Location : Madrid, Spain (Remote or Hybrid)
About Pearson : Our purpose : At Pearson, we ‘add life to a lifetime of learning’ so everyone can realize the life they imagine. We do this by creating vibrant and enriching learning experiences designed for real-life impact.
About English Language Learning (ELL) : We aspire to become the world's leading destination to learn and improve English language skills.
About the role : Are you passionate about planning, implementing, upgrading, or monitoring security measures for the protection of company systems? We are excited to offer a great opportunity to join our team as a Cloud Security Engineer. As part of the cloud security team, you will be responsible for maintaining and enhancing security across our environments. The main goal of this role is to reduce risk while enabling the business to operate quickly, safely, and efficiently.
Key Responsibilities :
- Be well-versed in Cloud Security standards, SDLC, and DevSecOps processes and tools.
- Serve as a security subject matter expert for applications and processes.
- Act as the main contact for the Security Central team.
- Collaborate with security leadership, engineering, and compliance teams to execute security strategies.
- Evaluate new technologies and tools impacting organization security.
- Explore new threats, attack methods, and techniques.
- Assess current cloud security and propose improvements across Pearson infrastructure.
- Assist teams in resolving security issues following business requirements and best practices.
- Promote security and privacy policies across ELL products.
- Provide security training and guidance to developer teams when needed.
- Review applications and software for security improvements.
- Monitor system activities, logs, and alerts.
- Work with the CISO organization to develop and refine security best practices.
- Maintain documentation of security controls.
- Conduct vulnerability assessments and evaluations.
- Guide and oversee vulnerability remediation.
- Support DevOps with security oversight and design guidance.
- Integrate security into the software development lifecycle (SDLC).
- Identify application logs for monitoring by SIEM and ensure proper log forwarding.
Experience, Skills, and Knowledge :
- Self-driven, proactive, passionate about work.
- Experience in application security roles.
- Good knowledge of DevSecOps processes.
- Understanding of cloud, network security, and web protocols.
- Knowledge of cloud technology components and deployment patterns.
- Experience deploying services in multi-cloud environments (AWS, GCP, Azure).
- Experience with security tools such as Snyk, Rapid7, Qualys Guard, Divvy Cloud, Irius Risk.
- Experience with vulnerability scanners, static analyzers, IDS / IPS, firewalls, endpoint security.
- Experience developing with object-oriented languages.
- Knowledge of database programming and administration.
- Experience with log management and correlation systems.
- Proficiency in one or more programming or scripting languages.
- Understanding of secure development lifecycle principles.
- Strong analytical and problem-solving skills.
- Excellent communication skills, capable of engaging with senior management and stakeholders.
Benefits :
- 24 days annual leave, increasing with service up to 30 days.
- Life insurance.
- Discounts on books, digital content, and training.
- International environment.
- Madrid-based employees can enjoy our new office with a remote / hybrid policy.
Diversity : At Pearson, we value an inclusive culture and belonging.
Flexible working : We support hybrid and flexible remote working practices.
How to apply : Submit your updated CV and optional cover letter in English. For questions or more info, contact us.
We look forward to your application - Pearson Recruitment
J-18808-Ljbffr
J-18808-Ljbffr
J-18808-Ljbffr