Lead Enterprise Infrastructure Patch and Security Engineer

United StatesUnited States·Hermitagelead
EngineeringSecurity Engineer
2 views0 saves0 applied

Quick Summary

Overview

We are seeking a highly skilled Lead Infrastructure Security & Patch Management Engineer to reduce security risk and maintain patch compliance across Infrastructure Services.

Technical Tools
EngineeringSecurity Engineer

We are seeking a highly skilled Lead Infrastructure Security & Patch Management Engineer to reduce security risk and maintain patch compliance across Infrastructure Services. This role is responsible for managing enterprise-wide remediation efforts using approved tools and processes across Windows Server, Enterprise Linux, cloud and on-prem environments, network devices, and other in-scope assets.

Responsibilities

~1 min read
  • Own and manage the Security Remediation Program, ensuring alignment with Security findings (Critical, High, Medium).
  • Plan, schedule, and execute monthly operating system patching for Windows and Linux environments, including canary deployments, defined maintenance windows, and rollback strategies.
  • Lead zero-day and out-of-band patching efforts with expedited risk assessment and adherence to change control processes.
  • Deliver extended remediation activities, including updates to ciphers, protocols, file permissions, and third-party applications; coordinate with vendors as needed.
  • Administer and operate enterprise patching and security tooling, including MECM/SCCM, Ansible, Rapid7, Ivanti ITSM, Cisco DNA, Panorama, and Venafi, with manual deployments when required.
  • Manage quarterly component updates and oversee certificate lifecycle processes (PKI/DigiCert), including feasibility analysis for migrations from self-signed to PKI certificates.
  • Develop and publish compliance reports, audit documentation, and governance updates.
  • Facilitate and lead weekly Security–Infrastructure standups to track remediation progress and address risks.

Requirements

~1 min read
  • 5+ years of experience in infrastructure security and patch management.
  • Strong expertise in Windows Server and Enterprise Linux environments (e.g., RHEL).
  • Hands-on experience with enterprise tools such as MECM/SCCM, Ansible, Rapid7, Ivanti ITSM, Cisco DNA, Panorama, and Venafi/PKI.
  • Solid understanding of ITIL processes, including change management, incident management, and CMDB maintenance.
  • Experience with compliance reporting and audit support.
  • Scripting proficiency in PowerShell, Bash, or Python.
  • Demonstrated experience with canary deployments and rollback procedures.

Location & Eligibility

Where is the job
Hermitage, United States
On-site at the office
Who can apply
US

Listing Details

Posted
June 16, 2026
First seen
June 16, 2026
Last seen
July 12, 2026

Posting Health

Days active
0
Repost count
0
Trust Level
51%
Scored at
June 16, 2026

Signal breakdown

freshnesssource trustcontent trustemployer trust
Newsletter

Stay ahead of the market

Get the latest job openings, salary trends, and hiring insights delivered to your inbox every week.

A
B
C
D
Join 12,000+ marketers

No spam. Unsubscribe at any time.

alllinestechnologyLead Enterprise Infrastructure Patch and Security Engineer