Senior Cyber Defense Specialist- Patch Management
⚲ Warszawa, Wola
Do uzgodnienia
Opis stanowiska
Nasze wymagania:
Experience in Patch Management, IT Service Management, or Vulnerability Management
Strong background in process design and governance
Strong data-driven and analytical capabilities
Ability to translate technical risk into business language
Experience working with distributed stakeholders
ITIL or comparable framework knowledge is an advantage
O projekcie:
The Patch Management Specialist is responsible for the end-to-end governance, coordination, and continuous improvement of Patch Management processes across the organization. The role focuses on process ownership, data-driven steering and improvement of patching performance, stakeholder coordination, and risk transparency rather than hands-on patch deployment or engineering and operations of patching management solutions.
Zakres obowiązków:
Own and continuously improve the Patch Management framework (policies, standards, procedures)
Define and maintain the Group IT wide patching processes and support service team to implement patching procedures for their services
Help IT service teams with risk-based prioritization
Define and monitor KPIs/KRIs (e.g. patch compliance, SLA adherence, risk exposure) to measure and improve performance of patching activities in a data-driven manner
Identify systemic security-risks resulting from insufficient patching practices and escalate where business critical risk arises Provide management-ready reporting on patching status and resulting cyber-risks
Act as single point of contact for Patch Management within Cyber Defense
Support Vulnerability Management team in daily operations
Experience in Patch Management, IT Service Management, or Vulnerability Management
Strong background in process design and governance
Strong data-driven and analytical capabilities
Ability to translate technical risk into business language
Experience working with distributed stakeholders
ITIL or comparable framework knowledge is an advantage
O projekcie:
The Patch Management Specialist is responsible for the end-to-end governance, coordination, and continuous improvement of Patch Management processes across the organization. The role focuses on process ownership, data-driven steering and improvement of patching performance, stakeholder coordination, and risk transparency rather than hands-on patch deployment or engineering and operations of patching management solutions.
Zakres obowiązków:
Own and continuously improve the Patch Management framework (policies, standards, procedures)
Define and maintain the Group IT wide patching processes and support service team to implement patching procedures for their services
Help IT service teams with risk-based prioritization
Define and monitor KPIs/KRIs (e.g. patch compliance, SLA adherence, risk exposure) to measure and improve performance of patching activities in a data-driven manner
Identify systemic security-risks resulting from insufficient patching practices and escalate where business critical risk arises Provide management-ready reporting on patching status and resulting cyber-risks
Act as single point of contact for Patch Management within Cyber Defense
Support Vulnerability Management team in daily operations
🔍 Dekoder Ogłoszenia
🟡
The Patch Management Specialist is responsible for the end-to-end governance, coordination, and continuous improvement of Patch Management processes across the organization. The role focuses on process ownership, data-driven steering and improvement of patching performance, stakeholder coordination, and risk transparency rather than hands-on patch deployment or engineering and operations of patching management solutions.
Oznacza to, że będziesz odpowiedzialny za strategię i procesy zarządzania łatkami, a nie za faktyczne wdrażanie łatek czy zarządzanie narzędziami do ich wdrażania.
🟡
Ability to translate technical risk into business language
Musisz umieć wyjaśniać problemy techniczne związane z bezpieczeństwem w sposób zrozumiały dla osób nietechnicznych, co może oznaczać konieczność częstego komunikowania się z zarządem lub innymi działami.
🟡
Experience working with distributed stakeholders
Będziesz musiał współpracować z ludźmi z różnych zespołów i lokalizacji, co może wymagać doskonałych umiejętności komunikacyjnych i zarządzania konfliktami.
🟡
Help IT service teams with risk-based prioritization
Twoim zadaniem będzie wspieranie innych zespołów w określaniu, które łaty są najważniejsze do wdrożenia, co może wymagać negocjacji i wpływania na decyzje innych.
🟡
Identify systemic security-risks resulting from insufficient patching practices and escalate where business critical risk arises
Oczekuje się, że będziesz proaktywnie szukać problemów i zgłaszać je, co może oznaczać konieczność podejmowania trudnych decyzji i konfrontacji z innymi zespołami.