IT Security Engineer

Your new role

This role is about reducing security risk through technical delivery and strategic oversight.

• Lead the deployment, configuration, and tuning of new and existing security tools to enhance defence and efficiency.
• Drive the enforcement of security policy and controls across key domains.
• Initiate, provide counsel and assurance on technical security projects from conception through to operational handover, ensuring clear risk reduction objectives are met. Working with other areas within the technology function to execute the delivery of the projects.
• Provide technical counsel to the Head of Group IT Security on new solutions before sign-off, ensuring secure‑by‑design principles are followed.
• Conduct continuous internal security assessments, including Privileged Access Reviews and Cloud Configuration Audits, and own the resulting remediation activities end‑to‑end.
• Develop automation and tooling to reduce incident response times and eliminate repetitive tasks for the security team.
• Define and deliver security standards, policies and processes for the group and review in a timely manner.

• Support and enhance detection logic across all computing environments in collaboration with our security partners.
• Perform deep, forensic‑level investigations when security incidents occur. The goal is simple: learn from every event and prevent the same issue from ever recurring.
• Lead the technical remediation efforts for security incidents and identified vulnerabilities, working closely across IT and the wider business.
• Proactively determine our risk by "running the path" of known attacker tactics, techniques, and procedures (TTPs) within our environments.
• Continuously improve security processes, playbooks, and tooling based on real‑world lessons.

• Lead the technical support for our penetration testing programme, including sound scoping, engaging with pentesters, and owning the subsequent vulnerability remediation.
• Develop and implement a technical framework for the deeper assessment and management of Third‑Party Security Risk, including assisting with the technical elements of supplier service reviews and audit execution.
• Apply established Cybersecurity Frameworks and Best Practices to mature our security posture and guide governance activities.
• Collaborate with engineering teams to enhance security coverage and visibility, providing expert technical security support across the company.

• Significant experience in security engineering within mixed Cloud and On‑Prem enterprise environments.
• Excellent communication skills, especially the ability to communicate complex technical security concepts and risks to all levels of the organisation.
• A deep understanding of attacker methodology, detection techniques, and how response frameworks relate to the role.
• Experience working in cloud‑native environments, specifically focusing on building and integrating security tooling to identify and mitigate misconfigurations.
• Strong analytical, troubleshooting, and problem‑solving skills.
• Working knowledge of major industry standards and compliance requirements.
• Ability to deliver through others.

• Certified Information System Security Professional (CISSP)
• Certified Cloud Security Professional (CCSP)
• Professional Cloud Security Engineer (GCP)

Please note: Demonstrable, hands‑on experience and proven risk‑reduction capability will always take priority over certification. We will assess all relevant industry certifications when coupled with substantial technical work.

We're home to DFS, Sofology, and The Sofa Delivery Company - three distinctive brands with a shared mission to bring great design and comfort into every home, affordably, responsibly, and sustainably.

At DFS Group, everyone plays a part. Whether you're supporting our brands or serving our customers, you're helping shape the future of furniture retail. Each brand has its own identity and creative direction, but we're united by a culture that puts people and purpose at the heart of everything we do.

Everyone Welcome

Across our Group, we're committed to a culture where everyone feels welcome, valued, and can thrive at work. We celebrate diverse voices, champion inclusion, and support each other through our growing colleague networks. We invest in partnerships that drive change, from supporting Doncaster Pride and introducing the Hidden Disabilities Sunflower, to partnering with Carers UK and developing leaders with Diversity in Retail.

We're proud to be an equal opportunities employer, committed to building a workplace that reflects the communities we serve. So, if your experience doesn't quite match the specification, we'd still really love to hear from you.

• Potential Annual Bonus Scheme: Contribute to our success and get rewarded for it.
• Growth and Training: Learn new skills and develop your career with us.
• Leave: Enjoy a great holiday allowance, with the option to buy 5 extra days. Take advantage of our enhanced leave for Maternity, Paternity, Shared Parental, and Adoption, plus a paid volunteering day each year.
• Discounts: Get 30% off DFS and Sofology products for yourself, plus discounts for friends and family - and savings at big brands like Sainsbury's, ASOS, and IKEA.
• Wellbeing Perks: Access healthcare services, an Employee Assistance Programme, and discounted gym memberships.
• Pension and Savings: Join our Group Pension and Sharesave schemes.
• Life Assurance & Sick Pay: Peace of mind with Life Assurance and Company Sick Pay.