Technical Lead-Cloud & Infra Engg

Birlasoft Limited•Alpharetta, GA
•Remote

About The Position

This role focuses on the end-to-end remediation of vulnerabilities identified on Linux servers, specifically Red Hat Enterprise Linux (RHEL) versions 7, 8, and 9. The engineer will be responsible for OS/package patching, configuration hardening, and ensuring adherence to Service Level Agreements (SLAs) and audit expectations. The position involves triaging vulnerability findings, developing actionable remediation plans, and coordinating remediation activities. Automation using tools like Chef and Ansible is a key aspect of the role, as is validating remediation effectiveness and reporting progress to stakeholders. Cross-team coordination and vendor management are also important components of this position.

Requirements

  • 6-10 years of Strong hands-on experience with RHEL 7/8/9/10 in enterprise environments.
  • Proven experience driving vulnerability remediation and patch management for Linux servers.
  • Expertise with Qualys (or equivalent vulnerability scanners) including interpreting findings, false-positive validation, and closure verification.
  • Automation experience with Chef and/or Ansible in production.
  • Strong scripting skills: Bash, plus working proficiency in Ruby (or ability to maintain/extend existing Ruby codebases).
  • Understanding of Linux security fundamentals (permissions, services, SSH hardening, package management, kernel considerations).
  • Experience working with change management, incident/problem management, and coordinating across multiple support teams.

Nice To Haves

  • Familiarity with compliance/security frameworks (e.g., CIS benchmarks, STIG concepts) as applied to Linux servers.
  • Experience with CI/CD or automated testing for infrastructure code (linting, unit/integration testing where applicable).
  • Experience operating in large-scale environments (hundreds/thousands of servers) with tiered production controls.
  • Working knowledge of container host hardening and server-side runtime dependencies (if applicable to the server fleet).

Responsibilities

  • Own and execute end-to-end remediation for vulnerabilities identified on Linux servers (RHEL 7/8/9), including OS/package patching and configuration hardening.
  • Fast-track and manage all Meridian-related remediation requirements as they are received, ensuring adherence to defined SLAs and audit expectations.
  • Triage vulnerability findings (primarily from Qualys) and translate them into actionable remediation plans, considering exploitability, criticality, asset tiering, and operational risk.
  • Coordinate remediation activities for kernel and package updates (YUM/DNF), security errata, and required reboots where applicable.
  • Coordinate remediation activities for CIS/STIG-aligned configuration changes (as applicable in the environment).
  • Coordinate remediation activities for mitigations/compensating controls when immediate patching is not feasible (documented and approved per process).
  • Develop, enhance, and maintain remediation automation using Chef (cookbooks/recipes, attributes, templates, policy files as applicable) and Ansible (playbooks, roles, inventories, modules).
  • Develop, enhance, and maintain remediation automation using Shell scripting (Bash) and Ruby for server-side automation and custom remediation logic.
  • Convert recurring manual remediation steps into repeatable automated solutions and standardized runbooks.
  • Ensure code follows internal engineering standards: version control, peer review, testing, documentation, and change management.
  • Validate remediation effectiveness by re-scanning and verifying closure in Qualys (and/or approved internal validation methods).
  • Confirm fixes did not introduce regressions; coordinate with application and platform teams for post-change verification.
  • Maintain accurate documentation of remediation actions, approvals, exceptions, and closure evidence to support audit and compliance needs.
  • Provide progress updates, metrics, and risk status to stakeholders (e.g., open critical/high items, aging items, SLA adherence).
  • Schedule and lead remediation calls with infrastructure support teams, application owners, and other stakeholders to drive timely execution.
  • Work within change management processes: create/execute change plans, develop rollback steps, and coordinate maintenance windows.
  • Partner with platform engineering to improve standard server baselines and prevent vulnerability recurrence.
  • Follow up with vendors (e.g., Red Hat or software providers) for patch availability, release schedules, and remediation guidance when vulnerabilities require vendor action.
  • Track advisories (RHSA/RHBA) and coordinate planned rollout timelines where applicable.
Ā© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service