Start Hiring Start Applying
Start Applying

StudySmarter Job Board

Tprm Principal Security Consultant
Apply now
Job Board
Companies
MARKS&SPENCER
Tprm Principal Security Consultant

Tprm Principal Security Consultant

Full-Time 60000 - 80000 £ / year (est.) Home office (partial)
Apply now Go Premium
M

At a Glance

  • Tasks: Act as a trusted advisor on security for third-party integrations and manage cyber risk.
  • Company: Join M&S, a dynamic and inclusive retail leader innovating for the future.
  • Benefits: Enjoy a 20% discount, competitive holidays, bonuses, and wellbeing support.
  • Other info: Be part of an exciting journey in a rapidly evolving digital era.
  • Why this job: Make a real impact in cybersecurity while working with diverse teams.
  • Qualifications: 6 years in tech with strong security knowledge and relevant certifications.

The predicted salary is between 60000 - 80000 £ per year.

TPRM Security Consultant to act as a trusted advisor to senior stakeholders responsible for ensuring the security of a broad range of technical integrations between M&S and its suppliers, providing risk based assessments and supporting third party options to mitigate security risks related to complex TPRM engagements. Additionally, to ensure Secure‑by‑Design thinking is embedded into everything we do and that the risks are understood and managed. You will be responsible for establishing and maintaining an effective relationship with assigned portfolio(s) of change from the Third‑Party scope at both engineering and management levels. This is a global role that requires cross organisational influence over all areas of the business and technology including traditional retail, online, international, delivery centres, partners etc to support our mission in the management and reduction of Cyber Risk.

What you’ll do

  • Own the InfoSec relationship with identified Third Party portfolio(s) of change to drive risk‑aware business decisions.
  • Become a trusted advisor to the technical and management teams in your assigned portfolio(s).
  • Identify when your TPRM portfolio(s) require additional InfoSec support from areas such as Security Architecture, Security Design or Security Engineering and broker a successful engagement.
  • Lead technical security risk assessments and provide requirements and guidance into change activities, founded in CIS and secured by design principles.
  • Oversee supplier onboarding risk assessments and ongoing monitoring programs.

Who you are

  • Detailed knowledge of 2 or more security domains and good understanding of others e.g. Application Security, Network Security, Infrastructure Security, Cloud Security, End‑User Compute Security, IoT and ICU Security.
  • Demonstrable understanding and experience of risk assessment and compliance frameworks.
  • 6 years in technology with at least 2 years' experience delivering advanced level security engineering or similar role.
  • Supporting qualifications in technology or security e.g. Microsoft/Azure Architecture, OR CISSP, CISM, CRISK, CGEIT, CCAK, CCSK, CCSP.

What’s in it for you

Being a part of M&S is exactly that – playing your part to bring the magic of M&S to our customers every day. We’re an inclusive, dynamic, exciting, and ever‑evolving business built on doing the right thing and bringing exceptional quality, value, service to every customer, whenever, wherever and however they want to shop with us. Here are some of the benefits we offer that make working for M&S just that little bit more special:

  • After completing your probationary period, you’ll receive 20 % colleague discount across all M&S products and many of our third‑party brands for you and a member of your household.
  • Competitive holiday entitlement with the potential to buy extra holiday days.
  • Discretionary bonus schemes awarded based on how you achieve your personal objectives and our performance as a business.
  • A generous Defined Contribution Pension Scheme and Life Assurance.
  • A dedicated welcome to our teams with a tailored induction and a wide range of training programmes to develop your skills.
  • Amazing perks and discounts via our M&S Choices portal to maximise your financial and personal wellbeing.
  • Industry‑leading parental, adoption and neonatal policies, providing support and flexibility for your family.
  • Access to a fantastic range of wellbeing support for all colleagues including access to our 24/7 Virtual GP and PAM Assist to support you and your family.
  • A charity volunteer day to support a charity or cause you’re passionate about through a dedicated day away from work.

Everyone’s welcome

We’re ambitious about the future of retail. We’re innovating, disrupting, and leading the way into a more inspiring, digital era. It’s an exciting time to be part of M&S. Our commitment to support us on our journey, we’re building inclusive, diverse teams where everyone can be themselves, do their best work, and make change happen. We support each other and succeed together. Don’t worry if you don’t meet every single requirement of the job description. It’s more of a guide to what’s possible within the role. If you’re passionate, ready to work hard, and think the role feels right for you, we’d love to hear from you.

Tprm Principal Security Consultant employer: MARKS&SPENCER

Marks & Spencer is an exceptional employer that fosters a dynamic and inclusive work culture, where every employee plays a vital role in delivering quality and service to our customers. With comprehensive benefits including a generous colleague discount, competitive holiday entitlement, and extensive training programmes, we prioritise employee growth and wellbeing. Join us in a global role that not only challenges you but also allows you to influence the future of retail while being part of a supportive team dedicated to making a positive impact.
M

Contact Detail:

MARKS&SPENCER Recruiting Team

View MARKS&SPENCER Profile

StudySmarter Expert Advice 🤫

We think this is how you could land Tprm Principal Security Consultant

✨Tip Number 1

Network like a pro! Reach out to current or former employees at M&S on LinkedIn. A friendly chat can give you insider info and maybe even a referral, which can really boost your chances.

✨Tip Number 2

Prepare for the interview by understanding M&S's values and how they align with your experience. Be ready to discuss how you can contribute to their mission of managing and reducing Cyber Risk.

✨Tip Number 3

Showcase your expertise in security domains during interviews. Bring examples of past projects where you’ve successfully mitigated risks or improved security measures. This will help you stand out as a trusted advisor.

✨Tip Number 4

Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, it shows you’re genuinely interested in being part of the M&S team.

We think you need these skills to ace Tprm Principal Security Consultant

Risk Assessment
Cyber Security
Third Party Risk Management (TPRM)
Security Architecture
Security Design
Security Engineering
Application Security
Network Security
Infrastructure Security
Cloud Security
End-User Compute Security
IoT Security
CISSP
CISM
CRISK

Some tips for your application 🫡

Tailor Your Application: Make sure to customise your CV and cover letter to highlight your experience in TPRM and security domains. We want to see how your skills align with the role, so don’t hold back on showcasing your relevant achievements!

Showcase Your Expertise: When detailing your experience, focus on specific projects or roles where you acted as a trusted advisor or led risk assessments. We love seeing concrete examples of how you've managed security risks in complex environments.

Be Authentic: Let your personality shine through in your application. We’re looking for passionate individuals who are ready to contribute to our mission. Don’t be afraid to express why you’re excited about this role and what makes you a great fit!

Apply Through Our Website: For the best chance of success, make sure to apply directly through our website. This way, we can easily track your application and ensure it gets the attention it deserves. We can’t wait to hear from you!

How to prepare for a job interview at MARKS&SPENCER

✨Know Your Security Domains

Make sure you brush up on your knowledge of security domains like Application Security, Network Security, and Cloud Security. Be ready to discuss how your experience aligns with these areas and how they relate to the role.

✨Understand TPRM Fundamentals

Familiarise yourself with Third-Party Risk Management (TPRM) principles and frameworks. Prepare to explain how you've applied risk assessment techniques in previous roles and how you can help mitigate security risks in complex engagements.

✨Showcase Your Advisory Skills

As a trusted advisor, you'll need to demonstrate your ability to influence stakeholders. Think of examples where you've successfully guided teams in making risk-aware decisions and be ready to share those stories.

✨Prepare for Technical Assessments

Expect to lead technical security risk assessments during the interview. Brush up on your knowledge of CIS and secure-by-design principles, and be prepared to discuss how you would apply these in real-world scenarios.

Tprm Principal Security Consultant
MARKS&SPENCER

Land your dream job quicker with Premium

You’re marked as a top applicant with our partner companies
Individual CV and cover letter feedback including tailoring to specific job roles
Be among the first applications for new jobs with our AI application
1:1 support and career advice from our career coaches
Go Premium

Money-back if you don't land a job in 6-months

>