Security Patch Management Coordinator
Security Patch Management Coordinator:
Red Bee Media is the world’s leading Managed Service provider to the media industry. Working with the best media brands in the world, we enrich and ensure media experiences.
Every day, people on all continents watch television programs prepared, managed and broadcast by Red Bee Media staff. Every year, the business delivers more than 2.7 million hours of programming in more than 60 languages for nearly 600 TV channels. Its content discovery portfolio spans more than 10 million movies and program titles, covering over 25 languages, and includes an image database covering over 90 percent of all programming available across traditional TV, video on demand (VOD) and subscription video on demand (SVOD). It provides over 230,000 hours of captioning each year – more than 100,000 hours of which is live
For content providers who want high quality media experiences for their audiences, Red Bee Media is trusted to manage and transform complex, mission-critical services with superior expertise, leading technology platforms and passion.
The Security Patch Management Coordinator is part of the Playout and Media Management UK Operations Team, working within Technology Support. Our clients are the best of the best in the UK and globally and include the BBC, BBC World News, Channel 4, BT Sport, Channel 5, UKTV and ITV. This role is responsible for ensuring the latest security threats are understood and patch management is maintained in the production environments.
To manage the patching process and schedules across the RBM estate to keep our broadcasting servers secure. Responsible for providing an interface and coordination role between Cybersecurity, Video Services and Operations teams. This person will project manage the lifecycle of a patch, ensuring it goes through appropriate testing and assisting technical team’s in planning the deployment to ensure a successful roll out of security component updates within the Playout and Media Management production environments. They will communicate and collaborate cross functional engineering and operations team to meet their objectives. At least 30% of role may be utilised within other small projects and service improvement within Technology Support.
This role report to Head of Technology Support
To own and manage the Patch Management Process this across the Engineering Operations estate
To communicate and develop agreed schedules in line with business needs and ensure that these are managed in conjunction with the Operational areas and support teams, highlighting risks and reporting on progress using relevant project reporting tools.
Provide a single point of contact to track Security Component Updates, Vulnerability actions and Non-compliance actions.
Working with cyber security ensuring all available patches are reviewed for relevance, impact, and vulnerability score to determine proper installation scheduling.
In the case of "critical" vulnerability and non-compliance coordinate with the Cyber security team to determine actions required to mitigate or remove.
Identify team required to perform remedial action (Product teams, platform teams, systems owners, and operations teams) and work with teams to ensure a process to apply the updates is agreed, scheduled, tracked and completed in line with agreed processes
Coordinate and the teams to ensure component updates and vulnerability actions are planned and delivered with no disruption to service; this will require the coordination of both technical and operational teams to achieve the desired outcome in line with published change control procedures.
Ensure all patches are testing in a safe environment prior to deployment.
Ensuring the process for resolving patch issues (rolling back of problematic patches) is documented and shared with relevant teams.
Track and record the asset list with the status of current and planned security patching as well as status of remediation of vulnerabilities and non-compliances
Ensure that exceptions reported by the Red Bee Security Teams are recorded and shared with the Video Services and Operations Teams
Ensure that the internal security teams provide an initial SPN/EPN response and that this is shared with the client either directly or via the Head of Managed Service Delivery
Provide guidance to the client teams on Risk Management and Waivers
Share Security Patch status with the internal clients, including confirmation of Security Patch completion (and completion certificate where applicable).
Provide support to the client facing teams as needed.
Develop KPIs and reporting that are relevant and measurable to the work of Technology Support
Updating standard Patching documentation.
Strong communication skills, both written and spoken, with the ability to vocalise the issues and initiatives of the day in a positive manner.
- Experience of, running meetings and having constructive conversations with colleagues at differing organisational levels including more senior colleagues
- Ability to drive outcomes in a matrix-management organisation
- Effective planning, organisation and prioritisation even when faced with multiple demands
- Takes ownership of issues through to resolution
- Consistent track record of meeting objectives and following through on commitments.
- Good understanding of Playout and Media Management services, operation and Systems
- Managed small to mid -size projects within an IT organisation within any area
- Desirable but not necessary:
Experience of coordinating upgrades to wide IT systems and infrastructure (windows, WSUS, VM Ware, Linux) if possible, in a live TV, Radio or multi-media environment
Knowledge of ITIL standards and the principles of service support and delivery (Incident, change and release management
Demonstrate verbal, written and interpersonal skills including the ability to explain and discuss complex issues using a range of styles, tools and techniques to present data which are appropriate to the audience
Experience of effectively planning, prioritising and coordinating own and team activities
A confident self-starter who is able to work under little supervision and able to bring together teams in an extremely busy environment.
Ericsson provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetics.
Ericsson complies with applicable country, state and all local laws governing nondiscrimination in employment in every location across the world in which the company has facilities. In addition, Ericsson supports the UN Guiding Principles for Business and Human Rights and the United Nations Global Compact.
This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation, training and development.
Ericsson expressly prohibits any form of workplace harassment based on race, color, religion, sex, sexual orientation, marital status, pregnancy, parental status, national origin, ethnic background, age, disability, political opinion, social status, veteran status, union membership or genetic information.
Primary country and city: United Kingdom (GB) || || White City || Consulting&SysInt; IT; ProdMgt; R&D; SalesStratMkt&ComMgt; ServEng; SharedServ; Stud&YP; Supply&Log
Job details: 2nd Level Operations Job Stage 05