Patch Analyst 1

JOB DESCRIPTION

Position Summary
This position is responsible for tracking and executing the distribution of security releases (patches updates upgrades) to company-owned infrastructure including server environments and third-party software. The role requires independent execution of patch lifecycle activities maintenance of audit-ready documentation generation of compliance and operational reports and adherence to established change management and regulatory processes. The Patch Analyst supports vulnerability remediation activities and ensures timely escalation when deadlines or compliance risks are identified. Coordinate with business areas to develop mitigation plans for systems or non-critical releases to be tested and implemented based on patch management strategies.

Tasks and Responsibilities

• Track and document security releases from receipt through assessment implementation validation or mitigation including reporting on SLA adherence for implementation and mitigation deadlines.
• Coordinate with relevant teams and application owners to evaluate security releases and schedule implementation activities.
• Document service and change requests with appropriate dates and evidence of release assessment approval and implementation within configuration management and change control processes.
• Monitor mitigation plans and implementation deadlines to ensure policy-aligned extensions and escalate to management when releases are at risk of missing required timelines.
• Ensure patch management processes and activities are documented accurately and remain compliant with policies and regulatory requirements.
• Generate recurring patch compliance and vulnerability remediation reports including aging reports for open vulnerabilities and mitigation items.
• Maintain accurate metrics reflecting patch distribution performance compliance status SLA adherence and risk exposure.
• Utilize automated software tools to evaluate applicable patches validate remediation status and report findings.
• Utilize reporting tools to develop clear actionable operational reports.
• Support audit and regulatory activities by compiling and validating required documentation artifacts.
• Participate in patch compliance and coordination meetings providing clear and concise status updates.
• Assist with process improvement initiatives related to patch tracking reporting and compliance workflows as well as special reports and projects.
• Work with SMEs to apply patches to applicable devices consistent with established procedures ensuring operational constraints are respected.

Minimum Knowledge Skills & Abilities

• Hands-on experience administering or supporting Windows and Linux server environments.
• Understanding of software development lifecycle and experience managing patch lifecycle activities.
• Relevant professional experience administering vulnerability remediation processes.
• Knowledge of operationalizing security requirements.
• Understanding of configuration management and change control processes.
• Experience generating patching or compliance metrics to measure effectiveness and consistency.
• Proficient in Excel (pivot tables formulas structured data analysis).
• Ability to execute assigned responsibilities independently within defined workflows.
• Strong documentation discipline in audit-sensitive or regulated environments.
• Ability to manage multiple deadlines and escalate appropriately when risks arise.
• Clear and concise written and verbal communication skills.

Preferred Qualifications

• Bachelor s degree in Computer Science Information Systems or related field from an accredited university.
• Experience in regulated critical infrastructure environments.
• IT auditing and/or security background.
• Cyber vulnerability management experience.
• Familiarity with vulnerability scanning tools (Tenable/Nessus preferred).
• Experience with reporting dashboards or data visualization tools (Power BI preferred).
• Entry-level security certifications such as Security (preferred).

Competencies

• Communicating Effectively
• Coordinating Project Activities
• Working with Ambiguity
• Serving Customers
• Demonstrating Accountability
• Acting Decisively