Vulnerability Jobs (NOW HIRING)

JOB SUMMARY:   

This position is responsible for enterprise Windows endpoint administration, with significant ownership of vulnerability remediation, security baseline management, and the ongoing health of the Southern Company PC operating system environment. The role combines deep technical execution with strategy, cross-functional leadership, and continuous improvement to keep the Windows platform secure, current, resilient, and aligned with business needs. 

Responsibilities include:

• Acts as the Windows vulnerability subject matter expert, overseeing remediation processes and continuously improving enterprise vulnerability management practices
• Leads enterprise Windows OS and baseline vulnerability remediation efforts, including identification, prioritization, coordination, and validation of corrective actions
• Drives monthly patching and remediation activities for the PC environment, ensuring security updates are deployed effectively and risk is reduced in a timely manner
• Collaborates with the team to establish Windows OS standards, security baselines, and best-practice PC configurations across Southern Company
• Partners with Security, Architecture, Engineering, and Support teams to drive timely remediation of Windows OS and baseline vulnerabilities across the enterprise
• Leads coordination with architects, support personnel, project managers, solution providers, and vendors to design, prioritize, and implement secure endpoint technologies and remediation initiatives
• Evaluates emerging technologies, security capabilities, and serves as a lead resource for proofs of concept, modernization efforts, and project delivery related to the Windows platform
• Maintains current Windows OS versions, strengthens baseline compliance, and advances adoption of the latest secure operating system features and capabilities

JOB REQUIREMENTS: 

Technical Skills Required

• Extensive knowledge of Windows operating systems, endpoint hardware, and enterprise desktop engineering
• Comprehensive knowledge of Southern Company software and hardware configurations, with the ability to apply standards consistently across the enterprise PC environment
• Working knowledge of network, server, and storage technologies
• Strong understanding of cybersecurity threats, vulnerability management, security baselines, and the importance of protecting the enterprise computing environment
• Ability to learn and apply modern technologies and concepts
• Ability to research solutions to problems and stay current with rapidly evolving technologies
• Excellent diagnostic, troubleshooting, analytical, and problem-solving skills
• Programming and scripting skills using system-level APIs and WMI, preferably with PowerShell, to automate remediation, configuration management, and reporting
• Experience with Windows 11 imaging, operating system deployment, baseline hardening, and patch and vulnerability remediation processes is strongly preferred

Non-Technical Skills Required

• Excellent verbal and written communication skills, including technical writing
• Works effectively in a team environment, including with geographically dispersed teams
• Ability to simplify complex subjects so they can be easily understood by non-technical audiences
• High degree of focus on quality, reliability, efficiency, risk reduction, and measurable outcomes
• Thrives in a fast-paced environment, adapts to changing priorities, and operates with minimal supervision
• Self-motivated, takes initiative, drives issues to resolution, and removes obstacles to deliver results
• Ability to assess the impact of changes, quantify risk, and make sound decisions in complex, high-visibility situations
• Travel as needed
• Excellent organizational skills and attention to detail
• Ability to manage and prioritize multiple responsibilities

Education and Experience Requirements

• A four-year bachelor's degree in a computing or engineering field is strongly preferred
• Minimum of five years of experience in an IT-related field

MAJOR JOB RESPONSIBILITIES:  

• Sets strategy, roadmaps, and standards for the Windows endpoint platform and leads the deployment of secure, scalable solutions
• Develops and executes test plans for the deployment of technology solutions, patches, configuration changes, and remediation activities
• Determines and documents strategy for the Windows OS platform, security baseline posture, and use of supporting technologies
• Serves as the subject matter expert (SME) for Windows OS and baseline vulnerability remediation, establishing standards, governance, and multi-year roadmaps; identifying and prioritizing risk; driving remediation plans; and ensuring consistent execution across Digital Workplace Technologies
• Documents products, versions, patch levels, baseline settings, detailed configurations, and architectural diagrams as needed
• Engages with architects, support personnel, project managers, solution providers, and vendors to establish clear timelines for the design and implementation of modern technologies in the production environment
• Determines detailed product configurations, hardening settings, and implementation requirements for secure and supportable endpoint operations
• Reviews communications and documentation developed by support analysts to ensure accuracy and effectiveness
• Serves as a point of escalation for second- and third-tier support analysts for systemic issues, high-priority vulnerabilities, and complex remediation challenges
• Creates and maintains support documentation and knowledge articles 
• Stays current on industry trends and emerging technologies and continuously identifies opportunities to automate remediation, strengthen baselines, and improve endpoint security and operational efficiency
• Consults with business partners to provide value-added technology solutions
• Works with Technology Organization groups to enhance the user experience of products and better leverage platform capabilities
• Maintains relationships with vendors from a product roadmap and pre-sales perspective