DevSecOps Engineer

ABOUT IDBS

IDBS helps BioPharma organizations unlock the potential of AI/ML to improve the lives of patients. As a trusted long-term partner to 80% of the top 20 global BioPharma companies, IDBS delivers powerful cloud software and services specifically designed to meet the evolving needs of the BioPharma sector.

IDBS, a Danaher company, leverages 35 years of scientific informatics expertise to help organizations design, execute and orchestrate processes, manage, contextualize and structure data and gain valuable insights throughout the product lifecycle, from R&D through manufacturing. Known for its signature IDBS E-WorkBook software, IDBS has extended its flexible, scalable solutions to the IDBS Polar and PIMS cloud platforms to help scientists make smarter decisions with assured confidence in both GxP and non-GxP environments.

Do you want to work in a dynamic, fast paced, high performing, safe to fail and fun environment which is founded on trust, empowerment and autonomy?Are you passionate about technology and do you enjoy acting as an agent for change, bringing people together to design and deliver world-class, scalable and secure solutions? If so, we’d like to hear from you.

We are currently seeking an experienced and highly motivated DevSecOps Engineer to join our fast-paced software engineering team and play a pivotal role in implementing secure software development practices.

In this role, you will work with our value stream agile teams and the wider business to:

• Identify and adopt industry security best practices.
• Ensure compliance with regulations.
• Help quantify the impacts of security risks
• Offer guidance on the implementation of appropriate security controls

While this is an individual contributor role, you will lead from a position of influence, helping to guide team members in implementing security best practices and ensuring they follow agreed processes and behaviours.

Building strong relationships across the organisation to promote secure development practices, you will provide coaching or mentoring where required.

You will be committed to continuous improvement, remaining flexible and open to opportunities to guide teams in improving secure development practices across IDBS.

What you will be doing:

• Lead initiatives and drive improvements by collaborating with cross-functional teams, demonstrating the ability to work independently with minimal supervision. Coach team members on security best practices and be a servant leader, providing support while challenging teams to excel.

• Partner with Product Owners, Engineering Managers and other stakeholders to ensure appropriate refinement, prioritization and execution of deliverables.

• Facilitate threat modelling sessions and provide guidance on implementing appropriate security controls.

• Drive continuous improvement by identifying and addressing process inefficiencies. Identify, manage and resolve impediments, at both the team and program level.

• Facilitate cross-team coordination, aligning efforts toward strategic business goals.

Here is what success in this role looks like:

• Expertise in AWS security best practices: Identify gaps and deliver improvements. Perform application security architecture reviews and provide technical leadership to teams, ensuring adherence to security by design, privacy by default principles, and security roadmaps. Communicate with Customer IT teams, articulating the security controls present in IDBS SaaS products.
• Collaboration with external security partners: Deliver test systems, manage engagements, and review findings. Analyse penetration testing report findings, identify and remove false positives, and explain genuine findings to engineering teams for implementation.
• Facilitation of threat modelling sessions: Identify credible threats and appropriate controls to minimize risk.
• Contribution to incident reviews: Provide guidance on product security response, assist in developing remediation plans, implement fixes, and draft communication of fixes or mitigations, including incident management.
• Application of regulations and adherence to standards: Ensure compliance with GDPR , HIPAA, GxP, ISO 27001, ISO 27017, SOC 2, EU AI Act and Data Act.

It would be a plus if you also possess previous experience in:

• AWS Security Specialty.
• Databricks security and compliance configuration.
• Familiarity with DevOps practices and CI/CD pipelines, working within the guidelines and policies of a highly regulated environment.

At IDBS we believe in designing a better, more sustainable workforce. We recognize the benefits of flexible working arrangements for eligible roles and are committed to providing enriching careers, no matter the work arrangement. This position is eligible for a flexible work arrangement in which you can work part-time at the Company location identified above and part-time remotely from your home. Additional information about this work arrangement will be provided by your interview team. Explore the flexibility and challenge that working for IDBS can provide.

Join our winning team today. Together, we’ll accelerate the real-life impact of tomorrow’s science and technology. We partner with customers across the globe to help them solve their most complex challenges, architecting solutions that bring the power of science to life.

For more information, visit www.danaher.com.

At Danaher, we value diversity and the existence of similarities and differences, both visible and not, found in our workforce, workplace and throughout the markets we serve. Our associates, customers and shareholders contribute unique and different perspectives as a result of these diverse attributes.