Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead security initiatives and ensure secure practices in exciting change projects.
- Company: Join M&S, a forward-thinking retail leader embracing digital innovation.
- Benefits: Enjoy discounts, competitive holidays, bonuses, and comprehensive wellbeing support.
- Why this job: Make a real impact in security while working in a dynamic, inclusive environment.
- Qualifications: 6 years in tech with strong security engineering experience and relevant certifications.
- Other info: Be part of a diverse team driving change in the retail industry.
The predicted salary is between 43200 - 72000 £ per year.
We're looking for a Principal Security Consultant to manage one or more portfolio of change activities to ensure Secure-by-Design thinking is embedded into everything we do and the risks are understood and managed.
What you'll do
- Own the InfoSec relationship with identified portfolio(s) of change.
- Identify when your portfolio(s) requires additional InfoSec support from areas such as Security Architecture, Security Design or Security Engineering and broker the engagement.
- Provide security requirements and guidance into the change activities.
- Responsible for ensuring Threat Modelling is in place for the identified programs, projects, engineering.
- Work with GRC to inform on risk, compliance and assurance with regard to your portfolio of change.
Who you are
- Clear understanding and experience of risk assessment and compliance frameworks.
- 6 years in technology with at least 2 years' experience delivering advanced level security engineering or similar role.
- Must be knowledgeable in 2 or more security domains (e.g Application Security, Network Security, Infrastructure Security, Cloud Security, End-User Compute Security, IoT and ICU Security).
- Supporting qualifications in technology or security such as the following e.g Microsoft/Azure Architecture, British Computer Society Diploma, CISSP, CISM, CRISK, CGEIT, CCAK, CCSP, Computer Science or Cyber Security Degree.
What's in it for you
- 20% colleague discount across all M&S products and many of our third-party brands for you and a member of your household after completing your probationary period.
- Competitive holiday entitlement with the potential to buy extra holiday days.
- Discretionary bonus schemes awarded based on how you achieve your personal objectives and our performance as a business.
- A generous Defined Contribution Pension Scheme and Life Assurance.
- A dedicated welcome to our teams with a tailored induction and a wide range of training programmes to develop your skills.
- Amazing perks and discounts via our M&S Choices portal to maximise your financial and personal wellbeing.
- Industry-leading parental, adoption and neonatal policies, providing support and flexibility for your family.
- Access to a fantastic range of wellbeing support for all colleagues including access to our 24/7 Virtual GP and PAM Assist to support you and your family.
- A charity volunteer day to support a charity or cause you're passionate about through a dedicated day away from work.
We're ambitious about the future of retail. We're innovating, disrupting, and leading the way into a more inspiring, digital era. It's an exciting time to be part of M&S. To support us on our journey, we're building inclusive, diverse teams where everyone can be themselves, do their best work, and make change happen. We support each other and succeed together. Don't worry if you don't meet every single requirement of the job description. It's more of a guide to what's possible within the role. If you're passionate, ready to work hard, and think the role feels right for you, we'd love to hear from you.
Principal Security Consultant employer: MARKS&SPENCER
Contact Detail:
MARKS&SPENCER Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Principal Security Consultant
✨Tip Number 1
Network like a pro! Reach out to folks in your industry on LinkedIn or at events. A friendly chat can lead to opportunities that aren’t even advertised yet.
✨Tip Number 2
Prepare for those interviews by practising common questions and scenarios related to security consulting. We all know that confidence is key, so the more you rehearse, the better you'll perform!
✨Tip Number 3
Showcase your expertise! Bring examples of your past work, especially in risk assessment and compliance frameworks. This will help us see how you can add value to our team.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets the attention it deserves. Plus, we love seeing candidates who take that extra step.
We think you need these skills to ace Principal Security Consultant
Some tips for your application 🫡
Tailor Your CV: Make sure your CV reflects the skills and experiences that match the Principal Security Consultant role. Highlight your experience in risk assessment and compliance frameworks, as well as any relevant security domains you’re knowledgeable in.
Craft a Compelling Cover Letter: Use your cover letter to tell us why you're passionate about security and how your background aligns with our Secure-by-Design approach. Share specific examples of how you've managed change activities or provided security guidance in previous roles.
Showcase Your Qualifications: Don’t forget to mention any supporting qualifications you have, like CISSP or CISM. These credentials can really set you apart and show us you’re serious about your professional development in the security field.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you’re considered for the role. Plus, it’s super easy to do!
How to prepare for a job interview at MARKS&SPENCER
✨Know Your Security Domains
Make sure you brush up on the security domains mentioned in the job description. Be ready to discuss your experience in Application Security, Network Security, or any other relevant areas. This shows you’re not just familiar with the terms but have practical knowledge to back it up.
✨Understand Risk Assessment Frameworks
Since the role involves risk assessment and compliance, take some time to review key frameworks. Be prepared to share examples of how you've applied these in past roles. This will demonstrate your expertise and understanding of the importance of security in change activities.
✨Prepare for Scenario-Based Questions
Expect questions that ask you to solve hypothetical security challenges. Think about how you would approach Threat Modelling or engage with Security Architecture. Practising these scenarios can help you articulate your thought process clearly during the interview.
✨Show Your Passion for Security
Let your enthusiasm for security shine through! Talk about any recent trends or technologies in the field that excite you. This not only shows your commitment but also helps you connect with the interviewers on a personal level.
