Senior Security Analyst in United Kingdom
Role: Senior Information Security Analyst
Division: Assessment & Qualifications Delivery
Location: London, Manchester, Oxford or Rotherham, UK
Salary: £60 - 70k plus on target bonus of 8%
About Pearson
Our purpose: At Pearson we ‘add life to a lifetime of learning’ so everyone can realise the life they imagine. We do this by creating vibrant and enriching learning experiences designed for real-life impact.
Our company: Pearson was founded in 1844 and has been built on our ability to grow with and adapt to a constantly evolving market. Our 20,000+ employees are dedicated to creating high-quality, digital-first, accessible, and sustainable resources for lifelong learning.
Diversity: At Pearson we value the power of an inclusive culture and a strong sense of belonging. We promote a culture where differences are embraced as strengths and opportunities are equal and accessible.
Flexible working: Pearson is committed to hybrid working practices and has adopted flexible remote and virtual working. Where possible, our employees can choose to manage their attendance to the office more flexibly.
About UK Assessment & Qualifications: We are responsible for the delivery of nearly 4 million examination results per annum, including A-Level, GCSE, BTEC, and T-levels for students in UK and International centres. Our in-house systems process every learner from registration to marking and certification, in a highly regulated business.
About the Job
The Senior Security Analyst is responsible for supporting the Business Information Security Manager in delivering the Pearson UK Assessment & Qualification’s divisional information security program. The role requires frequent interaction with business and technology partners and covers a broad range of platforms and technologies. The responsibilities include:
1. Working with cross-functional project teams to ensure secure delivery of the change program across the complete project lifecycle and authorizing security sign-off.
2. Providing input into divisional security strategy and roadmap planning.
3. Supporting the secure development process (SDLC) working closely with Development teams.
4. Keeping informed of new and emerging security threats & assess effectiveness of current controls to identify opportunities for program improvement.
5. Assessing compliance with security policies to identify control gaps, develop remediation plans and determine residual risk.
6. Supporting the incident management process and central security operations team as a domain expert.
7. Identifying, collating, and managing risks. Ensuring that actions and risks are managed.
8. Providing consultancy and guidance to business partners on all matters relating to Security.
9. Providing security input into bids, contract renewals, and new business initiatives.
10. Developing and delivering information security awareness programs within the division.
11. Providing guidance and leadership to junior team members.
Minimum Requirements:
1. Prior experience in Information Security in a similar customer or business facing role.
2. Excellent technical knowledge of cloud and on-premises services and infrastructure, including network, perimeter, application, and endpoints.
3. A solid understanding of the cyber security risks associated with various technologies and how to apply appropriate controls to mitigate these.
4. Strong knowledge of IT and cyber security principles and experience with specific assurance frameworks such as ISO27001.
5. Experience in risk assessment and management in the context of information security.
6. Ability to work under pressure and to tight deadlines and manage own time effectively.
7. Confident at communicating to business and technology partners and senior management.
8. Ability to solve problems using initiative and a methodical approach to tasks.
9. Ability to collate and analyse information from various sources.
10. Technical (non-cyber) experience or qualifications.
11. Current security certifications such as CISSP, CISA, CRISC, SABSA, GIAC, CCSP, CCSK or equivalent.
Job Location and Hours
The role is aligned to our London, Manchester, Rotherham, or Oxford offices in the UK, working a 37.5 hour week. Our Rotherham office is located at Junction 1 of the M18. All our roles are hybrid working; our current policy requires our team to visit their base office no more than once a week, and with the possibility of occasional business travel to other Pearson sites. Candidates must be a suitable commute from their base office as our office presence policy may change to require more frequent presence in 2024. For this role, there is a requirement to provide occasional out of hours support during business critical periods.
Your benefits and rewards
Here at Pearson we offer a range of benefits, which include:
1. 25 Days annual leave (increasing by 1 day with every year of continuous service up to 30 days); annual leave trading, +/- 5 days
2. Annual Bonus
3. Private Pension plan scheme where we pay in double what you contribute, up to 16% depending on your age
4. Life, private medical, and dental care insurance options, plus free eye tests
5. Stock/share purchase options
6. Maternity, paternity, and family care leave as well as flexible working policies
7. An employee wellbeing assistance programme
8. Cycle to work program, volunteering days, gym membership concessions in selected office locations, along with retail and leisure discounts
What to expect from Pearson
Pearson is one of the 10 most innovative education companies of 2022. At Pearson, we add life to a lifetime of learning so everyone can realize the life they imagine. We do this by creating vibrant and enriching learning experiences designed for real-life impact. We are on a journey to be 100 percent digital to meet the changing needs of the global population by developing a new strategy with ambitious targets.
Pearson is an Affirmative Action and Equal Opportunity Employer and a member of E-Verify. We want a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better our work will be. All employment decisions are based on qualifications, merit, and business need. All qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, sexual orientation, gender identity, gender expression, age, national origin, protected veteran status, disability status or any other group protected by law.
#J-18808-Ljbffr