Application Analyst – Patch Management Specialist

Back Click Here to Apply

Title :

Application Analyst – Patch Management Specialist

Location :

New York

Job Summary

Gibson Dunn is a leading global law firm, advising clients on significant transactions and disputes. Our exceptional teams craft and deploy creative legal strategies that are meticulously tailored to every matter, however complex or high stakes. The firm’s work is distinguished by a unique combination of precision and vision.

Based in any US office, the Application Analyst will be responsible for ensuring the success of the patch management process, ensuring compliance with the patch management policy, and maintaining the security and integrity of systems and applications through timely patch deployment. This person will also be responsible for taking Information Security findings from their vulnerability scanning platforms and work with the various teams to ensure they are patched appropriately, and in a timely manner in accordance with firm policy and procedures.

This role reports to the Director, Enterprise Application Solutions with a dotted line to the Senior Director of Information Security.

Responsibilities include:

  • Develop and maintain patch management processes and procedures in conformance with firm policy and relevant frameworks.
  • Help the team with monitoring patch releases and managing the distribution and application of patches to production servers and workstations.
  • Accelerate “zero day” patch releases.
  • Stay informed on the latest vulnerabilities and threats and adjust the patch management strategy accordingly.
  • Collaborate with IT and InfoSec teams to ensure the patch management process aligns with the overall security strategy.
  • Work with various vulnerability and reporting platforms to determine best course of action for remediation of vulnerabilities.
  • Research and present options for an enterprise level patch management platform.

Qualifications

  • Advanced working knowledge of MEMCM, Intune and other patch management platforms (Tanium, BigFix, Patch My PC, etc.)
  • Proficiency with scripting, package building, and code signing.
  • Ability to navigate vulnerability reports and work with application owners for remediation.
  • Strong knowledge of the Windows Operating System (including Windows 10/11, Windows Server 2012 R2 – 2022), including the development and maintenance of an OS image.
  • Experience supporting Client & Server-based applications.
  • Must be able to diagnose problems via system and application logs.
  • Proficiency with diagnostic tools and processes (i.e., procmon, memory dumps, etc.)
  • iOS and macOS knowledge are a plus.
  • Strong active listening skills.
  • Strong project planning, organizational and execution skills.
  • Strong ability to build and maintain trusted relationships, and effectively collaborate at all levels and across all disciplines.
  • Strategic and creative thinker, with a focus on delivering solutions.
  • Ability to remain calm and reasoned under pressure.
  • Ability to be flexible to meet varied and changing business requirements.

Experience

  • A four-year college degree is preferred.
  • A minimum of two years’ experience supporting law firms or other professional services environments.
  • Strong communication skills between IS and InfoSec.
  • Project management skills are preferred.

 

Compensation & Benefits:

The annual compensation range for this position is $130-150k. The salary offered within this range will depend upon qualifications and other operational considerations.

Benefits offered for this position include health care; retirement benefits; paid days off, including sick time, and vacation time; parental leave; basic life insurance; Flexible Spending Accounts; as well as discretionary, performance-based bonuses.

Gibson Dunn & Crutcher LLP is committed to the principles of equal employment opportunity for all partners, employees and applicants and, in accordance with the applicable federal and state laws, does not discriminate on the basis of sex, race, creed, color, religion, matriculation or political affiliation, national origin, alienage or citizenship status, ancestry, age, marital status or partnership status, family responsibilities, disability, medical condition, personal appearance, genetic information, predisposing genetic characteristics, sexual orientation, military status, status as a victim of domestic violence, stalking and sex offenses, arrest or conviction record, or on any other basis prohibited by law.