Senior Security Engineer

Role Summary Division, Business or Function Cyber Security, Security Engineering Career Stage & Global Grade Senior Associate, GG11 Role Title: Senior Security Engineer Status New role or combination of existing roles If combination, what were the original grade/career stage Any confidentiality or regulatory constraints New Role. No specific confidentiality or regulatory constraints above those of a standard LSEG employee. Not an approved person or similar. Role Purpose Developing and automating cyber defence capabilities to protect the group from cyber threats which seek to impact the confidentiality, integrity and availability of group assets. Domain area is Network Security. Reports to Senior Manager, Network Security Direct reports No direct FTE reports. May lead contingents and vendor/partner resources in their deliveries. Key relationships & committees Collaborators include the wider security team including security architecture, cyber strategy business function, governance, risk and compliance, global security operations centre. Programme management. Entity level Business Information Security Officers (BISOs). Infrastructure & Cloud operations, engineering and architectures teams. Internal risk and audit functions. Architecture and corporate approval forums. External collaborators partners/vendors and industry schemes. Location / flexible working Bengaluru Location is subject to where a suitable candidate for the role can be found and in conjunction with the organisation structure and location strategy. Responsibilities Key responsibilities Design, build, and maintain automation pipelines to deploy and run network security controls including Secure Web Gateway (SWG), forward/reverse proxy, and Zero Trust Network Access (ZTNA) aligned with LSEG's cyber strategy. Identify and lead opportunities to automate manual security processes, using tools such as Terraform, Ansible, and internal GitLab CI/CD pipelines. Own and manage the controls relevant to this domain, ensuring they are effective, measurable, and continuously improved through automation and engineering maturity. Develop and maintain supporting artefacts including standard operating procedures, implementation patterns, and design documentation, ensuring regular review and lifecycle management. Deliver engineering initiatives and workstreams, supporting broader cyber and infrastructure programmes. Implement changes to control configurations and deployment methods as part of continuous improvement or as required to respond to new risks or operational requirements. Define and keep control metrics, evidence artefacts, and automation telemetry to support risk-based reporting and compliance with internal policies and external regulatory standards. Provide engineering-level support and technical ownership during incidents related to the secure access stack or automated controls. Maintain awareness of emerging technologies, API integrations, and standards that support scalable and resilient security automation. Engage with vendors and influence product direction to support LSEG's automation and control objectives. Supply to LSEG's broader cyber engineering and automation strategy, applying strong foundational knowledge of networking and cybersecurity principles. Leadership responsibilities This role is an individual contributor and leads no FTE headcount. Critical work Delivery of activities against of agreed cyber security strategies. Shapes project delivery with the project management team and the senior manager of the domain area. Delivery of key artefacts associated with the role, artefacts support evidencing and assurance activities. Ongoing control operation and effectiveness and evidencing of such. Reporting, development and management of agreed measures, key performance indicators and key risk indicators. Design, build, and deploy automated workflows and pipelines to support the delivery and lifecycle management of network security controls, aligned with LSEG's cyber automation strategy. Deliver technical artefacts that support control implementation, monitoring, and assurance, including Infrastructure-as-Code (IaC) templates, API integrations, runbooks, and automation playbooks. Ensure effective and measurable operation of automated controls (e.g., SWG, proxy, ZTNA), with the ability to evidence control performance, coverage, and compliance across platforms. Develop and maintain automation health checks, logging, and alerting to support operational resilience and incident readiness. Define and report on key automation metrics, including coverage, execution success, exception rates, and control drift, mapped to key performance and risk indicators. Impact As a group level function the role has impact across all parts of the business as it has responsibility for the relevant group security controls which seek to mitigate the risk and impact to the group from cyber-attacks. Impacts include financial, economic, regulatory, customer and brand. The role is key to addressing regulatory concerns for all of our regulated entities related to cyber security and cyber resilience. Critical metrics Timely and high-quality delivery of automation pipelines and infrastructure-as-code artefacts for network security control deployment and maintenance. Controls automated through this role are resilient, consistently effective, and do not require repeated manual remediation. Documentation, code artefacts, and implementation runbooks are accurate, version-controlled, and aligned to agreed design patterns and standards. Agreed control measures including critical metrics and KRIs are embedded into CI/CD pipelines and support continuous assurance and risk reporting. Technical / job functional knowledge Solid understanding of enterprise and service provider networking concepts (e.g., routing, switching, DNS, TLS, proxy chaining, IPSEC/GRE tunnels). In-depth experience with network security technologies, particularly Secure Web Gateway (SWG), forward/reverse proxy, and Zero Trust Network Access (ZTNA). Practical experience automating security control deployment and configuration using tools such as Terraform, Ansible, and scripting (Python, Bash, etc.). Familiarity with Git-based CI/CD platforms (preferably GitLab), including pipeline-as-code, testing automation, and secure deployment patterns. Broad understanding of cybersecurity principles, control frameworks (NIST, CIS), and threat actor TTPs, with the ability to design resilient, layered controls. Experience engineering observable, testable, and scalable security automation systems with appropriate alerting and error handling. Methodical problem-solving skills with an engineering attitude and a bias for simplification and automation. Preferred certifications include one or more of: CISSP, CSSLP, OSCP, CCNP, JNCIP, GIAC, or relevant certifications in infrastructure automation and cloud security. Business and sector expertise Direct experience working in cybersecurity engineering or DevSecOps roles within financial services or other regulated environments. Familiarity with industry regulations, risk management practices, and compliance standards relevant to the financial sector (e.g., DORA, SWIFT CSP). Strong appreciation of the risk and control landscape, with the ability to translate business objectives into secure, automated engineering solutions. Typically brings 8+ years of experience in technology roles, with at least 4 years in a security or infrastructure engineering capacity. Hands-on experience in designing and supporting network security automation across multiple technologies and platforms, including both cloud and hybrid environments. Leadership and management experience Experience in advocating for and influencing change in order to reach best outcome based on the needs of the organisation, stakeholders and from monitoring industry trends. Personal skills and capabilities Collaborating across the group to deliver successful sustainable outcomes for the group and its stakeholders. Takes ownership and commits to delivering sustainable outcomes and resolving problems. Demonstrates a bias for action. Strong track record of delivering results without compromising on quality. Critical thinker, takes in broad perspectives to assess and make decisions. Willingness and flexibility and to work across different technologies. Capability to quickly assimilate new concepts and technologies. Takes ownership of own career development and learning. Supports colleagues with less experience to help in their professional growth. Adapts messaging and presentation styles to the needs of a different audiences. Is measured and considered in challenging and high-pressure situations. Diversity & Inclusion People are at the heart of what we do and drive the success of our business. Our colleagues thrive personally and professionally through our shared values of Integrity, Partnership, Innovation and Excellence are at the core of our culture. We embrace diversity and actively seek to attract people with unique backgrounds and perspectives. We are always looking at ways to become more agile, so we meet the needs of our teams and customers. We believe that an inclusive collaborative workplace is pivotal to our success and supports the potential and growth of all colleagues at LSEG Proud to share LSEG in the India is Great Place to Work certified (Jun '25 - Jun '26). Learn more about life and purpose of our company directly from India colleagues' video: Bengaluru, India | Where We Work | LSEG Join us and be part of a team that values innovation, quality, and continuous improvement. If you're ready to take your career to the next level and make a significant impact, we'd love to hear from you. LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth. Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership , Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions. Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce. We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone's race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. Conforming with applicable law, we can reasonably accommodate applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs. You will be part of a collaborative and creative culture where we encourage new ideas. We are committed to sustainability across our global business and we are proud to partner with our customers to help them meet their sustainability objectives. Our charity, the LSEG Foundation provides charitable grants to community groups that help people access economic opportunities and build a secure future with financial independence . Colleagues can get involved through fundraising and volunteering. LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives. Please take a moment to read this privacy notice carefully, as it describes what personal information London Stock Exchange Group (LSEG) (we) may hold about you, what it's used for, and how it's obtained, your rights and how to contact us as a data subject . If you are submitting as a Recruitment Agency Partner, it is essential and your responsibility to ensure that candidates applying to LSEG are aware of this privacy notice.