Senior Associate - Endpoint Patching SRE

New York LifeNew York, NY
$111,500 - $159,000Hybrid

About The Position

Own endpoint patch execution reliability, deployment waves, endpoint compliance, rollback controls, and evidence capture for workstations and user devices. This role ensures endpoint patches are deployed through controlled rings, validated for user impact, monitored for failures, and closed with evidence while supporting accelerated remediation for Critical VITs, High priority patches, and zero-day events.

Requirements

  • 5+ years in endpoint engineering, endpoint operations, SRE, or enterprise patching.
  • Experience with Tanium, Microsoft Intune, SCCM/MECM, endpoint security agents, endpoint compliance reporting, or similar platforms.
  • Strong understanding of endpoint operating systems, reboot compliance, EDR, VPN, authentication, and productivity-tool impacts.
  • Strong troubleshooting, incident triage, and cross-team coordination skills.

Nice To Haves

  • Experience supporting regulated enterprise endpoint environments.
  • Experience with automation, PowerShell, scripting, dashboarding, or ITSM integrations.
  • ITIL, Microsoft endpoint, security, or SRE certifications.

Responsibilities

  • Execute endpoint patching through approved endpoint management and orchestration platforms.
  • Manage pilot rings, broad deployment waves, rollback groups, exception handling, and endpoint maintenance schedules.
  • Monitor patch success, failed installs, reboot compliance, endpoint health, and user-impacting defects.
  • Support 24-hour Critical VIT, 3-day High, and 6-day priority patching cycles for endpoint vulnerabilities.
  • Validate VPN, EDR, authentication, security agents, productivity tools, and endpoint performance after patching.
  • Coordinate rollback, pause, retry, workaround, or escalation decisions when endpoint instability occurs.
  • Partner with Service Desk, Endpoint Engineering, Security, and application teams to resolve user-impacting incidents.
  • Document known issues, failed device follow-up, compensating controls, and closure evidence.
  • Improve endpoint patch automation, deployment reporting, reboot compliance, health checks, and evidence capture.
  • Create dashboards for endpoint compliance, failed devices, overdue patches, exceptions, and closure readiness.
  • Partner with Patch & Vulnerability Ops to ensure endpoint vulnerability records remain open until validated or exceptioned.
  • Pause or slow endpoint deployment waves when impact thresholds are breached.
  • Recommend rollback, workaround, retry, or escalation paths for endpoint patch issues.
  • Require failed-device follow-up and evidence before endpoint remediation records are closed.

Benefits

  • leave programs
  • adoption assistance
  • student loan repayment programs
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service