At a Glance
- Tasks: Lead security initiatives and embed Secure-by-Design principles across M&S.
- Company: Join M&S, a dynamic and inclusive retail leader shaping the future of secure innovation.
- Benefits: Enjoy 20% discount, competitive holidays, bonuses, and extensive wellbeing support.
- Other info: Be part of a diverse team driving change in the retail industry.
- Why this job: Make a real impact in securing M&S against evolving cyber threats.
- Qualifications: 5 years in tech with 2 years in security engineering; knowledge in multiple security domains.
The predicted salary is between 60000 - 75000 £ per year.
Join M&S as a Specialist Security Consultant and play a pivotal role in shaping the future of secure innovation. In this role, you'll lead a portfolio of change initiatives, embedding Secure-by-Design principles into everything we do. Your expertise will ensure that cyber risks are understood, managed, and reduced across the organization. Working cross-functionally with teams across business and technology, you'll maintain strong relationships within your portfolio and help drive our mission to protect and strengthen M&S against evolving threats.
What you'll do
- Support the InfoSec relationship with identified portfolio of change
- Identify when your portfolio requires additional InfoSec support from areas such as Security Architecture, Security Design or Security Engineering and broker the engagement
- Provide security requirements and guidance into the change activities
- Responsible for ensuring Threat Modelling is in place for the identified programs, projects, engineering
- Work with GRC to inform on risk, compliance and assurance with regard to your portfolio of change
Who you are
- Clear understanding and experience of risk assessment and compliance frameworks
- 5 years in technology with at least 2 years' experience of security engineering or similar role
- Must be knowledgeable in 2 or more security domains:
- Application Security
- Network Security
- Infrastructure Security
- Cloud Security
- End-User Compute Security
- IoT and ICU Security
- Supporting qualifications in technology or security such as the following:
- Microsoft/Azure Architecture
- British Computer Society Diploma
- CISSP, CISM, CRISK, CGEIT, CCAK, CCSK, CCSP
- Computer Science or Cyber Security Degree
What's in it for you
Being a part of M&S is exactly that - playing your part to bring the magic of M&S to our customers every day. We're an inclusive, dynamic, exciting, and ever-evolving business built on doing the right thing and bringing exceptional quality, value, service to every customer, whenever, wherever and however they want to shop with us.
Here are some of the benefits we offer that make working for M&S just that little bit more special:
- After completing your probationary period, you'll receive 20% colleague discount across all M&S products and many of our third-party brands for you and a member of your household.
- Competitive holiday entitlement with the potential to buy extra holiday days.
- Discretionary bonus schemes awarded based on how you achieve your personal objectives and our performance as a business.
- A generous Defined Contribution Pension Scheme and Life Assurance.
- A dedicated welcome to our teams with a tailored induction and a wide range of training programs to develop your skills.
- Amazing perks and discounts via our M&S Choices portal to maximise your financial and personal wellbeing.
- Industry-leading parental, adoption and neonatal policies, providing support and flexibility for your family.
- Access to a fantastic range of wellbeing support for all colleagues including access to our 24/7 Virtual GP and PAM Assist to support you and your family.
- A charity volunteer day to support a charity or cause you're passionate about through a dedicated day away from work.
Everyone's welcome
We are ambitious about the future of retail. We're disrupting, innovating and leading the industry into a more conscientious, inspiring digital era. We're transforming how we work together and offering our most exciting opportunities yet. Marks & Spencer strives to be an inclusive organization, trusted and admired by our colleagues, customers and suppliers. Join us and make change happen.
We are committed to building diverse and representative teams, where everyone can bring their whole selves to work and be at their best. We support each other and work together to win together.
If you feel you'd benefit from any support or reasonable adjustments during any stage of the recruitment process, please don't hesitate to let us know when completing your application. This information will be picked up by our team, so we can try and put steps in place to help you be at your best through this process.
Security Consultant: Secure-by-Design & Risk Leader employer: MARKS&SPENCER
At M&S, we pride ourselves on being an inclusive and dynamic employer that values innovation and collaboration. As a Security Consultant, you'll not only play a crucial role in safeguarding our operations but also benefit from a supportive work culture that prioritises employee growth through tailored training programmes and generous perks. With competitive benefits, a commitment to wellbeing, and a focus on diversity, M&S offers a rewarding environment where you can truly make a difference.
StudySmarter Expert Advice🤫
We think this is how you could land Security Consultant: Secure-by-Design & Risk Leader
✨Tip Number 1
Network like a pro! Reach out to current or former employees at M&S on LinkedIn. A friendly chat can give you insider info and maybe even a referral, which can really boost your chances.
✨Tip Number 2
Prepare for the interview by understanding M&S's values and how they align with your experience. Be ready to discuss how you can embed Secure-by-Design principles in their projects—show them you’re the perfect fit!
✨Tip Number 3
Practice your responses to common security-related questions. Think about your past experiences in risk assessment and compliance frameworks, and be ready to share specific examples that highlight your expertise.
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in being part of the M&S team.
We think you need these skills to ace Security Consultant: Secure-by-Design & Risk Leader
Some tips for your application 🫡
Tailor Your CV:Make sure your CV is tailored to the Security Consultant role. Highlight your experience in risk assessment and compliance frameworks, as well as any relevant security domains you've worked in. We want to see how your skills align with what we're looking for!
Craft a Compelling Cover Letter:Your cover letter is your chance to shine! Use it to explain why you're passionate about secure innovation and how you can contribute to our mission at M&S. Be sure to mention specific projects or experiences that demonstrate your expertise.
Showcase Your Technical Skills:Don’t forget to highlight your technical qualifications and certifications, like CISSP or CISM. We love seeing candidates who are knowledgeable in multiple security domains, so make sure to list them out clearly in your application.
Apply Through Our Website:We encourage you to apply through our website for a smoother application process. It’s the best way for us to receive your application and keep track of it. Plus, you’ll get to explore more about M&S while you’re at it!
How to prepare for a job interview at MARKS&SPENCER
✨Know Your Security Domains
Make sure you brush up on your knowledge of the various security domains mentioned in the job description. Be ready to discuss your experience in Application Security, Network Security, and others. This will show that you understand the breadth of the role and can contribute effectively.
✨Prepare for Risk Assessment Questions
Given the emphasis on risk assessment and compliance frameworks, prepare to answer questions about your past experiences in these areas. Think of specific examples where you've identified risks and how you managed them. This will demonstrate your expertise and problem-solving skills.
✨Showcase Your Cross-Functional Collaboration Skills
Since the role involves working cross-functionally, be ready to share examples of how you've successfully collaborated with different teams in the past. Highlight any initiatives where you’ve embedded security principles into projects, as this aligns perfectly with what they’re looking for.
✨Ask Insightful Questions
At the end of the interview, don’t forget to ask questions that show your interest in the company’s security initiatives. Inquire about their current challenges in embedding Secure-by-Design principles or how they measure success in their security programmes. This will leave a positive impression and show your genuine interest in the role.
