Sr Configuration Management Analyst

Governs patch management processes and improve reporting efficiency through independent oversight and planning for the defined set of onboarded CI types within the Patch Management scope. Responsible for the content, publication, communication, and clarification of Patch Management standards, policies, procedures, Knowledge-Base Articles (KBAs) and related SharePoint resources. Servers at the point of contact for internal and external questionnaires and regulatory queries related to Patch Management.
 

• Understands and applies principles, theories and concepts related to the profession and ERCOT's culture.
• Exercises judgment within defined procedures and practices to determine appropriate action.
• Impact is generally limited to specific assignments or projects.
• May respond to inquiries and/or provide assistance and/or guidance to lower level workers.

ADDITIONAL JOB DUTIES

• Serves as a subject matter expert (SME) for Patch Management processes and procedures, maintaining its accuracy, completeness and integrity.
• Develops and maintains patch management policies, procedures, and schedules that align with security requirements and minimize operational impact.
• Leads the onboarding, updating and decommissioning of Patch Management CIs.
• Leads the planning, monitoring and deployment of security patches and updates to servers, workstations, and applications.
• Facilitates and collaborates with Cybersecurity and other IT organizations to evaluate vulnerabilities, prioritize remediation efforts, and ensure timely patching of critical systems.
• Generates comprehensive dashboards and reports on patch compliance, system status, and vulnerabilities, and communicate findings to stakeholders.
• Provides guidance and mentorship to other team members on patch management with best practices and tools.
• Ensures all patching activities comply with organizational security policies, industry standards, and relevant regulations.

• Minimum 5 years of experience in IT operations with a focus on patch management, configuration management, or IT service management (ITSM).

• Experience with vulnerability scanning tools and security frameworks

• Exposure to Service Now Vulnerability Management processes and data model

• Experience with CMDB platforms such as OpenText uCMDB or similar tools, ServiceNow uCMDB experience is a plus.

• Ability to write SQL statements

• Proven ability to lead projects, mentor junior staff, and communicate technical information effectively to both technical and non-technical audiences.

• Bachelor's Degree: Business, Computer Science, Data Science, Information Systems or related field (Required)
• or a combination of education and experience that provides equivalent knowledge to a major in such fields is required

• ITIL Foundation (Preferred)
• CMDB Fundamentals (Preferred)
• CompTIA Security+, ISC2 Certified in Cybersecurity (Bonus)

The foregoing description reflects the minimum qualifications and the essential functions of the position that must be performed proficiently with or without reasonable accommodation for individuals with disabilities.  It is not an exhaustive list of the duties expected to be performed, and management may, at its discretion, revise or require that other or different tasks be performed as assigned.  This job description is not intended to create a contract of employment with ERCOT.  Both ERCOT and the employee may exercise their employment-at-will rights at any time. #LI-DN

ERCOT is firmly committed to equal employment for all qualified persons without regard to race, sex, medical condition, religion, age, creed, national origin, citizenship status, marital status, sexual orientation, physical or mental disability, ancestry, veteran status, genetic information or any other protected category under federal, state or local law.

Expected Salary Range: