Patch Management Specialist, Senior

ASM Research

18d

About The Position

The Patch Management Specialist, Senior oversees enterprise patch management strategy and execution for desktops, laptops, and remote endpoints in a highly regulated, defense-focused environment. This role defines patch governance, schedules, and standards, aligning remediation activities with security policies, regulatory requirements, and mission needs while minimizing impact to critical services. The specialist leads coordination with security, infrastructure, and end-user support teams, driving automation, audit readiness, and continuous improvement of patching processes and toolsets.

Requirements

Bachelor’s degree in IT, Computer Science, or a related field, or equivalent relevant experience.
Typically 8+ years of experience in patch management, infrastructure operations, or security engineering with progressive ownership of enterprise-wide patching responsibilities.
Deep understanding of patch management principles and experience with tools such as Microsoft WSUS and SCCM or equivalent enterprise platforms.
Strong problem-solving, analytical, communication, and interpersonal skills, with the ability to manage multiple concurrent initiatives.
Experience supporting audits, assessments, and automated patch management solutions in highly regulated environments.
Ability to obtain and maintain a Secret clearance; U.S. citizenship required.

Nice To Haves

Familiarity with DoD or similar federal IT environments and their security/compliance expectations.
Relevant certifications such as CISSP, CPMP, or similar security/governance credentials.
Experience integrating patch and vulnerability management into broader cybersecurity and IT governance frameworks.

Responsibilities

Define and govern enterprise patch management strategy, standards, and schedules, aligning patch priorities with vulnerability risk, business impact, and compliance requirements.
Architect and optimize large-scale patching solutions using tools such as WSUS, SCCM, or equivalent platforms, including deployment rings, maintenance windows, and detailed compliance reporting.
Lead response to critical and zero-day vulnerabilities by coordinating rapid assessment, pilot deployments, risk-based prioritization, and accelerated patch rollouts across heterogeneous environments.
Establish and manage patch exception and mitigation processes, including documenting risk acceptances, defining compensating controls, and reporting noncompliance to leadership.
Partner with vulnerability management, security operations, and network/server teams to integrate scan results, threat intelligence, and asset criticality into patch planning and execution.
Design and oversee automation, scripting, and configuration baselines that reduce manual effort, increase patch success rates, and improve consistency across diverse platforms.
Develop and publish executive-level metrics and dashboards on patch compliance, remediation timelines, and risk reduction, using them to drive accountability with system owners.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume