- Develop and implement patch management policies, procedures, and standards to ensure the security and integrity of the organization's IT infrastructure.
- Establish governance structures, roles, and responsibilities for patch management processes, including coordination with IT teams, business units, and third-party vendors.
- Define and maintain patch management metrics, KPIs, and reporting mechanisms to measure the effectiveness of patching activities and compliance with policies.
- Coordinate with stakeholders to prioritize patches based on risk assessment, business impact, and compliance requirements.
- Establish change management processes and controls to manage the deployment of patches across different environments, including development, testing, and production.
- Conduct regular assessments and audits of patch management practices to identify areas for improvement and ensure adherence to policies and standards.
- Collaborate with security teams to incorporate threat intelligence, vulnerability assessments, and risk analysis into patch prioritization and deployment strategies.
- Provide guidance and training to IT teams, system administrators, and end-users on patch management best practices, procedures, and tools.
- Monitor industry trends, emerging threats, and regulatory requirements related to patch management and incorporate them into governance frameworks.
- Continuously evaluate and enhance patch management processes, tools, and automation capabilities to streamline operations and improve efficiency.
- Lead the vulnerability reporting process, including the collection, documentation, and dissemination of vulnerability information to relevant stakeholders.
- Coordinate with internal teams, including IT security, network operations, software development, and system administrators, to gather vulnerability data from various sources, including scanning tools, penetration tests, and security advisories.
- Analyze vulnerability data to determine severity, impact, and potential risk to the organization's assets and systems.
- Prepare and distribute regular vulnerability reports to key stakeholders, including management, IT teams, and business units, providing insights into the current state of vulnerabilities and trends over time.
- Develop and maintain a centralized vulnerability tracking system or database to manage and prioritize vulnerabilities based on severity, affected systems, and available remediation resources.
- Collaborate with stakeholders to establish and enforce vulnerability reporting and remediation timelines and ensure compliance with internal policies and external regulations.
- Serve as a subject matter expert on vulnerability reporting processes, tools, and best practices, providing guidance and support to internal teams as needed.
- Communicate effectively with external vendors and partners regarding vulnerabilities affecting third-party software or services used by the organization.
- Continuously evaluate and improve the vulnerability reporting process to enhance efficiency, accuracy, and effectiveness.
- Bachelor's degree in cybersecurity, information technology, or related field.
- 1+ years of experience in cybersecurity or IT governance, with a focus on patch management.
- In-depth knowledge of patch management principles, processes, and best practices.
- Understanding of vulnerability assessment tools, such as Nessus, Qualys, Rapid7, or similar, and their output formats.
- Excellent analytical and problem-solving skills, with the ability to assess and prioritize vulnerabilities based on risk and potential impact.
- Proficiency in data analysis and reporting tools, such as Microsoft Excel, Power BI, or similar.
- Strong communication and interpersonal skills, with the ability to effectively communicate technical information to non-technical stakeholders.
- Experience with vulnerability tracking and management systems, such as JIRA, ServiceNow, or similar.
- Knowledge of common vulnerability databases and classification systems, such as CVE, CVSS, and CWE.
- Ability to work independently and collaboratively in a fast-paced environment with multiple stakeholders and competing priorities.
- Strong understanding of cybersecurity frameworks, compliance standards (e.g., NIST, CIS), and regulatory requirements related to patch management.
-
Sales Estimator
3 days ago
Koala Insulation of Mercer & Middlesex Counties Princeton, United States**Job Summary** · **Duties/Responsibilities** · 1. Lead generation and data input into CRM. · 2. Travels to residential, commercial, and government sites within territory to complete the estimation process for our insulation services. Territories include from Trenton, Ewing, Robb ...
-
Grant & Contract Administrator
6 days ago
Princeton University Princeton, United StatesOverview: · Princeton University seeks a highly motivated, well-qualified individual to serve as a Grant and Contract Administrator (GCA) in the Office of Research and Project Administration (ORPA). The GCA will be responsible for a portfolio of academic departments supported by ...
-
Paralegal, International
1 week ago
Integra LifeSciences Princeton, United StatesChanging lives. Building Careers. · Joining us is a chance for you to do important work that creates change and shapes the future of healthcare. Thinking differently is what we do best. To us, change equals opportunity. Every day, more than 4,000 of us are challenging what's poss ...
-
Associate Director for Administrative Planning
2 weeks ago
Princeton University Princeton, United StatesOverview: · The Associate Director for Administrative Planning (AD) plays a critical role in University administrative planning and management, undertaking major projects and initiatives on behalf of the Office of the Executive Vice President (OEVP). The role provides a unique op ...
-
Electro-mechanical Cad Designer Ii
2 weeks ago
Princeton Plasma Physics Laboratory Princeton, United StatesOverview: · This position will be a CAD design resource for all electro-mechanical disciplines for PPPL Projects NSTX-U, LTX, Flare and other collaboration projects, within the CAD group of the Design, Analysis, and CAD (DAC) Engineering Division using AutoCAD. · **No sponsorship ...
-
Manager, Program Management
2 days ago
Bristol-Myers Squibb Princeton, United States**Working with Us** · Challenging. Meaningful. Life-changing. Those aren't words that are usually associated with a job. But working at Bristol Myers Squibb is anything but usual. Here, uniquely interesting work happens every day, in every department. From optimizing a production ...
-
Administrative Assistant
1 week ago
Climate Central Princeton, United States**APPLY HERE** · **About Climate Central**: · Climate Central is an independent group of scientists and science translators who research and report the facts about our changing climate and how it affects people's lives. We use science and tech to generate thousands of local story ...
-
Cyber Security Associate
2 days ago
Mathematica Policy Research Princeton, United States**Position Description**: · **Mathematica applies expertise at the intersection of data, methods, policy, and practice to improve well-being around the world. We collaborate closely with public · - and private-sector partners to translate big questions into deep insights that imp ...
-
SAP Master Data Lead
2 weeks ago
Groupsoft Us Inc Princeton, United StatesPosition: SAP Master Data (SAP MD) Consultant · Location: Princeton, NJ · Employment Type: Full Time Employment · Industry: Retail · Company Description · Groupsoft US Inc. is a Software Service company providing end-to-end Consulting and implementation services to large Retail a ...
-
Associate Director, Inclusion
1 week ago
Bristol-Myers Squibb Princeton, United States**Working with Us** · Challenging. Meaningful. Life-changing. Those aren't words that are usually associated with a job. But working at Bristol Myers Squibb is anything but usual. Here, uniquely interesting work happens every day, in every department. From optimizing a production ...
-
Clinical Marketing Engagement Specialist
5 days ago
Lingraphica Princeton, United States**Company Description** · **Essential Duties & Responsibilities** · Outbound responsibilities: · - Works to schedule SLP's for device demos, webinars, and in-services · - Monitors cancellations and works with SLP's on rescheduling of demos · - Collaborates with the Clinical Sales ...
-
SAP Project Manager
1 week ago
Groupsoft Us Inc Princeton, United States**Title: SAP Project Manager** · Company: GROUPSOFT · Location: Princeton, NJ · Employment Type: Full-time · Industry Domain: Retail · Area: SAP Software Consulting Services · Travel: _Based in Princeton · - Occasionally Travels to Client Site in Philadelphia_ · **COMPANY DESCRIP ...
-
Data Strategy Solutions Associate Consultant
2 weeks ago
ZS Associates Princeton, United StatesPrinceton, New Jersey · - United States · - Specialized Group · - Specialized ECs · - 20097 · **ZS** is a place where passion changes lives. As a management consulting and technology firm focused on transforming global healthcare and beyond, our most valuable asset is our people. ...
-
Director Program Manager
1 day ago
Integra LifeSciences Princeton, United StatesChanging lives. Building Careers. · Joining us is a chance for you to do important work that creates change and shapes the future of healthcare. Thinking differently is what we do best. To us, change equals opportunity. Every day, more than 4,000 of us are challenging what's poss ...
-
Clinical Engagement Specialist
1 week ago
Lingraphica Princeton, United States**Company Description** · **Clinical Essential Duties & Responsibilities**: · - Liaise and collaborate with the Consumer Sales Team, as well as other departments to improve customer experience for all our target audiences, with a focus primarily on individuals with communication ...
-
Analyst - Nstx-u Recovery Project
5 days ago
Princeton Plasma Physics Laboratory Princeton, United StatesOverview: · The lead design analyst for assigned NSTX-U modification and/or design change tasks reports to and receives functional direction from the PPPL Engineering Department and is matrixed to the NSTX-U Recovery Project; the NSTX-U Project Engineer provides project direction ...
-
Human Resources Assistant
1 week ago
West Windsor Township Princeton Junction, United StatesThis employee performs a wide range of human resources and complex administrative work consistent with existing laws, statutes, ordinances and other applicable regulations and Township policies and procedures including but not limited to handling confidential matters. · Serves as ...
-
Director - Government Accountability
4 days ago
Novo Nordisk Plainsboro, United States**About the Department** · At Novo Nordisk, we're committed to building the best Ethics, Compliance & Privacy (ECP) team in the pharmaceutical industry. Operating at the highest ethical & privacy standards and ensuring adherence to corporate and legal regulations, this team is co ...
-
Novo Nordisk Plainsboro, United States**About the Department** · Novo Nordisk's Market Access and Public Affairs team engages diverse stakeholders across political and healthcare landscapes to forge solutions that drive patient access to innovative products. We strive to deliver the best possible outcomes for patient ...
-
Manager - Content Operations
1 week ago
Novo Nordisk Plainsboro, United States**About the Department** · The Cardiometabolic Marketing Team leads the US marketing efforts for Novo Nordisk's robust cardiometabolic product portfolio, which includes world class therapies for the treatment of diabetes, obesity, cardiovascular disease, and other serious chronic ...
Patching Governance Officer - Princeton, United States - State Street
Description
Who We are Looking For:
This role will be member of the Global Infrastructure Operations Continuous Service Improvement (CSI) team as part of 24*7*365 Production Management organization. An organization that delivers highly secure, reliable, efficient infrastructure technology operations services that are focused on the needs of all State Street business. Responsible for delivering continuous improvement across various infrastructure operations towers by supporting the ITIL framework to improve processes, which ultimately improve our business.
We are seeking a skilled Patch Management Governance Lead to join our team, responsible for establishing and overseeing the governance framework for patch management across the organization. The ideal candidate will have a strong background in cybersecurity, experience in patch management, and the ability to develop and enforce policies and procedures to ensure effective patching practices.
What you will be responsible for:
The right person for this role will have a strong track record of program management experience, the demonstrated ability to deliver multiple high priority projects simultaneously, the ability to drive alignment across teams with competing priorities and be a strong advocate for risk management.
Job Responsibilities
Qualifications:
Salary Range:
$75,000 - $120,000 AnnualThe range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.