Job was saved successfully.
Job was removed from Saved Jobs.

Job Details

Pearson Education

Information Security Engineer (Remote)

Law Enforcement and Security

Information Security

No

Bloomington, Minnesota, United States

We are the world’s leading learning company. Learning is the most powerful force for change in the world. More than 21,000 Pearson employees deliver our products and services in nearly 200 countries, all working towards a common purpose – to help everyone achieve their potential through learning. We do that by providing high quality, digital content and learning experiences, as well as assessments and qualifications that help people build their skills and grow with the world around them.

The shift to digital learning is undergoing a historic acceleration, creating new opportunities for people to advance their education and careers. As the world’s learning company, Pearson is playing a leading role in providing millions of learners around the world with content and innovative services to achieve their goals.

To this end, Pearson recently announced a new strategy, which you can read about on our website (https://plc.pearson.com/purpose/strategy/) . Our new strategy is relentlessly focused on consumer experiences. It puts learners at the heart of everything we do. The Pearson VUE business is an integral part of the strategy, and we are looking for top tech talent to help us drive the strategy.

Pearson VUE is an industry leader, driving innovative solutions that have helped millions of people gain new opportunities and achieve their career goals. Our Products and Technology team powers our business to deliver over 15 million exams annually at 20,000 test centers in 188 countries.

As a global business, we understand the critical link between technology and business strategy and integrate them closely to help people succeed in their lifetime of learning. From leadership to stable teams, we foster collaboration and teamwork towards building a collective “we” culture in everything.

Our Pearson VUE Technology Strategy team, led by Farzana Ashraf, Senior Vice President of Technology Strategy, is responsible for creating, developing, and driving our innovative technology solutions.

As an Information Security Engineer, you will be responsible for testing, designing, and implementing security controls and solutions to reduce a risk to Pearson VUE and its customers. This includes enterprise-level design work for system security, cloud security, identity and access management, data protection and many more.

The Information Security Engineer is a member of the Cyber Security team and is responsible for reviewing security designs, implementing technical security controls, and designing security solutions. They will help implement the information security design, enforce compliance with security policies and controls and function as a technical security expert on various projects. This is a mid to senior technical role.

The Information Security Engineer will be responsible for:

  • Security controls and best practices
  • Work closely with product and platform teams to implement security controls
  • Plan and monitor security measures
  • Work closely with functional-area architects, engineering, and security specialists throughout Pearson VUE to ensure adequate security solutions and controls are in place throughout all VUE systems, cloud systems and platforms to mitigate identified risks sufficiently, and to meet business objectives and regulatory requirements;
  • Provide security subject matter expertise and help project teams comply with enterprise and IT security policies, industry regulations, and best practices;
  • Assess and understand Pearson VUE current security posture and future architecture, providing a viable solution path to bridge the gap;
  • Assess and understand the current and planned security posture for platforms (e.g. servers, databases, web servers), providing recommendations for improvement and risk reduction;
  • Design security configuration standards, procedures, and guidelines for platforms such as baseline security configurations and hardening guides;
  • Communicate security risks and solutions to business partners and IT staff;
  • Coach developers on application security
  • Recognize, adopt, and instill industry leading practices in security engineering throughout the organization
  • Correctly balance security risk and product advancement
  • Secure DevOps/Secure SDLC
  • Identify and execute on opportunities to automate internal, cloud and platform security controls;
  • Provide subject matter expertise on, and conduct in-depth security reviews of software applications
  • Identify and propose process improvements and identify opportunities for new processes and procedures to reduce risk;
  • Incident Response
  • Support security incident response as required;
  • Research
  • Researches, designs, and advocates new technologies and security products that will support security requirements for the enterprise and its customers, business partners, and vendors;
  • Contributes to the development and maintenance of the information security strategy;
  • Evaluates and develops secure solutions, based on approved security architectures;
  • Security Tooling
  • Administer, configure, and support security tools
  • Assist with adoption of new/existing security tools as needed
  • Create/support integrations of security tools into central analytics system
  • Embrace a culture of continuous service improvement and service excellence;
  • Stay up to date on security industry trends.

Essential Skills:

  • Bachelor's degree in Computer Science, MIS, or equivalent technology discipline
  • Familiar with Continuous Integration/Continuous Deployment (CI/CD) processes and concepts
  • Ability to develop scripts in Python (or comparable language)
  • Strong experience with logging and alerting platforms, including SIEM integration;
  • Some proven ability in security process and organizational design.
  • Current understanding of Industry trends and emerging threats;
  • Knowledge of incident response methodologies and technologies.

Desirable Skills:

  • Experience working in agile environment highly preferred
  • Experience implementing security controls in a global enterprise IT environment;
  • Experience driving a culture of security awareness;
  • Professional IT Accreditation (CISSP, CISM, CCSA, CCSE, JNCIA, CCNA, CCIE Security).
  • Experience in creating design documents, performing code reviews
  • Desire to expand knowledge in many development languages, applications, and tools
  • Proven ability to quickly learn new processes and tools, business domains and technical applications
  • Ability to think technically and analytically
  • Ability to understand philosophy of architecture
  • Ability to assimilate information, distill knowledge, apply experience and provide solution alternatives and recommendations
  • Must have strong time management skills - including ability to work well under pressure, plan, set priorities, adapt to change, and meet established timelines
  • Must be a self-starter and detail-oriented
  • Must have a “positive” and energetic demeanor
  • Effective written and verbal communication skills
  • Creative problem-solving skills

Required Experience

  • Agile
  • Splunk
  • New Relic
  • Vulnerability assessments
  • Network architecture
  • Cloud Security

Preferred Experience

  • Incident management

\#LI-POST

Learning is the most powerful force for change in the world. More than 20,000 Pearson employees deliver our products and services in nearly 200 countries, all working towards a common purpose – to help everyone achieve their potential through learning. We do that by providing high quality, digital content and learning experiences, as well as assessments and qualifications that help people build their skills and grow with the world around them. We are the world’s leading learning company. Learn more at pearsonplc.com.

Pearson believes that wherever learning flourishes, so do people. We are committed to being an anti-racist company in everything we do. We value the power of an inclusive culture and a strong sense of belonging. We promote a culture where differences are embraced, opportunities are accessible, consideration and respect are the norm, and all individuals are supported in reaching their full potential. Through our talent, we believe that diversity, equity, and inclusion make us a more innovative and vibrant place to work. People are at the center, and we are committed to a sustainable environment and workplace where talent can learn, grow, and thrive.  

To learn more about Pearson’s commitment to a diverse and inclusive workforce, please click here: 

http://www.pearson.com/careers/diversity-and-inclusion.html

Pearson is an Affirmative Action and Equal Opportunity Employer and a member of E-Verify. We are committed to building a team that represents a variety of backgrounds, perspectives, and skills. The more inclusive we are, the better our work will be. All employment is decided based on qualifications, merit, and business need. All qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, sexual orientation, gender identity, gender expression, age, national origin, protected veteran status, disability status, or any other group protected by law.

Job: TECHNOLOGY

Organization: Assessments VUE

Schedule: FULL_TIME

Req ID: 762

Share