Cloud Security Engineer

About the role : Are you passionate about planning, implementing, upgrading, or monitoring security measures to protect company systems? We are excited to offer an opportunity to join us as a Cloud Security Engineer. As part of the cloud security team, you will maintain and enhance security across our environments, aiming to reduce risk while enabling the business to operate safely and efficiently. If cloud security operations excite you, this role is ideal.

As a Cloud Security Engineer, your main responsibilities include ensuring the security of cloud infrastructures and applications, implementing and maintaining security measures, and working with international teams to integrate security best practices and ensure compliance with industry standards and regulations., 1. Expertise in Cloud Security standards, SDLC, DevSecOps processes, and tools.

2. Serve as a security subject matter expert for applications and processes.
3. Be the main contact for the Security Central team.
4. Collaborate with security leadership, engineering, and compliance teams to execute strategies, evaluate new technologies, and address threats.
5. Assess current cloud security and propose improvements to prevent threats.
6. Assist teams in resolving security issues aligned with business needs and best practices.
7. Promote security and privacy policies across ELL products.
8. Provide security training and guidance for developers.
9. Review applications for security improvements, monitor logs and alerts.
10. Work with CISO to develop and refine security best practices.
11. Maintain documentation of security controls.
12. Perform vulnerability assessments and oversee vulnerability remediation.
13. Guide DevOps teams on security design.
14. Integrate security into the software development lifecycle.
15. Identify critical logs for monitoring by SIEM systems.

• Self-driven, proactive, passionate about work.
• Experience in application security roles.
• Good knowledge of DevSecOps processes.
• Understanding of cloud, network security, and web protocols.
• Knowledge of cloud technologies and deployment patterns (AWS, GCP, Azure).
• Experience with security tools like Snyk, Rapid7, Qualys, Divvy Cloud, Irius Risk.
• Familiarity with vulnerability scanners, static analyzers, IDS/IPS, firewalls, endpoint security.
• Experience in software development with object-oriented languages.
• Database programming and administration experience.
• Log management and correlation system knowledge.
• Proficiency in one or more programming or scripting languages.
• Understanding of secure development lifecycle principles.
• Strong analytical and problem-solving skills.
• Excellent communication skills, capable of engaging senior management and stakeholders.

• 24 days annual leave, increasing with service.
• Life insurance.
• Discounts on books, digital content, and training.
• International environment.

Diversity : We value an inclusive culture and a strong sense of belonging, embracing differences as strengths.

Flexible working : We support hybrid working practices, allowing employees to manage their office attendance flexibly.

About Pearson : Our purpose: At Pearson, we 'add life to a lifetime of learning' so everyone can realize the life they imagine. We create vibrant, enriching learning experiences designed for real-life impact. Founded in 1844, with over 20,000 employees, we focus on high-quality, digital-first, accessible, and sustainable resources for lifelong learning. About English Language Learning (ELL) : We aim to become the world's leading destination for learning and improving English language skills, focusing on motivated learners worldwide who seek to reach their full potential through English.