Overview

Job Title: DevSecOps Security Engineer - Run & Operate

Date: January 2025

Directorate: Tesco Mobile, Technology Operations

Department: Engineering

Location: Slough

Tesco Work Level: WL2

Employment type: Full time

Reason for vacancy: New role

Job family: IT Development

Reports to: Run & Operate Chapter Lead

About The Team

The Tesco Mobile Engineering team is a cross functional team responsible for both functional software development and the running and operation of bespoke and product / SaaS based IT solutions. You will be working within a diverse team of motivated individuals on business-critical infrastructure management, operating in sprints across technologies that benefit the wider business. The Run and Operate Chapter manages the platforms and infrastructure used by many business services. This role is part of the DevSecOps squad and reports to the Run and Operate Chapter Lead. The squad is responsible for managing the infrastructure that powers all Engineering systems and applications, as well as software development tools and pipelines used across Tesco Mobile.

The DevSecOps squad focuses on security across infrastructure and CI/CD pipelines and collaborates with the Tesco Mobile Cyber Security Team.

About The Role

As a DevSecOps Security Engineer within the Run and Operate chapter, you will help manage and deploy solutions on a variety of platforms in a secure and optimised manner. Responsibilities include security work across platforms, maintaining a prioritised programme of work, identifying threats and risks, implementing mitigations, and integrating more security checks into CI/CD pipelines. You will validate planned changes for best practice compliance and collaborate with the Tesco Mobile Cyber Security Team.

Skills And Experience

• Significant commercial experience with cloud and SaaS security improvement projects.
• Significant experience with cloud providers AWS and Azure.
• Experience of CI/CD pipelines and incorporating security tooling.
• Experience using SAST and other techniques to improve code security.
• Experience using AWS Security Hub, Azure Security Center, etc. to improve cloud security position.
• Willingness to learn new skills.

Nice To Have

• Source code systems and branching strategies; Github and Github Actions.
• Experience managing Splunk including data streams, indices, ingests and dashboards.
• Experience maintaining and updating infrastructure using IaC tooling.
• Automation experience with tools/languages including AWS CLI, Python, etc.
• Automation tasks using PowerShell or Azure CLI.
• Containerisation technologies; Docker and Kubernetes.
• Experience with CI/CD approaches and GitHub Actions.

Key Responsibilities

• Be a team player and live the Tesco Mobile values.
• Implement agreed security improvements to key platforms.
• Act as the subject matter expert for infrastructure security.
• Work with application development teams to improve application security.
• Provide business justifications for security improvements and communicate with Product Owners and stakeholders.
• Share knowledge with other members of the squad.

Key Stakeholders

• Marc Timperley - Run & Operate Chapter Lead
• DevSecOps Security Engineer
• DevSecOps Squad
• Cyber Security Team

Seniority level

• Mid-Senior level

Employment type

• Full-time

Job function

• Information Technology

IsExpired: false