Global Systems Patching Lead (Remote)

Global Systems Patching Lead

Founded in 1927, Gallagher is a global leader in the Insurance Brokerage, Risk Management and HR & Benefits Consulting Services spaces. With significant reach internationally, our organization is made up of over 43,000 associates and our global network provides services in more than 130 countries. Our values are core to our culture. Passionate service, strategic innovation, and ethical behavior form the basis of how we do business – The Gallagher Way – all with one purpose: to help you face your future with confidence.

Position Summary:

The Global Systems Patching Lead will play a key role in ensuring company systems adhere to security standards and meet guidelines for patch management. In this role, you will serve as the SME for Gallagher’s Patch Management software solution and will be a key driver in implementing Ivanti’s Security Controls across the enterprise. This position will report to the Global Patch Manager of Gallagher’s central Technology Services Engineering department. This role is a key IT stakeholder who will support both the tactical implementation of new technology as well as provide strategic recommendations for the ongoing improvement of Gallagher’s system hygiene and the overall company’s security posture.

Our preference is someone local to the Chicago area who can come into the office 1-2 times per month, but for the right person this position can be entirely virtual/remote/work from home from anywhere in the US.

Responsibilities:

• Product Owner of the Ivanti Security Controls and Ivanti Xtraction Reporting products.
• Configure, Update and Maintain the Ivanti Security Controls (Shavlik)
• Serve as Global SME for Regional Operations teams for Ivanti Security Controls (Shavlik) Patch Management solution.
• Help drive the cutover from SCCM to Ivanti Security Controls (Shavlik) for Patch Management.
• Utilize scanning tools to identify systems with security vulnerabilities and missing patches.
• Work with Global Vulnerability Remediation Lead to develop priority based patching schedules.
• Coordinate with IT Platform Engineers to develop and test remediation solutions.
• Collaborate with SCCM team and others as needed to develop remediation deployment methodology.
• Coordinate with application teams on proprietary updates.
• Support liaison for patching solution’s vendor to support Regional Operation Teams in the research of unsuccessful remediations.
• Ensure appropriate Change Management processes are followed.
• Engage with IT Architecture Team to stay abreast of company and IT standards/configurations.
• Engage with IT Engineering Team to stay abreast of platform requirements for patching endpoints and servers.
• Establish intake process for managing performance (non-security) patches.
• Establish server exception process for patching activities.
• Train patching team on required vulnerability tools (scanning, reporting, etc.) and processes.
• Identify patching trends and propose enhancements to company processes to improve patching methodology.
• Establish and perform continuous improvement for patch management processes for Servers and end-points.

Qualifications:

• Experience with operational support of both Windows Servers and Endpoints and well as Linux Servers in a large, multi-location environment.
• Experience in a technical leadership role or have management experience in IT.
• Experience managing patching remediation/automation or configuration management processes.
• Experience driving large-scale enterprise implementations of IT management software – preferably Configuration/Patch Management solutions.
• Working knowledge of Microsoft SCCM, Microsoft Endpoint Manager and/or Microsoft System Center Orchestrator.

Preferred:

• Experience configuring and managing Ivanti Security Controls (Shavlik).
• Citrix Virtual Apps and Desktops (XenDesktop/XenApp), Citrix App Layering, Citrix Director.
• Experience with automating patching with: Microsoft Clusters, SQL Always On environments, SharePoint.
• Experience with Active Directory and GPO management.
• Middleware knowledge in two or more areas: .NET / ASP.NET, Oracle Java, Apache Tomcat, etc.
• VMware ESX, RHEL, MAC OS operations support and patching familiarity.
• HPE hardware: Blade System / Synergy.
• Configuration management, Deployment/Provisioning, and system hardening management experience.
• Working familiarity with Security vulnerability scanning tools: Qualys, Rapid7, or Tenable Nessus for vulnerability input into patch/remediation processes.
• Experience with security scanning tools such as Kenna, Nucleus, RiskSense.