Overview
Kingfisher is a team of over 74,000 people delivering Kingfisher and other brands: B&Q, Screwfix, Brico Depot, Castorama and Koctas. We aim to become the leading home improvement company and grow the largest community of home improvers. We are looking for a Head of Security Architecture to lead the strategy and practices that ensure our technology is secure by design and supports a safe, trusted digital experience for customers and colleagues. You will guide how security principles are embedded into solutions across the business, helping protect what matters and enabling teams to deliver with confidence.
At Kingfisher, we are committed to equality and inclusion. We treat colleagues, future colleagues, and applicants fairly regardless of age, gender, marital or civil partnership status, colour, ethnic or national origin, culture, religious or philosophical belief, political opinion, disability, gender identity or expression, or sexual orientation.
We are open to flexible and agile working, including different hours and locations. This role requires a weekly presence in both our London and Southampton offices.
What's the job?
* Develop and deliver a clear security architecture strategy that supports Kingfisher's goals and provides Security Architecture as a service.
* Lead monitoring of the technical environment and champion best-practice security to protect the confidentiality, integrity and availability of data and systems.
* Influence Technology leaders to ensure security is embedded in their initiatives, with early engagement and constructive challenge.
* Guide and support project and change teams so solutions maintain and enhance Kingfisher's security posture.
* Embed security reviews into processes for in-house and third-party solutions, including long-term and strategic programmes.
* Establish and maintain threat-modelling practices and frameworks that support the design and implementation of effective security controls.
* Provide leadership to the Security Architecture team, fostering a proactive, collaborative and service-focused culture.
What you'll bring
* Strong experience delivering and maintaining enterprise security solutions across areas such as endpoint, cloud, network security, DevOps, monitoring and remediation.
* Deep understanding of IT security principles, standards and frameworks (e.g., ISO 27001, NIST, PCI DSS, cloud security standards).
* Proven ability to translate complex security concepts for both technical and non-technical colleagues.
* Experience shaping security governance, tracking risks, and embedding effective service provision within a team.
* Ability to build trusted relationships at all levels and collaborate across teams to drive continuous improvement.
Be Customer Focused
* I listen to my customers
* I use available data to help make decisions
Be Human
* I do the right thing
* I am respectful
Be Curious
* I build and share new ideas
* I try new things and share my learnings
Be Agile
* I have courage to be creative
* Done is better than perfect, I aim for 80/20
Be Inclusive
* I embrace allyship
* I have self-awareness and a desire to learn
Be Accountable
* I own my actions
* I understand the Kingfisher plan and how it relates to my role
At Kingfisher, we value the perspectives that any new team members bring, and we encourage you to apply for one of our roles even if you do not feel you meet 100% of the requirements.
We offer an inclusive environment where what you can achieve is limited only by your imagination. We encourage new ideas, actively support experimentation, and strive to build an environment where everyone can be their best self. Find out more about Diversity & Inclusion at Kingfisher here.
We also offer a competitive benefits package and plenty of opportunities to stretch and grow your career.
Interested? Great, apply now and help us to Power the Possible.
#J-18808-Ljbffr