Our client, an International Mining Company, has a Contract position for a ENTERPRISE ARCHITECT.
Provide domain and subject matter expertise in vulnerability and patch management.
Design, develop, review, and maintain a comprehensive vulnerability/patch management strategy and practice for the overall IT operations environment, considering security, operational, and business requirements.
Implement Vulnerability management framework with BU team.
ENTERPRISE ARCHITECT – PLEASE DO NOT APPLY IF YOU DO NOT QUALIFY – NO CV WILL BE KEPT FOR FUTURE USE.

An undergraduate qualification (Bachelor’s degree or equivalent) in the relevant IM discipline and/or Technical competencies and certification with relevant years of experience in a similar role.

At least 10 years of experience in Information Technology Operations, Engineering and/or IT Security function.
5 or more years of proven experience in IT patch management, vulnerability remediation, patch deployment experience, or a similar role.
Proven track record in developing and implementing a vulnerability and patch management program utilising a Vulnerability and Patch Management Framework.
Demonstrated knowledge in systems vulnerability management and system hardening to mitigate Common Vulnerability.
Familiarity with vulnerability assessment tools (Qualys, Nessus, etc.) and techniques.

Provide domain and subject matter expertise in vulnerability and patch management.
Design, develop, review, and maintain a comprehensive patch management strategy and practice for the overall IT operations environment, considering security, operational, and business requirements.
Conduct regular patch management and vulnerability assessments to identify potential security risks and prioritize patching based on criticality, urgency, and impact. Such assessment should cover all layers of enterprise infrastructure, endpoints, server hardware, operating systems, and applications.
Collaborate with the security team to evaluate the risk associated with unpatched vulnerabilities and recommend appropriate mitigation strategies.
Review and coordinate the deployment of patches, updates, and security fixes across all systems, applications, and infrastructure.
Establish and/or enhance a standardised thorough testing process to verify the compatibility and stability of patches before deployment to production environments.
Work with infrastructure, application, security, and BU IT teams to schedule and implement patching activities with minimal impact on business operations.
Prepare detailed reports, metrics, and insights on patch compliance, analyse vulnerability remediation progress, and system performance to management and stakeholders. Regularly communicate the progress of patch management initiatives to senior leadership.
Analyse threats, vulnerability feeds, patch management gaps and propose continuous improvement / remediation plans.

Desired Skills:

  • Vulnerability Management
  • Patch Managerment
  • IT Security function
  • Information Technology Operations
  • Engineering

Learn more/Apply for this position