Specialist Server - Patch Management

Endpoint devices are currently deployed and managed through the desktop environment team; however, there is a clear gap in dedicated ownership and focus on patch management for server infrastructure. This oversight increases the risk of security vulnerabilities, non-compliance, and poor performance of devices due to pending patches and updates

Responsibilities

Patch Management

• Monitor, test, approve, and deploy OS and third-party application patches across endpoints devices (Windows).
• Ensure timely application of security updates and zero-day patches.
• Manage patch rollout schedules to minimize business disruption.
• Rollback and troubleshoot failed patch deployments as needed.

Software Deployment

• Package, test, and deploy enterprise applications using endpoint management tools (e.g., Endpoint Central, SCCM, Intune).
• Build and maintain system images for deployment.
• Liaise with third-party vendors, such as Dell, to coordinate and initiate zero-touch provisioning.
• Ensure smooth and efficient patch management, deployment processes and software licensing compliance.

Compliance and Reporting

• Generate and analyse patch compliance reports.
• Maintain audit logs for all patch and deployment activities.
• Assist in ensuring compliance with relevant security standards (e.g., ISO 27001).

Endpoint Management

• Support remote and on-premises devices via endpoint management platforms.
• Collaborate with cybersecurity teams to remediate vulnerabilities.
• Maintain documentation for patching processes, configurations, and standard operating procedures (SOPs).

Testing and Validation

• Conduct pre-deployment testing of patches and applications.
• Identify compatibility issues or conflicts before mass deployment.

Skills

• Proven experience in patch management and software deployment in mid- to large-scale IT environments.
• Hands-on experience with ManageEngine Endpoint Central (Desktop Central), SCCM, Intune, or similar.
• Strong knowledge of:
• Operating systems (Windows, macOS, Linux)
• Third-party applications (browsers, Java, Adobe, etc.)
• Patch cycles and security vulnerability management
• Experience with remote device management and cloud-based endpoint tools.
• Basic scripting (PowerShell, Bash) is a plus.
• Strong documentation, communication, and troubleshooting skills.

Qualifications:

• Grade 12, Degree in Computer Science/ IT Diploma
• NQF Level 6, CompTIA Security+
• Windows Server Fundamentals / Modern Desktop Administrator
• Microsoft Certified: Endpoint Administrator Associate
• ManageEngine Certification (Endpoint Central)
• ITIL Foundation