Job Description

What if the work you did every day could impact the lives of people you know? Or all of humanity?At Illumina, we are expanding access to genomic technology to realize health equity for billions of people around the world. Our efforts enable life-changing discoveries that are transforming human health through the early detection and diagnosis of diseases and new treatment options for patients.Working at Illumina means being part of something bigger than yourself. Every person, in every role, has the opportunity to make a difference. Surrounded by extraordinary people, inspiring leaders, and world changing projects, you will do more and become more than you ever thought possible.Position Summary:The Sr IT Engineer is responsible for the delivery of infrastructure patch and vulnerability management services for the global enterprise as part of the Infrastructure & Cloud Services team . This role will ensure IT infrastructure systems are secure, up-to-date, and compliant with industry standards by managing patches and addressing vulnerabilities while minimizing impact to global IT systems.This role is responsible for assessing and deploying new features, security updates, maintenance plans, monitoring and alerting, governance, administration, and day-to-day operations of the patch management system(s). The role will also involve collaborating and supporting related projects/initiatives while working cross-functionally to deliver results.The ideal candidate will have experience Infrastructure patch and vulnerability management tools and processes, including vulnerability assessments, patch testing and deployment, scripting, and reporting. Relevant experience includes understanding IT infrastructure, security practices, and compliance standards.The ideal candidate will have excellent technical, communication, and documentation skills, with a keen understanding of how technology integrates with business needs. They will stay current with the latest security and IT trends, leveraging this knowledge to drive innovation in the infrastructure security domain. The candidate should demonstrate strategic thinking and focus on delivering business value.Responsibilities:

• Patch Management

Adhere to patch management policies and procedures for all infrastructure components.Review, verify, automate, schedule, and deploy patches and/or firmware for operating systems, IT Infrastructure systems, and hardware.Track and report on patch compliance and effectiveness.

• Vulnerability Assessment:

Conduct vulnerability assessments and scans on IT infrastructure.Analyze and prioritize vulnerabilities based on risk and potential impact.Work with IT teams and stakeholders to remediate identified vulnerabilities.

• Security Monitoring and Incident Response:

Monitor security incidents related to vulnerabilities and patch levels.Participate within incident response efforts for infrastructure security incidents.Document incidents, perform root cause analysis, and implement preventive measures while following change management procedures.

• Compliance and Documentation:

Ensure IT Infrastructure systems comply with regulatory and organizational security standards.Maintain detailed documentation of patch and vulnerability management processes and procedures.Prepare and present patch compliance and risk assessment reports to leadership and stakeholders.

• Collaboration and Support:

Part of 24x7 On-Call rotation to triage Incidents. Able to troubleshoot and resolve most incidents directly or with vendor support while keeping management informed.Collaborate with other IT teams such as Information Security, Network, and Application teams to coordinate patching and remediation efforts.Provide technical guidance and support to other IT staff.Communicate security risks and remediation plans to stakeholders.

• Continuous Improvement:

Stay updated with the latest security threats, vulnerabilities, and industry best practices.Identify and implement process improvements for patch and vulnerability management.Requirements:Demonstrates strategic thinking within a global business environmentExtensive experience in infrastructure patch/firmware testing, deployment, and vulnerability assessment/remediationUnderstanding of IT infrastructure, including operating systems (Windows Server, Linux, Windows Desktop, MacOS), networking, firewalls, information security, and databasesKnowledge of: DNS, IP Addressing (DHCP/Static), network route/switch, SMB, CIFs, LDAP/LDAPs, Active Directory, SMTP, LAN/WAN, SDWAN, Kerberos, Network Load Balancing, Security devices, SAN/NAS, SFTP, SSL, TLS, etc.Hands-on experience with patch management tools (e.g., ConnectWise Automate, WSUS, SCCM) and vulnerability scanning tools (e.g., Rapid7, Tenable Nessus, etc.)Experience supporting enterprise and laboratory systems such as ERP, BI, PLM, LIMS, HPC, etc.Proficiency in scripting, programming languages, infrastructure as code such as PowerShell, Bash, Terraform, or Python.Knowledge of, but not limited to, server hardware (HPE, Dell, Cisco, Supermicro), virtualization (VMware, Docker, Kubernetes), and network devices (Cisco, Aruba, etc.)Understanding and working knowledge of automation servicing tools such as Rundeck or Ansible.Familiar with engineering principles such as Agile methodologies, Scrum, DevOps, and source control management repositories (GIT).Extensive experience in cloud hyperscaler such as AWS, Azure, and/or GCP.Experience with storage area networks and storage platforms such as Dell, HPE, and Pure StorageFamiliarity with compliance standards and frameworks, but not limited to: SOX, HIPPA, ISO, NIST, CIS and GDPR.Excellent written and oral communication skills coupled with a customer service orientation.Works independently or as part of a team to troubleshoot and resolve complex service-level technical issues.Able to effectively prioritize work based on business and/or customer impact.Ability to communicate effectively with peers, partners, and leadership.Experience in change management policies and proceduresSupports the enterprise in a 24/7/365 environment with the ability to provide On-Call support.Experience/Education:Typically requires a minimum of 6 years of related experience with a bachelor\xe2\x80\x99s degree; or equivalent work experience.Relevant certifications such as Microsoft Certified: Windows Server Hybrid Administrator Associate, VMware Certified Professional, CompTIA Linux+, Red Hat Certified Engineer, Cisco Certified Networking Associate are preferred; CompTIA Security+ CISSP or CISM is a plus.Cloud certifications in AWS and Azure preferred; GCP is a plusExperience working in a high-performing team in fast-paced, regulated environments (SOX, FDA, HIPAA, etc.).Experience with IT service management tools (e.g., ServiceNow, Jira).Proficient in M365 applications, including Word, Excel, PowerPoint, and others.Illumina believes that everyone has the ability to make an impact, and we are proud to be an equal opportunity employer committed to providing employment opportunity regardless of sex, race, creed, color, gender, religion, marital status, domestic partner status, age, national origin or ancestry, physical or mental disability, medical condition, sexual orientation, pregnancy, military or veteran status, citizenship status, and genetic information.

Illumina