Lead Specialist, Security Operations

Role

Summary:

The Security Operations Center (SOC) is seeking a highly skilled and proactive professional to lead day-to-day security operations, drive continuous process improvement, and advance detection engineering across Pearson’s environments. This role is pivotal in safeguarding critical assets through rapid incident response, automation, and collaboration with internal and external partners. You will be responsible for refining SOC processes, developing detection capabilities, and ensuring alignment with Pearson’s security standards and regulatory requirements.

Security Operations Leadership:

Lead and execute advanced SOC operations, including incident detection, triage, containment, and root cause analysis across Pearson environments.

Detection Engineering & Automation:

Develop, implement, and optimize detection logic, playbooks, and automated response workflows to reduce mean time to containment and improve SOC efficiency.

Process Improvement:

Continuously assess and enhance SOC processes and procedures, ensuring best practices and alignment with evolving threat landscapes.

Threat Intelligence Integration:

Collaborate with threat intelligence teams to analyze emerging risks and integrate relevant TTPs (Tactics, Techniques, and Procedures) into SOC operations.

Stakeholder Engagement:

Act as a trusted advisor to internal stakeholders, translating technical findings into actionable insights and ensuring transparency throughout security operations.

Compliance & Governance:

Ensure all SOC activities comply with relevant standards (e.g., NCSC, Cyber Essentials Plus) and internal Pearson policies.

Reporting & Metrics:

Deliver executive‑level reporting, risk assessments, and metrics to demonstrate the effectiveness of SOC operations.

• Proven experience in security operations, incident response, and detection engineering
• Hands‑on expertise with SOAR, EDR, NDR, and SIEM technologies
• Experience with one or more Cloud Service Providers (AWS, Azure, GCP)
• Strong background in multitasking, adapting, and thriving in fast‑paced environments
• Excellent communication skills, especially in stakeholder management and translating technical risk to non‑technical audiences
• SANS GCIH certification or equivalent

• Experience working with regulated environments or government clients
• Knowledge of cloud security (AWS, Azure, GCP) and hybrid infrastructure
• Experience collaborating with red/purple teams and defensive teams

At Pearson, our purpose is simple: to help people realize the life they imagine through learning. We believe that every learning opportunity is a chance for a personal breakthrough. We are the world’s lifelong learning company. For us, learning isn’t just what we do. It’s who we are. To learn more:
We are Pearson.

Pearson is an Equal Opportunity Employer and a member of E‑Verify. Employment decisions are based on qualifications, merit and business need. Qualified applicants will receive consideration for employment without regard to race, ethnicity, color, religion, sex, sexual orientation, gender identity, gender expression, age, national origin, protected veteran status, disability status or any other group protected by law. We actively seek qualified candidates who are protected veterans and individuals with disabilities as defined under VEVRAA and Section 503 of the Rehabilitation Act.

If you are an individual with a disability and is unable or limited in your ability to use or access our career site as a result of your disability, you may request reasonable accommodations by emailing Talent Experie

Job: Security

Job Family: TECHNOLOGY

Organization: Corporate Strategy & Technology

Schedule:

Workplace Type: Hybrid

Req : 22727

#LI-REMOTE