Senior Product Security Engineer

Thomson Reuters Corporation

Hybrid
Secure software development lifecycle implementation
Threat modeling and secure code reviews
Cloud environment security expertise
The role focuses on embedding continuous security into engineering processes through the Secure Software Development Lifecycle

Job Summary

  • The role focuses on embedding continuous security into engineering processes through the Secure Software Development Lifecycle.
  • Candidates will lead threat modeling sessions and secure code reviews, including for AI-based systems and products.
  • The company offers a hybrid work model with flexible policies designed to support work-life balance and career growth.

Matching Summary

The role focuses on embedding continuous security into engineering processes through the Secure Software Development Lifecycle.

Skills & Requirements

Must-have

  • Secure Software Development Lifecycle implementation
  • Threat modeling and secure code reviews
  • Cloud environment security expertise
  • Python, GoLang, or Java proficiency
  • SAST, SCA, DAST tool analysis

Nice-to-have

  • AI system and LLM security experience
  • Infrastructure as Code knowledge
  • Open-source security contributions
  • Conference presentation experience
  • Container orchestration security

Key Requirements

  • Bachelor's degree in computer science or equivalent
  • Experience with major cloud providers (AWS, Azure, GCP, Oracle)
  • Proficiency in Python, GoLang, or Java
  • Knowledge of OWASP, NIST, or CIS frameworks
  • Strong communication skills for cross-functional collaboration

Work Rights

Not specified

Tailored Resume

Cover Letter