Key skills
PowerShellActive DirectoryLeadershipChange Management
About this role
Role Overview
- Plan, schedule, and execute enterprise-wide patch management cycles using WSUS, SCCM, or similar enterprise patching tools across Windows Server environments
- Develop and maintain comprehensive patch management policies, procedures, and schedules to minimize security vulnerabilities and ensure compliance
- Coordinate monthly and quarterly patching windows, ensuring minimal disruption to business operations while maintaining security posture
- Test patches in non-production environments before deploying to production systems to prevent system disruptions and compatibility issues
- Monitor patch deployment status continuously, identifying failed deployments, and taking immediate corrective actions
- Integrate patching workflows with PowerShell and Group Policy for automated, orchestrated updates across Windows environments
- Troubleshoot failed patch deployments and develop comprehensive remediation strategies
- Maintain and update system baselines and gold images with current patches
- Design, implement, and maintain enterprise Windows Server systems (2016/2019/2022)
- Administer Active Directory, Group Policy, and domain services in an enterprise environment
- Perform system installations, configurations, upgrades, and maintenance across all Windows platforms
- Monitor system performance, troubleshoot issues, and implement solutions to ensure optimal uptime and availability
- Manage user accounts, permissions, and security policies across Windows environments
- Maintain system documentation including patch histories, configuration changes, and system inventories
- Design, develop, and maintain PowerShell scripts and modules for system provisioning, configuration, patch deployment, and orchestration
- Implement Desired State Configuration (DSC) for automated configuration management and patch automation
- Create and maintain system documentation, runbooks, and standard operating procedures
- Optimize and troubleshoot existing automation workflows for improved efficiency and reliability
- Implement and maintain security hardening standards across Windows Server systems using Group Policy and PowerShell DSC
- Conduct regular security audits and vulnerability assessments
- Ensure timely deployment of security patches within defined SLAs to minimize vulnerabilities
- Coordinate with security and compliance teams for audit preparation and remediation activities
- Continuously monitor patch deployment status across all systems
- Generate and distribute regular patch compliance reports to leadership and stakeholders
Requirements
- Security Clearance: No clearance required at start but could be processed for a clearance in the future; U.S. Citizenship required
- 3 years relevant experience with Bachelors in related field; 1-year relevant experience with Masters in related field; or High School Diploma or equivalent and 7 years relevant experience.
- Minimum 5 years of progressive Windows Server administration experience
- Minimum 3 years of dedicated patch management experience in enterprise environments
- Experience managing Windows-based environments with multiple servers and services
- Proven track record of implementing large-scale patching and automation projects
- Experience with change management and ITIL processes
- Experience managing patching for environments with 500+ systems
Benefits
- health insurance
- dental and vision plan choices
- wellness resources
- employee assistance programs
- Savings Plan Options (401(k))
- financial planning tools
- life insurance
- employee discounts
- paid holidays
- paid time off
- tuition reimbursement
- early childhood and post-secondary education scholarships