Principal, Patching and Vulnerability

***** THIS POSITION IS NOT ELIGIBLE FOR VISA SPONSORSHIP*****

The Principal, Patching and Vulnerability Management Coordinator, leads the coordination and execution of the patching and vulnerability management program across the organization, working in close partnership with platform engineering and infrastructure teams responsible for hands‑on patching activities. This role provides strategic technical leadership across a mixed environment of on‑premises and AWS cloud‑based infrastructure, ensuring robust security, seamless system integration, and operational excellence.

The position serves as the central coordinating authority, aligning schedules, standards, and outcomes across infrastructure domains, while actively participating in patching execution alongside those teams. The position also focuses on fostering “dotted line” team development through cross‑training, mentoring, and promoting continuous learning to enhance team resiliency and expertise.

• Patching and Vulnerability Management Architecture and Design: Serve as the principal architect dedicated to the design and architecture of OCC's patching and vulnerability management program across on‑premises and AWS cloud environments. Ensure robust, scalable, and secure vulnerability management across the organization by translating complex business requirements into technical solutions that align with industry best practices and regulatory standards. Lead efforts to optimally integrate the Vulnerability Management endpoint and network scanning solution (currently Qualys) with the Service Now Security Vulnerability Response module.
• Program Coordination and Execution Partnership: Serve as the central coordinator for all patching and vulnerability management activities across the organization. Work directly alongside infrastructure teams including server, network, and cloud engineering to plan, schedule, and help execute patching cycles. While infrastructure teams perform the hands‑on work within their respective domains, this role ensures alignment, accountability, and consistency across all efforts, removing barriers and maintaining momentum throughout the patching lifecycle.
• Strategic Leadership and Integration: Provide technical leadership in designing workflows, automation, and governance frameworks that maximize the value of the vulnerability management system. Work with Security and End User Experience SMEs to ensure seamless integration between Qualys and Service Now to enable unified policy enforcement and lifecycle management for vulnerabilities across both on‑premises and cloud‑based infrastructure.
• Near‑Real‑Time Patching Strategy: Aggressively drive the development and maturation of a patching strategy that progressively moves the organization toward near‑real‑time vulnerability remediation without disrupting a 24/7 production environment. While this capability is a future‑state objective, this role will proactively assess architectural barriers, evaluate emerging tooling and automation approaches, and build the operational foundation necessary to reduce patch latency over time. This includes identifying quick‑win opportunities, piloting phased approaches, and collaborating with infrastructure and application teams to design patching windows and methods that support continuous availability.
• Cross‑Domain Expertise: Possess deep expertise in IT server and network administration, including on‑premises infrastructure and AWS cloud‑based solutions. Apply this breadth of knowledge to ensure consistent vulnerability management standards and patching practices are maintained across all environment types.
• Innovation and Operational Excellence: Drive innovation and operational excellence for the IT Operational Security team's vulnerability management initiatives by combining technical depth with broad domain knowledge across on‑premises and cloud environments.

• None

• Extensive experience in server and network administration across on‑premises and AWS cloud environments, as well as vulnerability management. Proven ability to design robust, scalable, and…