Senior Cyber Risk Assessment Specialist
3 weeks ago
Position: Senior Cyber Risk Assessment Specialist
Company Overview:
Pearson is dedicated to enhancing the educational journey of individuals by providing impactful learning experiences. Founded in 1844, our organization has evolved to meet the demands of a dynamic market, with over 20,000 employees committed to delivering high-quality, accessible resources for lifelong learning.
About the Chief Information Security Office:
The Chief Information Security Office (CISO) at Pearson plays a pivotal role in safeguarding the integrity, confidentiality, and availability of our information assets. Our team operates through four essential pillars: Security Operations, Security Engineering and Architecture, Posture Management, and Governance, Risk, and Compliance.
Role Overview:
As a vital member of the Governance, Risk, and Compliance team, you will foster collaborative relationships across various CISO pillars and key stakeholders within Pearson's Digital and Technology sectors. Your contributions will be instrumental in innovating and transforming Pearson's Security Risk and Compliance program, particularly concerning third-party vendor and supply chain risks. This includes developing and executing a comprehensive risk management strategy, performing thorough due diligence on third-party practices, and ensuring ongoing monitoring.
Key Responsibilities:
- Conduct timely security evaluations of third-party suppliers, accurately documenting findings and initiating necessary assurance actions.
- Assist in generating high-quality, informative reports regarding third-party assurance evaluations.
- Advise stakeholders on minimum information/cyber security requirements for vendor assessments.
- Collaborate with procurement, legal, and other departments to ensure vendor contracts incorporate essential security and compliance stipulations.
- Engage in the collection of Key Risk Indicators (KRIs) and Management Information reporting related to third-party cyber risks and evaluations.
- Support management with internal reporting, including updates for steering committees and senior management.
- Develop metrics to demonstrate compliance with security frameworks.
- Assist internal stakeholders with information security projects related to third parties.
- Contribute to the broader cyber risk function concerning third-party/vendor risk assessments.
- Collaborate with the global team to enhance the program, implementing identified improvements for greater efficiency.
- Provide support to management and engage with the wider information security community.
- Develop expertise in third-party security requirements relevant to Pearson.
- Stay informed about emerging cyber threats, attack vectors, and industry best practices in third-party risk management.
Essential Skills & Experience:
- Experience in the Cyber Security domain, focusing on Governance, Risk, Compliance, and Assurance.
- Relevant professional qualifications in cyber security (e.g., CISSP, CISM, CRISC, CCSP, ISO 27001 LA/LI).
- Proficiency in information security management frameworks such as ISO/IEC 27001/2, NIST 800-53, NIST CSF, and CIS benchmarks.
- Ability to translate data privacy legal and regulatory requirements into information security terms (e.g., GDPR, CCPA, HIPAA).
- Strong verbal and written communication skills, capable of engaging diverse audiences including technologists and business stakeholders.
- Experience in designing, implementing, and managing assurance frameworks.
- Analytical mindset with strong problem-solving capabilities.
- High level of initiative, reliability, and thought leadership.
Preferred Skills & Experience:
- Master's degree in information security or a related field.
- Experience conducting internal audits against recognized standards (e.g., ISO 27001, ISO 22301).
- Experience in a similarly sized organization or consulting environment.
- Knowledge of relevant legal and regulatory frameworks, particularly in the US, UK, and EU.
- Experience with Payment Card Industry Data Security Standards (PCI DSS) compliance in eCommerce is advantageous.
Benefits:
- Generous annual leave policy, increasing with tenure.
- Annual bonus opportunities.
- Comprehensive pension plan with employer contributions.
- Health and wellness benefits, including medical and dental care options.
- Stock purchase options.
- Flexible working arrangements and family care leave policies.
- Employee wellbeing assistance programs.
- Opportunities for professional development and training.
Diversity Commitment:
Pearson values an inclusive culture where differences are embraced as strengths. We strive to create an environment where all individuals are supported in reaching their full potential.
Application Process:
We appreciate your interest in joining Pearson. Please submit your CV for consideration. If you have any questions or need further information, feel free to reach out.
-
Senior Cyber Risk Assessment Specialist
3 weeks ago
London, Greater London, United Kingdom Pearson Full timePosition: Senior Cyber Risk Assessment Specialist Company: Pearson About Pearson: At Pearson, our mission is to 'add life to a lifetime of learning', enabling individuals to achieve their aspirations. We are dedicated to crafting engaging and impactful educational experiences that resonate in real-world scenarios. Established in 1844, Pearson has continually...
-
Cyber Security Risk Management Specialist
2 days ago
London, Greater London, United Kingdom LT Harper - Cyber Security Recruitment Full time £55,000 - £65,000About the RoleWe are seeking a highly skilled Cyber Security Risk Management Specialist to join our team at LT Harper - Cyber Security Recruitment. As a key member of our Cyber practice, you will play a crucial role in building our brand and reputation in the industry.Key ResponsibilitiesDeliver engagements and identify risk relevant to clients, proposing...
-
Cyber Security Risk Management Specialist
2 days ago
London, Greater London, United Kingdom LT Harper - Cyber Security Recruitment Full time £55,000 - £65,000About the RoleWe are seeking a highly skilled Cyber Security Risk Management Specialist to join our team at LT Harper - Cyber Security Recruitment. As a key member of our Cyber practice, you will play a crucial role in building our brand and reputation in the industry.Key ResponsibilitiesDeliver engagements and identify risk relevant to clients, proposing...
-
Cyber Security Risk Management Specialist
5 days ago
London, Greater London, United Kingdom LT Harper - Cyber Security Recruitment Full time £55,000 - £65,000About the RoleWe are seeking a highly skilled Cyber Security Risk Management Specialist to join our team at LT Harper - Cyber Security Recruitment. As a key member of our Cyber practice, you will play a crucial role in building our brand and reputation in the industry.Key ResponsibilitiesDeliver engagements and identify risk relevant to clients, proposing...
-
Cyber Security Specialist
6 days ago
London, Greater London, United Kingdom Iceberg Cyber Security Full timeJob OverviewWe are seeking a highly skilled Cyber Security Engineer to join our global team at Iceberg Cyber Security. This role will be based in our London office, where you will work closely with our existing engineers and SecOps team.Our ideal candidate will have a strong background in network security, firewalls, VPN, and IPS, as well as a deep...
-
Cyber Security Risk Management Specialist
2 days ago
London, Greater London, United Kingdom Concept Resourcing Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Risk Management Specialist to join our team at Concept Resourcing. As a Cyber Security Risk Management Specialist, you will play a critical role in supporting the secure design, development, and operation of digital products.Key ResponsibilitiesConduct regular deep dive cyber risk assessments and...
-
Cyber Security Risk Management Specialist
3 days ago
London, Greater London, United Kingdom Concept Resourcing Full timeAbout the RoleWe are seeking a highly skilled Cyber Security Risk Management Specialist to join our team at Concept Resourcing. As a Cyber Security Risk Management Specialist, you will play a critical role in supporting the secure design, development, and operation of digital products.Key ResponsibilitiesConduct regular deep dive cyber risk assessments and...
-
Business Development Manager
6 days ago
London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full timeJob Description**About CornerStone - Risk, Cyber & Security**We are a leading, award-winning, independent international Security Risk Consultancy, and we are now seeking a highly skilled Business Development Manager to join our growing team. Our company culture is built upon innovation, teamwork, taking ownership, and supporting each other. We invest in our...
-
Cyber Security Assurance Specialist
3 days ago
London, Greater London, United Kingdom Iceberg Cyber Security Full timeWe are seeking a highly skilled Cyber Security Assurance Specialist to play a crucial role in safeguarding our systems and data at Iceberg Cyber Security. If you hold a Security Clearance and are passionate about protecting critical information, this opportunity may be of interest to you.Key Responsibilities:Conduct comprehensive security assessments and...
-
Cyber Security Assurance Specialist
3 days ago
London, Greater London, United Kingdom Iceberg Cyber Security Full timeWe are seeking a highly skilled Cyber Security Assurance Specialist to play a crucial role in safeguarding our systems and data at Iceberg Cyber Security. If you hold a Security Clearance and are passionate about protecting critical information, this opportunity may be of interest to you.Key Responsibilities:Conduct comprehensive security assessments and...
-
Cyber Security Risk Specialist
3 weeks ago
London, Greater London, United Kingdom Guy's and St Thomas' NHS Foundation Trust Full timePosition Overview The Cyber Security Risk Specialist will play a pivotal role in enhancing the organization's cyber security framework and mitigating the potential impacts of cyber threats. The primary objective of this position is to safeguard the sensitive information and services that are crucial for patient care. The responsibilities encompass the...
-
Cyber Security Risk Management Specialist
2 weeks ago
London, Greater London, United Kingdom Concept Resourcing Full timeJob SummaryConcept Resourcing is seeking a highly skilled Cyber Security Risk Management Specialist to join our team. As a Cyber Security Risk Management Specialist, you will play a critical role in supporting the secure design, development, and operation of digital products.Key ResponsibilitiesConduct thorough cyber risk and vulnerability assessments to...
-
Cyber Security Risk Management Specialist
4 days ago
London, Greater London, United Kingdom Concept Resourcing Full timeJob SummaryConcept Resourcing is seeking a highly skilled Cyber Security Risk Management Specialist to join our team. As a Cyber Security Risk Management Specialist, you will play a critical role in supporting the secure design, development, and operation of digital products.Key ResponsibilitiesConduct thorough cyber risk and vulnerability assessments to...
-
Senior Underwriter
5 days ago
London, Greater London, United Kingdom Eames Consulting Full timeWe are seeking a highly skilled Cyber Risk Specialist to join our team at Eames Consulting. As a Senior Underwriter, you will play a key role in shaping the strategic direction of our Cyber book by underwriting a diverse portfolio of clients.This is an excellent opportunity for a development-orientated individual with strong London Market Broker relations to...
-
Senior Underwriter
2 days ago
London, Greater London, United Kingdom Eames Consulting Full timeWe are seeking a highly skilled Cyber Risk Specialist to join our team at Eames Consulting. As a Senior Underwriter, you will play a key role in shaping the strategic direction of our Cyber book by underwriting a diverse portfolio of clients.This is an excellent opportunity for a development-orientated individual with strong London Market Broker relations to...
-
Business Development Manager
4 days ago
London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full timeAbout CornerStone - Risk, Cyber & SecurityCornerStone is a leading, award-winning, independent international Security Risk Consultancy, and we are now seeking a Business Development Manager to join our growing team. We are looking for an individual who enjoys working in a fast-paced, collaborative environment that is built upon innovation, teamwork, taking...
-
Business Development Manager
6 days ago
London, Greater London, United Kingdom CornerStone - Risk, Cyber & Security Full timeAbout CornerStone - Risk, Cyber & SecurityCornerStone is a leading, award-winning, independent international Security Risk Consultancy, and we are now seeking a Business Development Manager to join our growing team. We are looking for an individual who enjoys working in a fast-paced, collaborative environment that is built upon innovation, teamwork, taking...
-
Cyber Security Risk Management Specialist
2 days ago
London, Greater London, United Kingdom Locke and McCloud Full time £45,000 - £60,000About the RoleWe are seeking a highly skilled Cyber Security Risk Management Specialist to join our team at Locke & McCloud. As a Cyber Security Risk Management Specialist, you will play a key role in supporting our clients with ISO27001 and NIST audits, ensuring their security postures are robust and compliant.Key ResponsibilitiesConduct thorough audits and...
-
Cyber Security Risk Management Specialist
2 days ago
London, Greater London, United Kingdom Locke and McCloud Full time £45,000 - £60,000About the RoleWe are seeking a highly skilled Cyber Security Risk Management Specialist to join our team at Locke & McCloud. As a Cyber Security Risk Management Specialist, you will play a key role in supporting our clients with ISO27001 and NIST audits, ensuring their security postures are robust and compliant.Key ResponsibilitiesConduct thorough audits and...
-
Cyber Security Architect
5 days ago
London, Greater London, United Kingdom LT Harper - Cyber Security Recruitment Full time £80,000 - £100,000Job Title: Cyber Security Architect - Senior ConsultantJob Type: Full-timeIndustry: Cyber Security, TechnologyCompany: LT Harper - Cyber Security RecruitmentLocation: Hybrid - LondonJob Description:We are seeking a highly skilled Cyber Security Architect to join our team as a Senior Consultant. As a Cyber Security Architect, you will be responsible for...
