Gen Digital
Security Controls Engineer - Vulnerability management
CZE - Brno (Remote)fulltimemidAdded 2 days ago
About this role
Gen seeks a Security Controls Engineer to establish and operationalize vulnerability management programs across security and DevOps teams. You'll translate regulatory requirements into actionable remediation workflows, oversee the full vulnerability lifecycle, and drive alignment across multiple stakeholders in a fast-paced cybersecurity environment.
What you'll do
- Design and operationalize vulnerability management lifecycle from identification through remediation, validation, and reporting
- Translate legal and security framework requirements into developer-ready tasks, acceptance criteria, and runbooks
- Track, report, and escalate progress, risks, and dependencies to senior leadership
- Establish secure development practices including coordinated disclosure, SBOM transparency, and patch management
- Analyze vulnerability trends and systemic root causes to improve remediation processes
- Partner with Security and DevOps teams to implement and improve vulnerability handling controls
What they're looking for
- Vulnerability management and security engineering
- Regulatory compliance frameworks (ISO 27001, NIS2, SOC 2, GDPR, PCI DSS)
- Work tracking tools (Jira, Azure DevOps)
- Cloud environments (AWS, Azure, GCP)
- SDLC/DevOps practices and CI/CD pipelines
- Stakeholder communication and cross-team coordination
- Security program delivery and metrics reporting
- Technical writing and documentation
Benefits
- Flexible working options
- Generous time off
- Competitive pay and benefits
- Well-being programs
- Continuous learning opportunities
- Diverse and inclusive work environment
Opens the official application on the employer’s site. No login required.