Senior Cloud Security Engineer

Contract Type: 

Senior Cloud Security Engineer at Pearson


Applications are invited for all candidates to fill the Senior Cloud Security Engineer Job Opening at Pearson

Closing Date : 25/02/2022


Role purpose
The Cloud Security Engineer Is Responsible For The Security Posture Of The Infrastructure Supporting Our Cloud-based Applications, Including But Not Limited To,

  • Visibility and assessment of the security configuration of cloud services
  • Automation of security controls into CI/CD deployment pipelines
  • API driven centralization of security metrics and data
  • Actionable security data to improve security and reduce risk
  • Enabling self-service security controls with pre-defined minimal guardrails

As a direct report to Senior Manager of Security Service Engineering, you will have the following accountabilities:

  • Analyze security infrastructure controls balancing risk with benefits tailored to the overall Pearson security standards
  • Assess and understand the current and planned security posture for new cloud application deployments, providing recommendations for improvement and risk reduction
  • Recommend, design, and implement security solutions for cloud-based environments, including an understanding of the cloud provider’s built-in security controls and integration/augmentation of those controls into commercial security solutions residing in the cloud and/or in company data centers
  • Interface effectively with the infrastructure and operations team to implement security solutions and controls
  • Design technical security standards and specifications for Pearson and mechanisms for assessing compliance with them
  • Identify and execute on opportunities to automate security controls
  • Design and build controls to address security risks and events as identified
  • Design and implement security infrastructure solutions by integrating commercial and open-source solutions into Pearson’s security governance/architecture
  • Define clear, concise, and executable standard operating procedures and documentation for any implemented solutions for formal operational handoff
  • Recognize, adopt, and instill industry leading practices in security engineering throughout the organization
  • Provide subject matter expertise on, and conduct in-depth security reviews of new cloud services and software-as-a-service (SaaS) offerings as they are identified for use
  • Identify and propose process improvements and identify opportunities for new processes and procedures to reduce risk
  • Embrace a culture of continuous service improvement and service excellence
  • Stay up to date on security industry trends

Skills and Experience

  • 6 years+ in Information Security space
  • 4 years+ with AWS security services and controls at scale (50+ cloud accounts)
  • Experience securing server platforms, including both Linux and Windows
  • Strong experience with API integration of multiple solutions to provide an overall architecture, including proficiency in making in API calls and data manipulation using python
  • Technical knowledge of cloud orchestration/deployment solutions, such as terraform, CFTs, jenkins, chef, gitlab, bitbucket and how to integrate security control checks directly into the pipeline
  • Strong experience with managing security data, including structuring data into prioritized, actionable reports and summarization of data by teams and business units
  • A wide variety of experience with security controls, including but not limited to access, authorization, encryption, key management, event correlation, and auto-remediation
  • General knowledge on how to use and secure cloud resources, such as compute instances, container instances, serverless code, databases, load balancers, networking, logging, web application firewalls
  • Strong oral, written, and presentation abilities
  • Current understanding of Industry trends and emerging threats


  • Experience in implementing/configuring standard controls across , Google Cloud Platform (GCP), and Azure with centralized reporting
  • Well-rounded background in host, network, database, and infrastructure security
  • Experience implementing security controls in a self-service environment
  • Experience driving security awareness
  • Understanding of general application security, secure communication methodologies, and cloud-based network/firewall security
  • Professional IT Accreditations (CISSP, AWS Security, GCP Security, Azure Security) AWS


  • Internal-facing role with requirements to build strong relationships with other internal teams and security leadership
  • Work in a global security engineering team with minimal local supervision, taking personal initiative to complete assigned projects and resolve conflicts across departments to meet security objectives
  • Understanding of Agile project/product management
  • Strong negotiation skills to suggest, evaluate, implement, and/or support alternate methods and controls to achieve similar overall risk reduction

Out of Scope

  • Software Development – Engineers build solutions by configuring vendor supported tools and services and develop minimal code and scripts to integrate between components. Developers write software applications to build new components. This is an engineering role, not a developer role
  • Application security – the engineering team is focused on infrastructure security and SaaS security. Another team in Pearson handles application level security, with code analysis methodologies such as OWASP and SAST/DAST


Apply now : https://bit.ly/3IHbemD

Contact Employer

If you are interested in this job, feel free to submit your info to the employer.

Find More Computer Science Jobs
Find More Pearson Jobs

+ Other Jobs in Computer Science

+ Other Jobs by Pearson