AppSec Jobs
← Back to all jobs

Gen

Security Controls Engineer

Tempe, AZWebsite

Full details on LinkedIn

The complete job description, requirements, and application details are available on the original posting.

About Gen

Gen Digital Inc. is a multinational software company that focuses on cybersecurity, online privacy, identity protection, and financial wellness. With a dual headquarters in Tempe, Arizona, and Prague, Czech Republic, the company employs around 4,250 people and serves nearly 500 million users in over 150 countries. Gen Digital, which trades on NASDAQ under the ticker "GEN," reported $3.8 billion in annual revenue for FY24. The company offers a range of consumer products and services under trusted brands, including Norton, Avast, Avira, AVG, and LifeLock. Their portfolio features tools for scam detection, antivirus protection, system optimization, and financial wellness. Gen Digital is committed to empowering users to live safely and confidently online through innovative, AI-driven solutions and extensive cybersecurity expertise.

Industry

information technology & services

Employees

3,400

908 engineers

Revenue

$3.9B

Website

Visit →

Security at Gen

Compiled from public job postings, careers pages, and company materials. Data may not reflect current state — verify during interviews.

3 Intel Signals

Security Philosophy

  • Gen's AppSec philosophy is centered on a risk-based approach and developer enablement.
  • They prioritize integrating security directly into the CI/CD pipeline to allow for automated triage and remediation. - Stated AppSec Mission: "We value our commitment to information security."– Gen Vulnerability Reporting Page (https://www.gendigital.com/us/en/contact-us/report-a-potential-security-vulnerability/). - Developer Enablement: The team focuses on translating security requirements into "developer-ready tasks" and partnering with dev teams to support automated scanning. - Risk Philosophy: Submissions and findings are "evaluated based on their severity in the context of Gen's technical environment."– Gen Vulnerability Reporting Page.

Security Team

Gen operates a dedicated Application Security team that partners with Security Program Specialists to manage vulnerabilities. The team is responsible for supporting scanning tools within CI/CD pipelines. Specific leadership names and the exact reporting hierarchy (e.g., to CISO or CTO) are not publicly stated. Key Public-Facing Leaders: Information not publicly available. Active AppSec Job Postings (as of): - Security Program Specialist (Job ID: 55186-1) - Security Controls Engineer (Vulnerability Management)

Key Initiatives

Gen is currently focused on securing the AI lifecycle and automating vulnerability management. - Agent Trust Hub (ATH): Designed to provide "continuous protection across the full lifecycle of an AI agent." - AARTS (AI Agent Runtime Security): A framework defining 19 hook points across the agent lifecycle for security enforcement. - Sage: A runtime governance tool that "enforces safety locally... checking every action at the moment it is about to execute." - Vulnerability Management Lifecycle: An initiative to "drive end-to-end vulnerability management across infrastructure, cloud, applications, containers, and third-party components" with automated ticketing and SLAs.

Preparing for an AppSec interview?

Get the weekly briefing 2,000+ security pros trust.