Engineer I (Vulnerability Remediation)
Apply NowCompany: Ross
Location: Dublin, CA 94568
Description:
GENERAL PURPOSE:
The Engineer I is responsible for providing patch related support to Windows and Linux servers. The position requires deep analytical thinking based on research results to assess software patches/upgrades and configuration changes to be applied to varied infrastructure.
The Engineer I will provide assessments covering security, system, and business impact. The candidate must have a solid understanding of the security implications of a patch, though they are not required to be a security SME. They must analyze and anticipate the side effects of the patch. Finally, the role involves quantifying the risks and opportunities (for improved security) that the patch introduces in terms of business impact.
Additionally, the role is responsible for supporting and expanding existing reporting platform, data analysis, and automated reporting from on-prem and cloud systems utilizing related queries, scripts, and APIs.
The base salary range for this role is $93,200 - $153,050. The base salary range is dependent on factors including, but not limited to, experience, skills, qualifications, relevant education, certifications, seniority, and location. The range listed is just one component of the total compensation package for employees. Other rewards vary by position and location.
ESSENTIAL FUNCTIONS:
The position requires research-based analysis of problems and proposed solutions, soft skills, teamwork, strong written and verbal communication, an understanding of business and technical issues, be customer focused and respond to constructive feedback.
Assess security patches/upgrades and provide logical explanation in terms of risk.
Develop and optimize patching, upgrade, and remediation processes
Assist in developing action plans, metric reports, as well as other management communications intended to improve the patch management program at Ross.
Collaborate with stakeholders to gather business requirements to solution designs in accordance with technical requirements, best practices, and standards; continuously improve, support, develop new and existing dashboard reports and other solutions throughout process/solution life cycle.
Excellent written and verbal communication, must be able to communicate and present technical and business solutions to IT leadership and stakeholders
Available for rotation assignment for on-call support duties
COMPETENCIES:
People
Building Effective Teams (for managers of People and Projects)
Developing Talent (for managers of people only, N/A for this role/level)
Collaboration
Self
Leading by Example
Communicates Effectively
Ensures Accountability and Execution
Manages Conflict
Business
Business Acumen
Plans, Aligns and Prioritizes
Organizational Agility
With particular emphasis on the following specific position-related competencies:
Problem Solving
Time Management
Research and Documentation
Dealing and Ambiguity
QUALIFICATIONS AND SPECIAL SKILLS REQUIRED:
Bachelor's Degree Preferred (Computer Science, Information Systems, Engineering) or 5 years of Enterprise IT experience supporting diverse On-Prem and Cloud infrastructure
Server administration experience (Windows/RHEL) with a solid understanding of industry best practices for Patch Management and Vulnerability Remediation
Proficiency in scripting, packaging and installation of patches/upgrades, and configuration changes, including automation to improve patch management processes utilizing SCCM, Intune, Ansible, and Red Hat Satellite.
Proficient with scripting (PowerShell), REST APIs, SQL, and database/dataset modeling concepts
Conceptual and practical knowledge of IT Infrastructure designs, technologies, products, and services; OS, network, and application security
Proven ability with Microsoft O365 applications (Visio, PowerPoint, Excel), Microsoft 365, Power BI, Power Platform
Demonstrated documentation and planning experience, including Visio flow charts and process maps
Report automation from on-prem and cloud systems
Experience with change management in a SOX/PCI environment
Experience with SCCM, Cloud/Azure, ServiceNow, CMDB
Knowledge of various vulnerability scanning tools and reports (e.g., Kenna and Qualys)
PHYSICAL REQUIREMENTS/ADA:
This position requires the ability to work in an office environment, including using a computer, attending meetings, working as part of a team, and the ability to communicate with team members and others. Regular attendance also is a requirement of the position.
This role requires regular in-office presence, including attending in-person team interaction, meetings and collaboration, client support, mentoring, coaching, and/or feedback. However, this role can perform duties effectively using a combination of in-office and remote work. #LI-Hybrid
SUPERVISORY RESPONSIBILITIES:
None
DISCLAIMER:
This job description is a summary of the primary duties and responsibilities of the job and position. It is not intended to be a comprehensive or all-inclusive listing of duties and responsibilities. Contents are subject to change at management's discretion.
Ross is an equal employment opportunity employer. We consider individuals for employment or promotion according to their skills, abilities and experience. We believe that it is an essential part of the Company's overall commitment to attract, hire and develop a strong, talented and diverse workforce. Ross is committed to complying with all applicable laws prohibiting discrimination based on race, color, religious creed, age, national origin, ancestry, physical, mental or developmental disability, sex (which includes pregnancy, childbirth, breastfeeding and medical conditions related to pregnancy, childbirth or breastfeeding), veteran status, military status, marital or registered domestic partnership status, medical condition (including cancer or genetic characteristics), genetic information, gender, gender identity, gender expression, sexual orientation, as well as any other category protected by federal, state or local laws.
The Engineer I is responsible for providing patch related support to Windows and Linux servers. The position requires deep analytical thinking based on research results to assess software patches/upgrades and configuration changes to be applied to varied infrastructure.
The Engineer I will provide assessments covering security, system, and business impact. The candidate must have a solid understanding of the security implications of a patch, though they are not required to be a security SME. They must analyze and anticipate the side effects of the patch. Finally, the role involves quantifying the risks and opportunities (for improved security) that the patch introduces in terms of business impact.
Additionally, the role is responsible for supporting and expanding existing reporting platform, data analysis, and automated reporting from on-prem and cloud systems utilizing related queries, scripts, and APIs.
The base salary range for this role is $93,200 - $153,050. The base salary range is dependent on factors including, but not limited to, experience, skills, qualifications, relevant education, certifications, seniority, and location. The range listed is just one component of the total compensation package for employees. Other rewards vary by position and location.
ESSENTIAL FUNCTIONS:
The position requires research-based analysis of problems and proposed solutions, soft skills, teamwork, strong written and verbal communication, an understanding of business and technical issues, be customer focused and respond to constructive feedback.
Assess security patches/upgrades and provide logical explanation in terms of risk.
Develop and optimize patching, upgrade, and remediation processes
Assist in developing action plans, metric reports, as well as other management communications intended to improve the patch management program at Ross.
Collaborate with stakeholders to gather business requirements to solution designs in accordance with technical requirements, best practices, and standards; continuously improve, support, develop new and existing dashboard reports and other solutions throughout process/solution life cycle.
Excellent written and verbal communication, must be able to communicate and present technical and business solutions to IT leadership and stakeholders
Available for rotation assignment for on-call support duties
COMPETENCIES:
People
Building Effective Teams (for managers of People and Projects)
Developing Talent (for managers of people only, N/A for this role/level)
Collaboration
Self
Leading by Example
Communicates Effectively
Ensures Accountability and Execution
Manages Conflict
Business
Business Acumen
Plans, Aligns and Prioritizes
Organizational Agility
With particular emphasis on the following specific position-related competencies:
Problem Solving
Time Management
Research and Documentation
Dealing and Ambiguity
QUALIFICATIONS AND SPECIAL SKILLS REQUIRED:
Bachelor's Degree Preferred (Computer Science, Information Systems, Engineering) or 5 years of Enterprise IT experience supporting diverse On-Prem and Cloud infrastructure
Server administration experience (Windows/RHEL) with a solid understanding of industry best practices for Patch Management and Vulnerability Remediation
Proficiency in scripting, packaging and installation of patches/upgrades, and configuration changes, including automation to improve patch management processes utilizing SCCM, Intune, Ansible, and Red Hat Satellite.
Proficient with scripting (PowerShell), REST APIs, SQL, and database/dataset modeling concepts
Conceptual and practical knowledge of IT Infrastructure designs, technologies, products, and services; OS, network, and application security
Proven ability with Microsoft O365 applications (Visio, PowerPoint, Excel), Microsoft 365, Power BI, Power Platform
Demonstrated documentation and planning experience, including Visio flow charts and process maps
Report automation from on-prem and cloud systems
Experience with change management in a SOX/PCI environment
Experience with SCCM, Cloud/Azure, ServiceNow, CMDB
Knowledge of various vulnerability scanning tools and reports (e.g., Kenna and Qualys)
PHYSICAL REQUIREMENTS/ADA:
This position requires the ability to work in an office environment, including using a computer, attending meetings, working as part of a team, and the ability to communicate with team members and others. Regular attendance also is a requirement of the position.
This role requires regular in-office presence, including attending in-person team interaction, meetings and collaboration, client support, mentoring, coaching, and/or feedback. However, this role can perform duties effectively using a combination of in-office and remote work. #LI-Hybrid
SUPERVISORY RESPONSIBILITIES:
None
DISCLAIMER:
This job description is a summary of the primary duties and responsibilities of the job and position. It is not intended to be a comprehensive or all-inclusive listing of duties and responsibilities. Contents are subject to change at management's discretion.
Ross is an equal employment opportunity employer. We consider individuals for employment or promotion according to their skills, abilities and experience. We believe that it is an essential part of the Company's overall commitment to attract, hire and develop a strong, talented and diverse workforce. Ross is committed to complying with all applicable laws prohibiting discrimination based on race, color, religious creed, age, national origin, ancestry, physical, mental or developmental disability, sex (which includes pregnancy, childbirth, breastfeeding and medical conditions related to pregnancy, childbirth or breastfeeding), veteran status, military status, marital or registered domestic partnership status, medical condition (including cancer or genetic characteristics), genetic information, gender, gender identity, gender expression, sexual orientation, as well as any other category protected by federal, state or local laws.