Upload Button Icon Add office photos
Premium Employer

i

This company page is being actively managed by Thomson Reuters Team. If you also belong to the team, you can get access from here

Thomson Reuters Verified Tick

Compare button icon Compare button icon Compare
filter salaries All Filters

86 Thomson Reuters Jobs

Senior Security Engineer

7-10 years

Bangalore / Bengaluru

Senior Security Engineer

Thomson Reuters

posted 3d ago

Job Role Insights

Flexible timing

Job Description

Information Security and Risk Management (ISRM) organization is seeking a Senior Security Engineer to join our growing Security Engineering team. This candidate will join a team that manages our Web Application Firewall (WAF) solutions and network IDS/IPS, with a particular focus on the implementation of Cloudflare & cloud-native WAF services across our diverse public cloud estate.

About the Role:

In this opportunity as a Senior security Engineer, you will:

  • Maintain enterprise best practice configurations & guidelines for WAF usage across TR
  • Develop & maintain baseline WAF security rulesets based on vendor & TR best practices
  • Support application team WAF onboarding with rule deployments, log enrichment & analysis, and rule recommendations based on analysis
  • Consult with Cyber Defense (SOC, CIRT, Threat Detection) stakeholders to assist with operationalizing WAF alerting to SOC & supporting runbook development
  • Effectively communicate technical concepts to business lines and stakeholders
  • Collaborate with other security and network engineers to support other network security related projects such as network IDS/IPS, network DLP, and SSL inspection
  • Collaborate with ISRM stakeholders such as security architecture, product security, incident response, and threat detection to ensure services are meeting stakeholder expectations
  • Consult with application teams on supporting development of rate limiting & bot management rules

About you:

You're a fit for the role of Senior security Engineer if your background includes:

  • Bachelors degree preferred and/or 7+ years of relevant professional Network Security / Network Engineering experience
  • Minimum of 5 years in network security with a strong focus on application layer security, with at least 2 years of working experience with WAF solutions
  • Solid understanding of OWASP Top 10 and experience testing the most common injection vulnerabilities: Cross-site Scripting (XSS), XML External Entities (XXE), SQL Injection (SQLi), OS Command Injection.
  • Understanding of Denial of Service (DoS) and Distributed DoS attacks at the Network, Transport and Application layer.
  • Strong scripting and automation skills using languages such as Python and additionally Powershell
  • Proven experience with maintaining enterprise WAF capabilities with providers such as Cloudflare, Mod Security or cloud native WAF services such as AWS WAF
  • In-depth knowledge of security principles, protocols, and best practices.
  • Proficient in analyzing large datasets using tools like Splunk, Datadog, or other SIEM/logging technologies
  • Experience with cloud platforms such as AWS, Azure, Google Cloud, and/or OCI.
  • Ability to work independently while driving projects to conclusion

Preferred Qualifications

  • Experience testing less common injection vulnerabilities: Server-side Request Forgery (SSRF), Server Side Template Injection (SSTI), Insecure Deserialization, LDAP Injection, NoSQL Injection, Expression Language Injection.
  • Experience with configuration management through git based source control
  • Experience with Infrastructure as Code (IaC) such as Terraform, CloudFormation, ARM or Bicep.
  • Experience with other network security technologies such as IDS/IPS, NextGen Firewalls, network DLP, and SSL inspection capabilities.
  • Understanding of network transport protocols and services (TCP/IP, syslog, DNS, VLANs, VRF, SFTP, SSH, PKI, etc)
  • Unix/Linux knowledge, can operate in a Linux environment

Employment Type: Full Time, Permanent

Read full job description

Prepare for Senior Security Engineer roles with real interview advice

Top Thomson Reuters Senior Security Engineer Interview Questions

Q1. Monolithic and microservice architecture difference and how will you migrate.
Q2. How IPSec works? and what are the different packets which are exchanged during runnel formation?
Q3. Which are the sectors most affected by the COVID-19 pandemic?
View all 32 questions

What people at Thomson Reuters are saying

Senior Security Engineer salary at Thomson Reuters

reported by 7 employees with 4-5 years exp.
₹17.9 L/yr - ₹29.6 L/yr
61% more than the average Senior Security Engineer Salary in India
View more details

What Thomson Reuters employees are saying about work life

based on 1.6k employees
72%
88%
77%
86%
Flexible timing
Monday to Friday
No travel
Day Shift
View more insights

Thomson Reuters Benefits

Submitted by Company
Hybrid Work Environment
Wellbeing and Mental Health
Flex My Way
Career Development and Growth
Submitted by Employees
Free Transport
Cafeteria
Health Insurance
Work From Home
Job Training
Soft Skill Training +6 more
View more benefits

Compare Thomson Reuters with

Bloomberg

3.4
Compare

S&P Global

4.1
Compare

FactSet

3.9
Compare

Morningstar

3.9
Compare

Moody's

4.1
Compare

Wolters Kluwer

3.9
Compare

Oracle

3.7
Compare

Amdocs

3.7
Compare

Automatic Data Processing (ADP)

4.0
Compare

24/7 Customer

3.5
Compare

NCR Voyix

3.9
Compare

Oracle Cerner

3.7
Compare

VMware Software

4.4
Compare

Adobe

3.9
Compare

Chetu

3.3
Compare

EbixCash Limited

4.0
Compare

R Systems International

3.3
Compare

Dassault Systemes

4.0
Compare

Salesforce

4.0
Compare

Temenos

3.2
Compare

Similar Jobs for you

Senior Security Engineer at Thomson Reuters International Services Pvt Ltd

7-10 Yrs

₹ 20-30 LPA

Network Security Engineer at Kyndryl

3-6 Yrs

₹ 9-18 LPA

Engineer III at Ticketmaster

Delhi/Ncr

5-10 Yrs

₹ 15-22.5 LPA

Senior Product Manager at Godaddy Operating Company, Llc

Bangalore / Bengaluru

4-9 Yrs

₹ 27.5-42.5 LPA

Network Security Engineer at World Wide Technology

5-8 Yrs

₹ 20-35 LPA

Cyber Security Specialist at Xtranet Technologies Private Limited

7-8 Yrs

₹ 25-30 LPA

Cyber Security Analyst at Xtranet Technologies Private Limited

7-8 Yrs

₹ 25-27 LPA

Security Engineer 2 at Meesho

5-7 Yrs

Not Disclosed

Senior Security Administrator at Corporate Infotech pvt ltd

7-10 Yrs

₹ 21-30 LPA

Security Consultant at Hyundai Autoever

Chennai

10-18 Yrs

₹ 10-20 LPA

Thomson Reuters Bangalore / Bengaluru Office Location

View all
Bangalore / Bengaluru, Karnataka Office
Thomson Reuters office locations Salarpuria Sattva Knowledge Court, 4th and 5th floor Office-II, Plot No. 9, Phase I, Doddanekundi Industrial Area K.R Puram Hobli, Bangalore 560048 India Bangalore / Bengaluru, Karnataka
560048

Senior Security Engineer

7-10 Yrs

Bangalore / Bengaluru

3d ago·via naukri.com

Specialist II Content Development & Design Judicial Cases (Open)

5-8 Yrs

Bangalore / Bengaluru

7hr ago·via naukri.com

Software Engineer, AI Platform (Open)

2-5 Yrs

Bangalore / Bengaluru

7hr ago·via naukri.com

Associate Architect - Enterprise AI Services

10-15 Yrs

Bangalore / Bengaluru

3d ago·via naukri.com

Practical Law Content Design & Development Senior Specialist (Open)

5-8 Yrs

Bangalore / Bengaluru

3d ago·via naukri.com

Senior Business Analyst

6-9 Yrs

Bangalore / Bengaluru

3d ago·via naukri.com

Software Engineer

3-6 Yrs

Bangalore / Bengaluru

3d ago·via naukri.com

QA Engineer

3-6 Yrs

Hyderabad / Secunderabad

3d ago·via naukri.com

Senior Analyst, Enterprise Strategy (Open)

6-8 Yrs

Bangalore / Bengaluru

3d ago·via naukri.com

Lead DevOps Engineer-AWS,GitHub Actions

7-9 Yrs

Hyderabad / Secunderabad

3d ago·via naukri.com
write
Share an Interview