Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Reduce security risks through innovative engineering and strategic oversight.
- Company: Join DFS, a leader in furniture retail with a focus on design and comfort.
- Benefits: Enjoy competitive pay, bonuses, training opportunities, and generous leave policies.
- Why this job: Make a real impact by enhancing security and protecting our digital landscape.
- Qualifications: Experience in security engineering and strong communication skills are essential.
- Other info: Be part of a diverse team that values inclusion and personal growth.
The predicted salary is between 36000 - 60000 £ per year.
Your new role
What you\’ll be doingThis role is about reducing security risk through technical delivery and strategic oversight.
1. Security Engineering & Architecture
Lead the deployment, configuration, and tuning of new and existing security tools to enhance defence and efficiency.
Drive the enforcement of security policy and controls across key domains.
Initiate, provide counsel and assurance on technical security projects from conception through to operational handover, ensuring clear risk reduction objectives are met. Working with other areas within the technology function to execute the delivery of the projects.
Provide technical counsel to the Head of Group IT Security on new solutions before sign-off, ensuring secure‐by‐design principles are followed.
Conduct continuous internal security assessments, including Privileged Access Reviews and Cloud Configuration Audits, and own the resulting remediation activities end‐to‐end.
Develop automation and tooling to reduce incident response times and eliminate repetitive tasks for the security team.
Define and deliver security standards, policies and processes for the group and review in a timely manner.
2. Threat Detection & Response
Support and enhance detection logic across all computing environments in collaboration with our security partners.
Perform deep, forensic‐level investigations when security incidents occur. The goal is simple: learn from every event and prevent the same issue from ever recurring.
Lead the technical remediation efforts for security incidents and identified vulnerabilities, working closely across IT and the wider business.
Proactively determine our risk by \”running the path\” of known attacker tactics, techniques, and procedures (TTPs) within our environments.
Continuously improve security processes, playbooks, and tooling based on real‐world lessons.
3. Assurance & Vulnerability Management
Lead the technical support for our penetration testing programme, including sound scoping, engaging with pentesters, and owning the subsequent vulnerability remediation.
Develop and implement a technical framework for the deeper assessment and management of Third‐Party Security Risk, including assisting with the technical elements of supplier service reviews and audit execution.
Apply established Cybersecurity Frameworks and Best Practices to mature our security posture and guide governance activities.
Collaborate with engineering teams to enhance security coverage and visibility, providing expert technical security support across the company.
The role is for you if…
Significant experience in security engineering within mixed Cloud and On‐Prem enterprise environments.
Excellent communication skills, especially the ability to communicate complex technical security concepts and risks to all levels of the organisation.
A deep understanding of attacker methodology, detection techniques, and how response frameworks relate to the role.
Experience working in cloud‐native environments, specifically focusing on building and integrating security tooling to identify and mitigate misconfigurations.
Strong analytical, troubleshooting, and problem‐solving skills.
Working knowledge of major industry standards and compliance requirements.
Ability to deliver through others.
Desirable Certifications
Certified Information System Security Professional (CISSP)
Certified Cloud Security Professional (CCSP)
Professional Cloud Security Engineer (GCP)
Please note: Demonstrable, hands‐on experience and proven risk‐reduction capability will always take priority over certification. We will assess all relevant industry certifications when coupled with substantial technical work.
About DFSWe\’re home to DFS, Sofology, and The Sofa Delivery Company – three distinctive brands with a shared mission to bring great design and comfort into every home, affordably, responsibly, and sustainably.
At DFS Group, everyone plays a part. Whether you\’re supporting our brands or serving our customers, you\’re helping shape the future of furniture retail. Each brand has its own identity and creative direction, but we\’re united by a culture that puts people and purpose at the heart of everything we do.
Everyone Welcome
Across our Group, we\’re committed to a culture where everyone feels welcome, valued, and can thrive at work. We celebrate diverse voices, champion inclusion, and support each other through our growing colleague networks. We invest in partnerships that drive change, from supporting Doncaster Pride and introducing the Hidden Disabilities Sunflower, to partnering with Carers UK and developing leaders with Diversity in Retail.
We\’re proud to be an equal opportunities employer, committed to building a workplace that reflects the communities we serve. So, if your experience doesn\’t quite match the specification, we\’d still really love to hear from you.
DFS Benefits
Potential Annual Bonus Scheme: Contribute to our success and get rewarded for it.
Growth and Training: Learn new skills and develop your career with us.
Leave: Enjoy a great holiday allowance, with the option to buy 5 extra days. Take advantage of our enhanced leave for Maternity, Paternity, Shared Parental, and Adoption, plus a paid volunteering day each year.
Discounts: Get 30% off DFS and Sofology products for yourself, plus discounts for friends and family – and savings at big brands like Sainsbury\’s, ASOS, and IKEA.
Wellbeing Perks: Access healthcare services, an Employee Assistance Programme, and discounted gym memberships.
Pension and Savings: Join our Group Pension and Sharesave schemes.
Life Assurance & Sick Pay: Peace of mind with Life Assurance and Company Sick Pay.
#J-18808-Ljbffr
IT Security Engineer employer: DFS
Contact Detail:
DFS Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land IT Security Engineer
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend meetups, and connect with potential colleagues on LinkedIn. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Show off your skills! Create a portfolio or GitHub repository showcasing your projects and achievements in security engineering. This gives you a chance to demonstrate your hands-on experience and problem-solving abilities to potential employers.
✨Tip Number 3
Prepare for interviews by brushing up on common security scenarios and technical questions. Practice explaining complex concepts in simple terms, as communication is key in this role. We want to see how you can convey your expertise to all levels of the organisation.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in joining our team at DFS.
We think you need these skills to ace IT Security Engineer
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the IT Security Engineer role. Highlight your experience in security engineering, especially in cloud and on-prem environments. Use keywords from the job description to show we’re on the same page!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Share your passion for security and how your skills align with our mission at DFS. Don’t forget to mention any relevant certifications or hands-on experience that sets you apart.
Showcase Your Problem-Solving Skills: In your application, give examples of how you've tackled security challenges in the past. We love seeing analytical and troubleshooting skills in action, so share those stories that demonstrate your expertise!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss out on any important updates. Plus, it shows you’re keen to join our team!
How to prepare for a job interview at DFS
✨Know Your Security Tools
Familiarise yourself with the security tools mentioned in the job description. Be ready to discuss your experience with deploying, configuring, and tuning these tools. Highlight any specific projects where you enhanced security measures or improved efficiency.
✨Understand Threat Detection
Brush up on your knowledge of threat detection techniques and incident response frameworks. Be prepared to share examples of how you've conducted forensic investigations or led remediation efforts in past roles. This will show your ability to learn from incidents and prevent future issues.
✨Communicate Complex Concepts Simply
Practice explaining complex technical security concepts in a straightforward manner. Since excellent communication skills are crucial for this role, think of ways to convey your ideas clearly, especially when discussing risk reduction strategies with non-technical stakeholders.
✨Showcase Your Analytical Skills
Prepare to demonstrate your analytical and problem-solving skills during the interview. Bring examples of how you've tackled security challenges, particularly in cloud-native environments. Discuss any frameworks or best practices you've applied to enhance security posture.
