Middleware Vulnerability Management Engineer

Middleware Vulnerability Management Engineer
Company: Sopra Steria is a listed European tech leader specializing in Consulting, Digital Services, and Software.

With 60,000 employees worldwide across Europe, North America and Asia, Singapore serves as the HQ for our APAC operations.

We focus on delivering Infrastructure, Cloud and Cybersecurity services across the region.


This role is a technical support position and oversees Middleware Vulnerability Management.

They must
plan and rectify middleware products security vulnerabilities , help ensure the quality of Core Middleware services remains consistently high,
Create Middleware management reporting and dashboard , and adhere to all IT security policies to maintain system integrity and quality.

The candidate should have an excellent technical knowledge and a hands-on attitude to
develop automatic processes to generate reports and dashboards
and to
develop scripts to manage repetitive or mass deployment tasks .

The successful candidate will work with other IT teams in Asia, Europe and the Americas and must possess strong organization skills, time management, and excellent written and communication skills.


Responsibilities
Responsible for the overall Middleware Vulnerability Management of Core Middleware systems in APAC (infrastructure in Singapore, Hong Kong, Japan and China) and regional oversight of the rest of APAC countries
Provide continuous team and service improvements, be risk-aware in change management, focus on mitigating middleware vulnerabilities and improve monitoring, efficiency, reliability, capacity and quality of IT services
Strive to ensure 100% uptime for all Core Middleware systems infrastructure in APAC, considering business requirements
Plan, test and execute Production changes following a robust Change Management process
Update all live production documentation under their scope
Manage to reduce hardware and software obsolescence across IT
Business relationships
Work closely with all major stakeholders of the Core Middleware Systems and any dependent teams
Build strong relationships with internal customers in APAC
Collaborate with all teams across departments; avoid silo work
Follow all Security policies
Contribute to management reports and dashboards
Report variances from Norms and Standards
Ensure and practice all production Disaster Recovery and BCP processes
Governance
Follow Security policies
Contribute to management reports and dashboards
Report all variances from Norms and Standards
Ensure and practice all production Disaster Recovery and BCP processes
Requirements
Essential Technical Knowledge/Skills :
At least 5 - 7 years of technical experience in middleware technologies listed below
Open source Apache Server (2.4.x)
Open source Tomcat Application Server (8.x, 9.x)
Microsoft IIS server (IIS 8.5, 10)
REDHAT Jboss EWS (Apache / Tomcat 5.x)
REDHAT EAP application server (EAP 7.x)
IBM WebSphere Application Server BASE & ND (8.x, 9.x)
IBM WebSphere MQ server (8.x, 9.0, 9.1, 9.2)
Oracle WebLogic Server (12.x, 14.x)
Analysis, remediation planning and execution for overdue vulnerabilities on IBM MQ, IBM WAS, Apache, Tomcat, Jboss EAP/EWS
Analysis, remediation planning and execution for critical compliance deviations on Digital Platform assets
Enhancement of remediation processes for APAC assets under Digital Platform management
Continuous improvement of security watch processes to pro-actively plan patching
Experience in creating and producing reports and dashboards
Reporting skills: Tableau / Power Query / Excel Macro / PowerBI / SQL / Python / API
Optional: Prometheus / Grafana / Kibana / ELK
Automation: Ansible scripting + Ansible Tower
Middleware: IBM MQ, IBM WAS, Apache, Tomcat, Jboss EAP/EWS
Vulnerability remediation oversight for locally-managed network gear
Apply security vulnerability fixes and hardening policies in a timely manner
Excellent written and verbal communication skills
Productive teamwork and strong analytical skills
Systematic and logical problem-solving approach
Good presentation and documentation skills
Ability to explain complex technical concepts to varied audiences
Experience with Agile methodologies and/or DevOps
Service-oriented, customer-focused, proactive attitude
Strong timekeeping and attention to detail
Flexible for shift work and some weekends or late hours on short notice
Independent, organized, self-motivated and able to work with limited supervision
Ownership mindset and hands-on; comfortable interfacing with people at all levels
Knowledge of ITIL concepts and practical application
Other value-added competencies
Professional certification in any listed application server technology
Analytical thinking and strong diagnostic information gathering
Client-oriented with strong communication and organizational skills
Initiative and multitasking abilities
Ability to work under pressure
Knowledge of Ansible and scripting in PowerShell, Python or other languages is an added advantage
Benefits
Regular team buildings
18 leave days per year
Insurance: GP, Hospitalisation, Dental and Optical
Annual bonus
Working hours: 9am to 6pm, Monday to Friday
Training and certifications paths
Seniority level: Mid-Senior level
Employment type: Full-time
Job function: Other
Industries: IT Services and IT Consulting
Referrals increase your chances of interviewing at Sopra Steria by 2x
#J-18808-Ljbffr