Security Vulnerability Remediation Specialist 3

Job Summary: The Security Vulnerability Remediation Specialist 3 is a targeted Infrastructure Operations role responsible for assessing remediating automating and sustaining security vulnerability fixes across Hylands existing internal infrastructure. This role works in the same technical environments as current Infrastructure Administrators and Engineers and focuses on servers networks identity platforms cloud infrastructure and endpoint systems. The role partners closely with Cyber Security for vulnerability identification and prioritization while owning the execution and automation of remediation within Infrastructure-managed systems.

• Review assess and validate vulnerability findings provided by Cyber Security threat detection tools and vulnerability scanners to interpret risk context applicability criticality to the business and determine remediation approach.

• Execute remediation activities including patching configuration changes upgrades and mitigation controls across servers endpoints network devices and platforms.

• Partner with Engineering to design and implement automation and scripting to streamline remediation (e.g. patch deployment configuration enforcement validation checks) using standard tools and approaches that create and leverage repeatable solutions addressing vulnerabilities hardening our environment and avoiding the reintroduction of issues.

• Partner with Infrastructure Support and Engineering teams to coordinate address recurring patterns and implement protocols and procedures to avoid the reintroduction of vulnerabilities.

• Monitor vulnerability remediation queues SLAs and aging to ensure commitments are met tracking and reporting is completed and improvements are made to operational documentation.

• Influence and assist in the creation of team remediation processes standards and best practices in partnership with leadership to improve operational efficiency and vulnerability management outcomes.

• Operate as a trusted advisor for team members and line of business; develop and maintain strategic

• working relationships

• Mentor coach train and provide feedback to other team members; may provide feedback to leadership on technical abilities of team.

• Bachelors degree or equivalent experience

• 4 yrs of Experience

• Experience working with vulnerability scanning or risk platforms (e.g. Rapid7 or similar).

• Familiarity with endpoint management patch orchestration or configuration enforcement tools (WSUS MECM etc.).

• Experience operating in a regulated or security focused enterprise environment.

• Exposure to infrastructure as code or automation frameworks.

• Experience working in a global or follow the sun operational model.

• Experience in IT infrastructure administration (servers operating systems networks endpoints).

• Microsoft Windows and Office proficient

• Strong oral and written communications skills that demonstrate a professional demeanor and the ability to interact with others with discretion and tact

• Strong organizational multi-tasking and time management skills

• Strong collaboration skills applied successfully within team as well as with all levels of employees in other areas

• Strong Microsoft Excel skills

• Strong leadership sound judgement and business acumen skills

• Strong facilitation and project management skill

• Strong interpersonal skills; able to maintain solid rapport with team members as well as maintain professionalism with those outside of department

• Strong data gathering interviewing and analytical/problem solving skills

• Strong critical thinking and problem solving skills

• Strong ability to use original thinking to translate goals into the implementation of new ideas and design solutions

• Self-motivated with the ability to manage projects to completion with minimal oversight

• Able to thrive in a fast paced deadline driven environment

• Strong attention to detail

• Demonstrated ability to influence motivate and mobilize team members and business partners

• Strong ability to develop and use engaging informative and compelling presentation methodologies

• Strong ability to handle sensitive information with discretion and tact

• Strong ability to establish rapport and gain the trust of others; effective at gaining consensus

• Ability to work independently and in a team environment

• Ability to coach mentor and provide feedback to team members in a timely manner

• Strong knowledge of Systems and Platforms including Windows Server (Active Directory Azure Entra ID / Azure AD Group Policy DNS LDAP); Linux basic administration and patching.

• Strong knowledge of Identity & Access including Active Directory (AD DS) Azure Entra ID / Azure AD Group Policy service accounts security groups.

• Strong knowledge of Cloud and Virtualization including Microsoft Azure (compute networking security controls); Virtualization platforms (e.g. VMware Hyper V).

• Strong knowledge Networking & Security including firewalls (Palo Alto Azure Firewall; legacy platforms as applicable); TCP/IP DNS DHCP routing and internal network services.

• Strong knowledge of Endpoint & Management Tools including Microsoft Intune SCCM and endpoint configuration tooling.

• Strong knowledge in Automation & Scripting including PowerShell Python Bash or equivalent scripting.

• Up to 5% travel time required