Job: Vulnerability and Patch Management Engineer

Location: Remote

Job Type: Full Time

Job Requirements and Responsibilities:

Job Functions
• Configuring weekly internal and external vulnerability scans.
• Running vulnerability scans and reviewing reports to identify potential vulnerabilities.
• Creating remediation plans and schedules to mitigate identified vulnerabilities.
• Working with IT Support to test systems after patching.
• Analyzing current security requirements and making suggestions for improvements.
• Participate in security audits.
• Perform inventory scans on the network to identify new systems that may need to be
monitored.
• Troubleshooting applied patches and working with other IT members to correct issues
that may arise.
• Maintaining documentation on the vulnerability program.
• Create weekly reports on the effectiveness of the vulnerability program.
• Monitor external sources to keep current with the latest news and events surrounding
cyber threats and security.

Qualification Requirements
• Experience with Open Source tools, programs & protocols: SecPod, syslog, Apache
HTTPD & Tomcat, Jetty, Java, SSL/TLS & Certificates, OpenSSL, OpenSSH, OpenLDAP,
Nagios, Bind, Alfresco, CIFS, Samba, NFS, LPR/LPD/CUPS, rync, Amanda,
Dirvish, Syslog, SNMP, SMTP/Sendmail, ClamAV, Squid, KVM virtualization,
nextcloud, wordpress, GLPI.
• Able to review vulnerability reports to identify remediation requirements.
• Familiar with programming languages such as java, shell, perl, python, javascript or
php.
• Skilled at troubleshooting.
• Excellent organizational and communication skills (verbal & written).
• Ability to work independently, under general supervision and as a part of a team, on
several concurrent tasks with changing priorities.

Document Owner and Approval
The Vice President of Infrastructure is the owner of this document and is responsible for ensuring
that the job duties reflect the current requirements for the position.