Piper Companies is seeking a Vulnerability and Patch Management Analyst who will be responsible for developing and managing the organization's vulnerability and patch management programs. This role focuses on identifying and remediating security vulnerabilities, establishing SLAs, and collaborating with IT teams to ensure timely patch deployment and risk mitigation. This role is 100% remote.
Key Responsibilities
- Design and improve end-to-end vulnerability and patch management workflows.
- Define ownership, SLAs, and KPIs for remediation efforts across IT teams.
- Analyze scan results, prioritize vulnerabilities, and track remediation progress.
- Coordinate patch deployment and monitor success rates across systems.
- Develop reports and dashboards to communicate security posture and compliance.
Qualifications
- Bachelor’s degree in a relevant field or equivalent experience.
- 3+ years in information security with a focus on vulnerability/patch management.
- Proficiency with tools like SCCM, WSUS, InTune, Tenable, Qualys, or Rapid7.
- Strong knowledge of Windows/Linux OS, networking, and cloud platforms (AWS, Azure, GCP).
- Familiarity with security frameworks (e.g., NIST, CIS).
- Experience creating and implementing IT processes and documentation.
- Excellent analytical, communication, and organizational skills.
Compensation & Benefits:
- $45–$60/hr depending on experience
- Medical, dental, vision insurance
- 401(k) retirement plan
- PTO, Paid holidays and sick leave as required by law
Keywords:
vulnerability management, patch management, security remediation, SLAs, KPIs, SCCM, WSUS, InTune, Tenable, Qualys, Rapid7, Windows, Linux, AWS, Azure, GCP, CVSS, exploitability, risk prioritization, vulnerability scanning, dashboard reporting, IT infrastructure, cloud operations, system administration, network engineering, security frameworks, NIST, CIS, information security, IT processes, remediation tracking, rollback plans, patch deployment, false positives, scan analysis, security posture, service level agreements, security updates, attack vectors, mitigation strategies, compliance monitoring
This job opens for applications on 7/25/25. Applications for this job will be accepted for at least 30 days from the posting date.
#LI-BS1 #LI-REMOTE
