The Principal Security Consultant is a hands‑on senior security specialist supporting the secure design and delivery of a programme to transform and migrate the core business SAP platform and its wider integration across the business. The role provides expert security assurance, architectural design review, and technical guidance to the transformation programme to effectively deliver a journey from blended SAP ECC to cloud‑native SAP S4/HANA core, and the development of robust and secure interfaces to multiple critical business applications and functions across the organisation.
The role will be embedded within the delivery programme, working closely with the Business Information Security Officer (BISO) for the Central domain, along with other Infosec and business stakeholders, to ensure security risks are identified early, assessed pragmatically, and managed in line with business priorities and enterprise risk appetite.
What You’ll Do
- Review and assess solution designs and architectures for the SAP transformation programme ensuring alignment to Infosec NFRs and security/architectural patterns
- Identify security risks across identity, APIs, cloud services, data flows, third‑party integrations, and proposed data migrations or interim connections to facilitate the transformation
- Provide clear, proportionate security recommendations aligned to enterprise standards and best practice
- Advise on embedding security controls into all aspects of the SAP transformation/migration plan
- Support secure engineering and operational practices across design, build, deploy, and operate phases
Who You Are
- Experience in security consulting, product security, or application security
- Strong background in SAP on‑prem, hybrid and cloud, as well as general online and digital platforms (web, mobile, APIs, e‑commerce) and their integrations
- Proven knowledge and experience to review, assess and challenge technical designs and architectures and associated architectural governance practices
- Strong understanding of enterprise integration challenges, methods and tooling to ensure end‑to‑end data protection across business functions
- Hands‑on knowledge of DevSecOps and modern CI/CD practices
What’s in it for you?
- 20% colleague discount on all M&S products and many third‑party brands for you and someone in your household, available once you’ve completed your probation
- Competitive holiday allowance with the option to buy more
- Discretionary bonus schemes linked to your performance and ours
- Strong pension and life assurance to help plan for the future
- Tuned induction and training to support your development from day one
- Exclusive perks and savings through our M&S Choices portal
- Market‑leading family policies, including parental, adoption and neonatal leave
- 24/7 wellbeing support, including virtual GP access and mental health services
- One paid volunteer day a year to support a cause that matters to you
Everyone’s welcome
We are ambitious about the future of retail. We’re disrupting, innovating and leading the industry into a more conscientious, inspiring digital era. Marks & Spencer strives to be an inclusive organisation, trusted and admired by our colleagues, customers and suppliers.
If you feel you would benefit from any support or reasonable adjustments during any stage of the recruitment process, please let us know when completing your application.
#J-18808-Ljbffr…
