Register  |  Log In  |  Contact Us

Application Security Architect

Reference
2007235
Contract Type
Permanent
Sector
Education, Media & Communications
Location
London, GBR
Expiry Date
17/08/2020
Application Security Architect Description We are the world’s learning company with more than 22,500 employees operating in 70 countries. We combine world-class educational content and assessment, powered by services and technology, to ...

Job Description

Application Security Architect

Description

We are the world’s learning company with more than 22,500 employees operating in 70 countries. We combine world-class educational content and assessment, powered by services and technology, to enable more effective teaching and personalized learning at scale. We believe that wherever learning flourishes so do people. We’re committed to a world that’s always learning and to our talented team who makes it all possible. From bringing lectures vividly to life to turning textbooks into laptop lessons, we are always re-examining the way people learn best, whether it’s one child in our own backyard or an education community across the globe. We are bold thinkers and standout innovators who motivate each other to explore new frontiers in an environment that supports and inspires us to always be better. By pushing the boundaries of technology — and each other to surpass these boundaries — we create seeds of learning that become the catalyst for the world’s innovations, personal and global, large and small.

At Pearson, we believe in the power of difference. Harnessing the unique skills, perspectives, and backgrounds of every employee helps us foster innovation and create the most effective solutions for learners around the world. That’s why we’re committed to ensuring that diversity and inclusion are embedded into everything we do. We foster a work environment that’s inclusive and diverse — and where our people can be themselves — so we can reflect the customers and learners we serve.

Pearson is featured on The Forbes list of Best Employers and The Stonewall Top 100 Employers list, and we are recognised in the Best Employers for Diversity 2019 awards. Pearson is listed on both the London and New York Stock Exchanges (UK: PSON; NYSE: PSO).

As a direct report to Product Security Officer, this is a hands on technical lead role to explore, analyze, implement and operationalize application security best practices. This role will be part of our global team of extremely talented security engineers and application developers.

Key Accountabilities

  • Manage cross-functional internal and external team collaboration, evangelization, and communications
  • Lead design security reviews and mentor colleagues with your expertise and knowledge
  • Help to develop relevant application security training for Engineering
  • Improve secure coding practices, application security requirements, automation, training
  • Strong understanding of application security frameworks
  • Must be very well versed with OWASP Top 10 vulnerabilities and must demonstrate to exploit such vulnerabilities in mobile, web and console applications.
  • Strong Self-started able to operate independently
  • CI/CD security tool integration
  • Understanding Continuous Integrations / Testing / Delivery
  • Knowledge of JIRA, Burp, Confluence, SAST, DAST, RASP

Pearson is an equal opportunities employer. We do not discriminate against employees or job applicants and select the best person for each job based on relevant skills and experience.

We are also committed to building an accurate picture of the make-up of the workforce and encouraging equality and diversity.

The information you provide will stay confidential, and be stored securely. It will not be seen by those involved in making decisions as part of the recruitment process.

Qualifications

Experience

  • Strong Application Development background
  • CI/CD experience (Hands on) - Gitlab, Jenkins
  • Securing container-centric deployments using Docker & Kubernetes
  • Securing web, mobile, API, and microservices design patterns and architectures
  • OWASP Top Ten, CWE, OpenSAMM, BSIMM, etc
  • Application penetration testing and static code analysis tools
  • Multiple programming languages and the ability to learn new ones

\#LI-POST

Pearson is an Equal Opportunity and Affirmative Action Employer and a member of E-Verify. All qualified applicants, including minorities, women, protected veterans, and individuals with disabilities are encouraged to apply.

Primary Location: GB-GB-London

Other Locations US-NC-Durham, US-TX-San Antonio

Work Locations: GB-London-80 Strand 80 Strand London WC2R 0RL

Job: Technology

Organization: Technology & Operations

Employee Status: Regular Employee

Job Type: Standard

Shift: Day Job

Job Posting: Jul 29, 2020

Job Unposting: Aug 28, 2020

Schedule: Full-time Regular

Req ID: 2007235

Pearson is an Equal Opportunity and Affirmative Action Employer and a member of E-Verify. All qualified applicants, including minorities, women, protected veterans, and individuals with disabilities are encouraged to apply.