Infrastructure and Security Engineer

Infrastructure and Security Engineer

Location: Piccadilly, London (with occasional travel to other sites)

Reporting to: Head of Infrastructure, Network & Cyber Security

Key Relationships: Digital Transformation & Technology, Retail, Facilities, Third-Party Partners

About the Role

We are looking for a highly experienced and forward-thinking Infrastructure & Security Engineer to play a pivotal strategic role in shaping and securing our technology landscape.

This is a hands-on leadership position where you’ll drive the design, optimisation, and security of our hybrid infrastructure across cloud and on-prem environments. You’ll take ownership of delivering scalable, resilient, and high-performing systems that support business-critical operations.

You will also play a key role in advancing our Zero Trust strategy, enhancing cyber resilience, and ensuring robust compliance with industry frameworks such as PCI DSS, NIST, and ISO 27001.

If you are passionate about innovation, security excellence, and influencing enterprise architecture, this is an exciting opportunity to make a significant impact.

Key Responsibilities

Infrastructure & Security Leadership

• Act as a hands-on technical lead, driving continuous improvement across infrastructure and security.
• Design, implement, and optimise secure, scalable environments across servers, cloud, storage, and networks.
• Support and enhance a hybrid Microsoft ecosystem including Azure, Microsoft 365, Intune, Entra ID, SCCM, and SQL Server.
• Manage and maintain virtualised environments (VMware vSphere, ESXi, vCenter).

Network & Security Management

• Ensure performance, resilience, and security of the Cisco Meraki network.
• Manage security tooling including SIEM platforms, endpoint protection, and identity access controls.
• Lead vulnerability assessments, penetration testing, and remediation activities.
• Strengthen cyber defence through proactive threat detection, incident response, and forensic analysis.

Cloud, Identity & Compliance

• Drive adoption of Zero Trust principles and secure identity management (RBAC, MFA).
• Enhance security posture across Azure using tools such as Microsoft Defender for Cloud and Sentinel.
• Maintain compliance with regulatory and security frameworks (PCI DSS, ISO, NIST, GDPR).

Device & Endpoint Management

• Design and implement secure device deployments using Intune and Autopilot.
• Ensure consistent, secure configurations across retail, hospitality POS, and corporate devices.
• Manage patching, updates, and endpoint security across a complex estate.

Resilience & Continuity

• Lead disaster recovery planning, testing, and execution.
• Maintain backup solutions and ensure high availability of services.

Collaboration & Stakeholder Engagement

• Partner with internal teams and third-party providers to deliver secure, high-performing services.
• Act as a trusted subject matter expert and advisor across the business.
• Mentor team members and promote a security-first culture.
• Ensure robust documentation, standards, and best practices are in place.

Skills & Experience

Essential

• Strong experience with Microsoft infrastructure (Windows Server, Active Directory, Azure, Microsoft 365).
• Deep understanding of networking technologies (LAN/WAN/WiFi, TCP/IP, firewalls, routing, switching – Cisco).
• Experience with cloud security, IAM, and Azure environments.
• Knowledge of virtualisation technologies (VMware).
• Scripting experience (PowerShell).
• Familiarity with monitoring tools (e.g., SolarWinds, PRTG, Zabbix).
• Experience in incident response, vulnerability management, and endpoint security.
• Understanding of backup, disaster recovery, and storage solutions.

Desirable

• Certifications: CCNA/CCNP/CCIE, Azure (AZ-104, AZ-500), Microsoft certifications (MS-102, MCSA).
• Knowledge of Zero Trust architecture and hybrid cloud environments.
• Experience with automation tools (Terraform, Azure CLI).
• Familiarity with ITIL practices and service management tools.
• Experience managing third-party vendors and security compliance.

What We’re Looking For

• A proactive, self-driven professional who thrives in a fast-paced environment.
• Strong problem-solving skills with a solutions-focused mindset.
• Ability to communicate complex technical concepts clearly to a range of stakeholders.
• High attention to detail and accountability.
• A collaborative team player who can influence and lead without authority.
• A passion for continuous learning and staying ahead of emerging technologies.

What We Offer

• Competitive salary
• Up to 40% store and restaurant discount
• 25 days holiday + your birthday off
• Subsidised staff restaurant using Fortnum’s own ingredients
• Excellent pension scheme
• Ongoing development and career progression opportunities

We are committed to developing your career and nurturing your talent, regardless of age; disability; gender reassignment; marriage and civil partnership; pregnancy and maternity; race; religion or belief; sex; sexual orientation. We respect and embrace each other’s differences, to create a truly inclusive environment. In the last year alone, our people have been recognised and celebrated, winning awards for their outstanding contributions to Retail, Technology, Global Hospitality & Tourism, Visual Merchandising & Display, Customer Service and Local Community Awards.

If you feel this could be a role for you Apply Now!!