Lead Information Security Analyst

Do you thrive at the intersection of cybersecurity and global business strategy?

At Thomson Reuters, we power the professionals who power the world and protecting that mission starts with a strong focus on security. As a global leader in information services, we are seeking an exceptional Lead Information Security Analyst to support our Legal Business within Thomson Reuters. This person is responsible for partnering with the business to define and implement an information security strategy that supports the business's goals and objectives.

This individual will have a strong technology background with hands‑on experience partnering with product management, the CISO organization, and engineering functions. The candidate must demonstrate relevant experience in a complex global organization and be capable of influencing across all levels of the organization. Strong coordination skills are essential due to the multiple engagements, both internal and external.

• Understand legal products and correlate risks down to the technical engineering solutions
• Communicate with both C‑suite executives on complex technical topics while also engaging with individual code developers on technical solutions
• Build effective relationships and communications with cross‑functional teams, including other business units and stakeholders
• Collaborate with the security architects to discuss potential solutions supporting the business strategy
• Manage issues and track remediation in partnership with the business units and cybersecurity teams
• Coordinate customer security queries with the business units and the central customer trust team
• Lead the development of security go‑to‑market materials related to the Legal products
• Lead development of business unit scorecards to report risk metrics and drive change
• Facilitate engagements to identify projects that enable business development while ensuring the necessary security controls are in place
• Actively identify opportunities and long‑range security & risk improvement strategies

• 6+ years of experience in cybersecurity
• Previous experience in a Business Information Security Officer role or organization
• Experience across multiple security domains
• Experience with developing security standards and educational cross‑functional training
• Knowledge of industry‑wide information security frameworks, including ISO 27001/2, NIST
• Strong critical thinking and group facilitation skills
• Ability to manage and coach others in a matrix structure, across time zones and national boundaries
• Strong coordination skills with internal and external stakeholders

• Hybrid Work Model: flexible hybrid working environment (2–3 days a week in the office where applicable)
• Flexibility & Work‑Life Balance: policies that support personal and professional responsibilities, including up to 8 weeks of work from anywhere per year
• Career Development and Growth: continuous learning programs and skill‑first approach to enable leadership in an AI‑enabled future
• Industry Competitive Benefits: comprehensive plans including flexible vacation, mental health days, retirement savings, tuition reimbursement, and wellness resources
• Social Impact: two paid volunteer days per year and involvement in pro‑bono consulting and ESG initiatives

Base compensation range for eligible U.S. locations: $118,400 USD – $219,800 USD.

Base pay is positioned within the range based on knowledge, skills, and experience, as well as internal equity. It is part of a comprehensive Total Reward program that includes benefits and well‑being programs.

This role may also be eligible for an annual bonus based on enterprise and individual performance.

Thomson Reuters makes reasonable accommodations for applicants with disabilities, including veterans with disabilities, and for sincerely held religious beliefs in accordance with applicable law. If you reside in the United States and require an accommodation in the recruiting process, you may contact our Human Resources Department  Disability accommodations may include a sign language interpreter, accessible interview rooms, assistive technology, or other relevant accommodations.