Mid-Level Security Engineer
Role details
Job location
Tech stack
Job description
We are looking for a hands-on Security Engineer to design, deploy, and integrate security solutions across core platforms, data pipelines, and infrastructure. This role is focused on practical implementation of security controls, rather than policy or governance, ensuring robust protection across all systems and channels. As a Security Engineer at an omnichannel retailer, you will protect customer, payment, and operational data across stores, ecommerce, mobile, marketplaces, and backoffice systems. Youll work closely with the Head of Information Security and IT, network, cloud, and data engineering teams to embed security into architectures and pipelines, ensuring data is encrypted, access is controlled, and monitoring covers all channels., * Design, implement and integrate security controls across core IT infrastructure, cloud platforms, networks and data environments.
- Deploy and manage security tooling such as endpoint protection, vulnerability management, SIEM/logging, identity access management and secrets management.
- Embed security into data platforms and pipelines, ensuring secure ingestion, encryption, access controls and monitoring.
- Collaborate closely with Infrastructure, Network, Cloud and Data Engineering teams to ensure security is built into system architecture and deployment pipelines.
- Configure and tune security monitoring, detection rules and response playbooks to strengthen threat detection and incident response.
- Contribute to secure design reviews for new systems and initiatives, providing practical engineering guidance.
- Support incident response and remediation, implementing improvements and hardening measures to prevent recurrence.
- Build security automations and integrations using APIs, scripting and infrastructure-as-code.
- Produce technical documentation, runbooks and provide guidance to engineering teams on secure configuration and best practice.
Requirements
Do you have experience in VMware?, * Experience as a Security Engineer, Infrastructure Engineer or DevOps/Platform Engineer with strong hands-on security implementation experience.
- Proven ability to deploy and integrate security solutions such as EDR, vulnerability scanners, SIEM/logging platforms, IAM and key management tools.
- Strong understanding of cloud environments (GCP or Azure), networking, infrastructure security and VMware.
- Experience working with containerised environments, CI/CD pipelines and automation tooling.
- Knowledge of data platform security, including encryption, access control models and protection of data lakes or analytics environments.
- Proficiency in scripting or automation languages such as Python, PowerShell or Bash.
- Familiarity with security frameworks and compliance standards including ISO 27001, NIST, GDPR and PCI DSS.
- Strong troubleshooting skills with the ability to translate security requirements into practical engineering solutions.
- Excellent communication skills and ability to collaborate with cross-functional engineering teams.
- Desirable: Experience in retail or ecommerce environments, exposure to modern data stacks, SIEM platforms (e.g. Datadog), and relevant certifications such as CISSP or CISA.
Benefits & conditions
Pulled from the full job description
-
Referral programme
-
Annual leave
-
Employee discount
-
Life insurance
-
Employee assistance programme
-
Company pension
-
Cycle to work scheme, * 33 days annual leave for full time employees (25 days holiday + 8 bank holidays)
-
A day off to celebrate your birthday.
-
Pension Scheme
-
Group Life Insurance
-
Employee Assistance Programme (EAP)
-
Length of Service Award
-
Refer a Friend Scheme
-
Staff uniform for retail employees
-
Generous Staff and Friends and Family Discount
-
Annual Volunteer Day
-
Cycle to Work Scheme
-
Tech Scheme
-
Eye Care Vouchers
-
Real Living Wage Employer
-
Employee led committees
-
Social events and biannual parties
-
Enhanced maternity and paternity package after 2 years of service.
