IT Security Engineer
New Today
Everyone Welcome Across our Group, we're committed to a culture where everyone feels welcome, valued, and can thrive at work. We celebrate diverse voices, champion inclusion, and support each other through our growing colleague networks. We invest in partnerships that drive change, from supporting Doncaster Pride and introducing the Hidden Disabilities Sunflower, to partnering with Carers UK and developing leaders with Diversity in Retail. We're proud to be an equal opportunities employer, committed to building a workplace that reflects the communities we serve. So, if your experience doesn't quite match the specification, we'd still really love to hear from you
What you'll be doing This role is about reducing security risk through technical delivery and strategic oversight. 1. Security Engineering & Architecture
Lead the deployment, configuration, and tuning of new and existing security tools to enhance defence and efficiency.
Drive the enforcement of security policy and controls across key domains
Initiate, provide counsel and assurance on technical security projects from conception through to operational handover, ensuring clear risk reduction objectives are met. Working with other areas within the technology function to execute the delivery of the projects
Provide technical counsel to the Head of Group IT Security on new solutions before sign-off, ensuring secure-by-design principles are followed.
Conduct continuous internal security assessments, including Privileged Access Reviews and Cloud Configuration Audits, and own the resulting remediation activities end-to-end.
Develop automation and tooling to reduce incident response times and eliminate repetitive tasks for the security team.
Define and deliver security standards, policies and processes for the group and review in a timely manner.
2. Threat Detection & Response
Support and enhance detection logic across all computing environments in collaboration with our security partners.
Perform deep, forensic-level investigations when security incidents occur. The goal is simple: learn from every event and prevent the same issue from ever recurring.
Lead the technical remediation efforts for security incidents and identified vulnerabilities, working closely across IT and the wider business.
Proactively determine our risk by running the path of known attacker tactics, techniques, and procedures (TTPs) within our environments.
Continuously improve security processes, playbooks, and tooling based on real-world lessons
3. Assurance & Vulnerability Management
Lead the technical support for our penetration testing programme, including sound scoping, engaging with pentesters, and owning the subsequent vulnerability remediation.
Develop and implement a technical framework for the deeper assessment and management of Third-Party Security Risk, including assisting with the technical elements of supplier service reviews and audit execution.
Apply established Cybersecurity Frameworks and Best Practices to mature our security posture and guide governance activities.
Collaborate with engineering teams to enhance security coverage and visibility, providing expert technical security support across the company.
The role is for you if... This requires a high level of organisational skills and the ability to manage senior relationships across the business. Significant experience in security engineering within mixed Cloud and On-Prem enterprise environments.
Excellent communication skills, especially the ability to communicate complex technical security concepts and risks to all levels of the organisation.
A deep understanding of attacker methodology, detection techniques, and how response frameworks relate to the role.
Experience working in cloud-native environments, specifically focusing on building and integrating security tooling to identify and mitigate misconfigurations.
Strong analytical, troubleshooting, and problem-solving skills.
Working knowledge of major industry standards and compliance requirements.
Ability to deliver through others.
Desirable Certifications
Certified Information System Security Professional (CISSP)
Certified Cloud Security Professional (CCSP)
Professional Cloud Security Engineer (GCP)
Please note: Demonstrable, hands-on experience and proven risk-reduction capability will always take priority over certification. We will assess all relevant industry certifications when coupled with substantial technical work. DFS Benefits Potential Annual Bonus Scheme: Contribute to our success and get rewarded for it Growth and Training: Learn new skills and develop your career with us Leave: Enjoy a great holiday allowance, with the option to buy 5 extra days. Take advantage of our enhanced leave for Maternity, Paternity, Shared Parental, and Adoption, plus a paid volunteering day each year Discounts: Get 30% off DFS and Sofology products for yourself, plus discounts for friends and family - and savings at big brands like Sainsburys, ASOS, and IKEA Wellbeing Perks: Access healthcare services, an Employee Assistance Programme, and discounted gym memberships Pension and Savings: Join our Group Pension and Sharesave schemes Life Assurance & Sick Pay: Peace of mind with Life Assurance and Company Sick Pay
TPBN1_UKTJ
- Location:
- Gb
- Job Type:
- FullTime
- Category:
- IT