SUMMARY : The Patch Management Analyst is responsible for coordinating, deploying, validating, and documenting operating system, application, and firmware patches across the organization's IT environment. This role supports cybersecurity risk reduction, system stability, and regulatory compliance by ensuring timely remediation of vulnerabilities in accordance with organizational policies and industry standards.
ESSENTIAL JOB FUNCTIONS : - Plan, schedule, and execute patching for servers, workstations, network devices, and cloud-based systems in accordance with defined maintenance windows
- Monitor vendor security advisories, vulnerability feeds, and threat intelligence sources to identify applicable patches and remediation actions
- Evaluate, test, and validate patches in development or staging environments prior to production deployment
- Coordinate patch deployment activities with infrastructure, application, and business stakeholders to minimize operational impact
- Track, document, and report patch compliance metrics, exceptions, and remediation timelines
- Investigate patch failures, troubleshoot deployment issues, and recommend corrective actions
- Maintain patch management policies, procedures, and documentation in alignment with internal controls and audit requirements
- Support internal and external audits by providing evidence of patching activities and compliance status
- Assist in incident response activities related to unpatched or exploited vulnerabilities
- Continuously improve patch management processes through automation, standardization, and best-practice alignment
- Participate in cybersecurity risk assessments and vulnerability management initiatives
- Assist with endpoint configuration management and system hardening efforts
JOB REQUIREMENTS : - Bachelor's degree in Information Technology, Cybersecurity, Computer Science, or a related field required, or equivalent combination of education and experience
- Prior experience in patch management, systems administration, or IT security operations
- Relevant certifications (e.g., CompTIA Security+, Microsoft, CISSP, or vendor-specific certifications) preferred
KNOWLEDGE/SKILLS REQUIRED : - Advanced analytical skills
- Advanced problem-solving skills
- Intermediate knowledge of Windows, Linux, and common enterprise applications
- Intermediate proficiency with patch management and endpoint tools (ManageEngine Endpoint Central preferred)
- Intermediate understanding of vulnerability management concepts and common frameworks (e.g., CVE, CVSS).
- Intermediate technical documentation skills
- Intermediate verbal and written communication skills
- Intermediate understanding of regulated environments (e.g., financial services, healthcare, or government)
- Intermediate knowledge of security frameworks such as NIST, CIS Controls, or ISO 27001
- Intermediate proficiency with scripting or automation (e.g., PowerShell, Python).
- Intermediate time management skills
- Intermediate priority management
- Intermediate collaboration skills
PHYSICAL AND MENTAL QUALIFICATIONS : - Standing, walking, bending and stooping required
- Must be able to sit at a desk for long periods of time and use a computer
- Must be able to occasionally move or lift up to 10 pounds
- May be asked to work supplemental hours periodically
- Limited travel required occasionally during and after business hours
The above statements are intended to describe the general nature and level of work being performed by the incumbent assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties, and/or skills required of all personnel so classified.
NOT A CONTRACT