Start Hiring Start Applying
Start Applying

StudySmarter Job Board

TPRM Principal Security Consultant
Apply now
Job Board
Companies
Marks and Spencer
TPRM Principal Security Consultant

TPRM Principal Security Consultant

Full-Time 70000 - 90000 £ / year (est.) Home office (partial)
Apply now Go Premium
Marks and Spencer

At a Glance

  • Tasks: Act as a trusted advisor on security for third-party integrations and manage cyber risk.
  • Company: Join M&S, a dynamic and inclusive retail leader innovating for the future.
  • Benefits: Enjoy a 20% discount, competitive holidays, bonuses, and extensive wellbeing support.
  • Other info: Be part of a diverse team where your ideas can thrive and make a difference.
  • Why this job: Make a real impact in cybersecurity while working with cutting-edge technology.
  • Qualifications: 6 years in tech with advanced security experience and relevant certifications.

The predicted salary is between 70000 - 90000 £ per year.

All the details TPRM Security Consultant to act as a trusted advisor to senior stakeholders responsible for ensuring the security of a broad range of technical integrations between M&S and its suppliers, providing risk based assessments and supporting third party options to mitigate security risks related to complex TPRM engagements. Additionally, to ensure Secure-by-Design thinking is embedded into everything we do and that the risks are understood and managed. You will be responsible for establishing and maintaining an effective relationship with assigned portfolio(s) of change from the Third-Party scope at both engineering and management levels. This is a global role that requires cross organisational influence over all areas of the business and technology including traditional retail, online, international, delivery centres, partners etc to support our mission in the management and reduction of Cyber Risk.

What you'll do

  • Own the InfoSec relationship with identified Third Party portfolio(s) of change to drive risk aware business decisions.
  • Become a trusted advisor to the technical and management teams in your assigned portfolio(s).
  • Identify when your TPRM portfolio(s) require additional InfoSec support from areas such as Security Architecture, Security Design or Security Engineering and broker a successful engagement.
  • Lead technical security risk assessments and provide requirements and guidance into change activities, founded in CIS and secured by design principles.
  • Oversee supplier onboarding risk assessments and ongoing monitoring programs.

Who you are

  • Detailed knowledge of 2 or more security domains and good understanding of others such as Application Security, Network Security, Infrastructure Security, Cloud Security, End-User Compute Security, IoT and ICU Security.
  • Demonstrable understanding and experience of risk assessment and compliance frameworks.
  • 6 years in technology with at least 2 years' experience delivering advanced level security engineering or similar role.
  • Supporting qualifications in technology or security such as Microsoft/Azure Architecture, OR CISSP, CISM, CRISK, CGEIT, CCAK, CCSK, CCSP.

What's in it for you

Being a part of M&S is exactly that – playing your part to bring the magic of M&S to our customers every day. We're an inclusive, dynamic, exciting, and ever evolving business built on doing the right thing and bringing exceptional quality, value, service to every customer, whenever, wherever and however they want to shop with us. Here are some of the benefits we offer that make working for M&S just that little bit more special:

  • After completing your probationary period, you'll receive 20% colleague discount across all M&S products and many of our third-party brands for you and a member of your household.
  • Competitive holiday entitlement with the potential to buy extra holiday days!
  • Discretionary bonus schemes awarded based on how you achieve your personal objectives and our performance as a business.
  • A generous Defined Contribution Pension Scheme and Life Assurance.
  • A dedicated welcome to our teams with a tailored induction and a wide range of training programmes to develop your skills.
  • Amazing perks and discounts via our M&S Choices portal to maximise your financial and personal wellbeing.
  • Industry-leading parental, adoption and neonatal policies, providing support and flexibility for your family.
  • Access to a fantastic range of wellbeing support for all colleagues including access to our 24/7 Virtual GP and PAM Assist to support you and your family.
  • A charity volunteer day to support a charity or cause you're passionate about through a dedicated day away from work.

Everyone's welcome

We're ambitious about the future of retail. We're innovating, disrupting, and leading the way into a more inspiring, digital era. It's an exciting time to be part of M&S. To support us on our journey, we're building inclusive, diverse teams where everyone can be themselves, do their best work, and make change happen. We support each other and succeed together. Don't worry if you don't meet every single requirement of the job description. It's more of a guide to what's possible within the role. If you're passionate, ready to work hard, and think the role feels right for you, we'd love to hear from you.

TPRM Principal Security Consultant employer: Marks and Spencer

Marks & Spencer (M&S) is an exceptional employer that fosters a dynamic and inclusive work culture, where every employee plays a vital role in delivering quality and value to customers. With a strong focus on professional development, M&S offers tailored training programmes, generous benefits including a competitive pension scheme, and a commitment to employee wellbeing, making it an ideal place for those looking to grow their careers while contributing to a forward-thinking retail environment.
Marks and Spencer

Contact Detail:

Marks and Spencer Recruiting Team

View Marks and Spencer Profile

StudySmarter Expert Advice 🤫

We think this is how you could land TPRM Principal Security Consultant

✨Tip Number 1

Network like a pro! Reach out to current employees at M&S or in similar roles on LinkedIn. A friendly chat can give you insider info and might just get your foot in the door.

✨Tip Number 2

Prepare for the interview by understanding M&S's mission and values. Show how your experience aligns with their goals, especially around security and risk management. We want to see that passion!

✨Tip Number 3

Practice your responses to common interview questions, but keep it natural. Use the STAR method (Situation, Task, Action, Result) to structure your answers, especially when discussing past experiences in TPRM.

✨Tip Number 4

Don’t forget to follow up after your interview! A quick thank-you email can leave a lasting impression and shows your enthusiasm for the role. Plus, it keeps you on their radar!

We think you need these skills to ace TPRM Principal Security Consultant

Risk Assessment
Cyber Security
Security Architecture
Security Design
Security Engineering
Application Security
Network Security
Infrastructure Security
Cloud Security
End-User Compute Security
IoT Security
Compliance Frameworks
Stakeholder Management
Cross-Organisational Influence
Technical Advisory

Some tips for your application 🫡

Tailor Your CV: Make sure your CV reflects the skills and experiences that align with the TPRM Principal Security Consultant role. Highlight your knowledge in security domains and any relevant qualifications to catch our eye!

Craft a Compelling Cover Letter: Use your cover letter to tell us why you're the perfect fit for this role. Share specific examples of how you've acted as a trusted advisor in previous positions and how you’ve managed security risks effectively.

Showcase Your Technical Skills: Don’t shy away from detailing your technical expertise! Mention your experience with risk assessments, compliance frameworks, and any relevant certifications like CISSP or CISM that make you stand out.

Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for this exciting opportunity at M&S!

How to prepare for a job interview at Marks and Spencer

✨Know Your Security Domains

Make sure you brush up on your knowledge of security domains like Application Security, Network Security, and Cloud Security. Be ready to discuss how your experience aligns with these areas and how they relate to the role of a TPRM Principal Security Consultant.

✨Showcase Your Risk Assessment Skills

Prepare to talk about your experience with risk assessment and compliance frameworks. Have specific examples ready that demonstrate how you've successfully identified and mitigated risks in previous roles, especially in complex TPRM engagements.

✨Build Relationships

Since this role involves establishing relationships with stakeholders, think about how you can convey your ability to influence and collaborate across different teams. Share examples of how you've built trust and worked effectively with both technical and management teams.

✨Emphasise Secure-by-Design Thinking

Be prepared to discuss how you incorporate Secure-by-Design principles into your work. Highlight any past projects where you ensured security was embedded from the start, and how that approach benefited the overall project outcomes.

TPRM Principal Security Consultant
Marks and Spencer

Land your dream job quicker with Premium

You’re marked as a top applicant with our partner companies
Individual CV and cover letter feedback including tailoring to specific job roles
Be among the first applications for new jobs with our AI application
1:1 support and career advice from our career coaches
Go Premium

Money-back if you don't land a job in 6-months

>