Delivery Lead (Cyber Security)

We operate a hybrid policy with a minimum of one day per week in the office. There will be occasional travel to each office as needed for team days, training etc.

Home. There’s no place like it.

And there’s no feeling like helping people create the joy of feeling truly at home. At Dunelm, that’s what we do. We’re the UK’s number one choice for homewares because we make home life lovelier for our customers. And we’ve crafted a workplace that feels just as welcoming – where you can bring your ideas, be yourself, and feel right at home.

The Security Delivery Lead is a key member of our team; a delivery expert, coach and leader, here to help the team deliver security, audit and cyber outcomes against our business goals.

What you’ll be doing

The Security Delivery Lead will be responsible for overseeing the delivery of security initiatives across multiple domains, including DevSecOps, Information Security, and Risk Management. This role acts as the single point of contact for internal audit actions and ensures compliance with organisational standards. The individual will oversee a DevSecOps team, collaborate closely with InfoSec, Risk and SecOps, and provide leadership across projects operating in both agile and waterfall environments. Success in this role requires strong problem-solving skills, the ability to navigate ambiguity, and a proactive approach to driving security outcomes.

The ideal candidate will combine technical understanding with delivery expertise, ensuring security practices are embedded throughout the development lifecycle. They will champion governance and risk management while maintaining flexibility to adapt to evolving business needs.

This role is in the Platform and Operations centre of enablement working with the Cyber Security team. The Cyber Security team are comprised of InfoSec, Risk and the DevSecOps team. The latter is responsible for security tooling, standards and processes on one of the busiest e-commerce sites in the UK. While InfoSec and Risk both deal with Information Security and risk management across the business with a line into technology.

What we’ll look for in you

• Technical knowledge and an understanding of security practices, tools and techniques within a large organisation
• Experience working with risk, governance, internal audit or security teams
• Experienced in Agile / bi-modal methods of Delivery (Scrum, Kanban, PMP, etc)
• Experience working with Product, other Delivery Leads and Engineers to deliver against the teams roadmaps
• Leading conversations with people at all technical levels
• Worked within a DevOps environment
• Comfortable speaking to, and presenting to leadership (Exec, Directors Heads Of) regularly
• Understanding and conveying technical information to non-technical people

D&I statement

Our commitment to you