Skip to main content

Gen Digital

Security Controls Engineer

USA - Tempe, AZ (Remote)fulltimemidAdded 2 days ago

About this role

Gen seeks a Security Controls Engineer to design and operationalize vulnerability management programs that translate regulatory requirements into actionable security practices across DevOps and infrastructure teams. You'll own the end-to-end vulnerability lifecycle, integrate security scanning into CI/CD pipelines, coordinate cross-team implementation, and report metrics to leadership.

What you'll do

  • Translate regulatory and security framework requirements into prioritized technical control tasks for engineering teams
  • Manage vulnerability lifecycle from detection and triage through prioritization, remediation, and validation across infrastructure, cloud, applications, and third-party components
  • Integrate security scanning tools (SAST, DAST, SCA, container, IaC) into CI/CD pipelines with automated ticketing and SLA tracking
  • Coordinate implementation across multiple security domains and DevOps teams to ensure consistent adoption of controls
  • Develop dashboards and reports showing vulnerability metrics, SLA compliance, backlog trends, and remediation status for senior leadership
  • Partner with Senior PM and stakeholders to align scope, manage dependencies, and drive delivery milestones

What they're looking for

  • Vulnerability management and remediation lifecycle
  • CI/CD pipeline integration and DevSecOps practices
  • Regulatory compliance frameworks and audit support
  • Risk assessment and CVSS prioritization
  • Cross-functional project coordination and stakeholder management
  • Security scanning tools (SAST, DAST, SCA, container scanning)
  • Metrics development and reporting dashboards
  • Cloud and infrastructure security

Benefits

  • Flexible working options
  • Competitive pay
  • Well-being programs
  • Career growth opportunities
  • Collaborative team environment
  • Access to tools and support for impactful work
Apply on the employer's site

Opens the official application on the employer’s site. No login required.