Secops

Job Description

Work location: 1 Chennau & 1 Hyderabad, 5 days weekly from office, on rotational shifts.

Role Summary

Responsible for overseeing end-to-end vulnerability management, patch lifecycle, and application packaging for servers and workstations. The role ensures timely remediation of vulnerabilities through effective patching, packaging, and deployment strategies across enterprise assets, integrating automation, compliance, and tool optimization (Qualys, SCCM, Intune, AdminStudio, ORCA).

Key Responsibilities

Application Packaging & Deployment:

• Develop, customize, and validate MSI/MST/MSIX packages using AdminStudio, InstallShield, and ORCA.
• Convert legacy EXE installers into silent MSI/IntuneWin formats for streamlined deployment.
• Perform application discovery, dependency mapping, and compatibility testing for Windows 10/11 environments.
• Coordinate testing and deployment of packaged apps through SCCM and Intune.
• Manage version control, documentation, and change requests for packaged applications.
• Automate repetitive packaging and deployment tasks using PowerShell scripting.
• Collaborate with the Cybersecurity team to validate that packaged applications meet security compliance and vulnerability-free baselines.
  
  

Vulnerability & Patch Management

• Lead enterprise Vulnerability Management Program using Qualys VMDR — ensuring timely detection, prioritization, and remediation.
• Manage monthly patch cycles for Windows servers (via SCCM) and workstations (via Intune).
• Validate and test Microsoft and third-party patches before deployment to production environments.
• Collaborate with infrastructure, endpoint, and security teams to ensure critical vulnerabilities are remediated within SLA.
• Perform zero-day vulnerability handling (e.g., WannaCry-type events) with accelerated patch validation and rollout.
  
  

Operational Excellence

• Drive automation for vulnerability-to-patch correlation workflows using Python and PowerShell.
• Integrate patch and packaging workflows with vulnerability intelligence (Qualys → SCCM/Intune mapping).
  
  

Tools & Technologies

• Application Packaging: AdminStudio, ORCA, InstallShield, MSIX Packaging Tool
• Scripting: PowerShell
• Patch Management: SCCM, Intune, WSUS
• Vulnerability Management: Qualys VMDR, Rapid7 InsightVM