System Engineer - Patching & Obsolescence management

Founded in 2020, RESG/DDS (Digital and Data Services) is the transversal IT department serving the IT Sector and Business Lines.

Within DDS/ITF (common technical foundations for all IT departments), the DSP entity is the service center responsible for the group’s CI/CD platforms.

We are seeking a DevOps Patch Management Engineer to take ownership of the patching lifecycle for critical DevOps tools and infrastructure across our physical servers, private cloud, and hybrid environments. The ideal candidate will have hands-on experience in patch Management, vulnerability remediation and DevOps toolchains. Key Responsibilities:
Patch Management
• Own and execute the end-to-end patching lifecycle for tools such as Jenkins, Github,Sonarqube Docker, Nexus, Jfrog Artifactory, Ansible,Teamcity,Jira, DeployIT and other DevOps systems.
• Maintain an inventory of tools, track versioning, and assess patch availability from vendors and the open-source community.
• Apply patches to both physical and virtual infrastructure with minimal downtime using automated and manual processes.
Security and Compliance
• Collaborate with the InfoSec team to assess CVEs and critical vulnerabilities.
• Implement security patches based on priority and threat severity.
• Maintain audit trails of all applied patches and ensure systems meet compliance standards.
Automation & Infrastructure as Code
• Handson experience in using tools like Ansible, Terraform, or shell scripting.
• Update golden images, AMIs, and IaC templates with patched versions.
• Ensure cloud VMs (AWS, Azure) are patched using native or third-party tools.
Testing and Validation
• Validate patches in pre-production/staging environments before rollout.
• Develop rollback and contingency plans in case of patch failures.
• Monitor systems post-patch using observability tools and logs to ensure service health.
Collaboration and Change Management
• Work closely with DevOps, Platform, and Application teams to plan patch windows.
• Submit and execute Change Requests (CRs) following ITIL processes.
• Provide regular reports to stakeholders on patch status and outcomes. Required Skills 
• experience in DevOps, Infrastructure, or System Administration in agile environment.
• Strong Linux system administration skills (RHEL, Ubuntu, etc.)
• Experience in patching and maintaining tools such as Jenkins, Github,Sonarqube Docker, Nexus, Jfrog Artifactory, Ansible,Teamcity,DeployIT and other DevOps systems.
• Hands-on experience with IaC tools (Terraform, Ansible) and CI/CD pipelines
• Experience with patching tools 
• Familiarity with monitoring tools (Kibana, ELK and other)
• Solid scripting knowledge (Bash,PowerShell)   Working experience in JIRA and Unity
• Knowledge of ITIL practices for change and release management
Knowledge of system security & compliance management.

We are seeking a DevOps Patch Management Engineer to take ownership of the patching lifecycle for critical DevOps tools and infrastructure across our physical servers, private cloud, and hybrid environments. The ideal candidate will have hands-on experience in patch Management, vulnerability remediation and DevOps toolchains. Key Responsibilities:
Patch Management
• Own and execute the end-to-end patching lifecycle for tools such as Jenkins, Github,Sonarqube Docker, Nexus, Jfrog Artifactory, Ansible,Teamcity,Jira, DeployIT and other DevOps systems.
• Maintain an inventory of tools, track versioning, and assess patch availability from vendors and the open-source community.
• Apply patches to both physical and virtual infrastructure with minimal downtime using automated and manual processes.
Security and Compliance
• Collaborate with the InfoSec team to assess CVEs and critical vulnerabilities.
• Implement security patches based on priority and threat severity.
• Maintain audit trails of all applied patches and ensure systems meet compliance standards.
Automation & Infrastructure as Code
• Handson experience in using tools like Ansible, Terraform, or shell scripting.
• Update golden images, AMIs, and IaC templates with patched versions.
• Ensure cloud VMs (AWS, Azure) are patched using native or third-party tools.
Testing and Validation
• Validate patches in pre-production/staging environments before rollout.
• Develop rollback and contingency plans in case of patch failures.
• Monitor systems post-patch using observability tools and logs to ensure service health.
Collaboration and Change Management
• Work closely with DevOps, Platform, and Application teams to plan patch windows.
• Submit and execute Change Requests (CRs) following ITIL processes.
• Provide regular reports to stakeholders on patch status and outcomes. Required Skills 
• experience in DevOps, Infrastructure, or System Administration in agile environment.
• Strong Linux system administration skills (RHEL, Ubuntu, etc.)
• Experience in patching and maintaining tools such as Jenkins, Github,Sonarqube Docker, Nexus, Jfrog Artifactory, Ansible,Teamcity,DeployIT and other DevOps systems.
• Hands-on experience with IaC tools (Terraform, Ansible) and CI/CD pipelines
• Experience with patching tools 
• Familiarity with monitoring tools (Kibana, ELK and other)
• Solid scripting knowledge (Bash,PowerShell)   Working experience in JIRA and Unity
• Knowledge of ITIL practices for change and release management
Knowledge of system security & compliance management.

We are committed to support accelerating our Group’s ESG strategy by implementing ESG principles in all our activities and policies. They are translated in our business activity (ESG assessment, reporting, project management or IT activities), our work environment and in our responsible practices for environment protection.

At Société Générale, we are convinced that people are drivers of change, and that the world of tomorrow will be shaped by all their initiatives, from the smallest to the most ambitious.
 Whether you’re joining us for a period of months, years or your entire career, together we can have a positive impact on the future. Creating, daring, innovating and taking action are part of our DNA. 
If you too want to be directly involved, grow in a stimulating and caring environment, feel useful on a daily basis and develop or strengthen your expertise, you will feel right at home with us!
 Still hesitating?
You should know that our employees can dedicate several days per year to solidarity actions during their working hours, including sponsoring people struggling with their orientation or professional integration, participating in the financial education of young apprentices and sharing their skills with charities. There are many ways to get involved.