Career.lk

Pearson is the world’s leading learning company, with over 40,000 people in more than 70 countries, helping people of all ages to make progress in their lives through all kinds of learning.

Pearson owns brands such as Financial Times, Penguin and Pearson Education with overall revenue of over $9.4 B in 2011. 

We are Pearson Lanka, a core part of Pearson's global Learning Technologies team. We build and manage some of the industry leading cloud based learning platforms that serve millions of students across the world. Over the years, we have built a strong Agile Development team, and we are now looking to expand aggressively over the next 12 months.  The industry leading cloud-based technology platforms of Pearson help educate more than 30 million students across the globe.

The 150+ strong engineering team based out of the Colombo office works dedicatedly to service Pearson technology companies located in North America, Europe and Australia.

At Pearson, we aim to be the best company to work for in the world. It is part of our philosophy to provide benefits, profit share plans, development opportunities and a culture that beats anywhere else. If you are 'always learning', and have a passion for technology and creativity, send in your resume and join our exciting engineering culture.

ESSENTIAL DUTIES AND RESPONSIBILITIES

• Manage security tools such as Web Application Firewall (WAF), Intrusion Detection Systems (IDS), Security Incident and Event Management (SIEM) systems, and vulnerability management reporting systems.
• Review and respond as necessary to security alerts within the WAF, IDS, and SIEM.
• Deliver presentations, interactive sessions, and other activities to drive awareness of security with Pearson Learning Technologies.
• Perform various activities to identify, coordinate remediation of, and confirm closure of vulnerabilities within Learning Technologies infrastructure and applications.
• Perform security assessments including web application reviews, system level reviews, vulnerability scans, and penetration tests.
• Work with cross functional teams to drive the closure of identified vulnerabilities.
• Remain up to date on current information security risks, concepts, and approaches.
• Assist in the development, publication, and communication of security standards and policies.
• Perform Security Incident Response activities and integrate with broader company incident response as needed.
• Assist with providing security related information for RFP responses to Education Partners.
• Assist with training efforts of personnel outside of the Information Risk Team, including but not limited to developers, Network Operations Center staff, and system administrators.
• Assist in change request processes, including firewall change approval.
• Collect and analyze of security metrics.
• Other duties as assigned.

EDUCATION and/or EXPERIENCE

• Possession of or progress towards Bachelor’s Degree in an IT related discipline is required
• At least 2 years experience within the security career field. Experience in large scale hosting environments a plus.

KNOWLEDGE, SKILLS AND ABILITIES

• Solid understanding of the commonly used information security concepts, practices, and procedures including, but not limited to operating systems and network security, application security, vulnerability management, encryption and cryptography, intrusion detection and prevention, incident response, denial of service protection, resiliency, etc.
• Familiarity with common security tools, including vulnerability scanners, Security Incident and Event Management, Intrusion Detection/Prevention Systems, Web Application Firewall, and web application assessment enabling tools.
• Ability to understand and communicate business impact of information security risks.
• Demonstrated ability to conduct and interpret quantitative and qualitative analyses.
• Effective verbal and written communication skills and effective interpersonal skills.

Please use the apply button below to send your application to us.