Vulnerability & Patch Management Specialist

Key Responsibilities:

• Conduct internal vulnerability scans
• Facilitate and monitor external vulnerability assessments and VA/PT performed by third‑party assessors annually in compliance with BSP requirements.
• Manage and ensure quarterly PCI‑DSS ASV scans for all internet‑facing applications handling full card numbers.
• Perform re‑validation scans to confirm remediation of previously identified vulnerabilities
• Coordinate with system owners and technical teams to ensure remediation within mandated timelines
• Track remediation commitments and enforce risk‑based prioritization
• Ensure monthly patch cycles for servers and immediate deployment of emergency or zero‑day patches (within 48 hours)
• Maintain automated patching tools and ensure reporting accuracy.
• Maintain comprehensive vulnerability and patch dashboards, including Scan results, Risk treatment action plans, Remediation timelines, Compliance r...