DevSecOps Engineer

Dev Sec Ops  Engineer – IDBS

Join IDBS, a Danaher company, and help Bio Pharma organizations unlock AI/ML to improve patient lives. With 35 years of scientific informatics expertise, IDBS delivers scalable cloud software and services that meet the evolving needs of Bio Pharma, across R&D through manufacturing.

We are currently seeking an experienced and highly motivated Dev Sec Ops  Engineer to join our fast‑paced software engineering team and play a pivotal role in implementing secure software development practices.

• Identify and adopt industry security best practices.
• Ensure compliance with regulations.
• Help quantify the impacts of security risks.
• Offer guidance on the implementation of appropriate security controls.

This is an individual contributor role; you will lead from a position of influence, guiding team members in implementing security best practices and ensuring adherence to agreed processes and behaviours.

• Lead initiatives and drive improvements by collaborating with cross‑functional teams; coach team members on security best practices and act as a servant leader.
• Partner with Product Owners, Engineering Managers and other stakeholders to ensure appropriate refinement, prioritisation and execution of deliverables.
• Facilitate threat‑modelling sessions and provide guidance on implementing appropriate security controls.
• Drive continuous improvement by identifying and addressing process inefficiencies; manage and resolve impediments at both the team and programme level.
• Facilitate cross‑team coordination and align efforts toward strategic business goals.

• Expertise in AWS security best practices: identify gaps, deliver improvements, perform application security architecture reviews and provide technical leadership to teams, ensuring adherence to security‑by‑design, privacy‑by‑default principles and security roadmaps.
• Collaboration with external security partners: deliver test systems, manage engagements, review findings, analyse penetration‑testing reports, remove false positives and explain genuine findings to engineering teams for implementation.
• Facilitation of threat‑modelling sessions: identify credible threats and appropriate controls to minimise risk.
• Contribution to incident reviews: provide guidance on product security response, assist in developing remediation plans, implement fixes and draft communication of fixes or mitigations, including incident management.
• Application of regulations and adherence to standards: ensure compliance with GDPR, HIPAA, GxP, ISO 27001, ISO 27017, SOC 2, EU AI Act and Data Act.

• AWS Security Specialty.
• Databricks security and compliance configuration.
• Familiarity with Dev Ops practices and CI/CD pipelines in a highly regulated environment.

Flexible working arrangements: this position is eligible for part‑time work at the specified company location and part‑time work from home. Details will be provided during the interview process.

Join our winning team today and accelerate the real‑life impact of tomorrow’s science and technology.