Senior Cloud AppSec Engineer

Pearson   •  

San Jose, CA

Industry: Education


5 - 7 years

Posted 35 days ago


At Pearson, we’re committed to a world that’s always learning and to our talented team who makes it all possible. From bringing lectures vividly to life to turning textbooks into laptop lessons, we are always re-examining the way people learn best, whether it’s one child in our own backyard or an education community across the globe. We are bold thinkers and standout innovators who motivate each other to explore new frontiers in an environment that supports and inspires us to always be better. By pushing the boundaries of technology — and each other to surpass these boundaries — we create seeds of learning that become the catalyst for the world’s innovations, personal and global, large and small.

Cloud Security Engineer

The engineer will provide inputs for design, testing, engineering, automation, API integration, and implementation of security solutions in all aspects of Information Security.

Specific Roles and Responsibilities include:

As a direct report to the Director, Product Information Security Officer (PISO), you will have the following responsibilities:

Work closely with product and platform teams to engineer and implement cloud security controls with a focus on DevSecOps

  • Assist in developing an automated framework for Security Tool deployment and development, leveraging various scriptinglanguages and open source solutions

  • Plan, implement, upgrade and monitor security measures related to computer networks and software testing and validation procedures, programming and documentation (AWS, Azure Cloud Security, Application Security, Vulnerability Management, Machine Learning, AI Sandboxing)

  • Work autonomously in an area of specialization to analyze internal security and provide relevant information to internal and external customers, suppliers, and partners.

  • Architect and design API Security, Container Security, AWS Cloud Security.

  • In connection with the above duties, apply knowledge and/or skills of Python and Shell Scripting; cloud technologies and computer forensics; security posture assessment and requirements based hardening; Extensive Appsec, Encryption, Data Protection SOC automation and tool integration experience.

Pearson is an equal opportunities employer. We do not discriminate against employees or job applicants and select the best person for each job based on relevant skills and experience.

We are also committed to building an accurate picture of the make-up of the workforce and encouraging equality and diversity.

The information you provide will stay confidential, and be stored securely. It will not be seen by those involved in making decisions as part of the recruitment process.


  • Requirements:

  • Strong Development background with one or more tools / technologies

  • CI/CD - Deployment pipeline experience (Jenkins, Ansible, Terraform)

  • Familiarity with REST API design

  • Python / Golang/ Java / Database expert level

  • Devops container/orchestration tools (Kubernetes, Docker, Puppet, etc)

  • AWS Deep knowledge

  • 5 years in application security: dynamic analysis scans, static scans