Patching Engineer
Location: Riyadh
Industry Preference: Banking/Financial Services
Experience Required: 3–5 years
Job Summary
We are seeking a meticulous Patching Engineer to manage and execute patch management processes across enterprise systems, with a strong focus on security, compliance, and minimal business disruption. Experience in a regulated environment such as banking is highly desirable.
Key Responsibilities
- Develop, implement, and maintain patch management policies and procedures for Linux, Windows, and network devices.
- Schedule and deploy security patches, updates, and upgrades in alignment with change management processes.
- Test patches in a staging environment to ensure compatibility and stability before production deployment.
- Monitor vulnerability reports and advisories to prioritize patching activities based on risk assessment.
- Coordinate with system owners, IT teams, and business units to plan maintenance windows and minimize downtime.
- Maintain accurate records of patch levels, compliance status, and audit trails for regulatory reporting.
- Automate patch deployment processes using tools such as WSUS, SCCM, Ansible, or Satellite.
- Troubleshoot and resolve issues arising from patch deployments.
- Ensure compliance with internal security policies and external regulations (e.g., SAMA, NCA, PCI-DSS).
- Generate regular reports on patch compliance, vulnerabilities, and remediation status for management.
Required Skills & Qualifications
- Bachelor’s degree in Computer Science, Information Security, or a related field.
- 3–5 years of experience in patch management, vulnerability management, or system administration.
- Hands-on experience with patch management tools (Red Hat Satellite, WSUS, SCCM, Ivanti, etc.).
- Knowledge of Linux and Windows server environments.
- Familiarity with security frameworks, vulnerability scoring (CVSS), and compliance requirements.
- Strong organizational skills and attention to detail.
- Ability to work independently and manage multiple patching cycles simultaneously.
- Excellent communication skills for coordinating with technical and non-technical stakeholders.
- Certifications such as RHCSA, CompTIA Security+, or CISSP are advantageous.
