Security Platform Engineer

As the Specialist Platform Security Engineer you will play a pivotal role in ensuring the integrity and security of our platforms. You will lead the charge in implementing robust security measures, collaborating closely with cross-functional teams to fortify our defenses against cyber threats.

What you'll do

• Strategic guidance for secure adoption and use of SaaS & PaaS platforms and services in the Microsoft, Google & Atlassian ecosystem, MongoDB Atlas, and other first-party platforms developed by M&S. The services include databases, API gateways, code repositories, integration services and others

• Technical consulting to identify misconfigurations and reduce platform risk, helping raise organizational awareness of risks and best practices by participating in workshops, documentation efforts, and knowledge sharing

• Support for secure design and integration of tools across business programs, providing access & configuration reviews for the various platforms; contributing to the implementation of platform security standards, policies, and baselines under guidance from senior team members; building a culture of security by promoting automation, repeatable patterns, and consistent practices across teams

• Assistance in identifying and remediating platform-specific vulnerabilities

• Automation of security checks, configuration reviews, and access hygiene, including assistance in security integration into CI/CD pipelines, contributing to automated checks (e.g., GitHub Actions) that identify misconfigurations, vulnerabilities, and policy violations

• Solid understanding of Identity and Access security, including but not limited to least privilege, zero trust, authentication, authorisation, SSO, JWT, RBAC/ABAC/PBAC

• Solid understanding of security principles and architecture, particularly for databases and APIs

• Understanding of Platform & Configuration Security, and Platform Monitoring, Response and Governance

• Scripting (Python, Bash) for task automation

• Terraform

• Understanding of security threats like DDoS, brute force, exfiltration, spoofing, and other relevant threats

• 3 years of hands-on experience in platform or infrastructure security, with a strong interest in building skills in this area.

Working at M&S means being part of something bigger - helping to deliver quality, value and service to millions of customers every day. We're inclusive, fast-moving and always evolving, with a strong sense of purpose and a focus on doing the right thing. Here are just a few of the benefits that make working here even more rewarding:20% colleague discount on all M&S products and many third-party brands for you and someone in your household, available once you've completed your probation * Competitive holiday allowance with the option to buy more * Discretionary bonus schemes linked to your performance and ours * Strong pension and life assurance to help plan for the future * Tailored induction and training to support your development from day one * Exclusive perks and savings through our M&S Choices portal * Market-leading family policies, including parental, adoption and neonatal leave * 24/7 wellbeing support, including virtual GP access and mental health services * One paid volunteer day a year to support a cause that matters to you Everyone's welcome We are ambitious about the future of retail. We're disrupting, innovating and leading the industry into a more conscientious, inspiring digital era. We're transforming how we work together and offering our most exciting opportunities yet. Marks & Spencer strives to be an inclusive organisation, trusted and admired by our colleagues, customers and suppliers. Join us and make change happen. We are committed to building diverse and representative teams, where everyone can bring their whole selves to work and be at their best. We support each other and work together to win together. If you feel you'd benefit from any support or reasonable adjustments during any stage of the recruitment process, please don't hesitate to let us know when completing your application. This information will be picked up by our team, so we can try and put steps in place to help you be at your best through this process #hybridrole #LI-Hybrid #LI-OT1