Technical Patching Lead EMEA/APAC

This role will be member of the Global Infrastructure Operations Continuous Service Improvement (CSI) team as part of 247365 Production Management organization. An organization that delivers highly secure, reliable, efficient infrastructure technology operations services that are focused on the needs of all State Street business. Responsible for delivering continuous improvement across various infrastructure operations towers by supporting the ITIL framework to improve processes, which ultimately improve our business.

In this role, the successful candidate will be govern the remediation of all security related vulnerabilities across the global estate. You will assess, prioritize, and coordinate the remediation of all vulnerability related incidents by engaging both the technical and business stakeholders. You will be responsible for timely communication, coordination, and reporting of all vulnerability risks. You will have a continuous improvement mindset which will continue to optimize our processes and procedures to help facilitate timely remediations of our risk.

• Individual will play a direct role in vendor management, overseeing the scheduling and implementation of the patching activities across all platforms.
• Support and Drive remediation of cyber risks identified by Global Cyber Security, Corporate Audit, Technology Risk Management and Regulators.
• Participate in engineering and technical solutioning to strengthen controls and improve effectiveness of the Patching & Compliance Program.
• Participate in the continuous improvement of the existing and the development of new automation solutions to enhance effectiveness of the program.
• Ensure the Patching & Compliance Program satisfies all Internal & External Regulatory and Compliance standards
• Support Regulatory and Audit inquiries providing insight to the Patching & Compliance Program and detailed evidence when requested.
• Provide Information Technology risk management and compliance support to ensure effective identification, measurement, control and management of the relevant risks
• Identify and manage IT risk by maintaining effective internal controls and escalating as appropriate any deficiencies to management and/or applicable technology governance boards.
• Communicate with audiences of varying technical proficiencies
• Drive Continuous Service Improvement by looking at lesson learns and gap analysis and implement improvement plans
• To document, update and improve daily operation procedures
• Develop reports using data that is hosted in multiple sources/tools (e.g., spreadsheets, dashboards) and communicate clearly to leadership and other cyber security teams
• Engage with Application engineering leads and SRE/IT teams to coordinate vulnerability remediation from technical and policy compliance perspectives
• Track and monitor key milestones or after significant change in the environment to identify network, infrastructure, and configuration vulnerabilities
• Perform ad-hoc data remediation, clean-ups, and reporting using large complex data sets for high-priority security remediations
• Ability to effectively coordinate between technical teams and business stakeholders
• Understanding of information security, privacy frameworks, and compliance requirements