Patch Management Analyst

About The Position

Requirements

• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, or a related field required, or equivalent combination of education and experience
• Prior experience in patch management, systems administration, or IT security operations
• Advanced analytical skills
• Advanced problem-solving skills
• Intermediate knowledge of Windows, Linux, and common enterprise applications
• Intermediate proficiency with patch management and endpoint tools (ManageEngine Endpoint Central preferred)
• Intermediate understanding of vulnerability management concepts and common frameworks (e.g., CVE, CVSS).
• Intermediate technical documentation skills
• Intermediate verbal and written communication skills
• Intermediate understanding of regulated environments (e.g., financial services, healthcare, or government)
• Intermediate knowledge of security frameworks such as NIST, CIS Controls, or ISO 27001
• Intermediate proficiency with scripting or automation (e.g., PowerShell, Python).
• Intermediate time management skills
• Intermediate priority management
• Intermediate collaboration skills
• Standing, walking, bending and stooping required
• Must be able to sit at a desk for long periods of time and use a computer
• Must be able to occasionally move or lift up to 10 pounds
• May be asked to work supplemental hours periodically
• Limited travel required occasionally during and after business hours

Nice To Haves

• Relevant certifications (e.g., CompTIA Security+, Microsoft, CISSP, or vendor-specific certifications) preferred

Responsibilities

• Plan, schedule, and execute patching for servers, workstations, network devices, and cloud-based systems in accordance with defined maintenance windows
• Monitor vendor security advisories, vulnerability feeds, and threat intelligence sources to identify applicable patches and remediation actions
• Evaluate, test, and validate patches in development or staging environments prior to production deployment
• Coordinate patch deployment activities with infrastructure, application, and business stakeholders to minimize operational impact
• Track, document, and report patch compliance metrics, exceptions, and remediation timelines
• Investigate patch failures, troubleshoot deployment issues, and recommend corrective actions
• Maintain patch management policies, procedures, and documentation in alignment with internal controls and audit requirements
• Support internal and external audits by providing evidence of patching activities and compliance status
• Assist in incident response activities related to unpatched or exploited vulnerabilities
• Continuously improve patch management processes through automation, standardization, and best-practice alignment
• Participate in cybersecurity risk assessments and vulnerability management initiatives
• Assist with endpoint configuration management and system hardening efforts