At a Glance
- Tasks: Be the go-to expert for security in tech integrations and risk assessments.
- Company: Join M&S, a leading brand with a commitment to security and innovation.
- Benefits: Enjoy discounts, competitive holidays, bonuses, and wellbeing support.
- Other info: Dynamic role with excellent training and career growth opportunities.
- Why this job: Make a real impact on security while working with top-tier technology.
- Qualifications: 6+ years in tech, 2+ years in advanced security roles, and relevant certifications.
The predicted salary is between 60000 - 80000 £ per year.
TPRM Security Consultant – a trusted advisor to senior stakeholders, responsible for ensuring the security of a broad range of technical integrations between M&S and its suppliers. The role focuses on risk‑based assessments, supporting third‑party options to mitigate security risks, and embedding Secure‑by‑Design thinking in all initiatives.
Responsibilities
- Own the InfoSec relationship with identified third‑party portfolio(s) of change to drive risk‑aware business decisions.
- Become a trusted advisor to the technical and management teams in your assigned portfolio(s).
- Identify when your portfolio(s) require additional InfoSec support from areas such as Security Architecture, Security Design, or Security Engineering and broker a successful engagement.
- Lead technical security risk assessments and provide requirements and guidance for change activities, founded in CIS and secured‑by‑design principles.
- Oversee supplier onboarding risk assessments and ongoing monitoring programmes.
- Demonstrate knowledge of two or more security domains and a good understanding of others (e.g., Application Security, Network Security, Infrastructure Security, Cloud Security, End‑User Compute Security, IoT, ICU Security).
- Demonstrate understanding and experience of risk assessment and compliance frameworks.
- Possess at least 6 years in technology with a minimum of 2 years delivering advanced‑level security engineering or a similar role.
- Hold supporting qualifications in technology or security such as Microsoft/Azure Architecture, CISSP, CISM, CRISK, CGEIT, CCAK, CCSK, or CCSP.
Benefits
- 20% colleague discount across all M&S products and many third‑party brands after the probationary period.
- Competitive holiday entitlement with the option to purchase additional days.
- Discretionary bonus schemes based on personal objectives and business performance.
- A generous Defined Contribution Pension Scheme and Life Assurance.
- Dedicated welcome, tailored induction and a range of training programmes.
- Access to M&S Choices portal for perks and discounts that support financial and personal wellbeing.
- Industry‑leading parental, adoption and neonatal policies providing support and flexibility.
- Wellbeing support: 24/7 Virtual GP and PAM Assist for you and your family.
- Charity volunteer day for personal causes.
Tprm Security Consultant in City of Westminster employer: Marks and Spencer plc (UK)
M&S is an exceptional employer, offering a dynamic work environment where TPRM Security Consultants can thrive as trusted advisors to senior stakeholders. With a strong focus on employee growth through tailored training programmes and industry-leading benefits, including a generous pension scheme and wellbeing support, M&S fosters a culture of collaboration and innovation. Located in a vibrant setting, employees enjoy a 20% discount on products and the opportunity to engage in meaningful charity work, making it a rewarding place to build a career.
Contact Details:
Marks and Spencer plc (UK) Recruitment Team
StudySmarter Expert Advice🤫
We think this is how you could land Tprm Security Consultant in City of Westminster
✨Get Involved in the Cybersecurity Community
Diving into the cybersecurity community is key for landing that full-time gig. Join forums like Reddit's r/cybersecurity or attend local meetups to connect with industry veterans and other job seekers. Networking is everything in this field—don’t just be a passive lurker!
✨Show Off Your Skills with Capture the Flag Competitions
Participate in Capture the Flag (CTF) competitions; these are not just a fun way to boost your skills but also a chance to showcase your talent to potential employers. Many companies, including Marks and Spencer plc (UK), love seeing candidates who actively engage in these challenges.
✨Tailor Your Online Presence
Make sure your LinkedIn and any professional profiles reflect your cybersecurity expertise. Share your projects, whether they’re personal or from a previous role, to catch the eye of hiring managers. This is how they’ll find your passion and commitment to the field!
✨Apply Directly Through Marks and Spencer plc (UK)
Don’t forget to head straight to our website and check out any openings for cybersecurity roles at Marks and Spencer plc (UK). Applying directly can sometimes give you an edge, especially if you can mention that you've been following our work or engaging in the community.
We think you need these skills to ace Tprm Security Consultant in City of Westminster
Some tips for your application 🫡
Show off your technical skills:In cybersecurity, it's crucial to highlight your technical prowess. Make sure your CV showcases specific skills like network security, penetration testing, or threat analysis. If you have relevant certifications (like CEH or CISSP), pop those on the front page to grab attention!
Tailor your portfolio for the role:Even for a full-time role, a portfolio can set you apart. If you've worked on any cybersecurity projects—be it CTF challenges, security assessments, or research papers—include these in your application. This demonstrates not just your skills, but also your hands-on experience!
Use real-world examples:When writing your cover letter, don’t just stick to your qualifications. Share real-world examples of how you’ve tackled security issues or vulnerabilities. This gives the hiring team at Marks and Spencer plc (UK) insight into your practical problem-solving abilities and makes your application memorable.
Demonstrate your passion for cybersecurity:Cybersecurity is an ever-evolving field, so show us that you’re always learning! Mention any recent courses, webinars, or industry events you’ve attended. This not only exhibits your enthusiasm but also signals to Marks and Spencer plc (UK) that you’re committed to staying ahead in the game.
How to prepare for a job interview at Marks and Spencer plc (UK)
✨Sharpen Your Technical Skills
For a role in cybersecurity, it’s essential to be up-to-date with the latest tools and techniques. Brush up on your knowledge of firewalls, intrusion detection systems, and vulnerability assessment tools. Be ready to discuss specific scenarios where you’ve applied these skills, as hands-on experience can really set us apart in interviews.
✨Prepare for Scenario-Based Questions
Expect the interviewers at Marks and Spencer plc (UK) to throw in some hypothetical situations to see how you’d handle them. Think about common security breaches or incidents and be prepared to explain how you would respond. This not only shows your problem-solving skills but also your understanding of real-world cybersecurity challenges.
✨Highlight Your Certifications
Certifications like CompTIA Security+, CISSP, or CEH can give you a significant edge in a full-time role in cybersecurity. Make sure to mention these during your interview and be prepared to discuss what you learned through those certifications and how they relate to the position at Marks and Spencer plc (UK).
✨Show Your Passion for Cybersecurity
Since you’re going for a full-time gig, showing genuine enthusiasm for the field can make all the difference. Share any personal projects, blogs, or communities you’re part of that relate to cybersecurity. This not only showcases your passion but also your commitment to staying engaged in this ever-evolving field.
