Patch and Vulnerability Management Engineer (Hybrid)

Charlotte, NC, United States

Join us on our mission to create a completely new, 100% digital bank that truly serves customers' best interests. We are a close-knit and fun-loving team of seasoned financial services professionals who came together for the challenge of building a bank from scratch - and we are committed to doing it all the right way (from technology infrastructure to modern marketing to customer experience).

The anticipated salary range for this role is between $97,000.00 and $156,000.00. The specific salary offered to an applicant will be based on their individual qualifications, experiences, and an analysis of the current compensation paid in their geography and the market for similar roles at the time of hire. The role may also be eligible for an annual discretionary incentive award. In addition to cash compensation, SMBC offers a competitive portfolio of benefits to its employees.

We work with the flexibility and speed of a start-up. But we also have significant stability and capital from being part of the SMBC Group (Sumitomo Mitsui Banking Corporation). SMBC is the second largest bank in Japan and the 12th largest bank in the world with operations in over forty countries. And SMBC is committed to disrupting the US marketplace with ground-breaking products.

It is the best of both worlds, and we are seeking proven marketing leaders to propel us towards a national launch. We have both the ambitious growth plans and the 'patient capital' necessary to execute a multi-year plan. Join us on the journey to deliver an exciting concept of evolved banking.

Summary

Seeking a highly skilled vulnerability and patch management SME, who will play a key role in planning, developing, and supporting organization’s goal to keep the cloud infrastructure, platform, and services secure. Candidate will be responsible for identifying vulnerabilities, assessing risks, implementing patch management strategies and ensuring the security of containerized applications.

Principal Duties And Responsibilities

Conduct regular assessments on cloud infrastructure, platform, and containerized applications to identify weaknesses and potential threats.

Use industry standard tools to identify and mitigate vulnerabilities.

Respond to incidents related to security breaches or vulnerabilities, investigate, and mitigate security incidents.

Implement and enforce container security best practices, including image scanning, runtime protection and access control.

Develop and maintain a comprehensive patch management strategy for cloud-based systems and services.

Monitor and track patching cycles, ensure vulnerabilities are mitigated, patches are applied in a timely fashion, without causing any impact/downtime to the end customers.

Responsible for infrastructure, platform and application upgrades, patching and backups of Cloud infrastructure including that of 3rd party vendors where applicable.

Planning and implementation of secure systems, internal tools and individual computers based on requirements and ISO27001 standards

Participate in periodic 24x7 on-call duties

Position Specifications

3+ years of systems support analysis experience demonstrated through work or military experience

2+ years of experience with one or more Agile tools used for tracking user stories or backlogs, such as JIRA

Bachelor’s degree in computer science or equivalent.

Experience with one or more Cloud Platforms (Azure, GCP or AWS)

Experience with Container technologies: Kubernetes, Docker, PKS

Experience in managing cloud or hybrid infrastructure

Experience in patching in cloud environments

Experience setting up monitoring in applications and database

Excellent verbal, written, and interpersonal communication skills

Desired Qualifications

3+ years of experience with Cloud technologies

Experience with SAST, SCA, DAST, IAST software like Snyk, Rapid 7 etc. & Container security tools like Microsoft Defender, CrowdStrike, Wiz etc.

Ability to interact with all levels of an organization, including management

Strong team or technical leadership experience

Strong verbal, written, and interpersonal communication skills

Incident Management System experience

Configuration Management Tools experience

Experience with Agile Scrum (Daily Standup, Sprint Planning and Sprint Retrospective meetings) and Kanban

EOE STATEMENT

We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status or any other characteristic protected by law.

CCPA DISCLOSURE

Personal Information Collection Notice: This notice contains information under the California Consumer Privacy Act (CCPA) about the categories of personal information (PI) of California residents that Manufacturers Bank collects and the business or commercial purpose(s) for which the PI may be used. We do not sell PI. More information about our collection and use of PI may be found in our CCPA Privacy Policy at https://www.manufacturersbank.com/CCPA-Privacy. Persons with disabilities may contact our Customer Contact Center toll-free at (877) 560-9812 to request the information in this Notice in an alternative format.

#J-18808-Ljbffr