You're using an older version of Internet Explorer that is no longer supported. Please update your browser.
WSP Canada

Vulnerability and Patch Specialist M&A Ops [OneIT]

Montreal, QC
Full Time
5 days ago

The M&A Operations team operates within the Global Security Operations and is comprised of engineers from various disciplines including server, storage, backup, network, and security, distributed in various countries throughout the world. The team is responsible for assessing and remediating the IT infrastructure of newly acquired organizations and providing operational support of the infrastructure whilst in a transition and integration periods to steady-state operational support.


WSP is looking to hire an experienced engineer to handle the vulnerability and patch management activities within its M&A Operations team. Qualified candidates must have a proven background within security, vulnerability scanning and pathing fields, handling incidents, problems, changes, and requests for enterprises, both large and small.

As WSP acquires organization around the world, the position requires candidates that are able to seamlessly handle multiple projects at the same time and are expected to be able to conduct the below listed responsibilities.

  • Assess and report on the current vulnerability and patching management status and policies of the M&As
  • Document the infrastructure and transfer knowledge to other WSP IT teams.
  • Deploy M&A Ops vulnerability scanning tools, setup reporting, prepare list of vulnerability priorities based on known threat information and risks.
  • Assist M&As in developing policies, action plans and metrics to improve their patching process to ensure proper implementation without any outages.
  • Provide technical guidance and hands-on support to M&As, engage in the problem/change management process.
  • Analyse, anticipate, identify, and respond on vulnerability and patching issues.
  • Help maintain an up-to-date list of M&As inventory of hardware assets with details about operating system versions, patch status, installed applications, and other relevant information.
  • Assist M&As with creating, testing, and managing patch deployment packages.
  • Assist M&A Operations team in developing policies and procedures to streamline the team operation.
  • Help deploy M&A Operations tool set on server infrastructure.
  • Collaborating with other team members to ensure that all new technologies are compatible with existing WSP standards.
  • Coordinate and monitor the deliverables of the 3rd party suppliers.


The ideal candidate would meet all, or most of the below criteria:
  • Bachelor's degree in information technology, Computer Science, or related field.
  • 5-8 years of relevant experience in engineering and operational support.
  • Excellent knowledge of vulnerability scanning and remediation best practices.
  • Good understanding of standards and best practices for patch management.
  • Good working experience with Tenable (deployment, scanning and reporting).
  • Experience with SCCM, WSUS, Intune and Autopilot.
  • Strong experience with Windows 10 and above.
  • Strong experience with Windows Server 2012 and above.
  • Strong experience with M365 (O365).
  • Working experience with SentinelOne or similar solution.
  • Good overall knowledge of Microsoft's product line-up, including high level capabilities and competitor products.
  • Good overall understanding of networking, server management, backup/storage, identity management
  • Ability to conduct research into systems issues and products as required.
  • Experience of Microsoft collaboration and documentation tools (Teams, PowerPoint, Visio, SharePoint, Power platform).
  • Understanding of Active Directory and Group Policy.
  • Understanding of cyber security and information security best practices.
  • Experience using ITSM systems (ServiceNow, Jira, Zendesk, ...).
  • Experience with Linux based systems is a plus.
  • PowerShell scripting language

  • Excellent (native level) written and spoken English.
  • Additional languages are considered a plus.
  • Experience working for a large global organisation with a multi-vendor environment or experience supporting multiple organisations at the same time.
  • Good experience of working in a customer focused end-user support function covering software/OS deployment and patching and/or vulnerability remediation.
  • Excellent analytical, diagnostic, and problem-solving skills, with the ability of tailoring solutions to identified problems, even with limited inputs.
  • Ability to work independently with low-level supervision and in a global team distributed geographically.
  • Strong organization skills (set priorities, meets deadlines, handle multiple simultaneous projects).
  • Excellent documentation and reporting skills.
  • Demonstrated experience in understanding, designing, delivering, and demonstrating compliance with information security requirements.
  • Knowledge and experience in performing information security practices in the management and delivery of infrastructure and operations.
  • Ability to communicate problems in terms that are understandable to end users at all levels.
  • Ability to follow and promote WSP policies, values, and standards.
  • Willingness to work in different time zones, and on occasion after hour or during the weekend.
  • Foundational knowledge of ITIL Service management practices

WSP is one of the world's leading professional services firms. Our purpose is to future proof our cities and environments.

We have over 65,000 team members across the globe. In Canada, our 12,000+ people are involved in everything from environmental remediation to urban planning, from engineering iconic buildings to designing sustainable transportation networks, from finding new ways to extract essential resources to developing renewable power sources for the future.


  • We value our people and our reputation
  • We are locally dedicated with international scale
  • We are future focused and challenge the status quo
  • We foster collaboration in everything we do
  • We have an empowering culture and hold ourselves accountable

Please Note:

Health and Safety is a core paramount value of WSP. Given the importance of keeping one another safe it is expected that you comply with our Health, Safety & Environment (HSE) policy at all times as well as client HSE policies when working at client locations.

Offers of employment for safety-sensitive positions involving fieldwork are contingent upon candidates being able to perform key physical tasks of the job as described in the job posting and interview. This may include the ability to work in a variety of environmental conditions, such as remote or isolated areas, working alone, and in inclement weather (within safe and reasonable limits).

WSP welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.

WSP is committed to the principles of employment equity. Only the candidates selected will be contacted.

WSP does not accept unsolicited resumes from agencies. For more information please READ THE FULL POLICY.
Information Technology