Main Responsibilities
1. Patch Management and Security Lifecycle
- Design and implement an automated patch management system within a virtualized environment.
- Manage scheduled patches and critical security updates (emergency interventions).
- Implement robust rollback and automated remediation mechanisms.
- Apply compensatory measures when patches cannot be deployed.
- Reduce the backlog of unpatched servers.
- Integrate patch management into a strict change management process (CAB).
- Produce documentation (SOPs, procedures, audit evidence).
2. Hardening and Compliance
- Define and enforce security baselines for Windows and Linux systems.
- Implement and maintain security standards (CIS, STIG or equivalent).
- Secure new virtual machines from installation stage.
- Automate VM onboarding via secure pipelines and standardized templates.
- Implement control and remediation mechanisms for security gaps.
3. Vulnerability Management and Risk Reduction
- Contribute to vulnerability prioritization based on risk.
- Design compensatory solutions for legacy systems.
- Support migration or decommissioning of obsolete systems.
- Actively contribute to attack surface reduction.
Technical Scope
- Physical and virtual servers
- Hypervisors
- Operating systems: Windows Server, Linux
- Virtualized environments (VMware, Xen/Citrix)
- Containerization (Docker, Kubernetes)
- On-premise datacenter
- Possible tools: WSUS, SCCM, third-party patch management tools, Ansible, PowerShell, Bash, GPO, SCAP, CIS baselines
Profile Required
Education and Experience
-
University degree in a relevant discipline with at least 5 years of relevant professional experience
or - Minimum of 10 years of progressive and in-depth experience in a similar role
Technical Skills
- Expertise in designing and implementing automated patch management systems
- Strong experience in Windows and/or Linux system administration
- Solid experience in hardening and security baselines (CIS, STIG)
- Proven experience in virtualized environments
- Good knowledge of legacy systems
- Automation and scripting skills
- Experience in vulnerability management
- Ability to operate under pressure during critical security incidents
Methodological Skills
- Ability to design processes from scratch
- Strong organizational and prioritization skills
- Excellent documentation and writing skills
- Autonomous and security-oriented analytical mindset
- Ability to interact with business stakeholders
Required Skills
- Cybersecurity – Expert level
- Microsoft SCCM – Expert level
- Windows Server – Advanced level
- VMware – Advanced level
- Linux – Intermediate to Advanced level
- Citrix – Intermediate level
Languages required:
- French – Full professional proficiency
- English – Full professional proficiency
Opportunities are numerous. From bare applications development to of IT infrastructures management including conception, architecture and requirements analysis.
Although open to technologies used by our customers, ABAKUS IT-SOLUTIONS seeks mainly but not only consultants mastering: Windows and Linux Servers, networks, developments (JAVA, SAP, .NET,…) as well as highly specialized experts for example in cybersecurity or in Content Management System (CMS) (SharePoint, Drupal, WebLogic…).
In terms of non-technical competencies, ABAKUS IT-SOLUTIONS hires dynamic persons, open to the world, interested by innovation and having a keen sense of client relationship.
A very good command of English is essential, the capacity to speak French, German or Dutch is an asset.
Even though most of our positions require at least 3 years of experience, some are open to new starters.
