Job Purpose and primary objectives: You will work as a Vulnerability Remediation Packager for the Windows Devices Team following Scaled Agile Framework.
This role is part of a team Vulnerability Remediation Packagers within the Windows Devices function. You will work collaboratively with other packagers, Product Owners, Product Engineers, Security teams, and business stakeholders. While delivery is team-based, you will be individually accountable for assigned remediation tasks and packaging activities.
You will be involved in running, operating, and developing the windows 11 Environment which supports users from various geographies around the world.
You must be experienced Vulnerability Remediation Packagers to join our Windows Devices team. This role is focused on identifying, packaging, and deploying secure application updates to address vulnerabilities across enterprise Windows environments.
Youll work closely with Product Owners, Product Engineers, and business stakeholders to ensure vulnerabilities are remediated in a controlled, structured way, without disrupting users.
You must have Active SC clearance for this role
Key responsibilities :
Attend regular vulnerability management calls with Security, Product Owners, and business stakeholders
Review vulnerability findings and agree remediation actions within defined timelines
Repackage and remediate vulnerable applications using AdminStudio, InstallShield, and PowerShell
Ensure all packages follow agreed naming conventions, standards, and documentation requirements
Coordinate with business application owners to plan testing and controlled deployments
Deploy and troubleshoot applications using MECM and Intune
Monitor deployment success and resolve failures or conflicts
Support emergency and high-severity vulnerability remediation when required
Participate in change management processes, including CAB submissions and governance reviews
Maintain clear documentation of remediation actions for audit and compliance purposes
Key Skills/Knowledge: Essential
Windows application packaging experience (AdminStudio, InstallShield)
PowerShell and batch scripting for automation and packaging tasks
Deployment and troubleshooting using MECM (SCCM) and Microsoft Intune
Understanding of vulnerability management processes and patch remediation
Familiarity with enterprise change management and governance processes
Ability to follow packaging standards, naming conventions, and documentation practices
Strong communication skills for working with Product Owners, engineers, and business stakeholders
Desirable:
Experience working in large-scale enterprise environments
Familiarity with third-party software packaging and update cycles
Exposure to zero-day or critical vulnerability remediation
Understanding of Agile frameworks like SCRUM
Good Communication skills, Interpersonal skills, and customer responsiveness
Working knowledge of tools like JIRA and Service Now.
Experience required: Must Have:
UK SC Cleared
4+ years of experience in Windows application packaging or endpoint management
In-depth understanding of the Windows application packaging architecture and design best practices
Microsoft 365 Endpoint Administrator (MD-102) certification or equivalent hands-on experience
Ability to work remotely with occasional, ad-hoc travel to Gloucester Business Park
Good To Have:
Sound knowledge of Cloud Computing fundamentals specifically Azure
Experience automating packaging or deployment tasks beyond basic scripting
Familiarity with vulnerability scanning tools (e.g., Tenable,)
Experience in cross-functional security or IT operations teams
TPBN1_UKTJ