Information Security Engineering Lead

Apply on JLP Jobs - the official careers website for John Lewis Partnership, John Lewis & Partners, and Waitrose & Partners.

At a glance

• Expected Salary: £65,000 - £85,000 depending on experience
• Contract type: Permanent
• Working pattern/flexible working: This role is based at the Bracknell Head Office, with an opportunity for hybrid working. Your time will primarily be split between Bracknell (current normal expectation 1 day per week) and working from home. There will also be a need to infrequently visit other locations as required.
• Our Infosec team currently works from the office every Tuesday for connection and ad-hoc meetings, with infrequent visits to other locations as needed.
• There will be a need for on-call support as part of a rota, with availability for out-of-hours support approximately one week in five, planned around leave and personal commitments.

What you’ll be doing

This is a highly technical engineering role, involving hands-on development and maintenance of security operations tooling. You’ll use your expertise to guide and support other Security Engineers, following agile practices to deliver tooling aligned with our Information Security strategy.

The initial focus is to lead the delivery and maintenance of SentinelOne EDR tooling, with opportunities to lead engineering across various security areas including SIEM, network security, cloud security, email security, and Zero Trust.

You’ll bring technical leadership to projects, leading the delivery of new security tooling as a respected security expert, and working with technology teams to ensure security of new technologies. You’ll collaborate with colleagues and senior leaders across the organization and maintain relationships with strategic vendors to ensure security.

Essential Skills

• Hands-on experience in a senior Security Engineering role, leading a team of Security Engineers
• Experience in delivering and maintaining EDR tooling, especially SentinelOne
• Proven track record in agile delivery, following Scrum or Kanban
• Experience working with development, operations, and infrastructure teams in a security context
• Knowledge of security frameworks such as Mitre ATT&CK and NIST

Desirable Skills

• Proficiency with SIEM tooling and detections
• Experience with Google SecOps (Google Chronicle)
• Knowledge of network security principles and tools like zScaler
• Experience securing cloud platforms with tools like CASB, CSPM, SSPM
• Knowledge of GCP and Google Security Command Center
• Formal security certifications or degrees such as CISSP

Additional Information

The application process includes CV upload and application questions. Save questions to Google Docs before entering on Workday. Internal applicants can view the job outline via this link. Successful candidates will undergo a screening call and two interview rounds.

Join us

Become part of our Information Security Engineering team, playing a key role in protecting our customers, Partners, and business from cyber threats. Our strategy is bold and involves collaborative delivery of security services across people, processes, and technology.

We are looking for an experienced Security Engineering Lead to oversee the delivery of security capabilities and support our Security Operations Centre in defending against cyber threats. This role offers the chance to work with market-leading security tools in an agile, innovative environment.