The following content displays a map of the jobs location - London and/or Welwyn Garden City

Security Engineer - SOAR

Job Reference tesco/TP/13499350/914035

The job has expired.

Number of Positions:
2
Contract Type:
Permanent
Salary:
Competitive
Location:
London and/or Welwyn Garden City
Closing Date:
01/11/2024
Job Category:
Security
Business Unit:
GB Head Office

What’s in it for you

We’re all about the little helps. That’s why we make sure our Tesco colleague benefits package takes care of you – both in and out of work. Click Here to find out more!

  • Annual bonus scheme of up to 20% of base salary
  • Holiday starting at 25 days plus a personal day (plus Bank holidays)
  • Private medical insurance
  • 26 weeks maternity and adoption leave (after 1 years’ service) at full pay, followed by 13 weeks of Statutory Maternity Pay or Statutory Adoption Pay, we also offer 4 weeks fully paid paternity leave
  • Free 24/7 virtual GP service, Employee Assistance Programme (EAP) for you and your family, free access to a range of experts to support your mental wellbeing

About the role

About the Cyber Security Team

Our cyber security team are the eyes and ears of our organisation. We use pioneering technology to increase visibility and protection of systems, services, and data. To do this we need to stay ahead of the latest threats and continuously improve our tooling, techniques, and processes.

We’re continually working to step change security capability to further improve the protection and controls that we offer for our customers and colleagues across the UK, Europe, and Asia, and we’re looking to add phenomenal people to our growing team.

We believe that skilled and passionate people are our greatest asset in reducing risk to our business and customers. We encourage and support continual development and learning and recognise the importance of keeping up with changes in technology and an evolving threat landscape.

About the role

As a Security Engineer, you will leverage your knowledge and expertise to play a key role in developing and implementing automated workflows that will save on human hours, improve consistency, reduce risk, and allow for faster and more effective response.

Help drive the security automation roadmap based on team feedback and through your own research, testing, and development.

Work across multiple teams with security analysts and engineers to design and develop security automations across SOAR platform and other security products and tooling.

Improve existing automations and playbooks to ensure optimal platform performance.

Flexible working model

At Tesco, we believe in the power of spending more time together, face to face, than apart. So, during your working week, you can expect to spend 60% of your time in one of our office locations or local sites and the rest remotely. We also recognise that life looks a little different for each of us. Some people are at the start of their careers, some want the freedom to do the things they love. Others are going through life-changing moments like becoming a carer, nearing retirement, adapting to parenthood, or something else. That’s why at Tesco, we always welcome a conversation about flexible working. So, talk to us throughout your application about how we can support.

You will be responsible for

  • Defining, designing, and implementing security automations to enhance the capability to detect, prevent and respond to security threats and incidents by enabling a faster and more effective response.
  • Drive the security automation roadmap based on team feedback and through your own research, testing and development.
  • Work across multiple teams with analysts and engineers to improve workflows, enabling our colleagues to spend their time doing what they do best.
  • Design and develop security automations across SOAR platform and other security products and tooling.
  • Desing and develop custom integrations with 3rd party tooling using REST APIs and Python development.
  • Work with existing security automation and platform engineers to improve upon existing playbooks and automations to ensure optimal platform performance.
  • Developing and running security processes day-to-day for the Tesco Group

You will need

Technical Skills:

  • Proven hands-on experience with Security Orchestration, Automation and Response (SOAR) platforms.
  • 2+ years of proven hands-on experience using Python for development.
  • Understanding of REST APIs and demonstrate ability to interact with 3rd party REST APIs.
  • Understanding of the MITRE ATT&CK framework (or equivalent) and emerging threat actor tactics, techniques, and procedures.

Soft Skills:

  • Demonstrable curiosity, passion, and proactive attitude to security and personal development.
  • Good interpersonal skills, and written and oral communications, self-motivator.
  • Great teammate and independent worker, relationship builder.
  • Ability to collaborate closely with domain experts, key customers, and colleagues at all levels.

Desirable Certifications: Ideally one or more relevant certifications, such as: SANS SEC573, SEC598, SEC673

Relevant operational skills:

  • Self-motivated and ambitious.
  • Flexibility, responsiveness, creativity, self-starter.
  • Willingness to learn.
  • Able to build solid working relationships with peers and senior leadership.
  • Ability to demonstrate strong written, verbal communication and presentation skills to all levels of seniority and disciplines within the organisation.

About us

Our vision at Tesco is to become every customer's favourite way to shop, whether they are at home or out on the move. Our core purpose is ‘Serving our customers, communities and planet a little better every day’. Serving means more than a transactional relationship with our customers. It means acting as a responsible and sustainable business for all stakeholders, for the communities we are part of and for the planet.

Diversity, equity and inclusion (DE&I) at Tesco means that whoever you are and whatever your background, we always want you to feel represented and that you can be yourself at work. In short, we’re a place where Everyone’s Welcome. We’re proud to have been accredited Disability Confident Leader and we’re committed to providing a fully inclusive and accessible recruitment process. For further information on the accessibility support we can offer, please click here.

We’re a big business and we can offer a range of diverse full-time & part-time working patterns across our many business areas, which means that we can find something that works for you.  We work in a more blended pattern -combining office and remote working.  Our offices will continue to be where we connect, collaborate and innovate.