Work Schedule
First Shift (Days)
Environmental Conditions
Office
Job Description
Job Title: DevSecOps Engineer, TEM Semiconductor
Location/Division Specific Information
Hyderabad, IN - Analytical Instruments Group, Materials & Structural Analysis Division
About Metrios: The Thermo Scientific™ Metrios™ is an advanced TEM imaging system designed to automate and optimize imaging workflows. With the Metrios™ AX, we introduced the world's first commercially available Scanning Transmission Electron Microscope (S/TEM) using machine learning for automated, high-quality data collection. Exclusively designed for the semiconductor industry, the Metrios series removes automation barriers, enabling labs to measure critical dimensions of semiconductor devices during development and manufacturing.
How will you make an impact?
We're seeking a DevSecOps Engineer to join our TEM Semiconductor value stream, focused on building and maintaining secure, scalable CI/CD pipelines and infrastructure supporting advanced S/TEM solutions for semiconductor metrology workflows. As part of an agile scrum team, you'll operate in a distributed environment, collaborate closely with teams in the Netherlands and Czech Republic in driving automation, integration, and secure software delivery.
You will be part of the TEM organization within Thermo Fisher Scientific’s Materials and Structural Analysis R&D organization, which is committed to bringing game-changing solutions to our customers to help them achieve success.
You will be based in Hyderabad, IN, and report to the Functional Group Lead.
As a DevSecOps Engineer, you will help engineering teams build and release secure, reliable software at speed. You will embed security practices into the software development lifecycle, automate security controls in CI/CD pipelines, and partner closely with developers, architects, infrastructure, and security teams to reduce risk without slowing delivery.
Design, implement, and improve secure CI/CD pipelines, reusable templates, and automated guardrails for application teams.
Develop scripts and automation to streamline security checks, environment validation, reporting, remediation workflows, and operational tasks.
Integrate security tools such as SAST, SCA, secrets scanning, container/image scanning, IaC scanning, and vulnerability management into development workflows.
Support package and dependency management practices, including secure artifact handling, dependency updates, vulnerability remediation, license awareness, and package repository governance.
Drive vulnerability triage and remediation by prioritizing findings based on risk, exploitability, business impact, and compliance needs.
Strengthen cloud, container, Kubernetes, infrastructure-as-code, identity, secrets management, and deployment security practices.
Build dashboards, metrics, and reporting to track security posture, control adoption, remediation progress, and pipeline health.
Contribute to security standards, secure coding practices, automation patterns, package management guidelines, and engineering documentation.
Support security reviews, audits, incident learnings, and root-cause analysis by turning findings into repeatable preventive controls.
Stay current with emerging security threats, tooling, and industry practices, and recommend improvements that make our software delivery safer and more efficient.
The ideal candidate enjoys working in a multi-disciplinary and multi-cultural environment to solve complex DevOps and infrastructure challenges. If you are passionate about automation, secure software delivery, and high-performance systems, this is an excellent opportunity. The successful candidate will possess the following combination of education and experience:
Bachelor’s or master’s degree in computer science, computer engineering, or a related field, with expertise in software development.
