Vulnerability and Patch Management Engineer - (Hybrid)

Job Level: Analyst

Job Function: Business Operations

Location:

Los Angeles, CA, US, 90071

Requisition ID: 6505

ABOUT THE ORGANIZATION

SMBC MANUBANK was formed by a group of banking entrepreneurs in June 1962. Our scope is to serve the specialized needs of California middle-market businesses, manufacturers, wholesalers, distributors, importers, exporters, and service companies, including small businesses and professionals.

The anticipated salary range for this role is between $73,000.00 and $98,000.00. The specific salary offered to an applicant will be based on their individual qualifications, experiences, and an analysis of the current compensation paid in their geography and the market for similar roles at the time of hire. The role may also be eligible for an annual discretionary incentive award. In addition to cash compensation, SMBC offers a competitive portfolio of benefits to its employees.

Our mission is to be "the bank of choice" for middle market and professional service companies by establishing long term customer relationships and loyalty, providing superior products and services through a core of highly skilled and seasoned bankers.
To achieve our mission to be the 'bank of choice' for middle market and professional services companies, we are focused on our vision to be the premier California regional business bank that can provide the sophistication and expertise of a larger institution with the personal 'high touch' services of a smaller bank.

Specialties:

Commercial Loans and Lines of Credit, Asset-Based Financing, SBA Loans, and Specialized Financing, Real Estate Loans, Cash Management Services, International Services

SUMMARY

SMBC MANUBANK is seeking an Vulnerability and Patch Management Engineer to lead and execute patch and vulnerability management strategies that protect the confidentiality, integrity, and availability of the Bank’s data and systems. This role is responsible for coordinating patching activities across server, cloud, and workstation environments, maintaining documentation, and collaborating with internal teams and external service providers to strengthen the Bank’s security posture.

PRINCIPAL DUTIES & RESPONSIBILITIES

Collaborate with managed security service providers to optimize patch and vulnerability management tools, improving coverage and accuracy.
Manage and enhance patching processes for Windows Servers, workstations, and cloud environments.
Actively verify, test, and apply security patches across all systems.
Conduct routine audits of servers and endpoints to ensure compliance with security standards and configuration guidelines.
Develop and maintain PowerShell scripts to automate patching and remediation tasks.
Maintain detailed documentation of patching procedures, system configurations, and change history.
Lead vulnerability assessments and coordinate remediation efforts with IT and security teams.
Provide escalation support for server and workstation-related issues.
Ensure adherence to IT governance, policies, and change management procedures.
Promote a culture of continuous improvement by identifying new risks and recommending mitigation strategies.
Mentor and train junior team members on patching and vulnerability management practices.
Assist in generating reports and metrics for management and board-level review.

JOB SPECIFICATIONS

Bachelor’s or Associate Degree in Computer Science, Cybersecurity, Computer Engineering, or related discipline.
Minimum of 3 years of hands-on experience in patch management and vulnerability remediation.
Strong experience with Windows Server environments, endpoint patching, and cloud platforms (e.g., Azure, AWS).
Familiarity with container security and cloud-native security best practices.
In-depth understanding of web-based threats and mitigation techniques.
Proven track record of implementing risk reduction strategies.
Proficient in PowerShell scripting and automation.
Strong analytical and problem-solving skills with attention to detail.
Excellent communication skills, with the ability to convey technical concepts to non-technical stakeholders.
Relevant certifications (e.g., CompTIA Security+, Microsoft Certified: Azure Security Engineer, CISSP) are a plus.

EOE STATEMENT
SMBC provides reasonable accommodations during candidacy for applicants with disabilities consistent with applicable federal, state, and local law. If you need a reasonable accommodation during the application process, please let us know at accommodations@smbcgroup.com.

CCPA DISCLOSURE
Personal Information Collection Notice: This notice contains information under the California Consumer Privacy Act (CCPA) about the categories of personal information (PI) of California residents that SMBC MANUBANK collects and the business or commercial purpose(s) for which the PI may be used. We do not sell PI. More information about our collection and use of PI may be found in our CCPA Privacy Policy at https://www.smbcmanubank.com/privacy/ccpa-disclosure. Persons with disabilities may contact our Customer Contact Center toll-free at (877) 560-9812 to request the information in this Notice in an alternative format.