporting the innovative clients and communities SVB serves. We pride ourselves in having both a diverse client roster and an equally diverse and inclusive organization. And we work diligently to encourage all with different ways of thinking, different ways of working, and especially those traditionally underrepresented in technology and financial services, to apply.

Job Description Infrastructure Engineer - Patch Management

About SVB

Silicon Valley Bank is the most sought-after financial partner in the global innovation economy. We bring together entrepreneurs, investors, ventures capitalists, and private equity firms to move their bold ideas forward, fast. Our clients define what comes next.

In the past 35 years, we have accumulated more experience with start-ups and high-growth tech than any other company in the world. In fact, majority of the most compelling Fintech disruptors bank with us. Our clients include: Beyond Meat, Shopify, HelloFresh, Cloudera, and Andreessen Horowitz, just to name a few. We help our clients grow, too. More than half of the innovation companies that completed an IPO in the last two years were our clients.

Our accomplishments serve as motivation to continue pushing ourselves and we are committed to delivering user-centered, high-impact solutions to our clients. We are looking for creative thinkers who want to challenge the status quo and create a truly seamless digital banking experience on a global scale.

Specific Needs

Our Patch Management and Governance team requires a highly experienced Infrastructure Engineer responsible for driving engineering, automation and support for security and application patching in the Technology area. An ideal candidate will be a highly skilled full stack infrastructure engineer with experience in Modern Device Management and automation across Windows, Mac, Linux with focus on protecting every endpoint - workstations, server, laptops, virtual devices and more.

As the Patch Management Engineer, you'll provide assessment including security, system, and business impact. MEMCM, WSUS and RHEL administration should be strong skills that you possess.

Our Technology Stack
  • Windows 10 /11
  • MacOS
  • Windows Server 2012, 2016 and 2019
  • RHEL 6/7 and 8
  • Microsoft Endpoint Manager Configuration Manager (MEMCM) with MDT-based Operating System Deployment (OSD), WSUS, Internet-based Client Management through IBCM and CMG, software deployment
  • Microsoft Intune with mobile corporate device management, mobile BYOD application management, Windows co-management, JAMF connector
  • APP-V integrated with MEMCM
  • JAMF, on-premise and cloud
  • vSphere and Horizon
  • PatchMyPC for third party application patching
  • Office365 with Azure Active Directory hybrid join conditional access, Office ProPlus, and a variety of modern applications
  • Active Directory on-premise with group policy
  • PrinterLogic
  • Nexpose vulnerability management
  • PowerShell
  • Commvault and Veeam
  • Cobber and Ansible automation

Primary Responsibilities:
  • PATCH COMPLIANCE
  • Assess software patches and create recommended patch list with logical explanation in terms of compliance.
  • Develop and optimize pre- and post- patching process to ensure proper implementation without any outages.
  • Score each patch based on risks & opportunity to prioritize. Identify which patches are more valuable to the organization than others.
  • Act as an escalation point for patch execution / partner team mentoring them and resolving complex scenarios and technical issues
  • Ensures overall service levels for infrastructure uptimes through patch management standards, firmware upgrades and vendor based advisory
  • Analyzes trend data to identify potential patch related issues on various images and assists teams in troubleshooting to implement any resolutions/improvements needed for proactive resolution
  • Develops automation scripts and programs to streamline manual patch operations and improve mean time to deliver and first-time right metrics.
  • Assist in implementation during patch maintenance windows and assists in documenting completion of the change.
  • Measures and recommends improvement for patching service levels and success rates
  • Maintains ticket queues for new patching or change requests
  • Supports the determination of patches needed as well as implementation of corrective actions by doing thorough due diligence
  • Perform Patch management tasks include maintaining current knowledge of available patches, deciding what patches are appropriate for systems, ensuring that patches are installed properly, testing systems after installation, and documenting all associated procedures.
  • VULNERABILITY MANAGEMENT - Must be skilled in vulnerability assessment, risk rating, threat correlation, asset-based remediation planning, and reporting
  • PATCH AUTOMATION - Design, build, test and deploy scripting and automation to reduce the effort required to deploy security patches and support. Align solutions with the existing technology stack to provide seamless delivery.
  • ACTIVE DIRECTORY -Possess working knowledge of Active Directory administration, including advanced understanding of delegation, logging, replication, authentication protocols and management techniques/tools.
  • TEAM PLAYER - Act as a team player supporting peers, department management and business unit leadership to fulfill operational service levels, department initiatives and project deliverables. Believe in and adopt a "70% agreement, 100% commitment" attitude.
  • DOCUMENTATION - Build high quality roadmaps, strategies, standards, and procedures to publicize the work of the department and develop the knowledge of others.
  • CONTINUOUS IMPROVEMENT - Organize continuous improvement efforts by understanding staff insights and concerns and creating a pipeline of change. Maintains a keen eye on opportunities to improve patch effectiveness, efficiency, compliancy, or cost savings. Drive resolutions to production.
  • CHANGE MANAGEMENT - Learn and follow the change management process. Independently test and implement changes in the environment while informing others.
  • SUBJECT MATTER EXPERT - Act as an expert support resource for multiple server/ desktop technology stack components. Assist and mentor system administrators and technicians to foster personal growth and accountability.

Qualifications:
  • Bachelor's degree and/or some relevant work experience in vulnerability management, cyber security and system/network administration is preferred
  • Minimum of 5 years hands on experience with WSUS, SCCM, RHEL
  • Advanced knowledge of Windows 2008/2012/2016/Windows 10 /11
  • Mid-level knowledge of network and firewall
  • Working knowledge with scripting languages such as .NET, Perl, Java, VB and PhP
  • Working knowledge and demonstrated expertise in using SQL database products and customizing and creating web reports
  • Working knowledge and demonstrated expertise with the Microsoft Windows and Apple Mac OSX operating systems.
  • Demonstrate verbal, written and interpersonal skills.
  • Ability to work independently or as a member of a technical team.
  • Self-motivated and be able to produce and perform with minimal supervision as well
  • Experience Scripting with PowerShell and Bash experience preferred
  • Analytical and problem-solving skills for troubleshooting are required
  • Hands on experience with Nexpose Rapid 7
  • Familiarity with vulnerability management security tools (Nexpose, Qualys, Microsoft Advanced Threat Protection (MDATP), Tenable, Nessus etc.)
  • Familiarity with issue/ticket tracking systems (Jira, ServiceNow, etc.)
  • Strong understanding of and experience in Windows/ Linux Engineering and Windows Modern Management technologies (SCCM / OSD / WSUS / Intune MEM / Autopilot, Azure, AWS).
  • 8 to 12 years' experience supporting diverse IT systems, processes, or capabilities
  • The ability to work closely with Business and development and a thorough understanding of the balance between business and patch requirements
  • Proficiency in scripting of packaged installation of patches, software, and configuration changes.
  • Advanced knowledge of infrastructure foundation including DNS, DHCP, VDI, SQL Server, Oracle, Mongo, Postgres, IIS, Apache, SAN, Hyper-Converged, LAN, WLAN, VLAN, OSI model, TCP/IP, VPN, firewalls, PKI and/or AWS.
  • Demonstrated ability to communicate effectively to business and technical audiences.
  • Demonstrated self-motivated work ethic and lifelong learner.
  • Demonstrated ability to influence and motivate others.

2021 SVB Financial Group. All rights reserved. SVB, SVB FINANCIAL GROUP, SILICON VALLEY BANK, MAKE NEXT HAPPEN NOW and the chevron device are trademarks of SVB Financial Group, used under license. Silicon Valley Bank is a member of the FDIC and the Federal Reserve System. Silicon Valley Bank is the California bank subsidiary of SVB Financial Group (Nasdaq: SIVB ).

Equal Employment Opportunity

Silicon Valley Bank is an equal opportunity employer and is dedicated to expanding its commitments and investments to create a more diverse, equitable and inclusive company culture and innovation ecosystem. We are strongly committed to the values and policy of equal employment opportunity across our employment practices.

Silicon Valley Bank is registered in England and Wales at Alphabeta, 14-18 Finsbury Square, London EC2A 1BR, UK under No. FC029579. Silicon Valley Bank is authorised and regulated by the California Department of Business Oversight and the United States Federal Reserve Bank; authorised by the Prudential Regulation Authority with number 577295; and subject to regulation by the Financial Conduct Authority and limited regulation by the Prudential Regulation Authority. Details about the extent of our regulation by the Prudential Regulation Authority are available from us on request.
  • ID: #23746725
  • State: Georgia Atlanta 30301 Atlanta USA
  • City: Atlanta
  • Salary: USD TBD TBD
  • Job type: Permanent
  • Showed: 2021-12-02
  • Deadline: 2022-01-30
  • Category: Architect/engineer/CAD