Principal Security Consultant

The Principal Security Consultant (Online) is a senior, hands-on security specialist supporting the secure design and delivery of online and digital platforms. The role provides expert security assurance, design review, and DevSecOps guidance across web, mobile, API, and cloud-native services hosted primarily on Microsoft Azure.

The role works closely with the Business Information Security Officer (BISO) for the online domain to ensure security risks are identified early, assessed pragmatically, and managed in line with business priorities and enterprise risk appetite.

What you'll do

• Review and assess solution designs and architectures for online and digital services
• Identify security risks across identity, APIs, cloud services, data flows, and third-party integrations
• Provide clear, proportionate security recommendations aligned to enterprise standards
• Advise on embedding security controls into CI/CD pipelines (e.g. SAST, SCA, secrets scanning, IaC scanning)
• Support secure engineering practices across build, deploy, and operate phases

Who you are

• Senior experience in security consulting, product security, or application security
• Strong background in online and digital platforms (web, mobile, APIs, e-commerce)
• Proven ability to review and challenge technical designs and architectures
• Strong understanding of DevSecOps and modern CI/CD practices
• Hands-on knowledge of Azure cloud security
  

What’s in it for you

Being a part of M&S is exactly that – playing your part to bring the magic of M&S to our customers every day. We’re an inclusive, dynamic, exciting, and ever evolving business built on doing the right thing and bringing exceptional quality, value, service to every customer, whenever, wherever and however they want to shop with us.

• Here are some of the benefits we offer that make working for M&S just that little bit more special…

• After completing your probationary period, you’ll receive 20% colleague discount across all M&S products and many of our third-party brands for you and a member of your household.

• Competitive holiday entitlement with the potential to buy extra holiday days!

• Discretionary bonus schemes awarded based on how you achieve your personal objectives and our performance as a business.

• A generous Defined Contribution Pension Scheme and Life Assurance.

• A dedicated welcome to our teams with a tailored induction and a wide range of training programmes to develop your skills.

• Amazing perks and discounts via our M&S Choices portal to maximise your financial and personal wellbeing.

• Industry-leading parental, adoption and neonatal policies, providing support and flexibility for your family.

• Access to a fantastic range of wellbeing support for all colleagues including access to our 24/7 Virtual GP and PAM Assist to support you and your family.

• A charity volunteer day to support a charity or cause you're passionate about through a dedicated day away from work.

Everyone’s welcome

We’re ambitious about the future of retail. We’re innovating, disrupting, and leading the way into a more inspiring, digital era. It’s an exciting time to be part of M&S.

To support us on our journey, we’re building inclusive, diverse teams where everyone can be themselves, do their best work, and make change happen. We support each other and succeed together.

Don’t worry if you don’t meet every single requirement of the job description. It’s more of a guide to what’s possible within the role. If you’re passionate, ready to work hard, and think the role feels right for you, we’d love to hear from you. #hybridrole #LI-OT1 #LI-Hybrid