Engineer III, Software
Thermo Fisher · Hyderabad, India
Thermo Fisher · Hyderabad, India
Work Schedule First Shift (Days) Environmental Conditions Office Job Description Job Title: DevSecOps Engineer, TEM Semiconductor Location/Division Specific Information Hyderabad, IN - Analytical Instruments Group, Materials & Structural Analysis Division About Metrios: The Thermo Scientific™ Metrios™ is an advanced TEM imaging system designed to automate and optimize imaging workflows. With the Metrios™ AX, we introduced the world's first commercially available Scanning Transmission Electron Microscope (S/TEM) using machine learning for automated, high-quality data collection. Exclusively designed for the semiconductor industry, the Metrios series removes automation barriers, enabling labs to measure critical dimensions of semiconductor devices during development and manufacturing. How will you make an impact? We're seeking a DevSecOps Engineer to join our TEM Semiconductor value stream, focused on building and maintaining secure, scalable CI/CD pipelines and infrastructure supporting advanced S/TEM solutions for semiconductor metrology workflows. As part of an agile scrum team, you'll operate in a distributed environment, collaborate closely with teams in the Netherlands and Czech Republic in driving automation, integration, and secure software delivery. What will you do? You will be part of the TEM organization within Thermo Fisher Scientific’s Materials and Structural Analysis R&D organization, which is committed to bringing game-changing solutions to our customers to help them achieve success. You will be based in Hyderabad, IN, and report to the Functional Group Lead. As a DevSecOps Engineer, you will help engineering teams build and release secure, reliable software at speed. You will embed security practices into the software development lifecycle, automate security controls in CI/CD pipelines, and partner closely with developers, architects, infrastructure, and security teams to reduce risk without slowing delivery. • Design, implement, and improve secure CI/CD pipelines, reusable templates, and automated guardrails for application teams. • Develop scripts and automation to streamline security checks, environment validation, reporting, remediation workflows, and operational tasks. • Integrate security tools such as SAST, SCA, secrets scanning, container/image scanning, IaC scanning, and vulnerability management into development workflows. • Support package and dependency management practices, including secure artifact handling, dependency updates, vulnerability remediation, license awareness, and package repository governance. • Partner with development teams to review application designs, identify security risks early, and provide practical remediation guidance. • Drive vulnerability triage and remediation by prioritizing findings based on risk, exploitability, business impact, and compliance needs. • Strengthen cloud, container, Kubernetes, infrastructure-as-code, identity, secrets management, and deployment security practices. • Build dashboards, metrics, and reporting to track security posture, control a