Gen Digital
Security Controls Engineer
USA - Tempe, AZ (Remote)fulltimemidAdded 2 days ago
About this role
Gen seeks a Security Controls Engineer to design and operationalize vulnerability management programs that translate regulatory requirements into actionable security practices across DevOps and infrastructure teams. You'll own the end-to-end vulnerability lifecycle, integrate security scanning into CI/CD pipelines, coordinate cross-team implementation, and report metrics to leadership.
What you'll do
- Translate regulatory and security framework requirements into prioritized technical control tasks for engineering teams
- Manage vulnerability lifecycle from detection and triage through prioritization, remediation, and validation across infrastructure, cloud, applications, and third-party components
- Integrate security scanning tools (SAST, DAST, SCA, container, IaC) into CI/CD pipelines with automated ticketing and SLA tracking
- Coordinate implementation across multiple security domains and DevOps teams to ensure consistent adoption of controls
- Develop dashboards and reports showing vulnerability metrics, SLA compliance, backlog trends, and remediation status for senior leadership
- Partner with Senior PM and stakeholders to align scope, manage dependencies, and drive delivery milestones
What they're looking for
- Vulnerability management and remediation lifecycle
- CI/CD pipeline integration and DevSecOps practices
- Regulatory compliance frameworks and audit support
- Risk assessment and CVSS prioritization
- Cross-functional project coordination and stakeholder management
- Security scanning tools (SAST, DAST, SCA, container scanning)
- Metrics development and reporting dashboards
- Cloud and infrastructure security
Benefits
- Flexible working options
- Competitive pay
- Well-being programs
- Career growth opportunities
- Collaborative team environment
- Access to tools and support for impactful work
Opens the official application on the employer’s site. No login required.