Clario, a part of Thermo Fisher Scientific, is seeking a Cybersecurity Engineer with a strong application security foundation to help strengthen and scale our enterprise security capabilities. This is a high-impact engineering role where you will blend AppSec expertise with automation and development work — building tooling, KPI dashboards, and data-driven security solutions that benefit R&D, IT, and the broader organization. You will collaborate across Product and Engineering teams to embed security into the development lifecycle and help shape what modern security engineering looks like in an AI-driven environment. If you are passionate about application security, automation, and continuous learning, we encourage you to apply.
What We Offer
Competitive compensation
Provident fund and medical insurance
Engaging employee programs and local events
Modern office spaces and remote work flexibility
What You'll Be Doing
Partner with Product and Development teams to assess application architecture and perform penetration testing across web, mobile, and API environments
Document security vulnerabilities and clearly communicate findings; partner with teams to drive timely remediation
Support Security Impact Assessments in alignment with Clario's standard operating procedures and prioritization framework
Identify and evaluate risks across application code, infrastructure, and system configurations
Embed security practices within DevSecOps workflows, enabling teams to shift left without impacting development velocity
Build and maintain automation solutions to generate developer feedback, create remediation tasks, and trigger re-testing
Develop KPI dashboards and data solutions that surface security posture metrics across the organization
Prototype security tooling in collaboration with R&D and IT teams, incorporating AI/ML concepts where applicable
Integrate security tools through APIs to centralize vulnerability management and enable KPI reporting
Review internal and open-source code for vulnerabilities and provide actionable mitigation strategies
Promote secure coding standards through training, collaboration, and ongoing engagement with engineering teams
What We Look For
Bachelor's degree or equivalent experience in cybersecurity, computer science, or a related field
3–5 years of hands-on experience in application and network penetration testing (web, mobile, APIs)
Strong knowledge of application security frameworks such as OWASP ASVS and NIST, and secure SDLC practices
Experience with automated security testing tools including SAST, DAST, and SCA solutions
Proficiency with tools such as Burp Suite and vulnerability management platforms
Proven ability to perform security assessments and lead remediation discussions with development teams
Experience integrating security tools via APIs and implementing security automation
Proficiency in one or more scripting or programming languages such as Python, PowerShell, JavaScript, Java, or C#
Experience building dashboards, reporting tools, or data solutions for security use cases is a strong plus
Familiarity with tools and environments such as Kali Linux, Nmap, Swagger, Postman, and hybrid or cloud infrastructures
Exposure to AI/ML concepts in a security or engineering context is a plus
At Clario, a part of Thermo Fisher Scientific, our purpose is to transform lives by unlocking better evidence. It's a cause that unites and inspires us. It's why we come to work — and how we empower our people to make a positive impact every day. Whether you're advancing clinical science, building innovative technology, or supporting our global teams, your work helps bring life-changing therapies to patients faster.
The Department Head has the discretion to hire personnel with a combination of experience and education, which may vary from the above listed qualifications.
EEO Statement
Clario is an equal opportunity employer. Clario evaluates qualified applicants without regard to race, color, religion, gender, national origin, age, sexual orientation, gender identity or expression, protected veteran status, disability/handicap status, or any other legally protected characteristic.
