Security Engineer
Senior analyst responsible for identifying, evaluating, and mitigating cybersecurity risks across Danaher’s global operations, leveraging frameworks like ISO 27001 and NIST, managing vulnerabilities, cloud security, SIEM monitoring, and incident response to protect critical life‑science and biotech assets.
Bring more to life.
At Danaher , our work saves lives. And each of us plays a part. Fueled by our culture of continuous improvement, we turn ideas into impact – innovating at the speed of life.
Our 60,000+ associates work across the globe at more than 15 unique businesses within life sciences, diagnostics, and biotechnology.
Are you ready to accelerate your potential and make a real difference? At Danaher , you can build an incredible career at a leading science and technology company, where we’re committed to hiring and developing from within. You’ll thrive in a culture of belonging where you and your unique viewpoint matter.
Learn about the Danaher Business System which makes everything possible.
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk activities across the vendor lifecycle and contributing to enterprise risk register operations across the Danaher operating companies. This role offers opportunities to work at the intersection of cyber risk, supply-chain integrity, and enterprise risk reporting across a global, multi-operating-company environment.
This position is part of the Corporate Information Security and will be located as Remote.
In this role, you will have the opportunity to:
Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake, inherent-risk tiering, security and privacy questionnaire administration, evidence collection and review, scoring, and final risk decisioning under the direction of the TPRM Lead
Review and provide cybersecurity input on third-party contracts (IS Terms & Conditions, Data Protection Addenda, Standard Contractual Clauses, AI-specific addenda), partnering with Legal, Privacy, and Procurement to land defensible positions and consistent redlines
Assess supply-chain and geopolitical risk (including country-of-origin and concentration concerns) and apply AI vendor risk frameworks (NIST AI RMF, ISO/IEC 42001) to AI-enabled products and services in the vendor portfolio
Serve as the connective tissue between central TPRM and the OpCo 3rd-Party Questionnaire & Response Coordinators, providing guidance on intake, scoring consistency, escalation paths, and Procurement engagement so vendor risk is handled the same way across the portfolio
Contribute to enterprise risk register operations and data quality, including consistent risk capture, cross-OpCo aggregation, and executive-grade reporting that informs the OpCo QBR and CISO updates
The essential requirements of the job include:
Strong working knowledge of third-party risk management frameworks and methodologies (e.g., Shared Assessments SIG, NIST SP 800-161, ISO/IEC 27036) and the underlying security and privacy regulatory landscape (GDPR, HIPAA, PCI DSS, SOX)
Demonstrated experience administering vendor security questionnaires, reviewi
Posted June 24, 2026