Work Schedule
Standard (Mon-Fri)

Environmental Conditions
Office

Job Description

Cyber Security Engineer

Thermo Fisher Scientific Inc. is the world leader in serving science, with annual revenue of approximately $40 billion. Our Mission is to enable our customers to make the world healthier, cleaner and safer. Whether our customers are accelerating life sciences research, solving sophisticated analytical challenges, growing productivity in their laboratories, improving patient health through diagnostics or the development and manufacture of life-changing therapies, we are here to support them. Our distributed team of more than 100,000 colleagues delivers an outstanding combination of innovative technologies, purchasing convenience and pharmaceutical services through our industry-leading brands, including Thermo Scientific, Applied Biosystems, Invitrogen, Fisher Scientific, Unity Lab Services, Patheon and PPD.

• Secure our software development infrastructure: Identify risks and vulnerabilities in our processes. Based on these findings, design security features across multiple software layers, from embedded Linux to end-user applications on desktop PCs, and contribute to their implementation. Work with project management to incorporate them into the software development lifecycle.
• Establish a culture of security at Thermo Fisher: Design, document, and advocate for secure coding practices and processes across different teams and programming languages. Mentor team members and provide guidance according to these practices.
• Be impactful in code reviews and code quality: Contribute to code reviews with a focus on cyber security, such as backdoors and malicious code. Make extensive use of static code analysis tools to improve the quality of both legacy and new code. Actively participate in discussions about code quality, programming styles, error handling, and more.
• Own the assessment and hardening of our architectures: Coordinate cyber security assessments and penetration tests of new product developments and support these efforts with a hands-on mentality. Have a crucial role in assessing and crafting new software and network architectures through the use of secure network configurations and protocols.
• Stay ahead of the threat landscape: Keep actively aware of vulnerabilities of software components and how to address them in the development process. Research new technologies and latest developments in the field to stay ahead of others and expand your skills. Participate in the agile development process to support both existing products as well as next generation technology.

• University degree in computer science or in a related field, ideally with a security focus.
• 3+ years of industrial experience as a software security engineer, DevSecOps engineer, or a comparable position.
• Experience in at least one of the areas security risk assessment, vulnerability scanning, penetration testing, threat modeling, hardening of Linux and/or Windows is preferred.
• Experience in software development processes, lifecycle management, and related tools, such as Azure DevOps and git, is highly preferred.

• Profound knowledge of network technologies, configurations, and protocols. Experience implementing secure protocols using cryptographic primitives, such as TLS, is a plus.
• Hands-on experience in Linux and/or Windows security and thorough understanding of related operating system features (e.g., kernel hardening, permissions, namespaces).
• Demonstrated proficiency in at least one of the languages C++, C#, Rust. Comfortable using Python as a universal tool.
• Understanding of threat modeling and attack scenarios.
• Strong analytical thinking, can-do attitude, problem-solving mentality.
• Effective collaboration and open communication in international, diverse teams.
• Fluent in English.
• Traveling to Bremen, Germany will occasionally be required.

• Employment in a growing and innovative organization
• Outstanding career and development prospects
• Company pension scheme and other fringe benefits
• Exceptional company culture which stands for integrity, intensity, involvement, and innovation