Job Description

Our Product Security Business Enablement Analyst is a member of the Corporate Infrastructure & Security (CIS), Product Security team. Your part on the team includes evaluating and coordinating activities as a part of Thermo Fisher product development activities. Supporting the incorporation of security concepts and controls in the design of new and existing products and platforms.

How will you make an impact?


By enabling our product development and sustainment teams, you will help ensure that Thermo Fisher products are developed and tested against security standards, further helping our customers to make the world healthier, cleaner and safer.



The Product Security Analyst shares the responsibility for security associated with the company's Product Security program. They will work with all parts of the program, including research, testing and architecture, in bringing services to our Product R&D teams and program management.

• Work closely with key Senior Strategists and product development teams to ensure security is incorporated in all product offerings.
• Support efforts to instill security into all levels of the development process.
• Review and analyze existing processes to ensure consistent application of secure development lifecycle practices.
• Build working relationships with product development team members, to maintain and improve product and application security processes.
• Maintain product portfolios for relevant lines of business.
• Work with members across business units to help prioritize remediation of security vulnerabilities discovered during the security assessment process.
• Coordinate security assessment activities across teams.
• Ensure excellent consistency, documentation, and process across all programs.
• Collaborate with other groups (e.g., Risk Management, Internal Audit, HR, Legal, etc.) ensuring that compliance issues are routed to the appropriate teams for investigation and resolution.
• Travel up to 10%.

How will you get here?

• Bachelor's Degree in Information Assurance, Information Security, Management Information Systems, Risk Management, or Computer Science / equivalent field experience.
• 5+ years of related work experience with information or product security, secure software development, risk assessment, or vulnerability management

Knowledge, Skills, Abilities

• Process oriented with solid attention to detail and organizational skills, supporting project management in a constantly moving environment
• Strong customer service background, with outstanding verbal and written communication skills required
• Good interpersonal skills with a proven track record of explaining security concepts
• Consistent record of positive, professional interactions with diverse audiences, including executives, managers, and domain experts
• Familiarity of security controls and standards, including OWASP Top 10, CIS 20, NIST, ISO, IEC, and their application for to various environments
• Desire to work in an environment supporting continuous improvement across the program