Vulnerability Management Engineer
Gurgaon
dunnhumby
Global leader in Customer data science, retail media and analytics, experts in working with brands, grocery retail, retail pharmacy, and retailer financial services.dunnhumby is the global leader in Customer Data Science, empowering businesses everywhere to compete and thrive in the modern data-driven economy. We always put the Customer First.
Our mission: to enable businesses to grow and reimagine themselves by becoming advocates and champions for their Customers. With deep heritage and expertise in retail – one of the world’s most competitive markets, with a deluge of multi-dimensional data – dunnhumby today enables businesses all over the world, across industries, to be Customer First.
dunnhumby employs nearly 2,500 experts in offices throughout Europe, Asia, Africa, and the Americas working for transformative, iconic brands such as Tesco, Coca-Cola, Meijer, Procter & Gamble and Metro.
We’re looking for an application packaging engineer who expects more from their career. This Role is responsible for fortnight OS patching (Mac & Windows), vulnerability mitigation by patching or configuration changes using scripting across IT infrastructure OS, Azure WVD applications, etc and contribute to enhance overall security posture of dunnhumby while demonstrating values and behaviour.
Key Responsibilities:
- OS Patching: Perform fortnightly OS patching for Mac and Windows systems.
- Vulnerability Mitigation: Address vulnerabilities through patching or configuration changes using scripting.
- Security Enhancement: Contribute to improving the security posture of dunnhumby.
- Reporting: Deliver regular updates to security leadership on remediation efforts.
- Monitoring: Oversee the Defender portal, addressing risks and planning mitigation strategies.
- Continuous Monitoring: Develop and implement a continuous monitoring approach for patching, hardening, and audit log configurations.
- Issue Remediation: Validate and remediate identified issues using various tools and techniques.
- Root-Cause Analysis: Assist in analysing and mitigating vulnerabilities weekly with security.
- Collaboration: Work with asset owners to prioritize and remediate vulnerabilities & comms with the business.
- Advisory Role: Advise on the prioritization of patch deployment.
- Risk Classification: Classify and prioritize vulnerabilities considering internal and external threats using our saas based app and reviews.
- Process Adherence: Follow ITIL and change management processes.
- Support: Provide secondary support to the team and assist with BAU demands from the end-user tech team.
- Project support, manage and assist on windows 11 and mac technologies with the team
Qualifications:
- Experience: 5 to 8 years of experience with Windows & Mac operating systems and applications covering.
- Minimum 5 years in Desktop System support 3rd line
- Advanced OS troubleshooting (Level 2/3)
- Minimum 5 years in Deployment of Applications and systems management life cycle
- CIS Desktop security and implementation improvements
- Bluescreen and system logs,
- Debugging
- Windows System internals tools
- Wireshark & Fiddler
- System performance counters
- Certificates, Group Policy, SCCM agent health
- Vulnerability Scanning: Proficiency with tools like Qualys/Defender ATP across on-prem, Azure, and GCP.
- Patching Leadership: Lead weekly patching efforts for Mac, Windows, and core infrastructure.
- Automation Skills: Use scripting/automation to mitigate vulnerabilities. (Python, Powershell other)
- Security Tools: in depth administration of SCCM, ATP Defender Portal, Kandji, PatchMyPC, Intune, and manual scripting techniques.
- Continuous Learning: Adapt to evolving security objectives and capabilities.
- Business Acumen: Understanding of business and commercial aspects related to Mac, Windows 10/11, Windows Server 2019 in line with monthly reporting to stake holders.
- Technical Skills: Proficiency in Qualys, Defender ATP, SCCM, GCP, Azure, PowerShell, Intune, Batch, and automation tools.
What you can expect from us
We won’t just meet your expectations. We’ll defy them. So you’ll enjoy the comprehensive rewards package you’d expect from a leading technology company. But also, a degree of personal flexibility you might not expect. Plus, thoughtful perks, like flexible working hours and your birthday off.
You’ll also benefit from an investment in cutting-edge technology that reflects our global ambition. But with a nimble, small-business feel that gives you the freedom to play, experiment and learn.
And we don’t just talk about diversity and inclusion. We live it every day – with thriving networks including dh Gender Equality Network, dh Proud, dh Family, dh One and dh Thrive as the living proof. We want everyone to have the opportunity to shine and perform at your best throughout our recruitment process. Please let us know how we can make this process work best for you. For an informal and confidential chat please contact stephanie.winson@dunnhumby.com to discuss how we can meet your needs.
Our approach to Flexible Working
At dunnhumby, we value and respect difference and are committed to building an inclusive culture by creating an environment where you can balance a successful career with your commitments and interests outside of work.
We believe that you will do your best at work if you have a work / life balance. Some roles lend themselves to flexible options more than others, so if this is important to you please raise this with your recruiter, as we are open to discussing agile working opportunities during the hiring process.
For further information about how we collect and use your personal information please see our Privacy Notice which can be found (here)
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Automation Azure GCP ITIL IT infrastructure Monitoring PowerShell Privacy Python Qualys SaaS Scripting Vulnerabilities Vulnerability management Windows
Perks/benefits: Flex hours
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.