About the Cyber Security Team Our cyber security team are the eyes and ears of our organisation. We use pioneering technology to increase visibility and protection of systems, services, and data. To do this we need to stay ahead of the latest threats and continuously improve our tooling, techniques, and processes. We’re continually working to step change security capability to further improve the protection and controls that we offer for our customers and colleagues across the UK, Europe, and Asia, and we’re looking to add phenomenal people to our growing team. We believe that skilled and passionate people are our greatest asset in reducing risk to our business and customers. We encourage and support continual development and learning and recognise the importance of keeping up with changes in technology and an evolving threat landscape. Role Overview As a Security Engineer, you will use your knowledge and expertise to play a key role in defining, implementing, and enhancing capabilities to detect, prevent, and respond to security threats and incidents. You will enable a faster and more effective response by designing and implementing automated security processes. Responsibilities

Defining, designing, and implementing security automations to enhance the capability to detect, prevent and respond to security threats and incidents by enabling a faster and more effective response. Drive the security automation roadmap based on team feedback and through your own research, testing and development. Work across multiple teams with analysts and engineers to improve workflows, enabling our colleagues to spend their time doing what they do best. Design and develop security automations across SOAR platform and other security products and tooling. Develop tooling using REST APIs and Python development. Work with existing security automation and platform engineers to improve upon existing playbooks and automations to ensure optimal platform performance. Developing and running security processes day-to-day for the Tesco Group.

Qualifications

Proven hands-on experience with Security Orchestration, Automation and Response (SOAR) platforms. 2+ years of proven hands-on experience using Python for development. Understanding of REST APIs and ability to interact with 3rd party REST APIs. Understanding of the MITRE ATT&CK framework (or equivalent) and emerging threat actor tactics, techniques, and procedures.

Desirable Certifications

Ideally one or more relevant certifications, such as SANS SEC573, SEC598, SEC673.

Our commitment to inclusion Our vision at Tesco is to become every customer's favourite way to shop, whether they are at home or on the move. Our core purpose is “Serving our customers, communities and planet a little better every day.” We are proud to have an inclusive culture at Tesco where everyone truly feels able to be themselves. We are committed to creating a workplace where differences are valued and all colleagues have the same opportunities. We’re proud to have been accredited Disability Confident Leader and we’re committed to providing a fully inclusive and accessible recruitment process. For further information on the accessibility support we can offer, please contact us. We’re a large business with a range of full-time and part-time working patterns across our many business areas. We operate in a blended pattern — combining office and remote working. #J-18808-Ljbffr