Lead Information Security Analyst
About the role
This individual will have a strong technology background with hands-on experience partnering with product management, the CISO organization, and engineering functions. The candidate must be able to demonstrate relevant experience in a complex global organization and be capable of influencing across all levels of the organization. Strong coordination skills are essential due to the multiple engagements, both internal and external.
Responsibilities
- Understand legal products and correlate risks down to the technical engineering solutions
- Communicate with both C-suite executives on complex technical topics while also being able to engage with individual code developers on technical solutions
- Build effective relationships and communications with cross-functional teams, including other business units and other key stakeholder groups
- Collaborate with the security architects to discuss potential solutions supporting the business strategy
- Manage issues and track remediation in partnership with the business units and cybersecurity teams
- Coordinate customer security queries with the business units and the central customer trust team
- Lead the development of security go-to-market materials related to the Legal products
- Lead development of business unit scorecards to report risk metrics and drive change
- Facilitate engagements to identify projects that enable business development while ensuring the necessary security controls are in place
- Actively identify opportunities and long-range security & risk improvement strategies
- Serve as the main security champion for the Legal teams
Requirements
You’re a fit for the role of Lead Information Security Analyst if your background includes:
- 6+ years of experience in cybersecurity
- Previous experience in a Business Information Security Officer role or organization
- Strong verbal & written communication skills
- Experience across multiple security domains
- Experience with developing security standards and educational cross-functional training
- Knowledge of industry-wide information security frameworks, including ISO 27001/2, NIST
- Strong critical thinking and group facilitation skills
- Experience as a cross-functional team player with the ability to manage and coach others in a matrix structure, across time zones and national boundaries
Qualifications
Preferably, candidates should have:
- Master’s degree in Computer Science, Information Systems, Cybersecurity, or a related field
- CISSP, CISM, or equivalent certifications
Skills
The ideal candidate should possess:
- Excellent problem-solving and analytical skills
- Strong project management and organizational skills
- Ability to work independently and as part of a team
- Strong interpersonal and communication skills
- Ability to prioritize tasks and manage multiple projects simultaneously
- Experience with security frameworks and standards
- Knowledge of regulatory compliance requirements
Benefits
At Thomson Reuters, we offer:
- A competitive 401(k) plan with company match
- Flexible vacation, sick and safe paid time off
- Paid holidays (including two company mental health days off)
- Parental leave
- Sabbatical leave
- Market competitive health, dental, vision, disability, and life insurance programs
- Access to the Headspace app
- Tuition reimbursement
- Employee incentive programs
- Resources for mental, physical, and financial wellbeing
- Comprehensive social impact initiatives
Pay
$118,400 USD - $219,800 USD
Schedule
Hybrid Work Model: We’ve adopted a flexible hybrid working environment (2-3 days a week in the office depending on the role) for our office-based roles while delivering a seamless experience that is digitally and physically connected.