Positions:2 Full Time
Experience
6 - 9 Years
Job Description: Security Operations (SecOps) Engineer
Position Overview
We are seeking an experienced Security Operations (SecOps) Engineer to join our IT Security team. In this role, you will be responsible for identifying, managing, and remediating vulnerabilities across our Windows server and workstation infrastructure. You will work with cutting-edge security tools and collaborate with cross-functional teams to maintain a secure and compliant IT environment.
Key Responsibilities
End-of-Life (EOL) Remediation – Windows Servers
- Identify and validate EOL and outdated software on Windows servers using Qualys or equivalent vulnerability scanning tools
- Uninstall unsupported software and replace it with latest supported versions
- Develop and execute PowerShell scripts for automated remediation and software upgrades
- Perform post-remediation validation to confirm successful upgrades and compliance status
- Maintain detailed logs and documentation for audit and compliance tracking purposes
- Collaborate with application owners and infrastructure teams to schedule changes and minimize service disruptions
Vulnerability Management – Servers & Workstations
- Manage endpoint security configurations using SCCM (System Center Configuration Manager) and Microsoft Intune
- Create and manage imaging and task sequences in SCCM and Intune environments
- Package and deploy patches on servers and workstations according to monthly security schedules
- Deploy collections in SCCM and push relevant patches to remediate identified vulnerabilities
- Conduct remediation activities using Qualys Patch Management platform
- Write, test, and implement PowerShell scripts to fix vulnerabilities via SCCM or Qualys
- Generate detailed vulnerability reports and provide actionable insights to stakeholders
- Collaborate with cross-functional teams to ensure security best practices are followed organization-wide
Required Qualifications
Experience
- Minimum 6-9 years of experience in IT security, systems administration, or related field
- Proven track record in vulnerability management and patch deployment
- Experience managing large-scale IT environments with multiple servers and workstations
Technical Skills
- PowerShell Scripting: Advanced proficiency in developing automation scripts for remediation and system management
- Windows Server Administration: Hands-on experience with Windows Server 2012, 2016, 2019, and 2022
- SCCM & Intune: Proven expertise in patching, deployment, imaging, task sequencing, and endpoint management
- Vulnerability Scanning Tools: Hands-on experience with Qualys or similar vulnerability assessment platforms
- Security Compliance: Understanding of CVEs, vulnerability remediation processes, and security compliance frameworks
- Imaging & Task Sequencing: Experience creating and managing deployment images and automated task sequences
Soft Skills
- Strong attention to detail and documentation practices
- Excellent communication and collaboration abilities
- Problem-solving mindset with ability to work in fast-paced environments
- Ability to prioritize multiple tasks and manage competing deadlines
- Commitment to maintaining security best practices and compliance standards
Preferred Qualifications
- Relevant security certifications (e.g., CompTIA Security+, CISSP, CEH)
- Experience with additional vulnerability management tools or SIEM platforms
- Knowledge of compliance frameworks such as NIST, CIS, or ISO 27001
- Experience with change management processes and ticketing systems
What We Offer
- Competitive salary and benefits package
- Opportunities for professional development and certification support
- Collaborative and inclusive work environment
- Career growth opportunities within a dynamic security team
- Access to latest security tools and technologies
Equal Opportunity Statement
We are an equal opportunity employer committed to building a diverse and inclusive workforce. We welcome applications from all qualified candidates and provide accommodations throughout the recruitment process as needed.
PI5ddb62dc9098-37437-40780731
