Pearson VUE

Information Security Specialist

Pearson VUE

full-time

Posted on:

Location Type: Hybrid

Location: BangaloreIndia

Visit company website

Explore more

AI Apply
Apply

Tech Stack

Cyber Security

About the role

  • Support the identification, assessment, and documentation of cyber risks across technology and business domains.
  • Maintain accurate and up‑to‑date cyber risk records, including risk statements, impact assessments, controls, and remediation plans.
  • Work with Designated Risk Owners to ensure risks are clearly articulated in business‑relevant terms and appropriately owned.
  • Track risk treatment activities, issues, and remediation progress, highlighting delays or concerns for escalation.
  • Contribute to cyber risk reporting and dashboards to support management and senior stakeholder visibility.
  • Promote a pragmatic, risk‑based approach to cybersecurity decision‑making across technology initiatives and operational activities.
  • Support the execution of the third‑party cyber risk management (TPRM) process in line with business criticality and risk appetite.
  • Perform supplier cyber risk assessments and reviews, working with Procurement, Legal, and Technology stakeholders.
  • Track third‑party remediation actions, risk acceptances, and reassessments through to closure.
  • Contribute to a positive risk culture by supporting constructive, solution‑focused conversations.

Requirements

  • Experience in cybersecurity risk management, third‑party risk, IT risk, or GRC within a complex organisation.
  • Working knowledge of cyber risk frameworks such as ISO 27001, NIST CSF, or SOC2.
  • Strong analytical skills, with the ability to assess risk scenarios and control effectiveness.
  • Ability to communicate risk clearly and concisely in written and verbal form.
  • Strong attention to detail and ability to manage multiple tasks and priorities.
  • Comfortable working with stakeholders across technical and non‑technical teams.
  • Professional certifications or progress toward certifications desirable (e.g. CRISC, CISM, CISSP, CISA).
Benefits
  • Opportunity to develop deep expertise in cyber risk and third‑party risk management.
  • Exposure to a wide range of technology, suppliers, and business stakeholders.
  • Clear development pathway within a maturing Cyber GRC capability.
  • Supportive environment with strong focus on learning, growth, and professional development.
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
cybersecurity risk managementthird-party riskIT riskGRCcyber risk frameworksISO 27001NIST CSFSOC2risk assessmentsrisk treatment
Soft Skills
analytical skillscommunicationattention to detailstakeholder managementsolution-focusedprioritizationcollaborationproblem-solvingrisk culture promotiondocumentation
Certifications
CRISCCISMCISSPCISA