Senior Security Analyst

Pearson
united kingdom
7 months ago
Applications closed

Related Jobs

View all jobs

Senior Information Security Analyst

Senior Information Security Analyst

Senior IT Security Analyst

Senior Cyber Security Analyst

Senior Cyber Security Analyst

Senior Cyber Security Analyst

Role: Senior Information Security Analyst

Division: Assessment & Qualifications Delivery

Location: London, Manchester, Oxford or Rotherham, UK

Salary: £60 - 70k plus on target bonus of 8%

About Pearson

Our purpose:At Pearson we ‘add life to a lifetime of learning’ so everyone can realise the life they imagine. We do this by creating vibrant and enriching learning experiences designed for real-life impact.

Our company:Pearson was founded in 1844 and has been built on our ability to grow with and adapt to a constantly evolving market. Our 20,000+ employees are dedicated to creating the high-quality, digital-first, accessible and sustainable resources for lifelong learning.

Diversity:At Pearson we value the power of an inclusive culture and a strong sense of belonging. We promote a culture where differences are embraced as strengths and opportunities are equal and accessible.

Flexible working:Pearson is committed to hybrid working practices and has adopted flexible remote and virtual working. Where possible our employees can choose to manage their attendance to the office more flexibly.

About UK Assessment & Qualifications:We are responsible for the delivery of nearly 4 million examination results per annum, including A-Level, GCSE, BTEC and T-levels for students in UK and International centres. Our in-house systems process every learner from registration to marking and certification, in a highly regulated business. We currently operate a hybrid estate of predominantly bespoke systems, with an ongoing strategic transformation programme to migrate from on-prem to cloud based, cost effective, scalable, and resilient services.

About the Job

The Senior Security Analyst is responsible for supporting the Business Information Security Manager in delivering the Pearson UK Assessment & Qualification’s divisional information security program. The role requires frequent interaction with business and technology partners and covers a broad range of platforms and technologies. The responsibilities include:

Working with cross-functional project teams to ensure secure delivery of the change program across the complete project lifecycle and authorizing security sign-off.

Providing input into divisional security strategy and roadmap planning.

Supporting the secure development process (SDLC) working closely with Development teams.

Keeping informed of new and emerging security threats & assess effectiveness of current controls to identify opportunities for program improvement.

Assessing compliance with security policies to identify control gaps, develop remediation plans and determine residual risk.

Supporting the incident management process and central security operations team as a domain expert.

Identifying, collating, and managing risks. Ensuring that actions and risks are managed.

Provide consultancy and guidance to business partners on all matters relating to Security.

Provide security input into bids, contract renewals and new business initiatives.

Develop and deliver information security awareness programs within the division.

Provide guidance and leadership to junior team members.

Essential Skills & Experience

Prior experience in Information Security in a similar customer or business facing role.

Current security certifications such as CISSP, CISA, CRISC, SABSA, GIAC, CCSP, CCSK or equivalent.

Excellent technical knowledge of cloud and on-premises services and infrastructure, including network, perimeter, application and end points.

A solid understanding of the cyber security risks associated with various technologies and how to apply appropriate controls to mitigate these.

Strong knowledge of IT and cyber security principles and experience with specific assurance frameworks such as ISO27001.

Experience in risk assessment and management in the context of information security.

Ability to work under pressure and to tight deadlines and manage own time effectively.

Excellent oral, written communication and presentation skills.

Confident at communicating to business and technology partners and senior management.

Ability to solve problems using initiative and a methodical approach to tasks.

Adaptable and flexible approach and able to prioritise workloads.

Ability to collate and analyse information from various sources.

Desirable Skills & Experience

Previous experience relevant to Security Architecture.

Technical (non-cyber) experience or qualifications.

Job Location and Hours

The role is aligned to our London, Manchester, Rotherham, or Oxford offices in the UK, working a hour week. Our Rotherham office is located at Junction 1 of the M18.

All our roles are hybrid working; our current policy requires our team to visit their base office no more than once a week, and with the possibility of occasional business travel to other Pearson sites. Candidates must be a suitable commute from their base office as our office presence policy may change to require more frequent presence in 2024.

For this role there is a requirement to provide occasional out of hours support during business critical periods.

Your benefits and rewards

Here at Pearson we offer a range of benefits, which include:

25 Days annual leave (increasing by 1 day with every year of continuous service up to 30 days); annual leave trading, +/- 5 days

Annual Bonus

Private Pension plan scheme where we pay in double what you contribute, up to 16% depending on your age

Life, private medical and dental care insurance options, plus free eye tests

Stock/share purchase options

Maternity, paternity, and family care leave as well as flexible working policies

An employee wellbeing assistance programme

Cycle to work program, volunteering days, gym membership concessions in selected office locations, along with retail and leisure discounts

What to expect from Pearson

Did you know Pearson is one of the 10 most innovative education companies of 2022?

At Pearson, we add life to a lifetime of learning so everyone can realize the life they imagine. We do this by creating vibrant and enriching learning experiences designed for real-life impact. We are on a journey to be 100 percent digital to meet the changing needs of the global population by developing a new strategy with ambitious targets. To deliver on our strategic vision, we have five business divisions that are the foundation for the long-term growth of the company: Assessment & Qualifications, Virtual Learning, English Language Learning, Workforce Skills and Higher Education. Alongside these, we have our corporate divisions: Digital & Technology, Finance, Global Corporate Marketing & Communications, Human Resources, Legal, Strategy and Direct to Consumer. Learn more at

We value the power of an inclusive culture and also a strong sense of belonging. We promote a culture where differences are embraced, opportunities are accessible, consideration and respect are the norm and all individuals are supported in reaching their full potential. Through our talent, we believe that diversity, equity and inclusion make us a more innovative and vibrant place to work. People are at the center, and we are committed to building a workplace where talent can learn, grow and thrive.

Get the latest insights and jobs direct. Sign up for our newsletter.

By subscribing you agree to our privacy policy and terms of service.

Industry Insights

Discover insightful articles, industry insights, expert tips, and curated resources.

Portfolio Projects That Get You Hired for Cyber Security Jobs (With Real GitHub Examples)

With rising cyber threats and increasingly sophisticated attacks, cyber security has become a critical priority for organisations worldwide. From penetration testers (pentesters) and SOC analysts to cloud security engineers and threat intelligence specialists, the demand for skilled cyber security professionals continues to surge. But how do you stand out in a growing field? Alongside your CV, an impressive cyber security portfolio can be the distinguishing factor that convinces employers you’re the right fit. In this comprehensive guide, you’ll discover: Why a cyber security portfolio is essential for job seekers in this domain. How to align portfolio projects with different cyber security career paths. Real GitHub examples that demonstrate best practices in security-focused projects. Actionable project ideas you can start today, from penetration testing labs to blue-team detection pipelines. Best practices for organising your repos and presenting your work so hiring managers can instantly see your impact. When you’re ready to pursue your next opportunity, remember to upload your CV on CyberSecurityJobs.tech. Our specialised platform connects talented security professionals with employers who need your expertise—exactly what your portfolio will showcase.

Cyber Security Job Interview Warm‑Up: 30 Real Coding & System‑Design Questions

The need for skilled cyber security professionals has never been greater. As organisations rapidly digitise their operations and store increasing amounts of sensitive data online, cyber threats loom large—ranging from sophisticated ransomware attacks to insider threats and state‑sponsored espionage. Against this backdrop, cyber security jobs remain some of the most in‑demand and mission‑critical roles on the market. If you’re preparing for a cyber security interview, expect to be tested on a broad spectrum of topics—from secure coding and incident response to network security architecture and compliance standards. In many cases, companies also include problem‑solving exercises and system design scenarios to gauge how well you can apply theoretical knowledge to real‑world threats. To help you ace these assessments, we’ve compiled 30 real coding & system‑design questions you might encounter. Each reflects a key area of cyber security—whether it’s encryption and key management, threat modelling, or designing a zero‑trust network. Along the way, we’ll offer insights and best practices so you can stand out from the crowd. If you’re on the lookout for exciting cyber security roles in the UK, head to www.cybersecurityjobs.tech. There, you’ll discover a range of positions—covering everything from penetration testing and threat intelligence to compliance management and security operations. Let’s dive into the essentials of interview readiness.

Negotiating Your Cybersecurity Job Offer: Equity, Bonuses & Perks Explained

How to Secure Compensation That Reflects Your Value in the UK’s High-Stakes Cybersecurity Sector Introduction As cyber threats grow more sophisticated and frequent, cybersecurity professionals have never been more in demand. From thwarting ransomware attacks to architecting secure cloud infrastructures, mid‑senior cybersecurity experts play a critical role in safeguarding a company’s data and reputation. Thanks to this growing reliance on cybersecurity, employers in the UK are going above and beyond simple salary offers to attract the top echelon of talent. Although base salary remains a key component of any job offer, the broader package—encompassing equity, bonuses, and perks—can often surpass what you’d gain from a small bump in monthly pay. For cybersecurity specialists working in areas such as threat intelligence, incident response, penetration testing, or compliance, the complexity and risk mitigation you bring to the table is massive. Knowing how to negotiate the entire package ensures you are duly rewarded for keeping an organisation’s data, assets, and operations safe. In this guide, we’ll delve into every aspect of negotiating a cybersecurity job offer. Whether you’re pivoting to a mid‑senior role or cementing your expertise at an established security consultancy, understanding the full range of compensation elements will help you secure an offer that acknowledges the criticality of what you do. Let’s explore equity options, performance bonuses, and the perks that matter most, so you can come out of your next job negotiation confident that you’re getting more than just a salary.