Cybersecurity Engineer

Clario, a part of Thermo Fisher Scientific, is seeking a Cybersecurity Engineer with a strong application security foundation to help strengthen and scale our enterprise security capabilities. This is a high-impact engineering role where you will blend AppSec expertise with automation and development work — building tooling, KPI dashboards, and data-driven security solutions that benefit R&D, IT, and the broader organization. You will collaborate across Product and Engineering teams to embed security into the development lifecycle and help shape what modern security engineering looks like in an AI-driven environment. If you are passionate about application security, automation, and continuous learning, we encourage you to apply.

What We Offer

• Competitive compensation

• Provident fund and medical insurance

• Engaging employee programs and local events

• Modern office spaces and remote work flexibility

What You'll Be Doing

• Partner with Product and Development teams to assess application architecture and perform penetration testing across web, mobile, and API environments

• Document security vulnerabilities and clearly communicate findings; partner with teams to drive timely remediation

• Support Security Impact Assessments in alignment with Clario's standard operating procedures and prioritization framework

• Identify and evaluate risks across application code, infrastructure, and system configurations

• Embed security practices within DevSecOps workflows, enabling teams to shift left without impacting development velocity

• Build and maintain automation solutions to generate developer feedback, create remediation tasks, and trigger re-testing

• Develop KPI dashboards and data solutions that surface security posture metrics across the organization

• Prototype security tooling in collaboration with R&D and IT teams, incorporating AI/ML concepts where applicable

• Integrate security tools through APIs to centralize vulnerability management and enable KPI reporting

• Review internal and open-source code for vulnerabilities and provide actionable mitigation strategies

• Promote secure coding standards through training, collaboration, and ongoing engagement with engineering teams

What We Look For

• Bachelor's degree or equivalent experience in cybersecurity, computer science, or a related field

• 3–5 years of hands-on experience in application and network penetration testing (web, mobile, APIs)

• Strong knowledge of application security frameworks such as OWASP ASVS and NIST, and secure SDLC practices

• Experience with automated security testing tools including SAST, DAST, and SCA solutions

• Proficiency with tools such as Burp Suite and vulnerability management platforms

• Proven ability to perform security assessments and lead remediation discussions with development teams

• Experience integrating security tools via APIs and implementing security automation

• Proficiency in one or more scripting or programming languages such as Python, PowerShell, JavaScript, Java, or C#

• Experience building dashboards, reporting tools, or data solutions for security use cases is a strong plus

• Familiarity with tools and environments such as Kali Linux, Nmap, Swagger, Postman, and hybrid or cloud infrastructures

• Exposure to AI/ML concepts in a security or engineering context is a plus

At Clario, a part of Thermo Fisher Scientific, our purpose is to transform lives by unlocking better evidence. It's a cause that unites and inspires us. It's why we come to work — and how we empower our people to make a positive impact every day. Whether you're advancing clinical science, building innovative technology, or supporting our global teams, your work helps bring life-changing therapies to patients faster.

The Department Head has the discretion to hire personnel with a combination of experience and education, which may vary from the above listed qualifications.

EEO Statement
Clario is an equal opportunity employer.  Clario evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status, or any other legally protected characteristic.