Senior Penetration Tester

Thomson Reuters is seeking a Senior Penetration Tester to conduct internal penetration testing activities across both application and infrastructure layers for its product portfolio. This individual will be recognized in the area of information security, have expertise in offensive security testing, and demonstrate an ability to work across a geographically dispersed team. Our target candidate will demonstrate an ability to drive high-quality individual efforts as well as work on improving the overarching maturity of the current program. About The Role: Scope and deliver penetration tests on both business critical applications and infrastructure to support the organization’s information security risk management program Understand and clearly communicate potential vulnerabilities and their associated remediation steps and/or mitigating controls Understand and incorporate industry threat trends, customer needs, and business risk tolerance whilst conduct penetration tests and prioritizing vulnerability remediation efforts Conduct quality assurance and technical reviews of deliverables, results, and internal documentation Proficient at scripting and automating exploits in language of choice Possess in-depth knowledge of network and security technologies (e.g., TCP / IP, IDS / IPS, and WAFs) Participate in threat modeling activities in partnership with the product security team and use the output of these sessions to influence and inform the scope of future testing services Inspire change across the enterprise to drive a more responsible and accountable culture for improving the security posture Deliver against the transformation strategy that defines the people, process, and technology capabilities needed to improve TR’s identify and protect functions within the broader NIST Framework(s) Prepare strategic updates and vision documents, briefings, and reports, and demonstrates excellent communication skills and executive presence in presentations to TR executives, customers, and partners About You: Behaviors and Ways of Working: Be a change agent, driving continuous improvement, excellence and automation Comfortable operating in a dynamic, fast-changing, and innovative environment A working style that is collaborative, energetic, and results-oriented Demonstrates the ability to employ judgment and experience to make rapid, complex decisions Ability to influence others, earn followership, and drive consensus across different stakeholder groups Exceptional critical thinking skills that extend beyond the typical information security subject matter The ability to flex styles to work well with a range of personalities from extremely technical team members to non-technical business leaders Education and Experience: Experience leading critical operational functions within large, complex commercial environments Bachelor of Science in Information Security or related degree preferred; Industry Certs A minimum of 3 years of experience working across technology teams in a global organization Preferred Certifications: OSCP, OSWA, GWAPT, OSWE, GXPN, OSCE, OSEP, GCPN, CREST What’s in it For You? You will join our inclusive culture of world-class talent, where we are committed to your personal and professional growth through: COVID-19 Response: Currently, as part of our COVID-19 a majority of our employees are working remotely and following local COVID-19 bylaws and guidelines, with the majority of our offices planning to embrace a hybrid work environment consisting of in-office and remote work in 2022. Culture: Globally recognized and award-winning reputation for equality, diversity and inclusion, flexibility, work-life balance, and more Wellbeing: Comprehensive benefit plans; flexible and supportive benefits for work-life balance: work form anywhere (in country); caregiver paid time off, bereavement leave; company-wide Mental Health Day Off; Headspace app subscription; retirement, savings, tuition reimbursement, and employee incentive programs; resources for mental, physical, and financial wellbeing Learning & Development: LinkedIn Learning access; internal Talent Marketplace with opportunities to work on projects cross-company; Ten Thousand Coffees Thomson Reuters café networking Social Impact: Eight employee-driven Business Resource Groups; two paid volunteer days annually; Environmental, Social and Governance (ESG) initiatives for local and global impact Purpose Driven Work: We have a superpower that we’ve never talked about with as much pride as we should – we are one of the only companies on the planet that helps its customers pursue justice, truth and transparency. Together, with the professionals and institutions we serve, we help uphold the rule of law, turn the wheels of commerce, catch bad actors, report the facts, and provide trusted, unbiased information to people all over the world. #LI-JF1 Do you want to be part of a team helping re-invent the way knowledge professionals work? How about a team that works every day to create a more transparent, just and inclusive future? At Thomson Reuters, we’ve been doing just that for almost 160 years. Our industry-leading products and services include highly specialized information-enabled software and tools for legal, tax, accounting and compliance professionals combined with the world’s most global news services – Reuters. We help these professionals do their jobs better, creating more time for them to focus on the things that matter most: advising, advocating, negotiating, governing and informing. We are powered by the talents of 25,000 employees across more than 75 countries, where everyone has a chance to contribute and grow professionally in flexible work environments that celebrate diversity and inclusion. At a time when objectivity, accuracy, fairness and transparency are under attack, we consider it our duty to pursue them. Sound exciting? Join us and help shape the industries that move society forward. Accessibility As a global business, we rely on diversity of culture and thought to deliver on our goals. To ensure we can do that, we seek talented, qualified employees in all our operations around the world regardless of race, color, sex/gender, including pregnancy, gender identity and expression, national origin, religion, sexual orientation, disability, age, marital status, citizen status, veteran status, or any other protected classification under applicable law. Thomson Reuters is proud to be an Equal Employment Opportunity/Affirmative Action Employer providing a drug-free workplace. We also make reasonable accommodations for qualified individuals with disabilities and for sincerely held religious beliefs in accordance with applicable law. Protect yourself from fraudulent job postings click here to know more. More information about Thomson Reuters can be found on https://thomsonreuters.com. Thomson Reuters provides professionals with the intelligence, technology and human expertise they need to find trusted answers. We enable professionals in the legal, tax and accounting, and media markets to make the decisions that matter most, all powered by the world's most trusted news organization.