End Point Vulnerability Manager

Peraton is seeking an End Point Vulnerability Manager to join our team of experienced, diverse individuals.  The qualified applicant will become part of Peraton’s Infrastructure Managed Service (IMS) Program, for the United States Coast Guard (USCG). This initiative is modernizing and consolidating the engineering and operational environment under a managed service to better support the services provided to the USCG.

Must be local to Kearneysville, West Virginia. 

• Lead a team of patch management, content delivery and desktop engineering resources to ensure successful project completion
• Serve as a technology subject matter expert for internal and external stakeholders and provide direction for all firm mandated controls and compliance initiatives, all projects within the group.
• Support Microsoft Endpoint Configuration Manager & potentially Intune administration and engineering, to include collection and query creation and management; application and package deployment; content distribution, management and troubleshooting, and custom report creation
• Serve as a technology subject matter expert for internal and external stakeholders and provide direction for all mandated controls and compliance initiatives, all projects within the group and in creating a technology domain roadmap
• Ensure that all integration of functions meet business goals
• Identify problem causality, business impact and root causes
• Advise & mentor junior team members
• Impact the engineering function by influencing decisions through advice, counsel or facilitating services
• Appropriately assess risk when business decisions are made.
• Manage the pre and post patching process to ensure proper implementation without any outages.
• Coordinate deployment schedule with other teams such as content management and delivery team, infrastructure management, security operations, governance & risk. Communicate project and operational metrics.
• Lead in developing action plans, schedules, status and metrics reports as well as other management communications intended to improve the patch management program
• Analyze and foresee the side effects of the patch and be able to quantify the risks business impact, and opportunities (for better security) when the patch is applied.
• Work with product vendors to come up with suitable patch recommendations without compromising systems.
• Research, evaluate, develop, design and implement patch remediation designs and standards following industry and DOD best practices
• Develop and implement patch and vulnerability remediation process
• Extremely analytical and experience creating reports with large and fragmented data sets.

Basic Qualifications:

• Minimum of 10 years’ experience is required
• U.S. Citizenship required; must have an active Secret clearance
• Must possess a CompTIA Security+ or higher certification in support of DoD 8570
• Must have demonstrated experience with large environments running over 1000 servers and varied patching tools
• Proven experience leading technical teams, including task delegation, performance management, and mentoring.
• Expert knowledge of MECM architecture, including Central Administration Sites (CAS), primary sites, secondary sites, and distribution points. 
• Experience with current end point management tools such as, Configuration Manager (MECM), Windows Server Update Services (WSUS), Red Hat YUM and AWS Systems Manager Patch Manager
• Proficiency in creating and managing MECM packages, applications, and task sequences.
• Experience with operating system deployment (OSD) using MECM.
• Proficiency in PowerShell scripting for automating MECM tasks and system management.
• Ability to drive projects and initiatives from conception to completion.
• Strong organizational skills to manage multiple tasks and projects simultaneously.
• Experience with project management methodologies (e.g., Agile, Scrum, Waterfall).
• Experience with compliance and auditing processes, including MECM compliance settings and Desired Configuration Management (DCM).
• In-depth understanding of various operating systems, network/system infrastructure, networking protocols/services and enterprise architectural design, to come up with patching recommendations to remediate any vulnerabilities in the DOD IT environment and resolve issues
• Proficiency in scripting of packaged installation of patches, software, and configuration changes, including power shell automation to improve patch management processes
• Ability to manage project timelines, resources, and deliverables effectively.

Preferred Qualifications:

• Tanium experience strongly preferred
• Superb problem solving, critical thinking, and analytical skills with the ability to de-construct problems
• Excellent written and verbal communication; must be able to communicate technical solutions to senior management