System Architect - Infrastructure Security

At Target Group, protecting information assets is fundamental to everything we do. We’re looking for a System Architect with expertise in Security Infrastructure to play a key role in strengthening the confidentiality, integrity, availability, authentication and overall security of our technology estate.

This is a senior role spanning Information Security Operations and IT Infrastructure, making it an excellent opportunity for someone with strong technical expertise across Windows, Azure, Microsoft 365 and Linux who wants to make a visible impact on organisational security.

What can you expect?

• As a new role in our Information Security team, you’ll lead remediation activity across the infrastructure estate, working closely with Security Operations and IT Infrastructure colleagues to reduce risk, strengthen resilience and improve the security posture of the organisation.
• Drawing on guidance from organisations such as CIS, NCSC and CISA, you’ll review deployed technologies, identify improvement opportunities and deliver secure, well-governed solutions into production.
• You’ll have clearly defined objectives focused on remediation and security uplift, as well as the flexibility to shape your own approach, bring forward ideas and influence future security improvements across the wider environment.

What you’ll be doing:

• Assess security configurations across Windows Server, Linux, networking, Azure and Microsoft 365 against recognised best practice standards.
• Develop and implement remediation plans to address identified security weaknesses across the infrastructure estate.
• Resolve permission and ACL issues, including file and folder access concerns, without impacting service availability.
• Improve Azure and Microsoft 365 security posture, including remediation of findings raised by Microsoft security tooling and maintaining Microsoft Secure Score.
• Strengthen identity, ransomware resilience and end-user security controls across the wider technology estate.
• Review and uplift data protection measures, including DLP configurations and broader data loss prevention controls.
• Create and maintain process documentation as controls, processes and operating practices mature.

Requirements:

You’ll bring deep technical expertise, a methodical approach and the confidence to work independently while collaborating effectively across teams. Just as importantly, you’ll be someone who enjoys solving problems, improving controls and using your judgement to drive practical security outcomes.

• Strong PowerShell skills and a drive to automate repeatable activity wherever possible.
• Extensive experience across Windows, Linux, networking and enterprise infrastructure environments.
• Strong Microsoft 365 expertise, particularly across Microsoft Defender, Threat Hunting and Microsoft Purview.
• Solid knowledge of cloud and infrastructure security, particularly within Microsoft Azure.
• The ability to interpret technical standards, assess current controls and implement improvements in a pragmatic way.
• Clear communication skills and confidence producing technical documentation, process guidance and progress updates.

Benefits:

Life at Target: When you join Target, you’ll be part of a team that genuinely invests in improvement, celebrates contribution and supports people to grow.

• Values curiosity, innovation and practical security improvement.
• Supports growth through feedback, mentoring and shared expertise.
• Recognises success and contribution and encourages continuous development.
• Cares about wellbeing, flexibility and creating a collaborative culture.

We’re committed to creating a Diverse & Inclusive culture through the execution of our D&I strategy, community relationships, our people & leaders.

Core Benefits:

• Competitive salary of up to £60,000 per annum.
• 30 days holiday plus bank holidays – from day one.
• Hybrid working policy.
• Defined Contribution Pension Scheme (employer matched up to 6%).
• Company‑paid Private Medical Insurance (benefit in kind).
• Group Life Assurance.
• Group Income Protection.
• Discretionary annual bonus scheme.
• Annual pay review.
• Flexible & Lifestyle Benefits.
• My Flex benefits platform – access to a wide range of voluntary benefits.
• Technology Buying Scheme (salary sacrifice).
• Gym Flex – discounted gym and health club memberships.
• Dental Insurance.
• Critical Illness Cover.
• Health Cash Plan.
• Cycle to Work scheme.
• Tastecard / Coffee Club.
• Employee Discount Scheme across hundreds of retailers.

Wellbeing & Support:

• Wisdom Wellbeing – confidential health and wellbeing support, including EAP.
• Free flu vaccinations and eye tests, plus contributions towards glasses.
• Recognition Scheme celebrating successes across the business.
• Free mortgage advice and support.
• Charitable payroll giving.
• Access to a GP 24 hours a day, 7 days a week, 365 days a year through GP24.
• Everest Funeral Concierge.
• Free Bereavement and Probate Advice and Support.
• Enhanced parental leave.

If you’re ready to make a real impact on infrastructure security at Target Group, we’d love to hear from you.