Security Manager - England, United Kingdom - Pearson

Description

Role: Security Manager

Division: Pearson Assessment Services

Location: London, Manchester, Oxford or Rotherham, UK

About Pearson: Our purpose at Pearson is to help everyone achieve their potential through learning. At the heart of this is a commitment to sustainable practices and meaningful, measurable outcomes. We are the world's leading learning company. Our ability to help people learn is built on our ability to grow with and adapt to a constantly evolving market. Our 20,000+ employees around the world in 70 countries in which we operate are dedicated to doing just that: creating the digital-first, accessible and sustainable learning resources that prepare tens of millions of people each year for a lifetime of learning

About Pearson Assessment Services The Pearson Assessment Services (PAS) team provides assessment services to the UK and international assessment markets, supporting government education departments with project management, operational delivery and technical solutions. We are part of Pearson School Qualifications which supports the curriculum, qualifications and assessments for students in the UK and globally, delivering exams to over 3.4 million students in over 80 countries annually and operating as a centre of excellence in qualifications and assessment

About the Job

We are seeking an experiences Security Manager to join our PAS team to deliver a complex assessment programme. The Security Manager will work with the Security Director to ensure that all contractual security deliverables and milestones are met. They will have a strong focus on accuracy, quality, attention to detail and working within a high-stakes, regulated environment. Strong written and verbal communication skills and experience in working with stakeholders, sub-contractors and clients are key components of this role. They must be comfortable writing and reviewing contractual and security documents, plans and strategies. Experience of operating within a regulated environment would be beneficial.

The role requires frequent interaction with business and technology partners and covers a broad range of platforms and technologies. The responsibilities include:

• Working with cross-functional project teams to ensure secure delivery of the change program across the complete project lifecycle and authorizing security sign-off.
• Providing input into divisional security strategy and roadmap planning.
• Supporting the secure development process (SDLC) working closely with Development teams.
• Keeping informed of new and emerging security threats & assess effectiveness of current controls to identify opportunities for program improvement.
• Assessing compliance with security policies to identify control gaps, develop remediation plans and determine residual risk.
• Supporting the incident management process and central security operations team as a domain expert.
• Identifying, collating, and managing risks. Ensuring that actions and risks are managed.
• Provide consultancy and guidance to business partners on all matters relating to Security.
• Provide security input into contract delivery.
• Develop and deliver information security awareness programs within the division.
• Provide guidance and leadership to junior team members.

Essential Skills & Experience

• Prior experience in Information Security in a similar customer or business facing role.
• Current security certifications such as CISSP, CISA, CRISC, SABSA, GIAC, CCSP, CCSK or equivalent.
• Excellent technical knowledge of cloud and on-premises services and infrastructure, including network, perimeter, application and end points.
• A solid understanding of the cyber security risks associated with various technologies and how to apply appropriate controls to mitigate these.
• Strong knowledge of IT and cyber security principles and experience with specific assurance frameworks such as ISO27001.
• Experience in risk assessment and management in the context of information security.
• Ability to work under pressure and to tight deadlines and manage own time effectively.
• Excellent oral, written communication and presentation skills.
• Confident at communicating to business and technology partners and senior management.
• Ability to solve problems using initiative and a methodical approach to tasks.
• Adaptable and flexible approach and able to prioritise workloads.
• Ability to collate and analyse information from various sources.

Desirable Skills & Experience

• Prior experience in delivery of government contracts in a regulated environment.
• Previous experience relevant to Security Architecture.
• Technical (non-cyber) experience or qualifications.

Job Location and Hours

The role is aligned to London, Manchester, Rotherham, or Oxford offices in the UK, working a 37.5 hour week.

All our roles are hybrid working; our current policy requires our team to visit their base office no more than once a week, and with the possibility of occasional business travel to other Pearson sites. Candidates must be a suitable commute from their base office as our office presence policy may change to require more frequent presence in 2024.

What to expect from Pearson

Did you know Pearson is one of the 10 most innovative education companies of 2022?

At Pearson, we add life to a lifetime of learning so everyone can realize the life they imagine. We do this by creating vibrant and enriching learning experiences designed for real-life impact. We are on a journey to be 100 percent digital to meet the changing needs of the global population by developing a new strategy with ambitious targets. To deliver on our strategic vision, we have five business divisions that are the foundation for the long-term growth of the company: Assessment & Qualifications, Virtual Learning, English Language Learning, Workforce Skills and Higher Education. Alongside these, we have our corporate divisions: Digital & Technology, Finance, Global Corporate Marketing & Communications, Human Resources, Legal, Strategy and Direct to Consumer. Learn more at We are Pearson.

We value the power of an inclusive culture and also a strong sense of belonging. We promote a culture where differences are embraced, opportunities are accessible, consideration and respect are the norm and all individuals are supported in reaching their full potential. Through our talent, we believe that diversity, equity and inclusion make us a more innovative and vibrant place to work. People are at the center, and we are committed to building a workplace where talent can learn, grow and thrive.

Pearson is an Affirmative Action and Equal Opportunity Employer and a member of E-Verify. We want a team that represents a variety of backgrounds, perspectives and skills. The more inclusive we are, the better our work will be. All employment decisions are based on qualifications, merit and business need. All qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, sexual orientation, gender identity, gender expression, age, national origin, protected veteran status, disability status or any other group protected by law. We strive for a workforce that reflects the diversity of our communities.

To learn more about Pearson's commitment to a diverse and inclusive workforce, navigate to: Diversity, Equity & Inclusion at Pearson.

If you are an individual with a disability and are unable or limited in your ability to use or access our career site as a result of your disability, you may request reasonable accommodations by emailing

Note that the information you provide will stay confidential and will be stored securely. It will not be seen by those involved in making decisions as part of the recruitment process.

Job: TECHNOLOGY

Organization: Assessment & Qualifications

Schedule: FULL\_TIME

Workplace Type: Hybrid

Req ID: 15841