Patching Lead

ECS is seeking a Patching Lead to work in our Macon, GA office Please Note: This position is contingent upon [contract award].

Job Description:

We are seeking a highly skilled Patching Lead with significant experience in installing and configuring hardware and software, monitoring system performance, and troubleshooting issues. The ideal candidate will possess expert-level knowledge of core infrastructure services, including virtualization (VMWare), DNS, DHCP, and Active Directory. Additionally, the candidate must have experience with scripting and automation tools and knowledge of key Azure cloud services.

Required Skills:

• Minimum 5 years of experience.
• Deep analytical thinking based on research to assess software patches, registry updates, and configuration changes.
• Ability to provide comprehensive assessments including cybersecurity, system, and business impact.
• Good understanding of the cybersecurity implications of applying patches.
• Experience supporting servers in a complex enterprise environment.
• Expertise in deploying patches to systems using WSUS, SCCM, and Azure Automation tools.
• Experience supporting and troubleshooting Windows and Linux Servers.
• Demonstrable history of leading successful patching deployments of enterprise-class solutions.
• Skilled at producing technical documents and engineering diagrams.
• Strong written and verbal communication skills.
• Team-focused and collaborative.
• Proficiency in scripting for packaged installation of patches, software, and configuration changes.
• Expertise in PowerShell automation to improve patch management processes.
• History of optimizing pre- and post-patching processes to ensure proper implementation without outages.
• Ability to analyze and foresee the side effects of patches and quantify the risks, business impact, and opportunities.
• Ability to work with product vendors to develop suitable patch recommendations without compromising systems.
• Demonstrated experience in researching, evaluating, developing, designing, and implementing patch remediation designs and standards following industry best practices.

Required Certifications

AZ-900: Microsoft Azure Fundamentals

Desired Skills:

• Identify, prioritize, acquire, install, and verify installation of patches, updates, and upgrades.
• Ensure all servers and workstations are part of the Enterprise Patch Management solution and up-to-date.
• Perform application patching and OS upgrades on user workstations and mobile devices.
• Ensure all systems are included and tracked in the Enterprise Patch Management solution.
• Apply all critical cybersecurity patches within defined parameters or as directed by Leadership.
• Provide monthly patching reports to OCIO management.
• Report systems where patching failed within 24 hours.
• Track and document system patching through ticketing systems.
• Develop and optimize pre- and post-patching processes to ensure proper implementation without outages.
• Analyze and foresee the side effects of patches, quantifying risks, business impacts, and opportunities.
• Identify, report, and track un-patchable systems.
• Coordinate patching schedules and activities with various application and support teams.
• Provide extended hours support after core duty hours and on weekends for emergencies and critical patches as directed by Federal leadership.
• Test and verify patches in a non-production environment before releasing into production.
• Actively monitor patch deployments and resolve/remediate issues arising from the patching process.
• Escalate any outages resulting from unexpected patching outcomes promptly.
• Analyze trends in enterprise vulnerability and patching processes and provide strategies to reduce exposure to vulnerabilities.
• Meet federal reporting requirements and regularly communicate with stakeholders and ISSOs.
• Monitor and ensure baseline compliance for all Servers/Workstations and provide reports to ISSOs, SCAs, and stakeholders.
• Create automated assessments highlighting real-time device compliance with agency baselines.
• Manage Cloud Security Posture and compliance reporting.
• Install new hardware and software ensuring compatibility with the network.
• Configure and maintain back-end infrastructure systems such as VMware, ESX, NetApp, and Server Enclosures, ensuring they are up-to-date.
• Deploy and maintain Public Key Infrastructure (PKI) systems for certificate management.
• Administer data storage for multiple NetApp storage systems, ensuring data availability, protection, and capacity planning across multiple SANs.
• Deploy and maintain VDI platforms, including Azure Virtual Desktop.
• Design, implement, and maintain secure DNS solutions.
• Support and maintain multiple VMware vSphere and NSX environments.
• Operate systems within VMware and Azure cloud environments.
• Design, implement, and maintain Dynamic Host Configuration Protocol (DHCP) configurations.

ECS is an equal opportunity employer and does not discriminate or allow discrimination on the basis of race, color, religion, sex, age, sexual orientation, gender identity or expression, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, status as a crime victim, disability, protected veteran status, or any other characteristic protected by law. ECS promotes affirmative action for minorities, women, disabled persons, and veterans.

ECS is a leading mid-sized provider of technology services to the United States Federal Government. We are focused on people, values and purpose. Every day, our 3800employees focus on providing their technical talent to support the Federal Agencies and Departments of the US Government to serve, protect and defend the American People.

---