Skip to main content
TryApplyNow
Gen Digital logo

Security Controls Engineer - Vulnerability management

Gen Digital
Full TimeRemote
CZE - BrnoRemotePosted 10 weeks ago

Role Overview

Gen Digital is hiring a Security Controls Engineer - Vulnerability management. This is a full-time remote role, with the team based in CZE - Brno. Full responsibilities, required qualifications, and the apply link are listed in the description below.

Resume Keywords to Include

Make sure these keywords appear in your resume to improve ATS scoring

AWSGCPAzureJiraCI/CDDevOpsORTriage

Job description

ABOUT US

Gen is a global company dedicated to powering Digital Freedom through its trusted consumer brands including Norton, Avast, LifeLock, MoneyLion and more. Our combined heritage is rooted in financial empowerment and cyber safety for the first digital generations, and today we deliver award-winning cybersecurity, online privacy, identity protection and financial wellness solutions to nearly 500 million users in more than 150 countries.

Together, we share a collective passion and vision to protect consumers and help them grow, manage and secure their digital and financial lives. We’re always looking for smart, fearless and high-impact talent who see AI as a teammate – leveraging it to move faster and deliver meaningful results.

When you’re part of Gen, you’ll have the flexibility, tools and support to do your best work and grow your career – from flexible working options and time off to competitive pay, benefits and well-being programs.

At Gen, we are scrappy and relentlessly customer driven. We create room for healthy debate, experimentation and continuous learning, and we seek out people with different experiences, identities and ideas to join our team. You’ll work with people who back each other, respect each other and understand that our differences are a competitive advantage.

If this sounds like you, we’d love you to be part of Gen.

ABOUT THE ROLE

We are a team that brought you Norton, Avast, LifeLock, Avira, AVG, ReputationDefender, and CCleaner, dedicated to providing cybersecurity, privacy, and identity protection to over 500 million users in 150 countries. At Gen, we offer flexible working options, generous time off, and competitive benefits in a diverse and inclusive environment where every team member is valued and celebrated. If you are smart, fearless, and dedicated, join us to power Digital Freedom and help consumers take control of their digital lives.

We’re looking for an independent, driven security professional who thrives at the intersection of security, DevOps, and delivery. In this role, you will translate legal and security framework requirements into clear, actionable vulnerability management and remediation programs that operate across multiple Security and DevOps teams.

You’ll help design, operationalize, and continually improve our vulnerability management lifecycle, from identification and triage through prioritization and remediation to validation and reporting. This includes secure development practices within regulatory frameworks guiding vulnerability handling, coordinated disclosure, SBOM transparency, patch management, and post-deployment monitoring.

You will track, report, and escalate progress, risks, and dependencies, partnering closely with a Senior Project Manager and reporting to senior leadership.

If you enjoy making complex requirements practical, measurable, and delivered—this is for you.

ABOUT YOU:

Practical exposure or experience (typically 3–5 years) in vulnerability management, security engineering, or security program delivery in a cloud/software environment.

Demonstrated ability to work independently and drive outcomes across multiple teams.

Working understanding of regulatory security requirements and demonstrated experience with common frameworks/regulations implementation (e.g., ISO 27001, NIS2, SOC 2, GDPR, PCI DSS).

Strong translation skills: turn policy and control language into developer-ready user stories, acceptance criteria, remediation tasks, and runbooks.

Hands-on experience using work tracking tools (Jira, Azure DevOps, etc.) and crafting status reports/dashboards for leadership.

Strong communication skills: comfortable analyzing vulnerability trends, including ageing, patch latency, and systemic root causes, supported by concise writing ability, clear meeting facilitation, and demonstrated experience with stakeholder alignment.

Understanding of modern SDLC/DevOps practices (CI/CD, IaC, pipelines, change management).

Experience in cloud environments (AWS/Azure/GCP), including shared responsibility and guardrail patterns.

Wry sense of humor is a plus

WHAT’S NEXT:

Our interview process consists of two stages:

First round: You’ll meet Andrej Valentovič, the Hiring Manager for this role, to discuss your experience and the position in more detail.

Second round: You’ll have an online interview with his manager to further explore your fit and expectations.

About Gen Digital

Gen Digital logo

Gen Digital

lensa.com

Hires remote

73 other open roles at Gen Digital on TryApplyNow.

Frequently Asked Questions

How do I apply for the Security Controls Engineer - Vulnerability management position at Gen Digital?

Use the Apply button above to submit your application directly to Gen Digital. Most applications take less than 5 minutes if your resume and contact details are ready, and you'll be routed to the employer's official application system to finish.

Is the Security Controls Engineer - Vulnerability management role at Gen Digital remote?

Yes. This is a remote role. The team is based in CZE - Brno, but the position itself does not require relocating to that office.

What does a Security Controls Engineer - Vulnerability management at Gen Digital earn?

Gen Digital has not disclosed a salary range in this posting. Many employers share specifics later in the interview process; you can also ask during a recruiter screen if compensation transparency is important to you.

When was the Security Controls Engineer - Vulnerability management role at Gen Digital posted?

This role was posted on April 27, 2026 (73 days ago). It's still listed as actively hiring; we re-confirm openings against the source system multiple times per day and remove closed roles.

AI-powered job search

Get every job scored to your resume

Upload your resume and get jobs ranked, your resume tailored, and employee contacts found automatically.

Get started free

No credit card to start