Software Engineer

Ensign is hiring !

Duties and Responsibilities:

• Design, build, and maintain a scalable patch automation platform to support timely and compliant patch deployment across enterprise systems.
• Develop and implement automated workflows for patch detection, assessment, rollout, validation, and rollback.
• Actively explore and integrate AI-powered tools, machine learning models, or intelligent analytics to optimize decision-making and anomaly detection in the patch lifecycle.
• Interface with tools such as ServiceNow, SCCM, WSUS, Tanium, Ivanti, BigFix, and Ansible for end-to-end automation.
• Track and report patch compliance, coverage, and SLA metrics to support security and audit requirements.
• Collaborate with Security, DevOps, Infrastructure, and Compliance teams to align patching strategies with enterprise goals.
• Ensure high availability and resiliency of patch automation systems; drive improvements based on root cause analysis of failures or delays.
• Participate in proof-of-concepts for innovative solutions (e.g., predictive patch scheduling, AI-based risk prioritization).
• Perform security assessments on devices/software to identify vulnerabilities and ensure secure deployment of solutions against cyber threats.
• Utilise security tools and techniques and implement testing regimes for device /software security, analyze results, and work with cross-functional teams to address identified risks and improve overall protection.
• Stay informed about emerging security threats and trends, applying testing techniques to evaluate device/software security posture and provide actionable recommendations for improvement.

Requirements:

• Bachelor's degree in Computer Science, Information Systems, or a related field.
• Proficiency in scripting languages such as PowerShell, Python, or Bash.
• Hands-on experience with patch management and configuration tools (e.g., WSUS, SCCM, BigFix, Ansible, Tanium).
• Experience with infrastructure-as-code tools (e.g., Terraform, Ansible).
• Knowledge of cloud-native patch management in AWS, Azure, or GCP.
• Familiarity with AI frameworks or platforms (e.g., Azure Machine Learning, OpenAI APIs, Splunk AI, ServiceNow AI Ops).
• Familiarity with enterprise IT environments across Windows, Linux, and macOS platforms.
• Solid understanding of ITSM and change control processes.
• Comfortable working with or learning AI/ML-driven platforms and incorporating data-driven approaches into engineering workflows