Home
Jobs
John Lewis Partnership
Information Security Engineering Lead

Information Security Engineering Lead

Hybrid

Bracknell, United Kingdom

Freelance

20-03-2025

Share this job:

Score my CV Apply

Job Specifications

About The Role

Join the John Lewis Partnership’s Information Security Engineering team and play a crucial role in protecting our customers, Partners and business from evolving cyber threats. The John Lewis Partnership’s Information Security strategy is bold and ambitious. We provide a collection of security services, delivered through people, processes and technology. Working collaboratively, these services ensure that customers can shop with us efficiently, safely and securely, every single day. A key component of this is the Threat Defence team. A group of Partners (employees) who play a vital role in the defence of our systems and data from cyber attacks. This is a team with a very broad set of responsibilities, including the monitoring of threats and vulnerabilities and the engineering and testing of key security defences. We’re looking for an experienced Information Security Engineering Lead to take on a lead role within our Security Engineering service. In this role you’ll be overseeing the delivery of new security capabilities and ensuring that our Security Operations Centre remains equipped to defend against the latest cyber security threats. This is a fantastic opportunity to get hands-on with market leading next-generation cyber security tools where you'll be empowered to lead and innovate within an agile, supportive and collaborative team environment.

At a glance

Expected Salary - £65,000 - £85,000 depending on experience
Contract type - Permanent
Working pattern/flexible working - This role is based at the Bracknell Head Office, with an opportunity for hybrid working. Your time will primarily be split between Bracknell (current normal expectation 1 day per week) and working from home. There will also be an expectation to infrequently visit other locations as the need arises.
Our Infosec team currently works from the office every Tuesday to connect and on a more ad-hoc basis to attend key meetings, but again the frequency is dependent on the business needs.
There will be a need for on-call support as part of a callout rota, where you will be expected to be available for out of hours support approximately one week in 5. Specific rota requirements can be planned around leave and other personal commitments.

What you’ll be doing:

In this highly technical role, you’ll be responsible for developing and maintaining our security operations platforms and using your technical expertise and experience with security tooling to inform our overall Information Security strategy.
You’ll bring your technical leadership to projects, leading the delivery of new security tooling as a respected Information Security expert and working with technology teams to ensure that new technologies are sufficiently secure and protected.
You’ll oversee a range of continuous improvement activities for our existing platforms and will work closely with other members of the Security Engineering service in an agile way to ensure we continue to drive value out of our investments.
You’ll be a technical leader in the Information Security team and will use your experience and knowledge to guide, inspire and support other members of the team.
You’ll develop positive relationships with colleagues and senior leaders from technology teams outside of Information Security and will work closely with vendors to ensure a secure Partnership.

What you’ll have (Essential Skills):

Hands-on experience in a senior Security Engineering role, overseeing and leading a group of Security Engineers.
Demonstrable experience in delivering and/or maintaining EDR tooling. Specific experience leading the deployment or engineering of SentinelOne would be of particular benefit.
A proven track record working as part of an agile delivery team, following agile best practices such as Scrum or Kanban.
Experience collaborating with development, operations and infrastructure teams, preferably in a security context
A working knowledge of security best practice, including frameworks such as Mitre ATT&CK and NIST.

What else you could bring (Desirable Skills):

Proficiency in working with or developing SIEM tooling and SIEM detections/alerts.
Proficiency in Google SecOps (Google Chronicle) would be particularly beneficial.
In-depth knowledge of network security, including principles such as zero trust and network security tooling such as zScaler.
Experience securing cloud platforms and applications using tooling such as CASB, CSPM, SSPM or similar. Specific knowledge of GCP and Google Security Command Center would be beneficial.
Formal accreditation in Information Security such as a related degree, ISC2 CISSP or similar.

Additional Information

The application form consists of a CV upload, followed by application questions. Please save the application questions to a Google docs before entering on Workday for future reference.
Internal applicants please copy paste this link on to the browser for job outline - https://bit.ly/InfosecEnggLead

'

About The Partnership

We’re the largest employee owned business in the UK and home of our cherished brands, John Lewis and Waitrose. We’re not just employees, we’re Partners, driven by our purpose to build a happier world. As we look to our future, there’s never been a more exciting time to join us.

We’re ruthlessly focused on being brilliant at retail. We continue to innovate, adapt and diversify. Never Knowingly Undersold on price, quality and service in John Lewis and passionately serving food-lovers in Waitrose.

As Partners we all share the responsibility of ownership and in its rewards. We use our voices to contribute to our success, working together through the good and challenging times, holding true to our behaviours and treating everyone with kindness and respect.

We all own making the Partnership somewhere we belong. Embracing our differences and creating an environment where we’re free to be ourselves and can THRIVE. Growing ourselves individually, and as a collective.

As Partners, we make all the difference. And, we all own it.

Important points to note:

It’s important to note that some of our roles are subject to pre-employment vetting. If required, you’ll find out more about vetting throughout the recruitment process and we encourage you to complete any vetting documents quickly to avoid delays.

We also recommend that you apply as soon as possible as vacancies can close early if we see a high number of applicants.

We want all of our Partners to have a good work-life balance and we support flexible working. This might mean flexible or compressed hours, job sharing or shorter hour contracts, where possible. Please discuss this further with the hiring manager during your interview.

About the Company

Working in Partnership for a happier world. Our Partnership is an ongoing experiment to find happier, more trusted ways of doing business, for the benefit of us all. We work together to create a successful business and a fairer, more sustainable future for Partners, customers, suppliers and communities. Our Partnership is owned entirely in trust by Partners which means we are more than employees; we share knowledge, power and profit. Our Purpose inspires our principles, drives our decisions and acts as our guide. Visit ... Know more

Related Jobs

Company Name: eTeam
Job Title: SAP Security Consultant(BPSS/SC eligible)
Job Description: We are a Global Recruitment specialist that provides support to the clients across EMEA, APAC, US and Canada. Job Title: SAP Security Consultant Duration: 10 months Location: At start would be in Guildford after some days would be in Camberley Average 30% in the office Clearance required: BPSS to start/ SC to eligible Extensive experience with security and controls workstreams of SAP business transformation projects – preferably atleast two project cycles Min 10 years of technical implementation experience in the domains of SAP application security, role-based access strategies, segregation of duties, identity and access management (user provisioning, user access reviews, user terminations), and data security Proficiency in security design, configuration, testing and deployment activities in SAP technologies this to include SAP S/4HANA and Fiori Experience on BTP & Cloud application security desirable. Strong communication skills; ability to discuss and present security topics tailored to technical, business, and leadership level audiences? If you are interested in this position and would like to learn more, please send through your CV and we will get in touch with you as soon as possible. Please note, candidates are often Shortlisted within 48 hours.

Camberley, United Kingdom

Hybrid

Freelance

28-03-2025

Company Name: SCC
Job Title: Network Security Architect
Job Description: We are actively building diverse teams and welcome applications from everyone. Role: Network Security Architect Location: Birmingham, Manchester or London (SCC operate hybrid working, which comprises of a mix of office and home working) Contract Type: 12 month Fixed Term Contract Salary Package: £70,000 - £72,500 plus large company benefits, company car, a broad flexible benefits scheme, and 2 paid-for volunteering days a year Hours: 9.00 am – 5.30 pm Monday – Friday Interview Process: 2-stage process Why SCC? An inclusive workplace Excellent package: solid basic and company benefits Hybrid working & core hours in line with role requirements Career development and life-long learning opportunities Opportunity to join Europe's largest privately-owned IT Company Role Purpose Demand for SCC’s Professional services continues to grow both from existing and new customers. This has created an exciting opportunity for an ambitious Security Architect to join our talented team, based in Birmingham, London or Manchester. Security clearance or the willingness to apply will be required for this role. Key Responsibilities Determine security protocols by evaluating business strategies and requirements. Designing and implementation of Multi-Factor Authentication. Design and implementation of advanced Network Access Control (Cisco ISE, Aruba ClearPass). Designing and implementation of firewall and ZTNA solutions (Cisco, Fortinet), including public cloud deployments. Develop, review and approve installation security requirements for LANs, WANs, VPNs, firewalls, routers, and related network devices. Review system security measures and implement necessary enhancements. Monitor and understand emerging practises and standards, utilising educational opportunities, professional publications and organisations. Skills And Experience Strong working knowledge of IT risks, cyber security, and computer operating software. Advanced understanding of security protocols, cryptology and security. Minimum CCNP level accreditation (or demonstrable progress with the certification), CCIE preferred. Background with core networking technologies in large-scale deployments. Strong background with network security technologies in large-scale deployments. Experience of working with large scale switching, routing, firewall and other network technologies Experience of working with enterprise level clients. Demonstrating excellent analytical and troubleshooting skills. Ability to work under pressure and to tight deadlines. About Us SCC is Europe's largest privately-owned IT business, based out of the new £7m HQ office in Birmingham and we help clients succeed through IT transformation and exceptional customer experiences. We are a business where innovation is greater as we combine unique ideas, people and disciplines. We are a global company that is passionate about IT and where we look to simplify the complex. We are an equal opportunities employer SCC is committed to providing equal opportunities and a proactive and inclusive approach to equality and diversity in employment. No applicant or employee will be treated less favourably than another on the grounds of a protected characteristic which are defined as sex, sexual orientation, age, disability, gender reassignment, trade union membership or non-membership, marriage and civil partnership, pregnancy and maternity, race and religion or belief. If you are selected for interview, and need any reasonable adjustments made for your interview, please let the SCC Talent Acquisition team know, at the point of scheduling. Diversity & Inclusion at SCC - https://www.scc.com/diversity-and-inclusion/ Sustainability at SCC - https://www.scc.com/sustainability-at-scc/ Life at SCC - https://www.linkedin.com/company/scc/life

England, United Kingdom

Hybrid

Freelance

28-03-2025

Company Name: SUEZ
Job Title: Head of Infrastructure and Security
Job Description: Contract type Permanent Working Pattern Full time Location based Maidenhead Dates that interviews will take place 1st April onwards Salary £80,019 - £93,861 Summary of vacancy Head of Technology Security and Infrastructure Are you an experienced Head of Technology Security and Infrastructure? We are looking for Head of Technology Security and Infrastructure specialist to strategically and tactically lead the infrastructure and security teams of Suez R&R UK. To lead, plan, organise and manage teams to ensure the delivery of a stable and progressive technical foundation for all the systems and services of SUEZ UK that is also safe and secure. Utilising the best fit of cloud and on premise, underpinned by a future fit network, able to deliver the performance and security requirements of the organisation aligned to relevant group and legislative standards. The salary for this role is £80,019 - £93,861, benefits include company car or car allowance (£10,401.52 - £11,508.88 per annum), 20% annual bonus, 25 days holiday and 10% employer contribution pension. About The Role What will you be doing? Your role is to act as the SME for all cyber security and infrastructure matters, providing strategic vision and leadership. To lead, plan, organise and manage teams to ensure the delivery of a stable and progressive technical foundation for all the systems and services of SUEZ UK that is also safe and secure. Utilising the best fit of cloud and on premise, underpinned by a future fit network, able to deliver the performance and security requirements of the organisation aligned to relevant group and legislative standards. Build a strategic supplier base that delivers value for money and enables SUEZ to make best use of progressive technologies To simplify the technical estate including, but not limited to, vendors, diversity of hardware and associated systems Be responsible for the procurement activity associated with all purchases in the security and infrastructure area Working closely with the Head of Digital and Architecture and The Head of Business Partnerships, build a roadmap that underpins the business ambition and deals with legacy and emergent risk Support team members’ development removing Single Points of Failure (SPOF’s) and making use of third party resource as necessary to bolster capacity. What are the requirements? Extensive experience of leading IT security in a multi-site environment with OT elements A Computer Science Degree (or other relevant subject) or equivalent professional experience CISSP (Certified Information Systems Security Professional) Microsoft Certifications And/or Network Qualifications ITIL Foundation An in-depth knowledge of Microsoft systems and operating systems An understanding of the practical implementation of SD WAN and its principles Knowledge of Cyber Essentials, Cyber Essentials Plus and/or the NIS Directive and the successful implementation of these in an industrial or service setting An practical understanding of ISO 27001 and project management principles Excellent budget and cost management skills across both Opex and Capex A collaborative team player with a positive attitude to meeting and exceeding business demands Experienced in Cloud Migrations, the use of SaaS and PaaS and the effective management of these in a complex, multi-vendor estate Experienced at providing infrastructure platforms for complex, multisite environments with a mix of operation and traditional technologies Who We Are Join us, and you’ll be part of a forward-thinking business where people are free to grow. In a workplace where respect, team spirit, customer focus, and commitment to the environment are real values – not just words on a page. As part of our dedicated team, you’ll play an important part in the essential work we are doing to build a sustainable future. At Suez, we believe in investing in our people. You’ll have access to continuous learning and development opportunities, empowering you to reach your full potential. Our inclusive culture ensures that everyone’s voice is heard and valued, fostering innovation and collaboration. We offer competitive benefits, including flexible working arrangements, comprehensive health and wellness programs, and opportunities for career advancement. By joining Suez, you’ll be contributing to a mission-critical role that makes a real difference in the world. If you’re ready to take on this challenge and be part of a team that’s dedicated to making a positive impact, apply to Suez today. Together, we can build a sustainable future Job Description Head_of_Technology_Security_and_Infrastructure.docx Closing Date 10/04/2025 Once we have sufficient applicants we withhold the right to close job vacancies early.

Maidenhead, United Kingdom

On site

Freelance

27-03-2025

Company Name: Pontoon Solutions
Job Title: Security Consultant
Job Description: Pontoon is an employment consultancy. We put expertise, energy, and enthusiasm into improving everyone’s chance of being part of the workplace. We respect and appreciate people of all ethnicities, generations, religious beliefs, sexual orientations, gender identities, and more. We do this by showcasing their talents, skills, and unique experience in an inclusive environment that helps them thrive. Join us in shaping a sustainable energy future! Our Client is a leading Energy System Operator for Great Britain, ensuring that the nation has the essential energy it needs by balancing supply and demand every second of every day. They are on an exciting journey toward a secure and sustainable energy landscape, and they need talented individuals like you to be a part of it! Role: Security Assurance Consultant Duration: 6 Months (extension options) Location: Wokingham, Warwick or Glasgow (Hybrid) Rate: £700 - £800 per day (umbrella) About the Role: We are seeking a dynamic Security Assurance Consultant to play a pivotal role in our IT separation and migration programme. This is your opportunity to contribute to the advancement of our cyber security strategy while working closely with various stakeholders. You will ensure that all IT-related activities adhere to our security policies and frameworks, implementing a "Secure by Design" approach. Primary Responsibilities: Deliver security advisory, consultancy, and assurance activities across our application migration and separation programme. Collaborate with Security Architecture to ensure security requirements are clear, documented, and implemented effectively. Participate in design and architecture governance processes to embed security policy throughout all lifecycle stages. Conduct risk assessments against proposed designs to support informed decision-making. Maintain regular contact and relationships with stakeholder security teams to ensure alignment. What We’re Looking For: A solid understanding of security techniques for securing devices and communications, including authentication, encryption, and integrity checking. A proactive approach and creativity in finding novel and pragmatic solutions. Prior experience in Security Architecture is beneficial. Demonstrated experience in assuring or securing cloud environments, particularly Microsoft Azure. Familiarity with high-assurance environments such as CNI, Government, or finance. Knowledge of the Network & Information Systems Regulations 2018 (NIS). Excellent written and spoken communication skills. Strong customer engagement and stakeholder management experience. The ability to challenge the status quo and engage in difficult conversations when necessary to protect our interests. Why Join Us? Be part of a team that is leading the charge towards a zero-carbon operability of the electricity system by 2025! You will have the chance to make a real difference in the energy landscape while working in a vibrant and supportive environment. If you are a motivated individual with a passion for cybersecurity and a desire to contribute to a greener future, we want to hear from you! Apply Now! Take your career to the next level and help us secure the energy future of Great Britain. Submit your application today and let’s make a positive impact together! Candidates will ideally show evidence of the above in their CV to be considered. Please be advised if you haven't heard from us within 48 hours then unfortunately your application has not been successful on this occasion, we may however keep your details on file for any suitable future vacancies and contact you accordingly.

Warwick, United Kingdom

Hybrid

Freelance

26-03-2025