Remediation Engineer

Job Summary:

Heitmeyer has banking client that has a need within their Product and Infrastructure Security team for a Remediation Engineer who can manage the vulnerabilities within Windows, Linux or Cloud environments by implementing configuration changes, patches and security controls.

Job Description:

The Remediation Engineer will be responsible for configuration and patch management while developing and managing cloud and network security. This individual will utilize scripting to automate remediation efforts, improve efficiency and reduce risk in the environment.

Top Required Skills:

• Possess significant experience in configuration management, vulnerability remediation, and systems hardening across enterprise environments.
• Require information security engineer with deep expertise in either Windows (SCCM) or Linux (Ansible), Active Directory, Group Policy, Cloud Administration (GCP preferred) and server management.
• Background in working with cross-functional teams including information security, IT and DevOps to analyze, prioritize and remediate vulnerabilities across servers, cloud environments and enterprise infrastructure.
• Expertise in either Windows (SCCM, Active Directory, GPO) or Linux (Ansible, Bash Scripting, SSH).
• Experience with server hardening, endpoint security and vulnerability remediation strategies.
• Hands on experience with configuration management tools – SCCM, Ansible, Puppet, Chef, Terraform.
• Proficiency in automation and security enforcement – PowerShell, Bash, Python along with familiarity with SIEM tools, logging and monitoring solutions.
• Very strong communication skills with High EQ – ability to present to senior leadership and across all levels within the bank.
  
  
  

Nice-to-have:

• Information Security Certifications – CISSP, CVA, CIPP, CRISC, CISM, SANS GIAC.
• Background within financial services would be extremely beneficial but not required.
  
  
  

Top Responsibilities:

• Responsible for addressing vulnerabilities in Windows, Linux and Cloud environments by implementing configuration changes, patches and security controls.
• Configuration and patch management – utilize SCCM or Ansible to manage configurations, enforce security baselines and deploy patches efficiently.
• Active Directory and Group Policy – develop and enforce Group Policy Objects (GPOs) to enhance security posture and ensure compliance across endpoints and servers.
• Cloud Administration – manage and secure cloud-based infrastructure across environments (GCP)
• Server and Infrastructure Security – apply best practices for securing Windows and Linux servers, hybrid environments and enterprise networks.
• Automation and Scripting – Leverage PowerShell, Bash, Python or Terraform to automate remediation efforts, improve efficiency and reduce risk.
• Coordinate and track resolution efforts across multiple teams and stakeholders including working with risk and compliance teams to ensure alignment with security frameworks (NIST, ISO, CIS).
  
  
  

Heitmeyer Consulting is an equal opportunity employer, and we encourage all qualified candidates to apply. Qualified applicants will be considered without regard to minority status, gender, disability, veteran status or any other characteristic protected by law.