ISRM is looking for a Senior Security Software Engineer to join our ISRM Software & Data Engineering team to develop innovative software solutions supporting our Software Supply Chain Security program.
Senior Security Software Engineers are experienced professionals who design, develop, test, deploy, maintain, and enhance security software solutions. They possess in-depth knowledge and expertise in secure software development. The role involves interacting with internal and external teams to train them on products, working independently on projects, and collaborating with cross-functional teams to manage project priorities, deadlines, and deliverables. They also mentor and review code of junior engineers, fostering growth in technical skills. These engineers are creative problem solvers involved in improving the software development lifecycle and ensuring best practices.
About The Role
* Support ISRM Software Supply Chain Security program.
* Deliver end-to-end technical solutions for multiple products or complex projects.
* Solve complex problems with minimal guidance.
* Design, develop, and test software systems and applications for new features and enhancements.
* Write code according to established coding standards.
* Deliver high-quality software features on schedule.
* Develop solutions by analyzing information needs, conferring with users, studying system flow, data usage, and workflows, and following the software development lifecycle.
* Document and demonstrate solutions through documentation, flowcharts, diagrams, and clear code comments.
* Improve operations by conducting system analysis and recommending policy or procedural changes.
* Translate customer requirements into actionable tasks for the team.
* Communicate technical concepts clearly to stakeholders.
About You
You are a fit if your background includes :
Must Have
* 7+ years of experience in software development
* Experience with automation and scripting using Bash or PowerShell
* Strong understanding of CI / CD concepts and pipelines
* Knowledge of software supply chain security concepts
* Experience with GitHub, Workflows, and Actions
* Understanding of cryptography (digital signatures, encryption, hashing)
* Proficiency with AWS services such as IAM, SQS, S3, Lambda, CloudFormation, DynamoDB, ECS, EC2
* Understanding of container technologies like Docker
* Effective written and verbal communication skills
Nice to Have
* Bachelor's degree in Systems Engineering or similar
* Familiarity with software supply chain security frameworks like SLSA, in-toto
* Understanding of SBOM management processes and formats
* Knowledge of cryptography implementations like Sigstore
* Experience with SQL, Vue.js, HTML
* Experience with AWS CodeBuild, CodePipeline, RDS
* Experience with Infrastructure as Code tools like Terraform
* Experience with REST APIs and microservices
* Hands-on security engineering or application security experience
* Knowledge of SCRUM and Agile methodologies
What’s in it For You?
* Hybrid Work Model : 2-3 days / week in the office, flexible arrangements.
* Flexibility & Work-Life Balance : Supportive policies, work from anywhere options.
* Career Development : Continuous learning, Grow My Way programs.
* Benefits : Flexible vacation, mental health days, wellness resources, retirement plans, tuition reimbursement, and more.
* Making a Real-World Impact : Upholding justice, transparency, and truth globally.
About Us
Thomson Reuters provides trusted content and technology for legal, tax, compliance, government, and media professionals. With 26,000 employees worldwide, we foster a culture of inclusion, growth, and flexibility. We are committed to objectivity, fairness, and transparency, and proud to be an Equal Employment Opportunity Employer. We accommodate individuals with disabilities and religious beliefs. More info on accommodations and protecting against fraud can be found on our website.
#J-18808-Ljbffr