Job Description:
The Infra Middleware Patch Management Support resource will be responsible for the systematic patching and lifecycle management of middleware components to ensure system security, stability, and compliance in a financial and banking sector environment. This role requires at least 5 years of experience and a deep understanding of security and regulatory frameworks in the financial industry.
Key Responsibilities
- Patching and Vulnerability Management:
- Plan, schedule, and execute regular and emergency patch deployments for middleware components, including WebSphere, JBoss, WebLogic, Apache Tomcat, and IBM MQ.
- Monitor vendor security bulletins, Common Vulnerabilities and Exposures (CVE) databases, and threat intelligence feeds to identify and prioritize critical vulnerabilities.
- Work with security teams to assess risk and develop remediation plans,ensuring all patches are deployed within defined service-level agreements (SLAs).
- Troubleshoot and resolve patch-related issues, such as failed installations, performance degradation, or application conflicts, and coordinate with pplication teams for post-patch testing.
EOL and EOS Management
- End-of-Life (EOL) & End-of-Service (EOS) Management:
- Track and manage the lifecycle of middleware software and related components.
- Proactively identify products nearing EOL or EOS and work with stakeholders to plan for upgrades, migrations, or decommissioning.
- Ensure all systems remain on vendor-supported versions to mitigate security risks and maintain compliance with industry regulations.
Technical and Domain Expertise
Technical Skills:
- Extensive experience with middleware technologies like IBM WebSphere Application Server, Oracle WebLogic, Apache Kafka, and Tibco.
- Strong proficiency in scripting and automation using Shell, Python, or Ansible to streamline patching and configuration management processes.
- Hands-on experience with operating systems (e.g., Linux, AIX, Windows Server) and a good understanding of network and security principles.
- Familiarity with container platforms like Docker and Kubernetes is a plus.
- Financial & Banking Domain Experience:
- Proven experience working in a highly regulated environment, such as banking or financial services, with a strong understanding of compliance requirements like FFIEC, SOX, and PCI-DSS.
- Experience with Change and Release Management processes in a critical production environment.
