IT Security Engineer III

Work Schedule

Standard (Mon-Fri)

Environmental Conditions

Office

Job Description

Join Thermo Fisher Scientific as a Vulnerability Management Remediation Coordinator and play a key role in executing enterprise vulnerability remediation efforts across a global environment. In this role, you will independently drive remediation workstreams, coordinate with cross-functional teams, and ensure vulnerabilities are addressed in alignment with defined SLAs and security standards.

You will function independently on a daily basis, managing assigned tasks to completion while supporting broader vulnerability management initiatives. This role requires strong organizational discipline, proactive communication, and the ability to identify opportunities for process improvement while delivering consistent, high-quality execution.

Key Responsibilities:

· Coordinate remediation of identified vulnerabilities across cloud, infrastructure, application, and endpoint teams.

· Independently manage daily remediation tracking activities and ensure tasks are completed on time and at appropriate quality.

· Drive assigned remediation projects and workstreams with minimal managerial guidance.

· Facilitate recurring vulnerability review meetings and manage follow-up actions without prompting.

· Track and report on vulnerability aging, SLA compliance, and risk trends using established KPIs.

· Escalate overdue or high-risk vulnerabilities appropriately.

· Develop business justifications for remediation initiatives and process improvements as needed.

· Identify process gaps and propose practical improvements to enhance remediation efficiency.

· Support automation efforts to streamline reporting and recurring tasks.

· Build strong cross-functional relationships with engineering, cloud, infrastructure, and product security teams.

· Mentor peers and lower bands as appropriate.

· Participate in interviews for lower bands and refer qualified candidates when appropriate.

Preferred Qualifications:

· Bachelor’s degree in Computer Science, Information Systems, Cybersecurity, or related field (or equivalent experience).

· 3+ years of professional experience in cybersecurity, IT operations, or risk management.

· Working knowledge of vulnerability management principles, including CVSS scoring, risk prioritization, and patch management processes.

· Hands-on experience with enterprise vulnerability management, DSPM, CNAPP and or CSPM platforms (e.g., Wiz, Tenable, Qualys, Rapid7).

· Experience using ticketing systems such as ServiceNow or Jira.

· Familiarity with cloud platforms (AWS, Azure, GCP).

· Strong organizational skills and ability to manage multiple remediation efforts simultaneously.

· Ability to communicate technical findings clearly and effectively.