Skip to main contentA logo with &quat;the muse&quat; in dark blue text.

Senior Product Security Engineer

AT Thermo Fisher Scientific
Thermo Fisher Scientific

Senior Product Security Engineer

Tijuana, Mexico

Work Schedule
Standard (Mon-Fri)

Environmental Conditions
Office

Job Description

About Thermo Fisher Scientific

Thermo Fisher Scientific Inc. (NYSE: TMO) is the world leader in serving science, with annual revenue of approximately $40 billion. Our Mission is to enable our customers to make the world healthier, cleaner and safer. Whether our customers are accelerating life sciences research, solving sophisticated analytical challenges, improving patient diagnostics and therapies or growing efficiency in their laboratories, we are here to support them. Our distributed team of more than 100,000 colleagues delivers an outstanding combination of innovative technologies, purchasing convenience and pharmaceutical services through our industry-leading brands, including Thermo Scientific, Applied Biosystems, Invitrogen, Fisher Scientific, Unity Lab Services, Patheon and PPD.

Want more jobs like this?

Get jobs in Tijuana, Mexico delivered to your inbox every week.

By signing up, you agree to our Terms of Service & Privacy Policy.


What we do

The Product Security team is a group of Builders, Breakers, and Fixers that specialize in collaborative security engagement. The goal of the Software Security (DevSecOps) team is to provide self-service security and to that end, the team is focused on enabling the 3 Ways of DevOps: Fast Flow, Rapid Feedback, and Continuous Learning. As the business moves through its digital transformation, the DevSecOps team is a vanguard for promoting and enabling DevOps practices across the organization. We aim to integrate and enhance current processes, remove bottlenecks, and enable safe experimentation whenever possible.

Job Description

We are seeking a highly skilled and experienced Software Security Engineer to join our Product Security team. The successful candidate will be responsible for ensuring the security of Software Development Life Cycle (SDLC) practices across the organization, from design to deployment.

How will you make an impact?

Senior Software Security Engineer engages with product development teams across the organization and acts as a domain expert for providing mentorship related to secure software development practices.

Key responsibilities

As a software security engineer on the Product Security team, you will be responsible for promoting and implementing secure software development lifecycle (SDLC) practices, reviewing software security architecture and code, developing, and maintaining security tools and automation, and mentoring and training other engineers on security topics. You will also collaborate with product teams, security management, and other collaborators to identify and drive process improvement initiatives and security metrics.

  • Work closely with development teams to identify and mitigate security risks in our software and systems.
  • Implement and maintain security tools and processes to ensure the security of our software development lifecycle.
  • Conduct security assessments and code reviews to identify vulnerabilities and ensure compliance with security standards.
  • Develop and maintain secure coding guidelines and provide training to development teams.
  • Collaborate with multi-functional teams to ensure the timely and successful delivery of secure software.
  • Promote and implement Secure SDLC practices based on compliance requirements.
  • Review software security practices and architecture as requested by product teams.
  • Mentor and train less experienced team members on technical topics.
  • Develop solutions to automate processes and workflows.
  • Develop and promote automated scanning tools and practices throughout the organization.
  • Identify and drive process improvement initiatives to increase our productivity and/or reduce costs.
  • Lead security tool evaluations and Proof of Concepts to make defensible recommendations on tool acquisition, integration and maintenance plans.
  • Create performance indicators and reporting from aggregated sources to assist Software Security Management with remediation prioritization within the company.
  • Contribute to the team's strategy and long-term roadmap.

How will you get here?

Education

  • Bachelor's or Master's degree in Engineering/Computer Science or equivalent work experience.

Experience

We are looking for candidates with 7+ years of experience in software development with a focus on security, including:

  • Experience writing and/or testing software applications; experience with automation.
  • Experience working with container technologies and cloud providers such as AWS.
  • Familiarity with one or more of the following languages: C/C++, Java, .NET, JavaScript, Python, Bash, PowerShell and/or Ruby.
  • Familiarity with one or more development tools such as: Eclipse, Visual Studio, Visual Studio Code, IntelliJ, Git, Jira, Jenkins, and/or Docker.
  • Strong attention to detail, with interpersonal and time management skills.
  • The ability to communicate effectively and professionally with a diverse group of people, including Vice Presidents, Directors, Managers, Developers, Domain Experts.

Knowledge, Skills, Abilities

In addition to the experience requirements, we are looking for candidates with the following:

  • Self-motivated person with an agile approach.
  • A track record of performing application security assessments either via Bug Bounty programs or capture the flag events.
  • Experience with mobile application security a plus.
  • A history of involvement in general information security practice and/or the community.
  • Proficient written and verbal communication in the English language.

Thermo Fisher Scientific is an EEO/Affirmative Action Employer and does not discriminate on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability or any other legally protected status.

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Client-provided location(s): Tijuana, Baja California, Mexico
Job ID: ThermoFisher-R-01268552-4
Employment Type: Full Time

Perks and Benefits

  • Health and Wellness

    • Health Insurance
    • Dental Insurance
    • Vision Insurance
    • Life Insurance
    • Short-Term Disability
    • Long-Term Disability
    • FSA
    • HSA
    • HSA With Employer Contribution
    • Mental Health Benefits
    • Fitness Subsidies
  • Parental Benefits

    • Adoption Leave
    • Birth Parent or Maternity Leave
    • Non-Birth Parent or Paternity Leave
    • Fertility Benefits
    • Adoption Assistance Program
    • Family Support Resources
  • Work Flexibility

    • Flexible Work Hours
    • Hybrid Work Opportunities
    • Remote Work Opportunities
  • Office Life and Perks

    • Commuter Benefits Program
    • On-Site Cafeteria
  • Vacation and Time Off

    • Paid Vacation
    • Paid Holidays
    • Volunteer Time Off
  • Financial and Retirement

    • 401(K) With Company Matching
    • Stock Purchase Program
    • Financial Counseling
    • Performance Bonus
  • Professional Development

    • Tuition Reimbursement
    • Access to Online Courses
    • Internship Program
    • Mentor Program
  • Diversity and Inclusion

    • Employee Resource Groups (ERG)
    • Diversity, Equity, and Inclusion Program